ssoca

module
v0.6.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 7, 2017 License: MIT

README

ssoca

MIT licensed Alpha stability Coverage Status

SSO for services that use CA-based authentication.

For when you might want...

  • ssh users to authenticate against Cloud Foundry UAA,
  • Google Cloud project owners to have access to an OpenVPN server, or
  • a GitHub team to access a network with sshuttle

With the caveat that this repo...

  • is a work in progress, and
  • is open source to help facilitate demos, discussion, and reviews to continue its evolution

Summary

Supporting services like...

Supporting authentication from (and restricting by)...

  • GitHub - organization, team, user
  • Google - email, email domain, Cloud project+role
  • HTTP Basic

Supporting certificate authority keys stored in...

  • In-memory
  • Local filesystem

Supported technically by...

  • authentication being delegated to an external service (like Okta, UAA, GitHub, OAuth), and
  • external services being configured to trust a particular certificate authority, with
  • ssoca validating authentication and signing short-lived certificates.

Details

License

MIT License

Directories

Path Synopsis
authn/github
authn/github/client
authn/github/config
authn/github/server
authn/google
authn/google/client
authn/google/config
authn/google/server
authn/http
authn/http/client
authn/http/config
authn/http/server
authn/support/oauth2
authn/support/oauth2/config
authn/support/oauth2/internal/tests
authn/support/oauth2/req
authn/support/selfsignedjwt
authn/uaa
authn/uaa/api
authn/uaa/client
authn/uaa/config
authn/uaa/helper
authn/uaa/helper/helperfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
authn/uaa/server
authz/filter
authz/filter/and
authz/filter/authenticated
authz/filter/filterfakes
This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
 This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
authz/filter/or
authz/filter/remote_ip
authz/filter/scope
authz/filter/username
authz/service
internal
certauth helps manage usages and invocations of Certificate Authority related tasks.
 certauth helps manage usages and invocations of Certificate Authority related tasks.
certauthfakes
This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
 This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
fs
memory
memory/memoryfakes
cli
client
errors
server
auth
clientfakes
This file was generated by counterfeiter This file was generated by counterfeiter
 This file was generated by counterfeiter This file was generated by counterfeiter
cmd
config
config/configfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
goflags
httpclient
service
service/servicefakes
This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
 This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
configfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
storage
storage/storagefakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
httpclientfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
api
api/errors
config
service
service/dynamicvalue
service/req
service/req/reqfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
service/servicefakes
This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
 This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter This file was generated by counterfeiter
service
auth
auth/api
auth/client
auth/client/cmd
auth/httpclient
auth/httpclient/httpclientfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
auth/server
auth/server/req
docroot
docroot/config
docroot/server
download
download/api
download/client
download/client/cmd
download/config
download/httpclient
download/httpclient/httpclientfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
download/server
download/server/req
env
env/api
env/client
env/client/cmd
env/config
env/httpclient
env/httpclient/httpclientfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
env/server
env/server/req
openvpn
openvpn/api
openvpn/client
openvpn/client/cmd
openvpn/client/helper
openvpn/client/management
openvpn/client/profile
openvpn/config
openvpn/httpclient
openvpn/httpclient/httpclientfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
openvpn/server
openvpn/server/req
ssh
Provide signing services for SSH servers trusting a specific CA.
 Provide signing services for SSH servers trusting a specific CA.
ssh/agent
ssh/api
ssh/client
ssh/client/cmd
ssh/config
ssh/httpclient
ssh/httpclient/httpclientfakes
This file was generated by counterfeiter
 This file was generated by counterfeiter
ssh/server
ssh/server/req

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.