authorize: move headers and jwt signing to rego (#1856)

* wip * wip * wip * remove SignedJWT field * set google_cloud_serverless_authentication_service_account * update jwt claim headers * add mock get_google_cloud_serverless_headers for opa test * swap issuer and audience * add comment * change default port in authz
2025-05-28 08:27:26 +02:00 · 2021-02-08 10:53:21 -07:00 · 2021-02-08 10:53:21 -07:00 · 7d236ca1af
commit 7d236ca1af
parent 2dc0be2ec9
17 changed files with 492 additions and 675 deletions
--- a/authorize/grpc_test.go
+++ b/authorize/grpc_test.go
@ -437,7 +437,8 @@ func TestSync(t *testing.T) {
 			a, err := New(&config.Config{Options: o})
 			require.NoError(t, err)
 			a.state.Load().dataBrokerClient = dbdClient
-			assert.True(t, (a.forceSync(ctx, tc.sessionState) != nil) == tc.wantErr)
+			_, err = a.forceSync(ctx, tc.sessionState)
+			assert.True(t, (err != nil) == tc.wantErr)
 		})
 	}
 }