pub struct TokenRequestSpec {
pub audiences: Vec<String>,
pub bound_object_ref: Option<BoundObjectReference>,
pub expiration_seconds: Option<i64>,
}
Expand description
TokenRequestSpec contains client provided parameters of a token request.
Fields§
§audiences: Vec<String>
Audiences are the intendend audiences of the token. A recipient of a token must identify themself with an identifier in the list of audiences of the token, and otherwise should reject the token. A token issued for multiple audiences may be used to authenticate against any of the audiences listed but implies a high degree of trust between the target audiences.
bound_object_ref: Option<BoundObjectReference>
BoundObjectRef is a reference to an object that the token will be bound to. The token will only be valid for as long as the bound object exists. NOTE: The API server’s TokenReview endpoint will validate the BoundObjectRef, but other audiences may not. Keep ExpirationSeconds small if you want prompt revocation.
expiration_seconds: Option<i64>
ExpirationSeconds is the requested duration of validity of the request. The token issuer may return a token with a different validity duration so a client needs to check the ‘expiration’ field in a response.
Trait Implementations§
Source§impl Clone for TokenRequestSpec
impl Clone for TokenRequestSpec
Source§fn clone(&self) -> TokenRequestSpec
fn clone(&self) -> TokenRequestSpec
1.0.0 · Source§fn clone_from(&mut self, source: &Self)
fn clone_from(&mut self, source: &Self)
source
. Read moreSource§impl Debug for TokenRequestSpec
impl Debug for TokenRequestSpec
Source§impl DeepMerge for TokenRequestSpec
impl DeepMerge for TokenRequestSpec
Source§fn merge_from(&mut self, other: Self)
fn merge_from(&mut self, other: Self)
other
into self
.