vault-clj icon indicating copy to clipboard operation
vault-clj copied to clipboard
verified publisher icon amperity

Support OIDC authentication

Open ieugen opened this issue 3 years ago • 3 comments

We switched from using github auth to using OIDC auth via Azure AD + groups. Company is using Office 365 and we can leverage MS Auth and Security groups for Vault access.

Interested in supporting this functionality.

ieugen avatar Jul 29 '22 10:07 ieugen

Sure, happy to add that to the base library as long as it doesn't require pulling in any Azure-specific dependencies. If it does, then this can be provided in a separate library like amperity/vault-clj-aws

greglook avatar Aug 01 '22 16:08 greglook

IMO it should not require any AWS specific parts. When the vault client does oidc auth it opens a browser to authenticate to Azure AD. Not sure how this will be handled. I hope to get a chance to look at this in the upcoming weeks.

ieugen avatar Aug 01 '22 20:08 ieugen

Not sure if this will be feasible outside of a gui environment since oidc relies on the user authenticating over a browser.

ieugen avatar Aug 12 '22 14:08 ieugen