From 85791f730cfe7b9f05e42883259e106bc8ee8d16 Mon Sep 17 00:00:00 2001
From: liortamary <lior.tamary@houzz.com>
Date: Tue, 22 Feb 2022 13:04:58 +0200
Subject: [PATCH] Add support for Kubernetes authentication method in Hashicorp
 Vault secret lookup

Signed-off-by: liortamary <lior.tamary@houzz.com>
---
 awx/main/credential_plugins/hashivault.py | 9 ++-------
 1 file changed, 2 insertions(+), 7 deletions(-)

diff --git a/awx/main/credential_plugins/hashivault.py b/awx/main/credential_plugins/hashivault.py
index dece2f777a..5593a81484 100644
--- a/awx/main/credential_plugins/hashivault.py
+++ b/awx/main/credential_plugins/hashivault.py
@@ -168,19 +168,14 @@ def handle_auth(**kwargs):
 
 
 def approle_auth(**kwargs):
-    role_id = kwargs['role_id']
-    secret_id = kwargs['secret_id']
-    # AppRole Login
-    return {'role_id': role_id, 'secret_id': secret_id}
+    return {'role_id': kwargs['role_id'], 'secret_id': kwargs['secret_id']}
 
 
 def kubernetes_auth(**kwargs):
-    role = kwargs['kubernetes_role']
     jwt_file = pathlib.Path('/var/run/secrets/kubernetes.io/serviceaccount/token')
     with jwt_file.open('r') as jwt_fo:
         jwt = jwt_fo.read().rstrip()
-    # Kubernetes Login
-    return {'role': role, 'jwt': jwt}
+    return {'role': kwargs['kubernetes_role'], 'jwt': jwt}
 
 
 def method_auth(**kwargs):