JwtIssuer specifies configuration associated with a JWT issuer.
For example,
issuer: "https://mycompany.corp"
jwksUri: "https://mycompany.corp/jwks.json"
shortName: "mycorp"
tokenFields:
attributes:
jsonPath: .custom_attributes
JwtIssuer
JwtIssuer specifies configuration associated with a JWT issuer.
Field | Description | Validation Rule |
---|---|---|
issuer |
string The value must be a case sensitive URL using the https scheme that contains scheme, host, and optionally, port number and path components and no query or fragment components. E.g., See https://openid.net/specs/openid-connect-core-1_0.html#IDToken |
string = { |
jwksUri |
string oneof jwks_source Source of public keys the E.g., When unspecified, URL the JSON Web Key Set document will be resolved using OpenID Connect Discovery protocol. |
string = { |
jwks |
string oneof jwks_source Specifies public keys the |
string = { |
shortName |
string The value must consist of lower case alphanumeric characters and hyphen ( Since this value will be included into the auto-generated name of the
E.g., |
string = { |
tokenFields |
tetrateio.api.onboarding.config.install.v1alpha1.JwtTokenFields By default,
If you want E.g., you can instruct the Notice that this description instructs how to interpret custom fields if they are present
in an OIDC ID Token.
A token in which custom fields are not present is still valid. An |
– |
JwtTokenField
JwtTokenField specifies a custom field included into the OIDC ID Token.
Field | Description | Validation Rule |
---|---|---|
jsonPath |
string E.g., JSON Path must start either from E.g., Special symbols (such as E.g., |
string = { |
JwtTokenFields
JwtTokenFields specifies custom fields included into the OIDC ID Token.
Field | Description | Validation Rule |
---|---|---|
attributes |
tetrateio.api.onboarding.config.install.v1alpha1.JwtTokenField If specified, E.g., if an OIDC ID Token includes the following fields:
then, you can indicate to the |
– |
OnboardingPlaneComponentSet
The set of components that make up the control plane. Use this to override application settings or Kubernetes settings for each individual component.
Field | Description | Validation Rule |
---|---|---|
instance |
tetrateio.api.onboarding.config.install.v1alpha1.OnboardingPlaneInstance |
– |
OnboardingPlaneInstance
Kubernetes settings for the Workload Onboarding Plane Instance
component.
Field | Description | Validation Rule |
---|---|---|
kubeSpec |
tetrateio.api.install.kubernetes.KubernetesComponentSpec |
– |
logLevels |
map<string, string> |
– |