Kubernetes Submit Queue d970eb8f94 Merge pull request #50875 from ericchiang/oidc-claims-prefix ... Automatic merge from submit-queue (batch tested with PRs 50579, 50875, 51797, 51807, 51803) oidc auth: make the OIDC claims prefix configurable Add the following flags to control the prefixing of usernames and groups authenticated using OpenID Connect tokens. --oidc-username-prefix --oidc-groups-prefix ```release-note The OpenID Connect authenticator can now use a custom prefix, or omit the default prefix, for username and groups claims through the --oidc-username-prefix and --oidc-groups-prefix flags. For example, the authenticator can map a user with the username "jane" to "google:jane" by supplying the "google:" username prefix. ``` Closes https://github.com/kubernetes/kubernetes/issues/50408 Ref https://github.com/kubernetes/kubernetes/issues/31380 cc @grillz @kubernetes/sig-auth-pr-reviews @thomastaylor312 @gtaylor		2017-09-03 08:46:23 -07:00
..
admission	make admission plugins handle mutating spec of uninitialized pods	2017-08-17 12:51:09 -07:00
authenticator	oidc auth: make the OIDC claims prefix configurable	2017-08-18 09:49:32 -07:00
authorizer	add selfsubjectrulesreview api	2017-09-01 19:09:43 +08:00
options	Merge pull request #50875 from ericchiang/oidc-claims-prefix	2017-09-03 08:46:23 -07:00
server	Add --request-timeout to allow the global request timeout of 60 seconds to be configured.	2017-08-28 13:42:43 -07:00
BUILD	Use buildozer to delete licenses() rules except under third_party/	2017-08-11 09:32:39 -07:00
default_storage_factory_builder.go	k8s.io/apiserver: straighten EtcdOptions, backend Config and kube RESTOptionsFactory	2017-02-15 10:24:59 +01:00
default_storage_factory_builder_test.go	run hack/update-all	2017-06-22 11:31:03 -07:00
doc.go	start kubeapiserver package for sharing between kubeapiserver and federation	2016-12-22 07:43:42 -05:00
OWNERS	add liggitt to kubeapiserver owners	2017-04-03 10:14:34 -04:00