Class: Google::Cloud::GkeMultiCloud::V1::AttachedOidcConfig
- Inherits:
-
Object
- Object
- Google::Cloud::GkeMultiCloud::V1::AttachedOidcConfig
- Extended by:
- Protobuf::MessageExts::ClassMethods
- Includes:
- Protobuf::MessageExts
- Defined in:
- proto_docs/google/cloud/gkemulticloud/v1/attached_resources.rb
Overview
OIDC discovery information of the target cluster.
Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how Google Cloud Platform services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to Google Cloud Platform.
Both clusters with public and private issuer URLs are supported.
Clusters with public issuers only need to specify the issuer_url field
while clusters with private issuers need to provide both
issuer_url and oidc_jwks.
Instance Attribute Summary collapse
-
#issuer_url ⇒ ::String
A JSON Web Token (JWT) issuer URI.
-
#jwks ⇒ ::String
Optional.
Instance Attribute Details
#issuer_url ⇒ ::String
251 252 253 254 |
# File 'proto_docs/google/cloud/gkemulticloud/v1/attached_resources.rb', line 251 class AttachedOidcConfig include ::Google::Protobuf::MessageExts extend ::Google::Protobuf::MessageExts::ClassMethods end |
#jwks ⇒ ::String
251 252 253 254 |
# File 'proto_docs/google/cloud/gkemulticloud/v1/attached_resources.rb', line 251 class AttachedOidcConfig include ::Google::Protobuf::MessageExts extend ::Google::Protobuf::MessageExts::ClassMethods end |