Use VAULT_ID_TOKEN to authenticate pipeline

Author: michele-brambilla

.gitlab-ci.yml

@@ -25,8 +25,11 @@ get_credentials:
   tags:
     - Fulen
     - K8s
+  id_tokens:
+    VAULT_ID_TOKEN:
+      aud: https://git.cscs.ch
   script:
-    - export VAULT_TOKEN="$(vault write -field=token auth/jwt/login role=iam jwt=$CI_JOB_JWT)"
+    - export VAULT_TOKEN="$(vault write -field=token auth/jwt_idtoken/login role=iam jwt=$VAULT_ID_TOKEN)"
     - if [[ ${#VAULT_TOKEN} -lt 3 ]]; then echo "ERROR, Vault token empty"; exit 1; fi
     - export JFROG_USER="$(vault kv get -field=JFROG_USER $VAULT_PATH)"
     - export JFROG_TOKEN="$(vault kv get -field=JFROG_TOKEN $VAULT_PATH)"