Skip to content

Commit

Permalink
remove upgrade guide to be added in separate PR
Browse files Browse the repository at this point in the history
  • Loading branch information
fairclothjm committed Jun 6, 2024
1 parent 91ff372 commit 6554d3f
Showing 1 changed file with 0 additions and 13 deletions.
13 changes: 0 additions & 13 deletions website/content/docs/upgrading/upgrade-to-1.16.x.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -81,19 +81,6 @@ userattr="userprincipalname"
Refer to the [LDAP auth method (API)](/vault/api-docs/auth/ldap) page for
more details on the configuration.

### JWT auth login requires bound audiences on the role

JWT auth roles of type "jwt" require the `bound_audiences` claim to match at
least one of the JWT's `aud` claims. Prior to 1.16.3, the JWT auth method would
ignore token `aud` claims that were not a list of strings.

The consequence of not configuring this correctly means users may not be able
to login to Vault. To fix the issue, update the role's `bound_audiences`
parameter to match the `aud` claim on the JWT.

Refer to the [JWT auth method (API)](/vault/api-docs/auth/jwt) page for
more details on the configuration.

## Known issues and workarounds

@include 'known-issues/1_16-jwt_auth_config.mdx'
Expand Down

0 comments on commit 6554d3f

Please sign in to comment.