s3gw icon indicating copy to clipboard operation
s3gw copied to clipboard

Published 20 hours ago verified publisher icon s3gw-tech

AWS Secure Token Service - STS (Epic)

Open jhmarina opened this issue 2 years ago • 1 comments

Description

The AWS Secure Token Service (STS) returns temporary credentials for authenticating users to access specific resources. These credentials can be used to perform S3 requests.

In the case of s3gw, we don't rely on AWS STS. Instead, we support issuing the tokens themselves, to be used on s3gw itself.

Support for STS already exists in RGW in the form of STS (docs) and STS Lite (docs).

We will need to assess which approach is most adequate to our purposes, as a standalone S3 service, and in which scenarios each STS implementation shines.

Even if assuming there's no SFS-specific effort involved, we will still have to support STS in the UI, and associated QA and documentation efforts will need to exist.

Success criteria

  • STS is supported by s3gw
  • The UI supports STS
  • The effort has been appropriately tested
  • STS has been properly documented

More information

Tasks

  • [ ] #36

jhmarina avatar Nov 22 '22 14:11 jhmarina

something we want eventually

jecluis avatar Jun 04 '23 02:06 jecluis