Use a fixed string for renewal token issuer.

This commit is contained in:
Mariano Cano 2022-04-13 14:50:06 -07:00
parent 3694ba30dc
commit 4e4d4e882f

View file

@ -399,7 +399,7 @@ func (a *Authority) AuthorizeRenewToken(ctx context.Context, ott string) (*x509.
}
if err := claims.ValidateWithLeeway(jose.Expected{
Issuer: p.GetName(),
Issuer: "step-ca-client/1.0",
Subject: leaf.Subject.CommonName,
Time: time.Now().UTC(),
}, time.Minute); err != nil {