feat: allow scopes for self signed jwt (#776) * feat: allow scopes for self signed jwt * Update service_account.py * add http changes * Update google/auth/jwt.py

commit: 2cfe655bba837170abc07701557a1a5e0fe3294e [log] [tgz]
author: arithmetic1728 <58957152+arithmetic1728@users.noreply.github.com> Wed Jun 16 15:30:36 2021 -0700
committer: GitHub <noreply@github.com> Wed Jun 16 15:30:36 2021 -0700
tree: 6868c6294c2627e42c17fa9d27c785e502b9013e
parent: e3c7a5440f6617dc8049cb15de23685db54491a7 [diff] [blame]
diff --git a/tests/test_jwt.py b/tests/test_jwt.py
index c5290eb..39c45bd 100644
--- a/tests/test_jwt.py
+++ b/tests/test_jwt.py

@@ -390,6 +390,18 @@
         assert new_credentials._additional_claims == self.credentials._additional_claims
         assert new_credentials._quota_project_id == self.credentials._quota_project_id
 
+    def test__make_jwt_without_audience(self):
+        cred = jwt.Credentials.from_service_account_info(
+            SERVICE_ACCOUNT_INFO.copy(),
+            subject=self.SUBJECT,
+            audience=None,
+            additional_claims={"scope": "foo bar"},
+        )
+        token, _ = cred._make_jwt()
+        payload = jwt.decode(token, PUBLIC_CERT_BYTES)
+        assert payload["scope"] == "foo bar"
+        assert "aud" not in payload
+
     def test_with_quota_project(self):
         quota_project_id = "project-foo"
commit	2cfe655bba837170abc07701557a1a5e0fe3294e	[log] [tgz]
author	arithmetic1728 <58957152+arithmetic1728@users.noreply.github.com>	Wed Jun 16 15:30:36 2021 -0700
committer	GitHub <noreply@github.com>	Wed Jun 16 15:30:36 2021 -0700
tree	6868c6294c2627e42c17fa9d27c785e502b9013e
parent	e3c7a5440f6617dc8049cb15de23685db54491a7 [diff] [blame]