[TOAZ-363] Allow UAMI accounts to be added to service admin whitelist #1466
Commits on Jun 26, 2024
-
allow uami accounts to be serviceAccountAdmins
UAMI accounts will not have oidc email field populated through token, need to be dynamically built Needed if Thurloe is running as an UAMI and needs service account admin whitelist
Commits on Jul 1, 2024
-
boolean logic update and helper function
Swapped boolean logic to allow if either condition is true as opposed to reject if both conditions are false Added helper function to verify email oidcHeader is empty to clean up logic in route slightly and remove edge case of [email protected] being a potentially valid value in serviceAccountAdmin configuration
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.