Skip to content

Commit fc0c21b

Browse files
mksinghtxjadiaconu
authored andcommitted
Add cross-functional meeting notes from Brokered identity with DCR and CAPISE use-case
Documented requirements and infrastructure needs for authn and authZ-Proxy. Signed-off-by: Manish Singh <mksinghtx@gmail.com>
1 parent dc1329b commit fc0c21b

1 file changed

Lines changed: 18 additions & 0 deletions

File tree

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,18 @@
1+
authn and authZ-Proxy
2+
Requirements:
3+
Issue Access tokens for DCR
4+
Publish endpoints for client registration
5+
Authenticate registration using access tokem
6+
Once DCR done
7+
Use URL
8+
run oauth flow
9+
Get attributes of client/agent
10+
Apply authorization policy based on atrributes - contact upstream policy control-plane if cached policy invalidated
11+
Apply authorization DP enforcement via a local or remote service on K8s - chhose service based on latency
12+
Implemet illustrative use-case
13+
14+
Infra requirements
15+
Easy plug-n-play
16+
Easy plug-in of custom logic via ext-proc or WASM plug-in
17+
18+

0 commit comments

Comments
 (0)