From f9aaf71ccbaf387cafe254ba192ef9d123013925 Mon Sep 17 00:00:00 2001
From: Andrey Smirnov <smirnov.andrey@gmail.com>
Date: Tue, 30 Mar 2021 20:19:57 +0300
Subject: [PATCH] test/e2e: fix the OIDC discovery test with ECDSA service
 account key

By default oidc library enables only `RS256` signature validation
method.

Signed-off-by: Andrey Smirnov <smirnov.andrey@gmail.com>
---
 build/dependencies.yaml                              | 2 +-
 test/images/agnhost/VERSION                          | 2 +-
 test/images/agnhost/agnhost.go                       | 2 +-
 test/images/agnhost/openidmetadata/openidmetadata.go | 5 ++++-
 4 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/build/dependencies.yaml b/build/dependencies.yaml
index 19f9f706907..12d8f157298 100644
--- a/build/dependencies.yaml
+++ b/build/dependencies.yaml
@@ -18,7 +18,7 @@ dependencies:
 
   # agnhost: bump this one first
   - name: "agnhost"
-    version: "2.30"
+    version: "2.31"
     refPaths:
     - path: test/images/agnhost/VERSION
       match: \d.\d
diff --git a/test/images/agnhost/VERSION b/test/images/agnhost/VERSION
index 81b133a0d27..3125d734075 100644
--- a/test/images/agnhost/VERSION
+++ b/test/images/agnhost/VERSION
@@ -1 +1 @@
-2.30
+2.31
diff --git a/test/images/agnhost/agnhost.go b/test/images/agnhost/agnhost.go
index 6e7ffeb3c25..be59fce49d9 100644
--- a/test/images/agnhost/agnhost.go
+++ b/test/images/agnhost/agnhost.go
@@ -51,7 +51,7 @@ import (
 func main() {
 	rootCmd := &cobra.Command{
 		Use:     "app",
-		Version: "2.30",
+		Version: "2.31",
 	}
 
 	rootCmd.AddCommand(auditproxy.CmdAuditProxy)
diff --git a/test/images/agnhost/openidmetadata/openidmetadata.go b/test/images/agnhost/openidmetadata/openidmetadata.go
index 1fb34d828fe..90fa9297c1c 100644
--- a/test/images/agnhost/openidmetadata/openidmetadata.go
+++ b/test/images/agnhost/openidmetadata/openidmetadata.go
@@ -97,7 +97,10 @@ func main(cmd *cobra.Command, args []string) {
 	}
 	log.Printf("OK: Constructed OIDC provider for issuer %v", unsafeClaims.Issuer)
 
-	validTok, err := iss.Verifier(&oidc.Config{ClientID: audience}).Verify(ctx, raw)
+	validTok, err := iss.Verifier(&oidc.Config{
+		ClientID:             audience,
+		SupportedSigningAlgs: []string{oidc.RS256, oidc.ES256},
+	}).Verify(ctx, raw)
 	if err != nil {
 		log.Fatal(err)
 	}