Skip to content

OIDC URL is ignored in SigningConfig #1371

Closed
#1363
Closed
OIDC URL is ignored in SigningConfig#1371
#1363
Labels
bugSomething isn't working
@Hayden-IO

Description

@Hayden-IO
Hayden-IO
opened on May 7, 2025

Description

Version

Specified the following SigningConfig in a ClientTrustConfig:

  "signingConfig": {
    "ca_url": "https://fulcio.sigstage.dev",
    "oidc_url": "https://oauth2.sigstage.dev/auth",
    "tlog_urls": [
      "https://rekor.sigstage.dev"
    ],
    "tsa_urls": [
      "https://timestamp.sigstage.dev/api/v1/timestamp"
    ]
  }

The OIDC URL was ignored, and defaulted to prod. To work around this, I provided an identity token obtained out of band.

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions