key server: derive audience from host and scheme

config.py

@@ -304,4 +304,3 @@ class DefaultConfig(object):
 
   # The timeout for service key approval.
   UNAPPROVED_SERVICE_KEY_TTL_SEC = 60 * 60 * 24 # One day
-  KEY_SERVER_AUDIENCE_NAME = 'quay'

endpoints/key_server.py

@@ -16,7 +16,7 @@ from util.security import strictjwt
 key_server = Blueprint('key_server', __name__)
 
 JWT_HEADER_NAME = 'Authorization'
-JWT_AUDIENCE = app.config['KEY_SERVER_AUDIENCE_NAME']
+JWT_AUDIENCE = app.config['PREFERRED_URL_SCHEME'] + '://' + app.config['SERVER_HOSTNAME']
 
 
 def _validate_jwk(jwk, kid):