const WarnOnlyBoundTokenExpirationSeconds … const ExpirationExtensionSeconds … var now … var newUUID … type privateClaims … type kubernetes … type ref … func Claims(sa core.ServiceAccount, pod *core.Pod, secret *core.Secret, node *core.Node, expirationSeconds, warnafter int64, audience []string) (*jwt.Claims, interface{ … } func NewValidator(getter ServiceAccountTokenGetter) Validator[privateClaims] { … } type validator … var _ … func (v *validator) Validate(ctx context.Context, _ string, public *jwt.Claims, private *privateClaims) (*apiserverserviceaccount.ServiceAccountInfo, error) { … }
Codebase Browser
kubernetes