Search Options

Results per page
Sort
Preferred Languages
Advance

Results 31 - 39 of 39 for SessionToken (0.1 sec)

  1. cmd/iam.go

    			var (
    				jwtClaims *jwt.MapClaims
    				err       error
    			)
    
    			if cred.SessionToken == "" {
    				continue
    			}
    
    			if cred.IsServiceAccount() {
    				jwtClaims, err = auth.ExtractClaims(cred.SessionToken, cred.SecretKey)
    				if err != nil {
    					jwtClaims, err = auth.ExtractClaims(cred.SessionToken, globalActiveCred.SecretKey)
    				}
    			} else {
    				var secretKey string
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Oct 29 16:01:48 UTC 2024
    - 74.6K bytes
    - Viewed (0)
  2. docs/sts/README.md

    ```
    {
      "buckets": [
        "bucket-x"
      ],
      "credentials": {
        "AccessKeyID": "6N2BALX7ELO827DXS3GK",
        "SecretAccessKey": "23JKqAD+um8ObHqzfIh+bfqwG9V8qs9tFY6MqeFR+xxx",
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Oct 25 00:44:15 UTC 2022
    - 7.8K bytes
    - Viewed (0)
  3. cmd/auth-handler.go

    		// x-amz-security-token should not present for static credentials.
    		return nil, ErrInvalidToken
    	}
    
    	if !cred.IsServiceAccount() && cred.IsTemp() && subtle.ConstantTimeCompare([]byte(token), []byte(cred.SessionToken)) != 1 {
    		// validate token for temporary credentials only.
    		return nil, ErrInvalidToken
    	}
    
    	// Expired credentials must return error right away.
    	if cred.IsTemp() && cred.IsExpired() {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Sep 17 16:45:46 UTC 2024
    - 26.1K bytes
    - Viewed (0)
  4. docs/sts/keycloak.md

    ```
    {
      "buckets": [
        "bucket-x"
      ],
      "credentials": {
        "AccessKeyID": "6N2BALX7ELO827DXS3GK",
        "SecretAccessKey": "23JKqAD+um8ObHqzfIh+bfqwG9V8qs9tFY6MqeFR+xxx",
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Sep 29 04:28:45 UTC 2022
    - 8.1K bytes
    - Viewed (0)
  5. cmd/sftp-server-driver.go

    func (f *sftpDriver) getMinIOClient() (*minio.Client, error) {
    	mcreds := credentials.NewStaticV4(
    		f.permissions.CriticalOptions["AccessKey"],
    		f.permissions.CriticalOptions["SecretKey"],
    		f.permissions.CriticalOptions["SessionToken"],
    	)
    	return minio.New(f.endpoint, &minio.Options{
    		Creds:     mcreds,
    		Secure:    globalIsTLS,
    		Transport: globalRemoteFTPClientTransport,
    	})
    }
    
    func (f *sftpDriver) AccessKey() string {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Jun 05 07:51:13 UTC 2024
    - 11.1K bytes
    - Viewed (0)
  6. cmd/perf-tests.go

    		if region == "" {
    			region = "us-east-1"
    		}
    		clnt, err = minio.New(globalLocalNodeName, &minio.Options{
    			Creds:     credentials.NewStaticV4(opts.creds.AccessKey, opts.creds.SecretKey, opts.creds.SessionToken),
    			Secure:    globalIsTLS,
    			Transport: globalRemoteTargetTransport,
    			Region:    region,
    		})
    		if err != nil {
    			return res, err
    		}
    	}
    
    	var mu sync.Mutex
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri May 24 23:05:23 UTC 2024
    - 11.8K bytes
    - Viewed (0)
  7. cmd/iam-etcd-store.go

    		deleteKeyEtcd(ctx, ies.client, getMappedPolicyPath(user, userType, false))
    		return nil
    	}
    	if u.Credentials.AccessKey == "" {
    		u.Credentials.AccessKey = user
    	}
    	if u.Credentials.SessionToken != "" {
    		jwtClaims, err := extractJWTClaims(u)
    		if err != nil {
    			if u.Credentials.IsTemp() {
    				// We should delete such that the client can re-request
    				// for the expiring credentials.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Aug 15 01:29:20 UTC 2024
    - 14K bytes
    - Viewed (0)
  8. cmd/site-replication.go

    	}
    
    	cred := auth.Credentials{
    		AccessKey:    stsCred.AccessKey,
    		SecretKey:    stsCred.SecretKey,
    		Expiration:   time.Unix(expiry, 0).UTC(),
    		SessionToken: stsCred.SessionToken,
    		ParentUser:   stsCred.ParentUser,
    		Status:       auth.AccountOn,
    	}
    
    	// Extract the username and lookup DN and groups in LDAP.
    	ldapUser, isLDAPSTS := claims.Lookup(ldapUserN)
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Aug 15 12:04:40 UTC 2024
    - 185.1K bytes
    - Viewed (0)
  9. cmd/iam-object-store.go

    		iamOS.deleteIAMConfig(ctx, getMappedPolicyPath(user, userType, false))
    		return u, errNoSuchUser
    	}
    
    	if u.Credentials.AccessKey == "" {
    		u.Credentials.AccessKey = user
    	}
    
    	if u.Credentials.SessionToken != "" {
    		jwtClaims, err := extractJWTClaims(u)
    		if err != nil {
    			if u.Credentials.IsTemp() {
    				// We should delete such that the client can re-request
    				// for the expiring credentials.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Oct 10 23:40:37 UTC 2024
    - 26.6K bytes
    - Viewed (0)
Back to top