Issuer (iss) - CI/CD Glossary Definition
The issuer claim (iss) identifies the authority that minted a token; a verifier trusts a token only if its issuer is one it has explicitly configured to trust.
Discovery
An OIDC issuer publishes signing keys at a well-known URL so verifiers can fetch the public keys used to check a token signature.
In CI/CD
Cloud federation is configured with the GitHub Actions issuer URL; only tokens from that issuer, with matching claims, are accepted.
Related guides
Audience (aud) - CI/CD Glossary DefinitionAudience (aud): The audience claim (`aud`) names the intended recipient of a token; a verifier must reject a…
Claim - CI/CD Glossary DefinitionClaim: A claim is a name-value statement carried inside a token, such as `sub`, `iss`, or a custom field, tha…
Federated Identity - CI/CD Glossary DefinitionFederated Identity: Federated identity lets one system trust identities issued by another, so a token from a…