Thanks to visit codestin.com
Credit goes to github.com

Skip to content

OIDC URL is ignored in SigningConfig #1371

New issue
New issue
Closed
#1363
Closed
OIDC URL is ignored in SigningConfig#1371
#1363
Labels
bugSomething isn't working
@haydentherapper

Description

@haydentherapper
haydentherapper
opened on May 7, 2025

Description

Version

Specified the following SigningConfig in a ClientTrustConfig:

  "signingConfig": {
    "ca_url": "https://fulcio.sigstage.dev",
    "oidc_url": "https://oauth2.sigstage.dev/auth",
    "tlog_urls": [
      "https://rekor.sigstage.dev"
    ],
    "tsa_urls": [
      "https://timestamp.sigstage.dev/api/v1/timestamp"
    ]
  }

The OIDC URL was ignored, and defaulted to prod. To work around this, I provided an identity token obtained out of band.

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions