-
Notifications
You must be signed in to change notification settings - Fork 71
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
feat(jans-lock): extend infrastructure for cedarling (#8760)
* feat(jans-lock): further infrastructure for cedarling Signed-off-by: sokorototo <nyachiengatoto@gmail.com> * chore(jans-lock): cleaned up commit Signed-off-by: sokorototo <nyachiengatoto@gmail.com> * feat(jans-lock): Parse policy store as JSON instead of ZIP Signed-off-by: sokorototo <nyachiengatoto@gmail.com> * chore(jans-lock): Massively improved project structure Signed-off-by: sokorototo <nyachiengatoto@gmail.com> * chore(jans-lock): Further improved project structure Signed-off-by: sokorototo <nyachiengatoto@gmail.com> * choree(jans-lock): Fixed cargo clippy complaints on cedarling Signed-off-by: sokorototo <nyachiengatoto@gmail.com> --------- Signed-off-by: sokorototo <nyachiengatoto@gmail.com> Co-authored-by: Mohammad Abudayyeh <47318409+moabu@users.noreply.github.com>
- Loading branch information
1 parent
cfdf223
commit ee03f44
Showing
21 changed files
with
918 additions
and
254 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,3 +1,4 @@ | ||
/target | ||
/meta | ||
/.vscode | ||
/samples |
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
## cedarling | ||
|
||
The `cedarling` is an embeddable Webassembly Component that runs a local Cedar Engine, enabling fine grained and responsive Policy Management on the Web. The `cedarling` allows for dynamic updates to it's internal Policy Store via Server Sent events, enabling sub-second Access Management. | ||
|
||
### How it works |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,7 +1,20 @@ | ||
schema_url = "https://api.github.com/repos/nynymike/cedar-playground/contents/gluu_lock.cedarschema?ref=main" | ||
# https://github.com/JanssenProject/jans/wiki/Cedarling-Nativity-Plan#bootstrap-properties | ||
|
||
# Policy Store Settings | ||
[policy_store] | ||
use_static_store = false | ||
remote_uri = "https://api.github.com/repos/nynymike/cedar-playground/contents/gluu_lock.cedarschema?ref=main" | ||
use_brotli_decompression = false # Whether the policy store is to be decopmressed using Brotli | ||
# Whether policy store should be decompressed using deflate | ||
decompress-policy-store = false | ||
|
||
# Self explanatory | ||
openid-config-url = "https://account.gluu.org/.well-known/openid-configuration" | ||
|
||
# whether Cedarling should listen for SSE config updates | ||
dynamic-configuration = false | ||
|
||
[policy-store] | ||
# How to get policy store, can be local, remote or lock-master | ||
strategy = "local" | ||
uri = "https://api.github.com/repos/nynymike/cedar-playground/contents/gluu_lock.cedarschema?ref=main" | ||
|
||
[lock-master] | ||
url = "*" | ||
ssa_jwt = "eyJhbG" | ||
policy_store_id = "test#5" |
Empty file.
Oops, something went wrong.