package envoy.extensions.grpc_service.call_credentials.sts_service.v3

Get desktop application:
View/edit binary Protocol Buffers messages

Security token service configuration that allows Google gRPC to fetch security token from an OAuth 2.0 authorization server. See https://tools.ietf.org/html/draft-ietf-oauth-token-exchange-16 and https://github.com/grpc/grpc/pull/19587. [#not-implemented-hide:] [#next-free-field: 10]

string token_exchange_service_uri = 1
URI of the token exchange service that handles token exchange requests. [#comment:TODO(asraa): Add URI validation when implemented. Tracked by https://github.com/bufbuild/protoc-gen-validate/issues/303]
string resource = 2
Location of the target service or resource where the client intends to use the requested security token.
string audience = 3
Logical name of the target service where the client intends to use the requested security token.
string scope = 4
The desired scope of the requested security token in the context of the service or resource where the token will be used.
string requested_token_type = 5
Type of the requested security token.
string subject_token_path = 6
The path of subject token, a security token that represents the identity of the party on behalf of whom the request is being made.
string subject_token_type = 7
Type of the subject token.
string actor_token_path = 8
The path of actor token, a security token that represents the identity of the acting party. The acting party is authorized to use the requested security token and act on behalf of the subject.
string actor_token_type = 9
Type of the actor token.

package envoy.extensions.grpc_service.call_credentials.sts_service.v3

message StsServiceCredentials

string token_exchange_service_uri = 1

string resource = 2

string audience = 3

string scope = 4

string requested_token_type = 5

string subject_token_path = 6

string subject_token_type = 7

string actor_token_path = 8

string actor_token_type = 9