From b19591416d92ed4643742263b439770519509b6f Mon Sep 17 00:00:00 2001
From: Samuel Giddins <segiddins@segiddins.me>
Date: Mon, 7 Oct 2024 14:12:05 -0700
Subject: [PATCH] Remove duplicated constants in oidc.py (#1162)

---
 sigstore/oidc.py | 12 +-----------
 1 file changed, 1 insertion(+), 11 deletions(-)

diff --git a/sigstore/oidc.py b/sigstore/oidc.py
index c3b073355..c401dff59 100644
--- a/sigstore/oidc.py
+++ b/sigstore/oidc.py
@@ -59,16 +59,6 @@ class _OpenIDConfiguration(BaseModel):
     token_endpoint: StrictStr
 
 
-# See: https://github.com/sigstore/fulcio/blob/b2186c0/pkg/config/config.go#L182-L201
-_KNOWN_OIDC_ISSUERS = {
-    "https://accounts.google.com": "email",
-    "https://oauth2.sigstore.dev/auth": "email",
-    "https://oauth2.sigstage.dev/auth": "email",
-    "https://token.actions.githubusercontent.com": "sub",
-}
-DEFAULT_AUDIENCE = "sigstore"
-
-
 class ExpiredIdentity(Exception):
     """An error raised when an identity token is expired."""
 
@@ -103,7 +93,7 @@ def __init__(self, raw_token: str) -> None:
                     # See: https://openid.net/specs/openid-connect-basic-1_0.html#IDToken
                     "require": ["aud", "sub", "iat", "exp", "iss"],
                 },
-                audience=DEFAULT_AUDIENCE,
+                audience=_DEFAULT_AUDIENCE,
                 # NOTE: This leeway shouldn't be strictly necessary, but is
                 # included to preempt any (small) skew between the host
                 # and the originating IdP.