From 35e459669861b02e32fd2b068f9349b2b4677db4 Mon Sep 17 00:00:00 2001
From: Albert Salim <asalim@gitlab.com>
Date: Tue, 5 Dec 2023 03:03:43 +0000
Subject: [PATCH] Use default aud from GCP WLIF

---
 doc/architecture/blueprints/ci_gcp_secrets_manager/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/architecture/blueprints/ci_gcp_secrets_manager/index.md b/doc/architecture/blueprints/ci_gcp_secrets_manager/index.md
index f14526811bac5..250c18c02c0d3 100644
--- a/doc/architecture/blueprints/ci_gcp_secrets_manager/index.md
+++ b/doc/architecture/blueprints/ci_gcp_secrets_manager/index.md
@@ -78,7 +78,7 @@ The proposed CI keyword would be the following:
 job_name:
   id_tokens:
     GCP_SM_ID_TOKEN:
-      aud: https://gitlab.com # or self-managed GitLab URL
+      aud: https://iam.googleapis.com/projects/$GCP_PROJECT_NUMBER/locations/global/workloadIdentityPools/$GCP_WORKLOAD_FEDERATION_POOL_ID/providers/$GCP_WORKLOAD_FEDERATION_PROVIDER_ID # or a custom audience as configured in GCP Workload Identity Pool Provider.
   secrets:
     DATABASE_PASSWORD:
       gcp_sm:
-- 
GitLab