This repository has been archived by the owner on Mar 20, 2023. It is now read-only.
OIDC-backed SSH certificate auth #20
Comments
Merged
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
For increased security and usability, proposal is to set up an SSH certificate authority and issue certificates after successful OIDC auth.
That means we could manage access to our servers via https://auth.profian.com and issue short-lived SSH keys, which is very relevant, for example, for CI, where a github action could acquire a short-lived, scoped SSH key for a one-time deployment after presenting a valid token.
The text was updated successfully, but these errors were encountered: