mirrors/pinniped
1
0
Fork 0
mirror of https://github.com/vmware-tanzu/pinniped.git synced 2026-01-07 14:05:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

FederationDomain.spec.issuer must now be an HTTPS URL

Browse Source
This commit is contained in:
Joshua Casey
2024-12-26 14:25:07 -06:00
committed by Joshua Casey
parent cc1befbc57
commit 430c73b903
19 changed files with 113 additions and 44 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
generated/1.28/apis/supervisor/config/v1alpha1/types_federationdomain.go generated
View File

@@ -209,6 +209,7 @@ type FederationDomainSpec struct {
// See
// https://openid.net/specs/openid-connect-discovery-1_0.html#rfc.section.3 for more information.
// +kubebuilder:validation:MinLength=1
// +kubebuilder:validation:XValidation:message="issuer must be an HTTPS URL",rule="isURL(self) && url(self).getScheme() == 'https'"
Issuer string `json:"issuer"`
// TLS specifies a secret which will contain Transport Layer Security (TLS) configuration for the FederationDomain.

3
generated/1.28/crds/config.supervisor.pinniped.dev_federationdomains.yaml generated
View File

@@ -289,6 +289,9 @@ spec:
https://openid.net/specs/openid-connect-discovery-1_0.html#rfc.section.3 for more information.
minLength: 1
type: string
x-kubernetes-validations:
- message: issuer must be an HTTPS URL
rule: isURL(self) && url(self).getScheme() == 'https'
tls:
description: TLS specifies a secret which will contain Transport Layer
Security (TLS) configuration for the FederationDomain.