Gets the OIDC discovery document for the cluster. See the OpenID Connect Discovery 1.0 specification for details.
HTTP request
GET https://{endpoint}/v1/{awsCluster=projects/*/locations/*/awsClusters/*}/.well-known/openid-configuration
Where {endpoint} is one of the supported service endpoints.
The URLs use gRPC Transcoding syntax.
Path parameters
| Parameters | |
|---|---|
awsCluster |
Required. The AwsCluster, which owns the OIDC discovery document. Format: projects/{project}/locations/{location}/awsClusters/{cluster} |
Request body
The request body must be empty.
Response body
If successful, the response body contains data with the following structure:
AwsOpenIdConfig is an OIDC discovery document for the cluster. See the OpenID Connect Discovery 1.0 specification for details.
| JSON representation |
|---|
{ "issuer": string, "jwks_uri": string, "response_types_supported": [ string ], "subject_types_supported": [ string ], "id_token_signing_alg_values_supported": [ string ], "claims_supported": [ string ], "grant_types": [ string ] } |
| Fields | |
|---|---|
issuer |
OIDC Issuer. |
jwks_uri |
JSON Web Key uri. |
response_types_supported[] |
Supported response types. |
subject_types_supported[] |
Supported subject types. |
id_token_signing_alg_values_supported[] |
supported ID Token signing Algorithms. |
claims_supported[] |
Supported claims. |
grant_types[] |
Supported grant types. |
Authorization Scopes
Requires the following OAuth scope:
https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.