summaryrefslogtreecommitdiff
path: root/README.md
diff options
context:
space:
mode:
Diffstat (limited to 'README.md')
-rw-r--r--README.md42
1 files changed, 42 insertions, 0 deletions
diff --git a/README.md b/README.md
new file mode 100644
index 00000000..5b02c0e9
--- /dev/null
+++ b/README.md
@@ -0,0 +1,42 @@
+# Spike
+
+1. Thrift + GRPC
+ 1. idp (headless)
+ * provide a thrift/grpc endpoint that is the equivalent of `Ability.allowed?(subject, permission, resource)`
+ 1. gitlab
+2. OpenID Connect + OAuth
+ * two services
+ 1. idp (with login pages)
+ * user
+ * member
+ * `member_role`
+ 1. gitlab
+ * groups
+ * project
+ * OpenID transaction to provide authn information to `gitlab-org/gitlab`
+ * OAuth token introspection endpoint to provide token permissions
+3. API Gateway
+ * using golang reverse proxy and one of the new policy dsl's
+4. OPA agent style side car using declarative policy
+
+
+## Identity Provider (SAML IdP)
+
+This is a tiny SAML Identity Provider for testing out interactions with
+a SAML Service Provider
+
+1. Start the server:
+
+ $ ruby ./bin/idp
+
+1. Use `http://localhost:8282/metadata.xml` as your SAML IdP Metadata url.
+
+## Service Provider (SAML SP)
+
+This is a tiny SAML Service Provider for testing out interactions with a SAML Identity Provider (IdP)
+
+1. Start the server:
+
+ $ ruby ./bin/sp
+
+1. Use `http://localhost:8283/metadata.xml` as your SAML SP Metadata url.
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 11:02:48 +0000