-
Notifications
You must be signed in to change notification settings - Fork 433
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add API for OIDC configuration override in ext-auth #3929
Conversation
Issues linked to changelog: |
@@ -546,6 +550,10 @@ message ExtAuthConfig { | |||
// Configures headers added to requests. | |||
HeaderConfiguration headers = 10; | |||
|
|||
// OIDC configuration is discovered at <issuerUrl>/.well-known/openid-configuration | |||
// The configuration override defines any properties that should override this discovery configuration |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
an example yaml here in the comments for how the replace would work would be very helpful for users
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
good call
…io/gloo into ext-ath-oidc-override-config
// ```yaml | ||
// apiVersion: enterprise.gloo.solo.io/v1 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
nit, formatting
Description
Expose the API to allow users to specify an OIDC configuration override.
Context
OIDC configuration is discovered via the discovery endpoint:
<issuerUrl>/.well-known/openid-configuration
. To allow for additional user customization, we expose an override API. Any properties set in this will override the discovered properties.Checklist:
make install-go-tools generated-code
to ensure there will be no code diff