Skip to content

Commit

Permalink
Merge branch 'main' into bump1210-apiary
Browse files Browse the repository at this point in the history
  • Loading branch information
@codyoss
codyoss authored Dec 10, 2024
2 parents de34ed1 + 4347ca1 commit b5e4f56
Show file tree
Hide file tree
Showing 2 changed files with 18 additions and 4 deletions.
6 changes: 3 additions & 3 deletions auth/grpctransport/directpath.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -66,12 +66,12 @@ func isTokenProviderDirectPathCompatible(tp auth.TokenProvider, o *Options) bool
if tok == nil {
return false
}
if o.InternalOptions != nil && o.InternalOptions.EnableNonDefaultSAForDirectPath {
return true
}
if tok.MetadataString("auth.google.tokenSource") != "compute-metadata" {
return false
}
if o.InternalOptions != nil && o.InternalOptions.EnableNonDefaultSAForDirectPath {
return true
}
if tok.MetadataString("auth.google.serviceAccount") != "default" {
return false
}
Expand Down
16 changes: 15 additions & 1 deletion auth/grpctransport/directpath_test.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,14 +41,28 @@ func TestIsTokenProviderDirectPathCompatible(t *testing.T) {
},
{
name: "EnableNonDefaultSAForDirectPath",
tp: &staticTP{tok: &auth.Token{Value: "fakeToken"}},
tp: &staticTP{
tok: token(map[string]interface{}{
"auth.google.tokenSource": "compute-metadata",
}),
},
opts: &Options{
InternalOptions: &InternalOptions{
EnableNonDefaultSAForDirectPath: true,
},
},
want: true,
},
{
name: "EnableNonDefaultSAForDirectPathButNotCompute",
tp: &staticTP{},
opts: &Options{
InternalOptions: &InternalOptions{
EnableNonDefaultSAForDirectPath: true,
},
},
want: false,
},
{
name: "non-compute token source",
tp: &staticTP{tok: token(map[string]interface{}{"auth.google.tokenSource": "NOT-compute-metadata"})},
Expand Down

0 comments on commit b5e4f56

Please sign in to comment.