]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f05184b) | patch
rgw/sts: code to use session tags in AssumeRoleWithWebIdentity call,
authorPritha Srivastava <prsrivas@redhat.com>
Wed, 10 Mar 2021 06:54:49 +0000 (12:24 +0530)
committerPritha Srivastava <prsrivas@redhat.com>
Wed, 1 Sep 2021 10:26:17 +0000 (15:56 +0530)
commit6b2d3da84c0960260d06433906deda218a2cc43e
tree3431947e82cd790d40e633bd3afa62fe2be6888dtree | snapshot
parentf05184bd73d5e123f2ff699a24ba9cf32ea7a668commit | diff
rgw/sts: code to use session tags in AssumeRoleWithWebIdentity call,
as aws:PrincipalTags in an IAM policy's Condition element.

The incoming session tags in AssumeRoleWithWebIdentity call
are passed along with the session credentials (temporary creds)
as aws:PrincipalTags, and those can be used as Condition element
of an IAM Policy.

Signed-off-by: Pritha Srivastava <prsrivas@redhat.com>
src/rgw/rgw_auth.cc diff | blob | history
src/rgw/rgw_auth.h diff | blob | history
src/rgw/rgw_auth_s3.h diff | blob | history
src/rgw/rgw_rest_s3.cc diff | blob | history
src/rgw/rgw_rest_sts.cc diff | blob | history
src/rgw/rgw_sts.cc diff | blob | history
src/rgw/rgw_sts.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.