const OpenIDConfigPath … const JWKSPath … type OpenIDMetadataProvider … type openidConfigProvider … type openidConfig … func (p *openidConfigProvider) GetConfigJSON() ([]byte, int) { … } func (p *openidConfigProvider) GetKeysetJSON() ([]byte, int) { … } func (p *openidConfigProvider) Enqueue() { … } func (p *openidConfigProvider) Update() error { … } // NewOpenIDMetadataProvider returns a provider for the OIDC discovery // endpoints, or an error if they could not be constructed. Callers should note // that this function may perform additional validation on inputs that is not // backwards-compatible with all command-line validation. The recommendation is // to log the error and skip installing the OIDC discovery endpoints. func NewOpenIDMetadataProvider(issuerURL, jwksURI, defaultExternalAddress string, pubKeyGetter PublicKeysGetter) (OpenIDMetadataProvider, error) { … } type openIDMetadata … // openIDConfigJSON returns the JSON OIDC Discovery Doc for the service // account issuer. func openIDConfigJSON(iss, jwksURI string, keys []PublicKey) ([]byte, error) { … } // openIDKeysetJSON returns the JSON Web Key Set for the service account // issuer's keys. func openIDKeysetJSON(keys []PublicKey) ([]byte, error) { … } func getAlgs(keys *jose.JSONWebKeySet) []string { … } type publicKeyGetter … // publicJWKSFromKeys constructs a JSONWebKeySet from a list of keys. The key // set will only contain the public keys associated with the input keys. func publicJWKSFromKeys(in []PublicKey) (*jose.JSONWebKeySet, errors.Aggregate) { … } func jwkFromPublicKey(publicKey PublicKey) (*jose.JSONWebKey, error) { … } func algorithmFromPublicKey(publicKey crypto.PublicKey) (jose.SignatureAlgorithm, error) { … }
Codebase Browser
kubernetes