Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/google/credstore
Credstore is a centralized auth server
https://github.com/google/credstore
go grpc grpc-authorization grpc-service jwt picoprod
Last synced: 2 months ago
JSON representation
Credstore is a centralized auth server
- Host: GitHub
- URL: https://github.com/google/credstore
- Owner: google
- License: apache-2.0
- Archived: true
- Created: 2017-05-24T18:38:07.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2018-12-18T15:04:58.000Z (about 6 years ago)
- Last Synced: 2024-08-03T23:28:33.267Z (6 months ago)
- Topics: go, grpc, grpc-authorization, grpc-service, jwt, picoprod
- Language: Go
- Homepage:
- Size: 27.3 KB
- Stars: 86
- Watchers: 9
- Forks: 14
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
Awesome Lists containing this project
- awesome-golang-repositories - credstore
README
# Credstore
[](https://quay.io/repository/picoprod/credstore)
**This is not an official Google product**
Credstore is a centralized server providing authentication-by-proxy model. Users
or services can trade auth tokens for per-service per-rpc tokens.
## Sample config
```yaml
scopes:
- name: vmregistry-all
service: api.VMRegistry
method: '*'
- name: keyserver-all
service: api.KeyServer
method: '*'
clients:
- vmregistry
- metaserver
- keyserver
- microdhcpd
authorizations:
- {client: metaserver, scope: vmregistry-all, via: vmregistry.global.example.com}
- {client: metaserver, scope: keyserver-all, via: keyserver.global.example.com}
- {client: microdhcpd, scope: vmregistry-all, via: vmregistry.global.example.com}
```