Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(auth): Update http and grpc transports to support token exchange over mTLS #10397

Merged
merged 12 commits into from
Jun 28, 2024
Merged

fix(auth): Update http and grpc transports to support token exchange over mTLS #10397

merged 12 commits into from
Jun 28, 2024
+143 −6

Conversation

andyrzhao
Copy link
Contributor

This fixes a regression in the new Golang Auth lib. The default http client used for OAuth2 token exchange (for both http and grpc transport) should be configured for mTLS (including switching endpoints) when certificate source is available (whether from default cert source or explicitly configured).

@andyrzhao andyrzhao requested a review from a team as a code owner June 20, 2024 18:07
@quartzmo
Copy link
Member

Are you planning to add unit test coverage for the changes in this PR?

@andyrzhao
Copy link
Contributor Author

Are you planning to add unit test coverage for the changes in this PR?

I will add some basic unit test coverage for the exported functions. I believe we need some functional tests at some point for thoroughly testing the mTLS behavior - it's so complicated now with S2A in the mix and also workload federation coming down the pipes - let me know if you have any thoughts on how to structure those. Thanks!

codyoss
codyoss reviewed Jun 24, 2024
View reviewed changes
auth/credentials/detect.go Outdated Show resolved Hide resolved
auth/credentials/detect.go Outdated Show resolved Hide resolved
auth/credentials/detect.go Outdated Show resolved Hide resolved
auth/grpctransport/grpctransport.go Outdated Show resolved Hide resolved
@andyrzhao andyrzhao requested a review from codyoss June 27, 2024 21:29
@codyoss codyoss added the automerge Merge the pull request once unit tests and other checks pass. label Jun 28, 2024
@gcf-merge-on-green gcf-merge-on-green bot merged commit c6dfdcf into googleapis:main Jun 28, 2024
8 checks passed
@gcf-merge-on-green gcf-merge-on-green bot removed the automerge Merge the pull request once unit tests and other checks pass. label Jun 28, 2024
@release-please release-please bot mentioned this pull request Jun 28, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@codyoss codyoss codyoss approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@andyrzhao @quartzmo @codyoss