minio/internal/config/identity
Andreas Auernhammer e438dccf19
sts: add support for certificate-based authentication (#12748)
This commit adds a new STS API for X.509 certificate
authentication.

A client can make an HTTP POST request over a TLS connection
and MinIO will verify the provided client certificate, map it to an 
S3 policy and return temp. S3 credentials to the client.

So, this STS API allows clients to authenticate with X.509
certificates over TLS and obtain temp. S3 credentials.

For more details and examples refer to the docs/sts/tls.md
documentation.

Signed-off-by: Andreas Auernhammer <hi@aead.dev>
2021-09-07 19:03:48 -07:00
..
ldap Remove default value of STSExpiry for LDAP (#12985) 2021-08-17 02:25:05 -07:00
openid fix: enable go1.17 github ci/cd (#12997) 2021-08-18 18:35:22 -07:00
tls sts: add support for certificate-based authentication (#12748) 2021-09-07 19:03:48 -07:00