fulcio
fulcio copied to clipboard
sigstore
Sigstore OIDC PKI
**Description** In today's community meeting, we discussed two ways of supporting new IDPs: * Integrating with Dex * Adding the IDP directly to Fulcio's OIDC issuer config list We need...
**Description** Similar to #243, CircleCI supports OIDC tokens: https://circleci.com/docs/2.0/openid-connect-tokens/ ~Also similar to #243, the `aud` is not customizable: https://circleci.canny.io/cloud-feature-requests/p/customizable-audience-claim-in-oidc-tokens~ The `aud` is now customizable: https://circleci.com/docs/oidc-tokens-with-custom-claims/
disclaimer: I'm one of engineers working on Cirrus CI. [Cirrus CI](https://cirrus-ci.org/) exposes an OIDC token via `$CIRRUS OIDC_TOKEN` and allows overriding the audience via setting `$CIRRUS_OIDC_TOKEN_AUDIENCE` variable. I'm following up...
**Description** This is a request to add [eduGAIN](https://edugain.org/) to the trusted IdP list. eduGAIN provides an interface to access over 70+ identity federations around the world. This will enable researchers...
Signed-off-by: Kenny Leung #### Summary bump sigstore/sigstore from 1.3.1 to 1.4.0 #### Release Note NONE #### Documentation
On MacOS it seems subsequent attempts to bind to the abstract Unix socket fail without first explicitly removing it. This issue seems to be MacOS-specific as it doesn't occur on...
**Description** When running the server via `go run main.go serve ...`, I get the following error (after a `ctrl-c` and re-run): ``` FATAL app/grpc.go:117 listen unix @fulcio-legacy-grpc-socket: bind: address already...
**Description**
**Description** To better streamline releases and deployments, we need a suite of tests that we can run to validate releases and deployments. @haydentherapper Can you outline what tests you would...
**Question** Is there any way to do the authentication with OIDC without needing to use a browser ?
