minio

MyFavMirrors/minio

Fork 0

mirror of https://github.com/minio/minio.git synced 2025-03-22 21:44:15 -04:00

Commit Graph

Author	SHA1	Message	Date
Harshavardhana	002a205c9c	Fix OPA result response handling (#7763 ) Also update the document with updated rego policy and updated OPA agent REST API. This PR is to fix a regression caused by PR #7637	2019-06-10 17:06:32 -07:00
Harshavardhana	54ae364def	Introduce STS client grants API and OPA policy integration (#6168 ) This PR introduces two new features - AWS STS compatible STS API named AssumeRoleWithClientGrants ``` POST /?Action=AssumeRoleWithClientGrants&Token=<jwt> ``` This API endpoint returns temporary access credentials, access tokens signature types supported by this API - RSA keys - ECDSA keys Fetches the required public key from the JWKS endpoints, provides them as rsa or ecdsa public keys. - External policy engine support, in this case OPA policy engine - Credentials are stored on disks	2018-10-09 14:00:01 -07:00

Author

SHA1

Message

Date

Harshavardhana

002a205c9c

Fix OPA result response handling (#7763 )

Also update the document with updated rego policy
and updated OPA agent REST API.

This PR is to fix a regression caused by PR #7637

2019-06-10 17:06:32 -07:00

Harshavardhana

54ae364def

Introduce STS client grants API and OPA policy integration (#6168 )

This PR introduces two new features

- AWS STS compatible STS API named AssumeRoleWithClientGrants

```
POST /?Action=AssumeRoleWithClientGrants&Token=<jwt>
```

This API endpoint returns temporary access credentials, access
tokens signature types supported by this API

  - RSA keys
  - ECDSA keys

Fetches the required public key from the JWKS endpoints, provides
them as rsa or ecdsa public keys.

- External policy engine support, in this case OPA policy engine

- Credentials are stored on disks

2018-10-09 14:00:01 -07:00

2 Commits