Skip to content
/ scitoken-http-auth Public

Validate auth and enforce ACLs for HTTP-based scitoken requests

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

WIPACrepo/scitoken-http-auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
.github/workflows
.github/workflows
 
 
scitoken_http_auth
scitoken_http_auth
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 
setup.cfg
setup.cfg
 
 
setupenv.sh
setupenv.sh
 
 

Repository files navigation

scitoken-http-auth

Validate auth and enforce ACLs for HTTP-based scitoken requests. Ideal for answering nginx auth requests.

Because this is meant for non-interactive use, failures only return 403.

On success, these http headers are returned:

  • REMOTE_USER: the sub in the token (required)
  • X_UID: the posix.uid in the token (optional)
  • X_GID: the posix.gid in the token (optional)

UID and GID are useful for POSIX filesystem access, for example https://unix.stackexchange.com/a/489744.

Configuration

Primary configuration is via environment variables:

  • ISSUERS: the scitoken issuers, comma-separated
  • AUDIENCE: the scitoken audience
  • BASE_PATH: the base path of the server, before any authorized paths in the token

About

Validate auth and enforce ACLs for HTTP-based scitoken requests

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

7 watching

Forks

0 forks
Report repository

Releases 2

v1.0.4 Latest
Dec 29, 2021
+ 1 release

Packages

 
 
 

Contributors 2

  •  
  •  

Languages