Public utility methods and JWT parsing, and controller specific logic. Also remove the coupling between ServiceAccountTokenGetter and the authenticator class.
apiserver does not need to know about specific authentication mechanisms, and does not need to take dependencies on all the authentication packages.