api(oidc): Add validation fields to OIDCProvider #5443
+31
−2
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
markwinter
changed the title
|
Can we add CEL validation rule for these rules? |
markwinter
force-pushed
the
feat/oidc-token-validation-api
branch
from
66708fe to
83b865b
Compare
Signed-off-by: mark winter <[email protected]>
Signed-off-by: mark winter <[email protected]>
markwinter
force-pushed
the
feat/oidc-token-validation-api
branch
from
a97c215 to
f7f8d59
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What this PR does / why we need it:
This PR is the start of adding ID token validation when using OIDC authentication.
It adds the
RemoteJWKSandAudiencefields to the OIDCProvider.The future intention is that when
RemoteJWKSis set, theIssuerAudienceandRemoteJWKSfields will be used to configure a JWT Filter that will validate the ID Token (using IdToken cookie)Which issue(s) this PR fixes:
Reference #5414
Release Notes: No