Closed benashz closed 2 years ago
This PR adds support for validating that a request's JWT token contains the required claims for the bound role.
Validate the JWT token against a known Vault role. If it is deemed to be invalid return an error.
Note: the token is not passed to Kubernetes token review API, as this is only needed for login.
This PR adds support for validating that a request's JWT token contains the required claims for the bound role.
Design of Change
Validate the JWT token against a known Vault role. If it is deemed to be invalid return an error.
Note: the token is not passed to Kubernetes token review API, as this is only needed for login.