MyFavMirrors/minio
1
0
Fork 0
mirror of https://github.com/minio/minio.git synced 2025-03-25 15:04:14 -04:00
Code Issues Packages Projects Releases Wiki Activity
9,473 Commits 5 Branches 513 Tags
bcdaa09c75
Commit Graph

204 Commits

Author SHA1 Message Date
Harshavardhana
23b166b318 Remove applying custom policies with STS access keys () 
Move away from allowing custom policies, all policies in
STS come from OPA otherwise they fail.
 2018-10-15 12:44:03 -07:00
Harshavardhana
3ef3fefd54 Add ListUsers API to list all configured users in IAM () 2018-10-13 12:48:43 +05:30
Harshavardhana
143e7fe300 Add etcd support to support STS on gateway mode () 2018-10-12 11:32:18 -07:00
Harshavardhana
54ae364def Introduce STS client grants API and OPA policy integration () 
This PR introduces two new features

- AWS STS compatible STS API named AssumeRoleWithClientGrants

```
POST /?Action=AssumeRoleWithClientGrants&Token=<jwt>
```

This API endpoint returns temporary access credentials, access
tokens signature types supported by this API

  - RSA keys
  - ECDSA keys

Fetches the required public key from the JWKS endpoints, provides
them as rsa or ecdsa public keys.

- External policy engine support, in this case OPA policy engine

- Credentials are stored on disks
 2018-10-09 14:00:01 -07:00