MyFavMirrors/minio
1
0
Fork 0
mirror of https://github.com/minio/minio.git synced 2025-03-28 00:10:57 -04:00
Code Issues Packages Projects Releases Wiki Activity
5,593 Commits 5 Branches 513 Tags
ce4563370c
Commit Graph

4 Commits

Author SHA1 Message Date
Harshavardhana
c3ca954684 Implement AssumeRole API for Minio users () 
For actual API reference read here

https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html

Documentation is added and updated as well at docs/sts/assume-role.md

Fixes
2019-02-27 17:46:55 -08:00
Harshavardhana
2d19011a1d Add support for AssumeRoleWithWebIdentity () 2019-01-04 13:48:12 -08:00
Harshavardhana
a40610d331 Re-populate public key if JWT fails to parse () 
This is done such that if WSO2 was re-configured
with new TLS certs, and newer tokens are signed
with a newer public key. Once populated parse the JWT
again
 2018-11-08 17:01:20 -08:00
Harshavardhana
54ae364def Introduce STS client grants API and OPA policy integration () 
This PR introduces two new features

- AWS STS compatible STS API named AssumeRoleWithClientGrants

```
POST /?Action=AssumeRoleWithClientGrants&Token=<jwt>
```

This API endpoint returns temporary access credentials, access
tokens signature types supported by this API

  - RSA keys
  - ECDSA keys

Fetches the required public key from the JWKS endpoints, provides
them as rsa or ecdsa public keys.

- External policy engine support, in this case OPA policy engine

- Credentials are stored on disks
 2018-10-09 14:00:01 -07:00