Add allowedAudience to flyte-core external auth deployment documentation

[mwaylonis]

Why are the changes needed?

This adds documentation to the auth config for flyte-core deployments with Okta. In the case where flyteadmin is running in the same cluster as flytepropeller/flytescheduler, the authentication request from flytescheduler to flyteadmin is made using http://flyteadmin:80. flyteadmin uses the domain in the request to validate the audience in the JWT returned by okta (code reference). This causes a mismatch between the JWT audience and the expectedAudience when the auth request originates from flytescheduler within the same cluster. The allowedAudience setting takes precedence over the URL extracted from the request, so setting this property in the values file fixes the issue.

What changes were proposed in this pull request?

This is only a documentation change

How was this patch tested?

Tested with the latest helm chart

Check all the applicable boxes

• I updated the documentation accordingly.
• All new and existing tests passed.
• All commits are signed-off.

Docs link

[welcome]

Thank you for opening this pull request! 🙌

These tips will help get your PR across the finish line:

• Most of the repos have a PR template; if not, fill it out to the best of your knowledge.
• Sign off your commits (Reference: DCO Guide).

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 58.99%. Comparing base (2842e5d) to head (e31eee0).
Report is 4 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #5124      +/-   ##
==========================================
- Coverage   59.00%   58.99%   -0.02%     
==========================================
  Files         645      645              
  Lines       55672    55672              
==========================================
- Hits        32850    32844       -6     
- Misses      20226    20232       +6     
  Partials     2596     2596              

Flag	Coverage Δ
unittests	58.99% <ø> (-0.02%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[eapolinario]

since this is an array, in order to decrease the risk of confusion with the square brackets (e.g. should I include them or not?), can you put this in a separate line?

[mwaylonis]

do you mean something like this?:

allowedAudience: [
    https://<your-flyte-deployment-URL>
]

[davidmirror-ops]

@eapolinario or maybe just removing the brackets altogether?