diff --git a/aws/istio-ingress/overlays/oidc/ingress.yaml b/aws/istio-ingress/overlays/oidc/ingress.yaml index 458eece846..43869440bb 100644 --- a/aws/istio-ingress/overlays/oidc/ingress.yaml +++ b/aws/istio-ingress/overlays/oidc/ingress.yaml @@ -4,7 +4,7 @@ metadata: name: istio-ingress annotations: alb.ingress.kubernetes.io/auth-type: oidc - alb.ingress.kubernetes.io/auth-idp-cognito: '{"Issuer":"$(oidcIssuer)","AuthorizationEndpoint":"$(oidcAuthorizationEndpoint)","TokenEndpoint":"$(oidcTokenEndpoint)","UserInfoEndpoint":"$(oidcUserInfoEndpoint)","SecretName":"$(oidcSecretName)"}' + alb.ingress.kubernetes.io/auth-idp-oidc: '{"Issuer":"$(oidcIssuer)","AuthorizationEndpoint":"$(oidcAuthorizationEndpoint)","TokenEndpoint":"$(oidcTokenEndpoint)","UserInfoEndpoint":"$(oidcUserInfoEndpoint)","SecretName":"$(oidcSecretName)"}' alb.ingress.kubernetes.io/certificate-arn: $(certArn) alb.ingress.kubernetes.io/listen-ports: '[{"HTTPS":443}]' alb.ingress.kubernetes.io/auth-scope: 'email openid profile' diff --git a/tests/aws-istio-ingress-overlays-oidc_test.go b/tests/aws-istio-ingress-overlays-oidc_test.go index 324fb4e0b9..20f9e51be0 100644 --- a/tests/aws-istio-ingress-overlays-oidc_test.go +++ b/tests/aws-istio-ingress-overlays-oidc_test.go @@ -21,7 +21,7 @@ metadata: name: istio-ingress annotations: alb.ingress.kubernetes.io/auth-type: oidc - alb.ingress.kubernetes.io/auth-idp-cognito: '{"Issuer":"$(oidcIssuer)","AuthorizationEndpoint":"$(oidcAuthorizationEndpoint)","TokenEndpoint":"$(oidcTokenEndpoint)","UserInfoEndpoint":"$(oidcUserInfoEndpoint)","SecretName":"$(oidcSecretName)"}' + alb.ingress.kubernetes.io/auth-idp-oidc: '{"Issuer":"$(oidcIssuer)","AuthorizationEndpoint":"$(oidcAuthorizationEndpoint)","TokenEndpoint":"$(oidcTokenEndpoint)","UserInfoEndpoint":"$(oidcUserInfoEndpoint)","SecretName":"$(oidcSecretName)"}' alb.ingress.kubernetes.io/certificate-arn: $(certArn) alb.ingress.kubernetes.io/listen-ports: '[{"HTTPS":443}]' alb.ingress.kubernetes.io/auth-scope: 'email openid profile'