ssoca

SSO for services that use CA-based authentication.

For when you might want...

ssh users to authenticate against Cloud Foundry UAA,
Google Cloud project owners to have access to an OpenVPN server, or
a GitHub team to access a network with sshuttle

With the caveat that this repo...

is a work in progress, and
is open source to help facilitate demos, discussion, and reviews to continue its evolution

Summary

Supporting services like...

HTTP x.509 (rfc5280) (in theory)
OpenSSH (rfc6187)
OpenVPN
sshuttle

Supporting authentication from (and restricting by)...

GitHub - organization, team, user
Google - email, email domain, Cloud project+role
HTTP Basic

Supporting certificate authority keys stored in...

In-memory
Local filesystem

Supported technically by...

authentication being delegated to an external service (like Okta, UAA, GitHub, OAuth), and
external services being configured to trust a particular certificate authority, with
ssoca validating authentication and signing short-lived certificates.

Details

License

MIT License

Name		Name	Last commit message	Last commit date
Latest commit History 340 Commits
auth		auth
bin		bin
certauth		certauth
ci		ci
cli		cli
client		client
config		config
docs		docs
httpclient		httpclient
internal		internal
server		server
service		service
vendor		vendor
version		version
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
go.mod		go.mod
go.sum		go.sum

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

ssoca

Summary

Details

License

About

Releases 19

Packages

Contributors 3

Languages

License

dpb587/ssoca

Folders and files

Latest commit

History

Repository files navigation

ssoca

Summary

Details

License

About

Resources

License

Stars

Watchers

Forks

Releases 19

Packages 0

Contributors 3

Languages

Packages