Skip to content

OIDC export/import as IdP like approles do #31618

New issue
New issue
Open
Open
OIDC export/import as IdP like approles do#31618
Labels
auth/oidc
@apenadiazApk

Description

@apenadiazApk
apenadiazApk
opened on Oct 31, 2025

Is your feature request related to a problem? Please describe.
We explain the problem in the forum: https://discuss.hashicorp.com/t/oidc-client-consistency-across-multiple-vault-instances-for-failover/76727/1

Describe the solution you'd like
Could be useful export / import OIDC clients like approle custom role-id and secret-id (keeping string format)

Describe alternatives you've considered
the alternative is like approles do explained: https://discuss.hashicorp.com/t/oidc-client-consistency-across-multiple-vault-instances-for-failover/76727/1

Explain any additional use-cases
the use case is using 2 vaults replica with health check DNS over cross-region, in case 1 vault is down/upgrading DNS Switch without recreate to all OIDC clients pointing to a new client_id and secret_id for the OIDC IdP in second Vault

Metadata

Metadata

Assignees

No one assigned

    Labels

    auth/oidc

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions