Skip to content

feat: support custom token endpoint from service account credentials#6277

Open
stackitcarlos wants to merge 2 commits intostackitcloud:mainfrom
stackitcarlos:feature/1246_service_account_key_token_endpoint
Open

feat: support custom token endpoint from service account credentials#6277
stackitcarlos wants to merge 2 commits intostackitcloud:mainfrom
stackitcarlos:feature/1246_service_account_key_token_endpoint

Conversation

@stackitcarlos
Copy link
Copy Markdown

@stackitcarlos stackitcarlos commented Apr 13, 2026
edited
Loading

Description

This PR introduces the ability to override the default token URL by reading a custom token endpoint directly from the Service Account Key credentials.

To implement this cleanly and avoid deeply nested conditional logic during initialization, a new helper function was added. This safely resolves the token URL while guaranteeing the default fallback behavior if the credentials or endpoint are missing.

Note: This PR serves as a preliminary step toward implementing Architecture Decision Record (ADR) 0025.

Key Changes:

  • Extended KeyFlowConfig with a GetCredentialsTokenEndpoint helper to safely extract custom token URLs from service account credentials.
  • Updated KeyFlow.Init to use the new helper, allowing the flow to fallback to the default tokenAPI gracefully if no custom endpoint is provided.
  • Added standard Go doc comments for KeyFlow methods to improve code readability.
  • Expanded TestKeyFlowInit to assert the resolved TokenUrl and added a new table-driven test scenario to verify the custom endpoint logic.

Checklist

  • Issue was linked above
  • No generated code was adjusted manually (check comments in file header)
  • Changelogs
    • Changelog in the root directory was adjusted (see here)
    • Changelog(s) of the service(s) were adjusted (see e.g. here)
  • VERSION file(s) of the service(s) were adjusted
  • Code format was applied: make fmt
  • Examples were added / adjusted (see examples/ directory)
  • Unit tests got implemented or updated
  • Unit tests are passing: make test (will be checked by CI)
  • No linter issues: make lint (will be checked by CI)

@stackitcarlos
feat: support custom token endpoint from service account credentials
794adbd 
- Extended `KeyFlowConfig` with a `GetCredentialsTokenEndpoint` helper
  to safely extract custom token URLs from service account credentials.
- Updated `KeyFlow.Init` to use the new helper, allowing the flow to
  fallback to the default `tokenAPI` gracefully if no custom endpoint
  is provided.
- Added standard Go doc comments for KeyFlow methods.
- Expanded `TestKeyFlowInit` to assert the resolved TokenUrl and added
  a new test scenario to verify the custom endpoint logic.
@stackitcarlos stackitcarlos requested a review from a team as a code owner April 13, 2026 09:21
JorTurFer
JorTurFer reviewed Apr 13, 2026
View reviewed changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@JorTurFer JorTurFer JorTurFer left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@stackitcarlos @JorTurFer