Oauth Config
Configs: main | alerting | metrics | oauth | probes | rds | servers | surfacer | targets | tlsconfig | utils | validators
|
Language: |
cloudprober.oauth.BearerToken #
[file <string> | cmd <string> | gce_service_account <string> | k8s_local_token <bool>]: <oneof># If above sources return JSON tokens with an expiry, we use that info to # determine when to refresh tokens and refresh_interval_sec is completely # ignored. If above sources return a string, we refresh from the source # every 30s by default. To disable this behavior set refresh_interval_sec to # zero.refresh_interval_sec: <float>
cloudprober.oauth.Config #
[file <string> | http_request <cloudprober.oauth.HTTPRequest> | cmd <string> | gce_service_account <string> | k8s_local_token <bool> | google_credentials <cloudprober.oauth.GoogleCredentials> | bearer_token <cloudprober.oauth.BearerToken>]: <oneof># If auto-refreshing based on token's expiry, how long before the expiry do we # refresh. # # TODO(manugarg): Consider setting default based on probe interval.refresh_expiry_buffer_sec: <int32> | default: 60# If set explicitly, we'll refresh token at this interval regardless of # token's expiry value. # # If not set explicitly, we don't refresh at regular interval if token's # expiry is set, otherwise we refresh at the default interval (30s). # # To disable refresh on interval even if expiry is not set, set this to 0. # # In most cases, Cloudprober does the right thing based on the retrieved # token and you don't need to set this field.refresh_interval_sec: <float> | default: 30
cloudprober.oauth.GoogleCredentials #
json_file: <string> scope: <string># Use encoded JWT directly as access token, instead of implementing the whole # OAuth2.0 flow.jwt_as_access_token: <bool># Audience works only if jwt_as_access_token is true.audience: <string>
cloudprober.oauth.HTTPRequest #
token_url: <string> method: <string># Data to be sent as request body. If there are multiple "data" fields, we combine # their values with a '&' in between. Note: 1) If data appears to be a valid json, # we automatically set the content-type header to "application/json", 2) If data # appears to be a query string we set content-type to # "application/x-www-form-urlencoded". Content type header can still be overridden # using the header field below.data: <string># HTTP request headersheader: <cloudprober.oauth.HTTPRequest.HeaderEntry>
cloudprober.oauth.HTTPRequest.HeaderEntry #
key: <string> value: <string>
cloudprober.oauth.BearerToken #
[file <string> | cmd <string> | gce_service_account <string> | k8s_local_token <bool>]: <oneof># If above sources return JSON tokens with an expiry, we use that info to # determine when to refresh tokens and refresh_interval_sec is completely # ignored. If above sources return a string, we refresh from the source # every 30s by default. To disable this behavior set refresh_interval_sec to # zero.refresh_interval_sec: <float>
cloudprober.oauth.Config #
[file <string> | http_request <cloudprober.oauth.HTTPRequest> | cmd <string> | gce_service_account <string> | k8s_local_token <bool> | google_credentials <cloudprober.oauth.GoogleCredentials> | bearer_token <cloudprober.oauth.BearerToken>]: <oneof># If auto-refreshing based on token's expiry, how long before the expiry do we # refresh. # # TODO(manugarg): Consider setting default based on probe interval.refresh_expiry_buffer_sec: <int32> | default: 60# If set explicitly, we'll refresh token at this interval regardless of # token's expiry value. # # If not set explicitly, we don't refresh at regular interval if token's # expiry is set, otherwise we refresh at the default interval (30s). # # To disable refresh on interval even if expiry is not set, set this to 0. # # In most cases, Cloudprober does the right thing based on the retrieved # token and you don't need to set this field.refresh_interval_sec: <float> | default: 30
cloudprober.oauth.GoogleCredentials #
json_file: <string> scope: <string># Use encoded JWT directly as access token, instead of implementing the whole # OAuth2.0 flow.jwt_as_access_token: <bool># Audience works only if jwt_as_access_token is true.audience: <string>
cloudprober.oauth.HTTPRequest #
token_url: <string> method: <string># Data to be sent as request body. If there are multiple "data" fields, we combine # their values with a '&' in between. Note: 1) If data appears to be a valid json, # we automatically set the content-type header to "application/json", 2) If data # appears to be a query string we set content-type to # "application/x-www-form-urlencoded". Content type header can still be overridden # using the header field below.data: <string># HTTP request headersheader: <cloudprober.oauth.HTTPRequest.HeaderEntry>
cloudprober.oauth.HTTPRequest.HeaderEntry #
key: <string> value: <string>