Remove /-/jwks endpoint

Problem

In %16.0 we removed the opt_in_jwt toggle from the codebase. The shared JWTs (CI_JOB_JWT, CI_JOB_JWT_V1, CI_JOB_JWT_V2) are still available in CI jobs unless they define ID tokens and will be removed in %17.0.

Proposal

Once we will remove those shared JWTs variables we can also get rid of our existing jwks endpoint.

Remove /-/jwks endpoint which is an alias for /oauth/discovery/keys

This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.

Feature Release Plan:

Implement changes in %16.9 behind feature flag
Enable the feature flag using chatops
Remove the feature flag from code in %17.0

Edited May 07, 2024 by Shabini Rajadas