Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/dpb587/ssoca
SSO for services that use CA-based authentication.
https://github.com/dpb587/ssoca
Last synced: about 2 months ago
JSON representation
SSO for services that use CA-based authentication.
- Host: GitHub
- URL: https://github.com/dpb587/ssoca
- Owner: dpb587
- License: mit
- Created: 2017-02-23T00:50:42.000Z (almost 8 years ago)
- Default Branch: master
- Last Pushed: 2022-06-27T15:29:51.000Z (over 2 years ago)
- Last Synced: 2024-06-19T05:36:24.025Z (6 months ago)
- Language: Go
- Homepage: https://dpb587.github.io/ssoca/
- Size: 8.62 MB
- Stars: 10
- Watchers: 5
- Forks: 2
- Open Issues: 4
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# ssoca
[![MIT licensed](https://img.shields.io/badge/license-MIT-blue.svg)](LICENSE)
[![Alpha stability](https://img.shields.io/badge/stability-alpha-yellow.svg)](#development)
[![Coverage Status](https://coveralls.io/repos/github/dpb587/ssoca/badge.svg?branch=master)](https://coveralls.io/github/dpb587/ssoca)SSO for services that use CA-based authentication.
For when you might want...
* ssh users to authenticate against Cloud Foundry UAA,
* Google Cloud project owners to have access to an OpenVPN server, or
* a GitHub team to access a network with sshuttleWith the caveat that this repo...
* is a work in progress, and
* is open source to help facilitate demos, discussion, and reviews to continue its evolution## Summary
Supporting services like...
* HTTP x.509 ([rfc5280](https://tools.ietf.org/html/rfc5280)) (in theory)
* [OpenSSH](https://www.openssh.com/) ([rfc6187](https://tools.ietf.org/html/rfc6187))
* [OpenVPN](https://openvpn.net/)
* [sshuttle](https://github.com/apenwarr/sshuttle)Supporting authentication from (and restricting by)...
* [GitHub](https://github.com/) - organization, team, user
* [Google](https://www.google.com/) - email, email domain, Cloud project+role
* HTTP BasicSupporting certificate authority keys stored in...
* In-memory
* Local filesystemSupported technically by...
* authentication being delegated to an external service (like Okta, UAA, GitHub, OAuth), and
* external services being configured to trust a particular certificate authority, with
* `ssoca` validating authentication and signing short-lived certificates.## Details
* [User Documentation](docs)
* [Technical Documentation](https://godoc.org/github.com/dpb587/ssoca)
* [BOSH Release](https://github.com/dpb587/ssoca-bosh-release)
* [Roadmap](https://trello.com/b/LEu5Crqw/ssoca)
* ssoca (sōsə, SO-sa)## License
[MIT License](LICENSE)