From 37631b41ea605e4a43e855288a2cc6f78e312996 Mon Sep 17 00:00:00 2001
From: Andrew Keesler <akeesler@vmware.com>
Date: Fri, 4 Dec 2020 10:18:45 -0500
Subject: [PATCH] Don't set our TokenURL - we don't need it right now

TokenURL is used by Fosite to validate clients authenticating with the
private_key_jwt method. We don't have any use for this right now, so just leave
this blank until we need it.

See when Ryan brought this up in
https://github.com/vmware-tanzu/pinniped/pull/239#discussion_r528022162.

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
---
 internal/oidc/oidc.go | 1 -
 1 file changed, 1 deletion(-)

diff --git a/internal/oidc/oidc.go b/internal/oidc/oidc.go
index 7865def82..fe50985c4 100644
--- a/internal/oidc/oidc.go
+++ b/internal/oidc/oidc.go
@@ -105,7 +105,6 @@ func FositeOauth2Helper(
 		RefreshTokenLifespan: 16 * time.Hour, // long enough for a single workday
 
 		IDTokenIssuer: issuer,
-		TokenURL:      "", // TODO set once we have this endpoint written
 
 		ScopeStrategy:            fosite.ExactScopeStrategy, // be careful and only support exact string matching for scopes
 		AudienceMatchingStrategy: nil,                       // I believe the default is fine