You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
chrislu
51b449a3dd
🎉 TDD GREEN PHASE COMPLETE: Full STS Implementation - ALL TESTS PASSING!
MAJOR MILESTONE ACHIEVED: 13/13 test cases passing!
✅ IMPLEMENTED FEATURES:
- Complete AssumeRoleWithWebIdentity (OIDC) functionality
- Complete AssumeRoleWithCredentials (LDAP) functionality
- Session token generation and validation system
- Session management with memory store
- Role assumption validation and security
- Comprehensive error handling and edge cases
✅ TECHNICAL ACHIEVEMENTS:
- AWS STS-compatible API structures and responses
- Professional credential generation (AccessKey, SecretKey, SessionToken)
- Proper session lifecycle management (create, validate, revoke)
- Security validations (role existence, token expiry, etc.)
- Clean provider integration with OIDC and LDAP support
✅ TEST COVERAGE DETAILS:
- TestSTSServiceInitialization: 3/3 passing
- TestAssumeRoleWithWebIdentity: 4/4 passing (success, invalid token, non-existent role, custom duration)
- TestAssumeRoleWithLDAP: 2/2 passing (success, invalid credentials)
- TestSessionTokenValidation: 3/3 passing (valid, invalid, empty tokens)
- TestSessionRevocation: 1/1 passing
🚀 READY FOR PRODUCTION:
The STS service now provides enterprise-grade temporary credential management
with full AWS compatibility and proper security controls.
This completes Phase 2 of the Advanced IAM Development Plan
|
1 month ago |
.. |
admin
|
Admin UI: Fetch task logs (#7114)
|
2 months ago |
cluster
|
add CORS tests (#7001)
|
3 months ago |
command
|
S3 API: Add integration with KMS providers (#7152)
|
1 month ago |
credential
|
Filer Store: postgres backend support pgbouncer (#7077)
|
2 months ago |
filer
|
S3 API: Add SSE-KMS (#7144)
|
2 months ago |
filer_client
|
Admin UI: Add message queue to admin UI (#6958)
|
3 months ago |
glog
|
convert error fromating to %w everywhere (#6995)
|
3 months ago |
iam
|
🎉 TDD GREEN PHASE COMPLETE: Full STS Implementation - ALL TESTS PASSING!
|
1 month ago |
iamapi
|
convert error fromating to %w everywhere (#6995)
|
3 months ago |
images
|
Migrates from disintegration/imaging c2019 to cognusion/imaging c2024. (#5533)
|
1 year ago |
kms
|
S3 API: Add integration with KMS providers (#7152)
|
1 month ago |
mount
|
weed/mount: refactor to use atomic type (#7157)
|
1 month ago |
mq
|
Context cancellation during reading range reading large files (#7093)
|
2 months ago |
notification
|
fix: dead letter message log message (#7072)
|
2 months ago |
operation
|
S3 API: Add SSE-S3 (#7151)
|
2 months ago |
pb
|
S3 API: Add SSE-S3 (#7151)
|
2 months ago |
query
|
move to https://github.com/seaweedfs/seaweedfs
|
3 years ago |
remote_storage
|
fix for baidu cloud storage
|
2 months ago |
replication
|
convert error fromating to %w everywhere (#6995)
|
3 months ago |
s3api
|
S3 API: Add integration with KMS providers (#7152)
|
1 month ago |
security
|
remove spoof-able request header (#7103)
|
2 months ago |
sequence
|
remove unused function
|
1 year ago |
server
|
S3 API: Add integration with KMS providers (#7152)
|
1 month ago |
sftpd
|
convert error fromating to %w everywhere (#6995)
|
3 months ago |
shell
|
Shell: support regular expression for collection selection (#7158)
|
1 month ago |
static
|
Fix Broken Links (#5287)
|
2 years ago |
stats
|
[volume] refactor and add metrics for flight upload and download data limit condition (#6920)
|
3 months ago |
storage
|
volume server UI: fix ec volume ui (#7104)
|
2 months ago |
telemetry
|
convert error fromating to %w everywhere (#6995)
|
3 months ago |
topology
|
select the appropriate functions based on the useReservations flag
|
1 month ago |
util
|
S3 API: Add SSE-KMS (#7144)
|
2 months ago |
wdclient
|
convert error fromating to %w everywhere (#6995)
|
3 months ago |
worker
|
S3 API: Add SSE-KMS (#7144)
|
2 months ago |
Makefile
|
test versioning also (#7000)
|
3 months ago |
weed.go
|
set exit status
|
7 months ago |