I have a spring boot application that authenticates with vault using approle+bound_cidr_list setup. Authentication is working fine when testing with docker-compose but the same is failing with Kubernetes with a 403 error.
2020-07-20 16:38:33.699 INFO 1 --- [ main] o.s.c.vault.config.VaultConfigTemplate : Fetching config from Vault at: database/creds/service-db-role
2020-07-20 16:38:33.980 WARN 1 --- [ main] o.s.c.vault.config.VaultConfigTemplate : Could not locate PropertySource: Status 403 Forbidden [database/creds/service-db-role]: 1 error occurred:
* permission denied
; nested exception is org.springframework.web.client.HttpClientErrorException$Forbidden: 403 Forbidden
We have also tested this by installing vault in different VM and application in another VM, and it works fine.
If the authentication is happening fine with docker-compose why the same is failing with kubernetes?
Do I need to configure kubernetes-auth here?
I am stuck at this authentication issue for the last two days, any help will be really appreciated.