sia

package
v1.12.4 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Nov 16, 2024 License: Apache-2.0 Imports: 11 Imported by: 0

README

SIA for GitHub Actions

The SIA utility must be installed on the GitHub Actions runner to allow the GitHub Actions to authenticate with Athenz and obtain the service identity x.509 certificate.

/usr/local/bin/sia -zts <zts-server-url> -domain <athenz-domain> -service <athenz-service> -dns-domain <dns-domain> -key-file <key-file> -cert-file <cert-file>

The utility will generate a unique RSA private key and obtain a service identity x.509 certificate from Athenz and store the key and certificate in the specified files.

As part of its output, the agent shows the action and resource values that the domain administrator must use to configure the Athenz service to allow the GitHub Actions runner to authorize:

2024/02/15 17:05:43 Action: github.push
2024/02/15 17:05:43 Resource: athens.github:repo:yahoo-athenz/sia:ref:refs/heads/main

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func GetCSRDetails

func GetCSRDetails(privateKey *rsa.PrivateKey, domain, service, provider, instanceId, dnsDomain, spiffeTrustDomain, subjC, subjO, subjOU string) (string, error)

func GetOIDCToken

func GetOIDCToken(ztsUrl string) (string, map[string]interface{}, error)

Types

This section is empty.

Directories

Path Synopsis
cmd

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL