diff options
| -rw-r--r-- | README.md | 22 |
1 files changed, 6 insertions, 16 deletions
@@ -1,23 +1,13 @@ # Spike 1. Twirp + GRPC (authz) - 1. idp (headless) - * provide a thrift/grpc endpoint that is the equivalent of `Ability.allowed?(subject, permission, resource)` - 1. gitlab + * idp (headless): provide a thrift/grpc endpoint that is the equivalent of `Ability.allowed?(subject, permission, resource)` + * gitlab 2. OpenID Connect (authn) + OAuth (authz) - * two services - 1. idp (with login pages) - * user - * member - * `member_role` - 1. gitlab - * groups - * project - * OpenID transaction to provide authn information to `gitlab-org/gitlab` - * OAuth token introspection endpoint to provide token permissions -4. OPA agent style side car using declarative policy -3. API Gateway - * using golang reverse proxy and one of the new policy dsl's + 1. idp (with login pages) + 1. gitlab +3. API Gateway: using golang reverse proxy and one of the new policy dsl's +4. OPA agent style side car process using declarative policy ## Identity Provider (SAML IdP) |