Class TokenRequestSpec

TokenRequestSpec contains client provided parameters of a token request.

Inheritance

System.Object

TokenRequestSpec

Inherited Members

System.Object.Equals(System.Object)

System.Object.Equals(System.Object, System.Object)

System.Object.GetHashCode()

System.Object.GetType()

System.Object.MemberwiseClone()

System.Object.ReferenceEquals(System.Object, System.Object)

System.Object.ToString()

Namespace: Pulumi.Kubernetes.Types.Outputs.Authentication.V1

Assembly: Pulumi.Kubernetes.dll

Syntax

public sealed class TokenRequestSpec

Fields

View Source

Audiences

Audiences are the intendend audiences of the token. A recipient of a token must identitfy themself with an identifier in the list of audiences of the token, and otherwise should reject the token. A token issued for multiple audiences may be used to authenticate against any of the audiences listed but implies a high degree of trust between the target audiences.

Declaration

public readonly ImmutableArray<string> Audiences

Field Value

Type	Description
System.Collections.Immutable.ImmutableArray<System.String>

View Source

BoundObjectRef

BoundObjectRef is a reference to an object that the token will be bound to. The token will only be valid for as long as the bound object exists. NOTE: The API server's TokenReview endpoint will validate the BoundObjectRef, but other audiences may not. Keep ExpirationSeconds small if you want prompt revocation.

Declaration

public readonly BoundObjectReference BoundObjectRef

Field Value

Type	Description
BoundObjectReference

View Source

ExpirationSeconds

ExpirationSeconds is the requested duration of validity of the request. The token issuer may return a token with a different validity duration so a client needs to check the 'expiration' field in a response.

Declaration

public readonly int ExpirationSeconds

Field Value

Type	Description
System.Int32