From f9aaf71ccbaf387cafe254ba192ef9d123013925 Mon Sep 17 00:00:00 2001 From: Andrey Smirnov Date: Tue, 30 Mar 2021 20:19:57 +0300 Subject: [PATCH] test/e2e: fix the OIDC discovery test with ECDSA service account key By default oidc library enables only `RS256` signature validation method. Signed-off-by: Andrey Smirnov --- build/dependencies.yaml | 2 +- test/images/agnhost/VERSION | 2 +- test/images/agnhost/agnhost.go | 2 +- test/images/agnhost/openidmetadata/openidmetadata.go | 5 ++++- 4 files changed, 7 insertions(+), 4 deletions(-) diff --git a/build/dependencies.yaml b/build/dependencies.yaml index 19f9f706907..12d8f157298 100644 --- a/build/dependencies.yaml +++ b/build/dependencies.yaml @@ -18,7 +18,7 @@ dependencies: # agnhost: bump this one first - name: "agnhost" - version: "2.30" + version: "2.31" refPaths: - path: test/images/agnhost/VERSION match: \d.\d diff --git a/test/images/agnhost/VERSION b/test/images/agnhost/VERSION index 81b133a0d27..3125d734075 100644 --- a/test/images/agnhost/VERSION +++ b/test/images/agnhost/VERSION @@ -1 +1 @@ -2.30 +2.31 diff --git a/test/images/agnhost/agnhost.go b/test/images/agnhost/agnhost.go index 6e7ffeb3c25..be59fce49d9 100644 --- a/test/images/agnhost/agnhost.go +++ b/test/images/agnhost/agnhost.go @@ -51,7 +51,7 @@ import ( func main() { rootCmd := &cobra.Command{ Use: "app", - Version: "2.30", + Version: "2.31", } rootCmd.AddCommand(auditproxy.CmdAuditProxy) diff --git a/test/images/agnhost/openidmetadata/openidmetadata.go b/test/images/agnhost/openidmetadata/openidmetadata.go index 1fb34d828fe..90fa9297c1c 100644 --- a/test/images/agnhost/openidmetadata/openidmetadata.go +++ b/test/images/agnhost/openidmetadata/openidmetadata.go @@ -97,7 +97,10 @@ func main(cmd *cobra.Command, args []string) { } log.Printf("OK: Constructed OIDC provider for issuer %v", unsafeClaims.Issuer) - validTok, err := iss.Verifier(&oidc.Config{ClientID: audience}).Verify(ctx, raw) + validTok, err := iss.Verifier(&oidc.Config{ + ClientID: audience, + SupportedSigningAlgs: []string{oidc.RS256, oidc.ES256}, + }).Verify(ctx, raw) if err != nil { log.Fatal(err) }