quarkus/integration-tests/smallrye-jwt-token-propagation/pom.xml
	quarkus/test-framework/security-jwt/pom.xml
	quarkus/test-framework/junit5/pom.xml
	quarkus/extensions/resteasy-classic/resteasy/runtime/pom.xml
	quarkus/extensions/resteasy-classic/resteasy-jackson/runtime/pom.xml
	quarkus/extensions/oidc-token-propagation/runtime/pom.xml
	quarkus/extensions/smallrye-jwt/runtime/pom.xml

	"fmt"
	"io"
	"math/rand"
	"net/http"
	"net/url"
	"reflect"
	"regexp"
	"runtime"
	"strings"
	"sync"
	"testing"
	"time"

	"github.com/dustin/go-humanize"
	jwtgo "github.com/golang-jwt/jwt/v4"
	"github.com/minio/minio-go/v7/pkg/set"
	"github.com/minio/minio-go/v7/pkg/signer"
	xhttp "github.com/minio/minio/internal/http"
	"github.com/minio/pkg/v3/policy"
)

	bucket := getRandomBucketName()
	err := s.client.MakeBucket(ctx, bucket, minio.MakeBucketOptions{})
	if err != nil {
		c.Fatalf("bucket create error: %v", err)
	}

	// Generate web identity JWT by interacting with OpenID IDP.
	token, err := MockOpenIDTestUserInteraction(ctx, clientApp, "******@****.***", "dillon")
	if err != nil {
		c.Fatalf("mock user err: %v", err)
	}

	// Generate STS credential.

- The JWT authenticator in `kube-apiserver` now reports the following metrics when the `StructuredAuthenticationConfiguration` feature gate is enabled:
  - `apiserver_authentication_jwt_authenticator_jwks_fetch_last_timestamp_seconds`

io-Internal-Server-Side-Encryption-Iv":"aHngf/Hjcv5tK+85GkHhRB7aszKgv/RI+gQNaSeiKs0=","X-Minio-Internal-Server-Side-Encryption-S3-Kms-Key-Id":"my-minio-key","X-Minio-Internal-Server-Side-Encryption-S3-Kms-Sealed-Key":"IAAfAJDg/yJaIk7i5Dw3RPQXqXLaX/wTM/oLNy0FrienLgOV9V8IX+7GG+EOXWz2Ku9JhXpVMpoSQ==","X-Minio-Internal-Server-Side-Encryption-S3-Sealed-Key":"IAAfAPCfkM62e3vXw6k/83oRj3BV5mYQQ8B8sip9==","X-Minio-Internal-Server-Side-Encryption-Seal-Algorithm":"DAREv2-HMAC-SHA256","content-type":"applic...