Gets the OIDC discovery document for the cluster. See the OpenID Connect Discovery 1.0 specification for details.
HTTP request
GET https://{endpoint}/v1/{awsCluster=projects/*/locations/*/awsClusters/*}/.well-known/openid-configuration
Where {endpoint}
is one of the supported service endpoints.
The URLs use gRPC Transcoding syntax.
Path parameters
Parameters | |
---|---|
aws |
Required. The AwsCluster, which owns the OIDC discovery document. Format: projects/{project}/locations/{location}/awsClusters/{cluster} |
Request body
The request body must be empty.
Response body
AwsOpenIdConfig is an OIDC discovery document for the cluster. See the OpenID Connect Discovery 1.0 specification for details.
If successful, the response body contains data with the following structure:
JSON representation |
---|
{ "issuer": string, "jwks_uri": string, "response_types_supported": [ string ], "subject_types_supported": [ string ], "id_token_signing_alg_values_supported": [ string ], "claims_supported": [ string ], "grant_types": [ string ] } |
Fields | |
---|---|
issuer |
OIDC Issuer. |
jwks_ |
JSON Web Key uri. |
response_ |
Supported response types. |
subject_ |
Supported subject types. |
id_ |
supported ID Token signing Algorithms. |
claims_ |
Supported claims. |
grant_ |
Supported grant types. |
Authorization scopes
Requires the following OAuth scope:
https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.