Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Integrate Support for Short-Lived Tokens (STS) in Remote Authentication #7582

Closed
guy-har opened this issue Mar 20, 2024 · 0 comments · Fixed by #7571, #7605 or #7620
Closed

Integrate Support for Short-Lived Tokens (STS) in Remote Authentication #7582

guy-har opened this issue Mar 20, 2024 · 0 comments · Fixed by #7571, #7605 or #7620
Assignees
@guy-har
Labels
feature

Comments

@guy-har
Copy link
Contributor

guy-har commented Mar 20, 2024

Description

Objective: Extend lakeFS's remote authentication to include support for Short-Lived Tokens (STS), enhancing security and user convenience.

Current Mechanism: lakeFS authenticates users remotely by validating username and password against an identity provider, as detailed here.

Proposed Feature: Allow users to authenticate using STS credentials (state, code, redirect-uri) rather than traditional credentials. lakeFS will forward these to the remote authenticator, which will validate and return claims to lakeFS. lakeFS then verifies these claims and issues a token for the user.
@guy-har guy-har self-assigned this Mar 20, 2024
@guy-har guy-har linked a pull request Mar 20, 2024 that will close this issue
Integrate Support for Short-Lived Tokens (STS) in Remote Authentication #7571
Merged
This was linked to pull requests Apr 2, 2024
Add TTL to STS #7605
Merged
Feature/python wrapper sts #7620
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@guy-har guy-har

Labels
feature
Projects
None yet
Milestone
No milestone
1 participant
@guy-har