Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(6) Wrapper to highlight tokens being audience agnostic link. #318

Open
Tracked by #238
ibihim opened this issue Nov 12, 2024 · 1 comment
Open
Tracked by #238

(6) Wrapper to highlight tokens being audience agnostic link. #318

ibihim opened this issue Nov 12, 2024 · 1 comment
Labels
sig-auth-acceptance issues created during review for sig-auth-acceptance

Comments

@ibihim
Copy link
Collaborator

ibihim commented Nov 12, 2024
edited
Loading

What

We should use a OIDC authenticator to highlight, that it is audience agnostic. There is one upstream.

link
@ibihim ibihim mentioned this issue Nov 12, 2024
Open
58 tasks
@ibihim ibihim added the sig-auth-acceptance issues created during review for sig-auth-acceptance label Nov 12, 2024
@stlaz
Copy link
Collaborator

stlaz commented Nov 13, 2024

The current Kubernetes OIDC authenticator that's used in this case seems to be handling audiences and that's likely what we want in these cases - to enforce specific token audience for the KRP upstream. Isn't that the case?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
sig-auth-acceptance issues created during review for sig-auth-acceptance
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@stlaz @ibihim