Verify JWT audience in internal Kubernetes Agent API endpoint
GitLab Kubernetes Agent Server sends JWT-signed requests to the internal API exposed by the monolith. As part of token validation, check that the audience of the token is gitlab
. See gitlab-org/cluster-integration/gitlab-agent!114 (merged)