The list of JWT
audiences.
that are allowed to access. A JWT containing any of these audiences will
be accepted. When this setting is absent, JWTs with audiences:
public Protobuf.Collections.RepeatedField<JwtLocation> JwtLocations { get; }
Defines the locations to extract the JWT.
JWT locations can be either from HTTP headers or URL query parameters.
The rule is that the first match wins. The checking order is: checking
all headers first, then URL query parameters.
If not specified, default to use following 3 locations:
1) Authorization: Bearer
2) x-goog-iap-jwt-assertion
3) access_token query parameter
Default locations can be specified as followings:
jwt_locations:
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["AuthProvider is a class in the Google.Api namespace that configures authentication providers, supporting JSON Web Tokens (JWT)."],["It includes properties like `Audiences`, `AuthorizationUrl`, `Issuer`, and `JwksUri` to define how JWTs are validated and authorized."],["The class implements `Protobuf.IMessage` and `Protobuf.IBufferMessage` and provides methods for cloning, merging, and comparing `AuthProvider` instances."],["`JwtLocations` property is available to define locations to extract JWT from HTTP headers or URL query parameters, and offers default locations if not specified."],["The class has various fields like `AudiencesFieldNumber`, `AuthorizationUrlFieldNumber`, and `IdFieldNumber`, used for the internal representation of an `AuthProvider`."]]],[]]
