maxmustermann/minio
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
minio/internal
History
Andreas Auernhammer e438dccf19
sts: add support for certificate-based authentication (#12748) 
This commit adds a new STS API for X.509 certificate
authentication.

A client can make an HTTP POST request over a TLS connection
and MinIO will verify the provided client certificate, map it to an 
S3 policy and return temp. S3 credentials to the client.

So, this STS API allows clients to authenticate with X.509
certificates over TLS and obtain temp. S3 credentials.

For more details and examples refer to the docs/sts/tls.md
documentation.

Signed-off-by: Andreas Auernhammer <hi@aead.dev>
2021-09-07 19:03:48 -07:00
..
auth disallow sub-credentials based on root credentials to gain priviledges (#12947) 2021-08-12 18:07:08 -07:00
bpool rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
bucket ilm: More compliance to spec related to expired delete markers (#12887) 2021-08-05 11:21:21 -07:00
color rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
config sts: add support for certificate-based authentication (#12748) 2021-09-07 19:03:48 -07:00
crypto rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
disk fix: enable go1.17 github ci/cd (#12997) 2021-08-18 18:35:22 -07:00
dsync lock: Fix Refresh logic with multi resources lock (#13092) 2021-08-27 13:07:55 -07:00
etag rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
event Add headers into AMQP notifications (#12911) 2021-08-11 22:24:19 -07:00
fips tls: add TLS 1.3 ciphers to the list of supported ciphers (#13158) 2021-09-07 09:57:32 -07:00
handlers rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
hash fix: enable go1.17 github ci/cd (#12997) 2021-08-18 18:35:22 -07:00
http sts: add support for certificate-based authentication (#12748) 2021-09-07 19:03:48 -07:00
ioutil Tweak readall allocation and renameData buffer reuse (#13108) 2021-08-30 08:38:11 -07:00
jwt [deps]: update jwt-go dependency (#12544) 2021-06-24 08:41:04 -07:00
kms rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
lock fix: enable go1.17 github ci/cd (#12997) 2021-08-18 18:35:22 -07:00
logger feat: Add support for kakfa audit logger target (#12678) 2021-07-13 09:39:13 -07:00
lsync rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
mountinfo fix: enable go1.17 github ci/cd (#12997) 2021-08-18 18:35:22 -07:00
pubsub rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00
rest move internal/net to pkg/net package (#12505) 2021-06-14 14:54:37 -07:00
s3select select: Add more compression formats (#13142) 2021-09-06 09:09:53 -07:00
smart fix: enable go1.17 github ci/cd (#12997) 2021-08-18 18:35:22 -07:00
sync/errgroup rename all remaining packages to internal/ (#12418) 2021-06-01 14:59:40 -07:00