update/identityprovider.v1: update bearer token endpoint field descri…

…ption update the descriotion of the bearer_token_introspection_endpoint field. Change-Id: I7125a17bc5900596d5d2034a5fcd5febf93dbfd6
aristanetworks · Mar 25, 2024 · 0098874 · 0098874
1 parent f07fe5b
commit 0098874
Show file tree

Hide file tree

Showing 3 changed files with 10 additions and 7 deletions.
diff --git a/arista/identityprovider.v1/identityprovider-changelog.yaml b/arista/identityprovider.v1/identityprovider-changelog.yaml
@@ -7,6 +7,11 @@
 # New entries go on top.
 
 Changes:
+  - date: 2024-03-11
+    description: Update bearer_token_introspection_endpoint field description
+    version: 1.7.1
+    cvaas: true
+    onprem: true
   - date: 2023-08-08
     description: Add username_attrname to saml
     version: 1.7.0

diff --git a/arista/identityprovider.v1/identityprovider.proto b/arista/identityprovider.v1/identityprovider.proto
@@ -58,12 +58,10 @@ message OAuthConfig {
         // mapping roles from the provider is disabled. If it's set, roles_claim_name
         // also needs to be set.
         google.protobuf.StringValue roles_scope_name = 9;
-        // bearer_token_introspection_endpoint is the provider instrospection endpoint used in
-        // Bearer Token based login support for CloudVision. This endpoint will be used to verify
-        // the bearer token received when an external application is logging in. This is an
-        // optional field. CloudVision will only support this feature for a single provider per
-        // org, hence only one provider is allowed to have this field set. If not set for any
-        // providers, CloudVision determines that Bearer Token based login support is disabled.
+        // bearer_token_introspection_endpoint is the provider instrospection endpoint used
+        // in Bearer Token based login support for CloudVision. This is an optional field.
+        // If specified, this endpoint will be used to verify bearer tokens generated via
+        // the provider to log in automated user accounts.
         google.protobuf.StringValue bearer_token_introspection_endpoint = 10;
         // roles_claim_name is the name for a claim that holds CloudVision roles in ID Token.
         // CloudVision uses this value to look up roles in the ID Token.

diff --git a/arista/identityprovider.v1/services.gen.swagger.json b/arista/identityprovider.v1/services.gen.swagger.json
@@ -1286,7 +1286,7 @@
         },
         "bearerTokenIntrospectionEndpoint": {
           "type": "string",
-          "description": "bearer_token_introspection_endpoint is the provider instrospection endpoint used in\nBearer Token based login support for CloudVision. This endpoint will be used to verify\nthe bearer token received when an external application is logging in. This is an\noptional field. CloudVision will only support this feature for a single provider per\norg, hence only one provider is allowed to have this field set. If not set for any\nproviders, CloudVision determines that Bearer Token based login support is disabled."
+          "description": "bearer_token_introspection_endpoint is the provider instrospection endpoint used\nin Bearer Token based login support for CloudVision. This is an optional field.\nIf specified, this endpoint will be used to verify bearer tokens generated via\nthe provider to log in automated user accounts."
         },
         "rolesClaimName": {
           "type": "string",