maintain backwards compatability for default oidc scope variable

2022-11-29 13:55:37 -05:00 · 2022-11-29 13:55:37 -05:00 · 027342e117
commit 027342e117
parent 3d0cd1ccb5
1 changed files with 8 additions and 1 deletions
--- a/pkg/auth/oidc.go
+++ b/pkg/auth/oidc.go
@ -103,10 +103,17 @@ func NewOidcAuthSetter(baseCfg BaseConfig, cfg OidcClientConfig) *OidcAuthProvid
 		eps[k] = []string{v}
 	}

+	// Previous versions hardcoded the scope to audience,
+	// so for backwards compatability, use that if no scope is set
+	scope := cfg.OidcAudience
+	if cfg.OidcScope != "" {
+		scope = cfg.OidcScope
+	}
+
 	tokenGenerator := &clientcredentials.Config{
 		ClientID:       cfg.OidcClientID,
 		ClientSecret:   cfg.OidcClientSecret,
-		Scopes:         []string{cfg.OidcScope},
+		Scopes:         []string{scope},
 		TokenURL:       cfg.OidcTokenEndpointURL,
 		EndpointParams: eps,
 	}