- Sort Score
- Result 10 results
- Languages All
Results 41 - 50 of 52 for openDir (0.96 sec)
-
internal/config/identity/openid/ecdsa-sha3_contrib.go
// See the License for the specific language governing permissions and // limitations under the License. //go:build !fips // +build !fips package openid import ( "crypto" "github.com/golang-jwt/jwt/v4" // Needed for SHA3 to work - See: https://golang.org/src/crypto/crypto.go?s=1034:1288
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Fri Nov 05 19:20:08 UTC 2021 - 1.8K bytes - Viewed (0) -
docs/iam/opa.md
OPA is a lightweight general-purpose policy engine that can be co-located with MinIO server, in this document we talk about how to use OPA HTTP API to authorize requests. It can be used with any type of credentials (STS based like OpenID or LDAP, regular IAM users or service accounts). OPA is enabled through MinIO's Access Management Plugin feature. ## Get started ### 1. Start OPA in a container ```sh podman run -it \ --name opa \
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Sun Jul 17 15:43:14 UTC 2022 - 2.3K bytes - Viewed (0) -
docs/sts/client-grants.go
clientSecret string ) func init() { flag.StringVar(&stsEndpoint, "sts-ep", "http://localhost:9000", "STS endpoint") flag.StringVar(&idpEndpoint, "idp-ep", "http://localhost:8080/auth/realms/minio/protocol/openid-connect/token", "IDP token endpoint") flag.StringVar(&clientID, "cid", "", "Client ID") flag.StringVar(&clientSecret, "csec", "", "Client secret") } func getTokenExpiry() (*credentials.ClientGrantsToken, error) {
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu Aug 19 01:35:22 UTC 2021 - 3.3K bytes - Viewed (0) -
src/cmd/pprof/pprof.go
// url.Parse will recognize it as a link and ultimately report an error, // similar to `abc:123/mem_2023-11-02_03:55:24: // Get "http://abc:123/mem_2023-11-02_03:55:24": dial tcp: lookup abc: no such host` if _, openErr := os.Stat(src); openErr == nil { return nil, "", nil } sourceURL, timeout := adjustURL(src, duration, timeout) if sourceURL == "" { // Could not recognize URL, let regular pprof attempt to fetch the profile (eg. from a file)
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Tue May 14 19:41:17 UTC 2024 - 9.5K bytes - Viewed (0) -
docs/site-replication/run-multi-site-oidc.sh
export MINIO_IDENTITY_OPENID_CONFIG_URL="http://localhost:5556/dex/.well-known/openid-configuration" export MINIO_IDENTITY_OPENID_CLIENT_ID="minio-client-app" export MINIO_IDENTITY_OPENID_CLIENT_SECRET="minio-client-app-secret" export MINIO_IDENTITY_OPENID_CLAIM_NAME="groups" export MINIO_IDENTITY_OPENID_SCOPES="openid,groups" export MINIO_IDENTITY_OPENID_REDIRECT_URI="http://127.0.0.1:10000/oauth_callback"
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Sat May 18 18:19:01 UTC 2024 - 8.5K bytes - Viewed (0) -
internal/config/identity/openid/jwks.go
// GNU Affero General Public License for more details. // // You should have received a copy of the GNU Affero General Public License // along with this program. If not, see <http://www.gnu.org/licenses/>. package openid import ( "crypto" "crypto/ecdsa" "crypto/ed25519" "crypto/elliptic" "crypto/rsa" "encoding/base64" "errors" "fmt" "math/big" ) // JWKS - https://tools.ietf.org/html/rfc7517
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Tue Apr 02 23:02:35 UTC 2024 - 3.1K bytes - Viewed (0) -
docs/iam/identity-management-plugin.md
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Fri May 27 00:58:09 UTC 2022 - 4.2K bytes - Viewed (0) -
docs/sts/client-grants.md
</AssumeRoleWithClientGrantsResponse> ``` ## Using ClientGrants API ``` export MINIO_ROOT_USER=minio export MINIO_ROOT_PASSWORD=minio123 export MINIO_IDENTITY_OPENID_CONFIG_URL=http://localhost:8080/auth/realms/demo/.well-known/openid-configuration export MINIO_IDENTITY_OPENID_CLIENT_ID="843351d4-1080-11ea-aa20-271ecba3924a" minio server /mnt/export ``` Testing with an example
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu Sep 29 04:28:45 UTC 2022 - 7.2K bytes - Viewed (0) -
docs/sts/tls.md
## Introduction MinIO provides a custom STS API that allows authentication with client X.509 / TLS certificates. A major advantage of certificate-based authentication compared to other STS authentication methods, like OpenID Connect or LDAP/AD, is that client authentication works without any additional/external component that must be constantly available. Therefore, certificate-based authentication may provide better availability / lower operational complexity.
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu Sep 29 04:28:45 UTC 2022 - 6K bytes - Viewed (0) -
security/pkg/server/ca/authenticate/oidc_test.go
expectErr: false, jwtRule: `{"issuer": "foo", "jwks_uri": "baz", "audiences": ["aud1", "aud2"]}`, }, { name: "jwt rule with OIDC config expected to fail", // "foo/.well-known/openid-configuration" is expected to fail expectErr: true, jwtRule: `{"issuer": "foo", "audiences": ["aud1", "aud2"]}`, }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 7.3K bytes - Viewed (0)