Generate scoped JWTs #299
Comments
blackandred
pushed a commit
that referenced
this issue
Oct 28, 2023
blackandred
pushed a commit
that referenced
this issue
Oct 29, 2023
blackandred
pushed a commit
to riotkit-org/br-backup-maker
that referenced
this issue
Nov 1, 2023
…r` just before the build starts / riotkit-org/backup-repository#299
blackandred
pushed a commit
to riotkit-org/br-backup-maker
that referenced
this issue
Nov 1, 2023
…r` just before the build starts / riotkit-org/backup-repository#299
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When requesting a token (with an login endpoint) I would like to limit created token to operate only on selected collections and perform only limited actions.
Reason: There may be a USER who is a SYSTEM/CLUSTER-level user that is owning multiple collections for multiple applications in his/her cluster. A Backup Maker Operator could assign credentials dynamically during backup execution, and every ScheduledBackup can get its own scoped JWT that would allow to upload only to its own collection
In short words with this pattern we could allow to create a better isolation on application level in same user account.
The text was updated successfully, but these errors were encountered: