Support for query parameters in jwks_uri

[Espen Zachrisen]

We use Microsoft AD to authenticate our users. 

In our case, Microsoft requires us to use a jwks_uri of the form

https://login.microsoftonline.com/mytenantidhere/discovery/v2.0/keys?appid=6731de76-14a6-49ae-97bc-6eba6914391e

(See https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc). 

When we attempt to use that URI in our gRPC api config doc:

jwks_uri: https://login.microsoftonline.com/mytenantidhere/discovery/v2.0/keys?appid=6731de76-14a6-49ae-97bc-6eba6914391e

We get this error when attempting to deploy the API config:

ERROR: (gcloud.api-gateway.api-configs.create) Wait for Service Config creation: Address "https://login.microsoftonline.com/mytenantidhere/discovery/v2.0/keys?appid=6731de76-14a6-49ae-97bc-6eba6914391e" is not valid: must match regular expression "^[^?&#\\r\\n\\0]+$"

Is there a way to use the Azure AD jwks_uri with API Gateway, or any plans to support it?

-- Espen