pulumi-google-native-kotlin/com.pulumi.googlenative.iam.v1.kotlin.outputs/OidcResponse

OidcResponse

data class OidcResponse(val allowedAudiences: List<String>, val issuerUri: String)

Represents an OpenId Connect 1.0 identity provider.

Constructors

Link copied to clipboard
fun OidcResponse(allowedAudiences: List<String>, issuerUri: String)

Types

Link copied to clipboard
object Companion

Properties

Link copied to clipboard
val allowedAudiences: List<String>

Acceptable values for the aud field (audience) in the OIDC token. Token exchange requests are rejected if the token audience does not match one of the configured values. Each audience may be at most 256 characters. A maximum of 10 audiences may be configured. If this list is empty, the OIDC token audience must be equal to the full canonical resource name of the WorkloadIdentityPoolProvider, with or without the HTTPS prefix. For example: `` //iam.googleapis.com/projects//locations//workloadIdentityPools//providers/ https://iam.googleapis.com/projects//locations//workloadIdentityPools//providers/ `` @property issuerUri The OIDC issuer URL. Must be an HTTPS endpoint.

Link copied to clipboard