- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 19 for KSession (1.05 sec)
-
docs/sts/assume-role.go
if sessionPolicyFile != "" { var policy string if f, err := os.Open(sessionPolicyFile); err != nil { log.Fatalf("Unable to open session policy file: %v", err) } else { defer f.Close() bs, err := io.ReadAll(f) if err != nil { log.Fatalf("Error reading session policy file: %v", err) } policy = string(bs) } stsOpts.Policy = policy } if expiryDuration != 0 {
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Fri Apr 12 16:09:55 GMT 2024 - 4K bytes - Viewed (1) -
cmd/iam.go
// Reject malformed/malicious requests. return false } // The parent claim in the session token should be equal // to the parent detected in the backend if parentInClaim != parentUser { return false } } else { // This is needed so a malicious user cannot // use a leaked session key of another user // to widen its privileges. return false }
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Apr 25 21:28:16 GMT 2024 - 71.1K bytes - Viewed (1) -
internal/config/identity/openid/jwt.go
AuthEndpoint string `json:"authorization_endpoint,omitempty"` TokenEndpoint string `json:"token_endpoint,omitempty"` EndSessionEndpoint string `json:"end_session_endpoint,omitempty"` UserInfoEndpoint string `json:"userinfo_endpoint,omitempty"` RevocationEndpoint string `json:"revocation_endpoint,omitempty"`
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Nov 16 04:42:31 GMT 2023 - 8.3K bytes - Viewed (5) -
internal/config/identity/openid/openid.go
} if timeout == "" && dsecs != "" { expirySecs, err := strconv.ParseInt(dsecs, 10, 64) if err != nil { return 0, auth.ErrInvalidDuration } // The duration, in seconds, of the role session. // The value can range from 900 seconds (15 minutes) // up to 365 days. if expirySecs < config.MinExpiration || expirySecs > config.MaxExpiration { return 0, auth.ErrInvalidDuration }
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Nov 16 04:42:31 GMT 2023 - 16.5K bytes - Viewed (0) -
cmd/auth-handler.go
return nil, errAuthentication } } // If AuthZPlugin is set, return without any further checks. if newGlobalAuthZPluginFn() != nil { return claims.Map(), nil } // Check if a session policy is set. If so, decode it here. sp, spok := claims.Lookup(policy.SessionPolicyName) if spok { // Looks like subpolicy is set and is a string, if set then its
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Apr 04 12:04:40 GMT 2024 - 26K bytes - Viewed (0) -
cmd/sts-handlers_test.go
// 3.1 Validate that the client from STS creds cannot upload any object as // it is denied by the plugin. c.mustNotUpload(ctx, s.getUserClient(c, cr.AccessKey, cr.SecretKey, ""), bucket) // Check that session policies do not apply - as policy enforcement is // delegated to plugin. { svcAK, svcSK := mustGenerateCredentials(c) // This policy does not allow listing objects.
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Apr 25 15:50:16 GMT 2024 - 85.7K bytes - Viewed (0) -
cmd/typed-errors.go
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Jan 18 07:03:17 GMT 2024 - 5.3K bytes - Viewed (0) -
internal/config/constants.go
EnvRootDiskThresholdSize = "MINIO_ROOTDISK_THRESHOLD_SIZE" // Deprecated Sep 2023 EnvBrowserLoginAnimation = "MINIO_BROWSER_LOGIN_ANIMATION" EnvBrowserSessionDuration = "MINIO_BROWSER_SESSION_DURATION" // Deprecated after November 2023 EnvMinioStsDuration = "MINIO_STS_DURATION" EnvMinIOLogQueryURL = "MINIO_LOG_QUERY_URL" EnvMinIOLogQueryAuthToken = "MINIO_LOG_QUERY_AUTH_TOKEN"
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Mon Jan 01 16:36:33 GMT 2024 - 3.4K bytes - Viewed (3) -
cmd/site-replication.go
// applicable here. // // Service accounts are replicated as long as they are not meant for the root // user. // // STS accounts are replicated, but only if the session token is verifiable // using the local cluster's root credential. func (c *SiteReplicationSys) IAMChangeHook(ctx context.Context, item madmin.SRIAMItem) error {
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Wed May 01 01:09:56 GMT 2024 - 184.2K bytes - Viewed (1) -
cmd/sts-datatypes.go
// in Using IAM. // // Arn is a required field Arn string // A unique identifier that contains the role ID and the role session name of // the role that is being assumed. The role ID is generated by AWS when the // role is created. // // AssumedRoleId is a required field AssumedRoleID string `xml:"AssumeRoleId"`
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Fri May 27 00:58:09 GMT 2022 - 9.9K bytes - Viewed (0)