Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 9 of 9 for OPA (0.02 sec)

  1. docs/iam/opa.md

    # OPA Quickstart Guide [![Slack](https://slack.minio.io/slack?type=svg)](https://slack.minio.io)
    
    OPA is a lightweight general-purpose policy engine that can be co-located with MinIO server, in this document we talk about how to use OPA HTTP API to authorize requests. It can be used with any type of credentials (STS based like OpenID or LDAP, regular IAM users or service accounts).
    
    OPA is enabled through MinIO's Access Management Plugin feature.
    
    ## Get started
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Jul 17 15:43:14 UTC 2022
    - 2.3K bytes
    - Viewed (0)
  2. cmd/config-versions.go

    	Compression compress.Config `json:"compress"`
    
    	// OpenID configuration
    	OpenID openid.Config `json:"openid"`
    
    	// External policy enforcements.
    	Policy struct {
    		// OPA configuration.
    		OPA opa.Args `json:"opa"`
    
    		// Add new external policy enforcements here.
    	} `json:"policy"`
    
    	LDAPServerConfig xldap.LegacyConfig `json:"ldapserverconfig"`
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri May 24 23:05:23 UTC 2024
    - 2.5K bytes
    - Viewed (0)
  3. internal/config/policy/opa/config.go

    		*a = oa
    		return nil
    	}
    
    	*a = oa
    	return nil
    }
    
    // Opa - implements opa policy agent calls.
    type Opa struct {
    	args   Args
    	client *http.Client
    }
    
    // Enabled returns if opa is enabled.
    func Enabled(kvs config.KVS) bool {
    	return kvs.Get(URL) != ""
    }
    
    // LookupConfig lookup Opa from config, override with any ENVs.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Jul 10 20:16:44 UTC 2024
    - 5.3K bytes
    - Viewed (0)
  4. internal/config/policy/opa/help.go

    package opa
    
    import "github.com/minio/minio/internal/config"
    
    // Help template for OPA policy feature.
    var (
    	defaultHelpPostfix = func(key string) string {
    		return config.DefaultHelpPostfix(DefaultKVS, key)
    	}
    
    	Help = config.HelpKVS{
    		config.HelpKV{
    			Key:         URL,
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri Jun 23 14:45:27 UTC 2023
    - 1.6K bytes
    - Viewed (0)
  5. internal/config/policy/plugin/config.go

    	if err != nil {
    		return false, err
    	}
    
    	// Handle large OPA responses when OPA URL is of
    	// form http://localhost:8181/v1/data/httpapi/authz
    	type opaResultAllow struct {
    		Result struct {
    			Allow bool `json:"allow"`
    		} `json:"result"`
    	}
    
    	// Handle simpler OPA responses when OPA URL is of
    	// form http://localhost:8181/v1/data/httpapi/authz/allow
    	type opaResult struct {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri May 24 23:05:23 UTC 2024
    - 5.8K bytes
    - Viewed (0)
  6. cmd/config-migrate.go

    		cfg.Compression.MimeTypes = strings.Split(compress.DefaultMimeTypes, config.ValueSeparator)
    	case "30":
    		// V30 -> V31
    		cfg.OpenID = openid.Config{}
    		cfg.Policy.OPA = opa.Args{
    			URL:       &xnet.URL{},
    			AuthToken: "",
    		}
    	case "31":
    		// V31 -> V32
    		cfg.Notify.NSQ = make(map[string]target.NSQArgs)
    		cfg.Notify.NSQ["1"] = target.NSQArgs{}
    	}
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri May 24 23:05:23 UTC 2024
    - 5.4K bytes
    - Viewed (0)
  7. cmd/config-current.go

    	case config.PolicyOPASubSys:
    		// In case legacy OPA config is being set, we treat it as if the
    		// AuthZPlugin is being set.
    		subSys = config.PolicyPluginSubSys
    		fallthrough
    	case config.PolicyPluginSubSys:
    		if ppargs, err := polplugin.LookupConfig(s, GetDefaultConnSettings(), xhttp.DrainBody); err != nil {
    			return err
    		} else if ppargs.URL == nil {
    			// Check if legacy opa is configured.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Sep 03 18:23:41 UTC 2024
    - 30.1K bytes
    - Viewed (0)
  8. cmd/iam.go

    	}
    
    	if authZPluginCfg.URL == nil {
    		opaCfg, err := opa.LookupConfig(s[config.PolicyOPASubSys][config.Default],
    			NewHTTPTransport(), xhttp.DrainBody)
    		if err != nil {
    			iamLogIf(ctx, fmt.Errorf("Unable to initialize AuthZPlugin from legacy OPA config: %w", err))
    		} else {
    			authZPluginCfg.URL = opaCfg.URL
    			authZPluginCfg.AuthToken = opaCfg.AuthToken
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Oct 29 16:01:48 UTC 2024
    - 74.6K bytes
    - Viewed (0)
  9. CHANGELOG/CHANGELOG-1.32.md

    - github.com/moby/sys/sequential: [v0.5.0](https://github.com/moby/sys/tree/sequential/v0.5.0)
    - github.com/open-policy-agent/opa: [v0.67.1](https://github.com/open-policy-agent/opa/tree/v0.67.1)
    - github.com/pelletier/go-toml: [v1.9.5](https://github.com/pelletier/go-toml/tree/v1.9.5)
    - github.com/rcrowley/go-metrics: [10cdbea](https://github.com/rcrowley/go-metrics/tree/10cdbea)
    Registered: Fri Nov 01 09:05:11 UTC 2024
    - Last Modified: Tue Oct 29 20:17:52 UTC 2024
    - 121.6K bytes
    - Viewed (0)
Back to top