JWKSURI - Code Search

pilot/pkg/model/jwks_resolver.go

// or fetch with from jwksuri if there is a error while fetching then it adds the
// jwksURI in the cache to fetch the public key in the background process
func (r *JwksResolver) GetPublicKey(issuer string, jwksURI string, timeout time.Duration) (string, error) {
	now := time.Now()
	key := jwtKey{issuer: issuer, jwksURI: jwksURI}
	if val, found := r.keyEntries.Load(key); found {

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Fri Feb 23 09:47:21 UTC 2024

- 20.3K bytes

- Viewed (0)

github.com/kubernetes/kubernetes

pkg/serviceaccount/openidmetadata.go

// account issuer.
func openIDConfigJSON(iss, jwksURI string, keys []interface{}) ([]byte, error) {
	keyset, errs := publicJWKSFromKeys(keys)
	if errs != nil {
		return nil, errs
	}

	metadata := openIDMetadata{
		Issuer:        iss,
		JWKSURI:       jwksURI,
		ResponseTypes: []string{"id_token"}, // Kubernetes only produces ID tokens

Registered: Sat Jun 15 01:39:40 UTC 2024

- Last Modified: Wed Feb 12 00:23:31 UTC 2020

- 9.4K bytes

- Viewed (0)

github.com/istio/istio

tests/integration/security/testdata/requestauthn/timeout.yaml.tmpl

kind: RequestAuthentication
metadata:
  name: {{ .To.ServiceName }}
spec:
  selector:
    matchLabels:
      app: {{ .To.ServiceName }}
  jwtRules:
  - issuer: "******@****.***"
    jwksUri: "{{ .JWTServer.JwksURI }}?delay=500ms"
    outputPayloadToHeader: "x-test-payload"
    forwardOriginalToken: true

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Fri Apr 12 23:24:31 UTC 2024

- 370 bytes

- Viewed (0)

github.com/kubernetes/kubernetes

pkg/serviceaccount/openidmetadata_test.go

	c := restful.NewContainer()
	s := httptest.NewServer(c)

	// JWKS needs to be https, so swap that for the test
	jwksURI, err := url.Parse(s.URL)
	if err != nil {
		t.Fatal(err)
	}
	jwksURI.Scheme = "https"
	jwksURI.Path = serviceaccount.JWKSPath

	md, err := serviceaccount.NewOpenIDMetadata(
		iss, jwksURI.String(), "", keys)
	if err != nil {
		t.Fatal(err)
	}

Registered: Sat Jun 15 01:39:40 UTC 2024

- Last Modified: Thu Mar 02 01:53:17 UTC 2023

- 14.8K bytes

- Viewed (0)

github.com/istio/istio

pilot/pkg/security/authn/policy_applier_test.go

		{
			name: "Single JWT policy",
			in: []*config.Config{
				{
					Spec: &v1beta1.RequestAuthentication{
						JwtRules: []*v1beta1.JWTRule{
							{
								Issuer:  "https://secret.foo.com",
								JwksUri: jwksURI,
							},
						},
					},
				},
			},
			expected: &hcm.HttpFilter{
				Name: "envoy.filters.http.jwt_authn",
				ConfigType: &hcm.HttpFilter_TypedConfig{
					TypedConfig: protoconv.MessageToAny(

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Fri Dec 01 07:32:22 UTC 2023

- 60.2K bytes

- Viewed (0)

github.com/istio/istio

tests/integration/security/testdata/requestauthn/aud.yaml.tmpl

spec:
  selector:
    matchLabels:
      app: {{ .To.ServiceName }}
  jwtRules:
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
    audiences:
    - "foo"
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
    audiences:
    - "bar"
---

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Mon May 08 07:03:01 UTC 2023

- 838 bytes

- Viewed (0)

github.com/istio/istio

tests/integration/ambient/testdata/requestauthn/waypoint-jwt.yaml.tmpl

spec:
  targetRefs:
  - kind: Gateway
    group: gateway.networking.k8s.io
    name: waypoint
  jwtRules:
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
---
apiVersion: security.istio.io/v1beta1
kind: RequestAuthentication

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Mon Apr 15 16:23:36 UTC 2024

- 1.3K bytes

- Viewed (0)

github.com/istio/istio

tests/integration/security/policy_attachment_only/testdata/requestauthn/gateway-jwt.yaml.tmpl

    kind: Gateway
    group: gateway.networking.k8s.io
    name: {{ .To.ServiceName }}-gateway
  jwtRules:
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
---
apiVersion: security.istio.io/v1beta1
kind: RequestAuthentication

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Tue Dec 05 21:52:53 UTC 2023

- 1.7K bytes

- Viewed (0)

github.com/istio/istio

tests/integration/security/testdata/requestauthn/remote.yaml.tmpl

kind: RequestAuthentication
metadata:
  name: {{ .To.ServiceName }}
spec:
  selector:
    matchLabels:
      app: {{ .To.ServiceName }}
  jwtRules:
  - issuer: "******@****.***"
    jwksUri: "{{ .JWTServer.JwksURI }}"
    outputPayloadToHeader: "x-test-payload"

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Mon May 08 07:03:01 UTC 2023

- 338 bytes

- Viewed (0)

github.com/istio/istio

tests/integration/security/testdata/requestauthn/gateway-jwt.yaml.tmpl

    kind: Gateway
    group: gateway.networking.k8s.io
    name: {{ .To.ServiceName }}-gateway
  jwtRules:
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
  - issuer: "******@****.***"
    jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json"
---
apiVersion: security.istio.io/v1beta1
kind: RequestAuthentication

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Tue Dec 05 21:52:53 UTC 2023

- 1.7K bytes

- Viewed (0)

Search Options