Skip to content

x509 cert fix #25144

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 14, 2025
Merged

x509 cert fix #25144

merged 1 commit into from
Nov 14, 2025

Conversation

@modular-magician
Copy link
Collaborator

@modular-magician modular-magician commented Nov 14, 2025

b/453727810

attribute from cert json used to determine x509 eligibility based on https://docs.cloud.google.com/go/docs/reference/cloud.google.com/go/auth/latest/credentials/externalaccount#cloud_google_com_go_auth_credentials_externalaccount_CredentialSource

Tested using a basic network

resource "google_compute_network" "custom_test" {
  provider = google-beta
  project = "terraform-dev-nickelliot-xxx"
  name                    = "tf-test-x509-nickelliot"
  auto_create_subnetworks = false
}

This run using my config for an X.509 Cert, using a config setup following the steps from the official docs here: https://docs.cloud.google.com/iam/docs/workload-identity-federation-with-x509-certificates
gpaste/4807609722994688

This run using my standard set-up (does not contain the debug lines added for X.509's auth flow)
gpaste/6295676673720320

Release Note Template for Downstream PRs (will be copied)

See Write release notes for guidance.

provider: an issue preventing X.509 certificates from being used for authentication when supplied as Application Default Credentials as been resolved

Derived from GoogleCloudPlatform/magic-modules#15691

@modular-magician
x509 cert fix (hashicorp#15691)
c29e113 
[upstream:525cea9d14cc8358f71a52c329f5fa79955de4b8]

Signed-off-by: Modular Magician <magic-modules@google.com>
@modular-magician modular-magician merged commit b84ea44 into hashicorp:main Nov 14, 2025
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@c2thorn c2thorn Awaiting requested review from c2thorn c2thorn is a code owner

@hao-nan-li hao-nan-li Awaiting requested review from hao-nan-li hao-nan-li is a code owner

@melinath melinath Awaiting requested review from melinath melinath is a code owner

@NickElliot NickElliot Awaiting requested review from NickElliot NickElliot is a code owner

@rileykarson rileykarson Awaiting requested review from rileykarson rileykarson is a code owner

@roaks3 roaks3 Awaiting requested review from roaks3 roaks3 is a code owner

@ScottSuarez ScottSuarez Awaiting requested review from ScottSuarez ScottSuarez is a code owner

@shuyama1 shuyama1 Awaiting requested review from shuyama1 shuyama1 is a code owner

@SirGitsalot SirGitsalot Awaiting requested review from SirGitsalot SirGitsalot is a code owner

@slevenick slevenick Awaiting requested review from slevenick slevenick is a code owner

@trodge trodge Awaiting requested review from trodge trodge is a code owner

@zli82016 zli82016 Awaiting requested review from zli82016 zli82016 is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@modular-magician