7 Commits (188ac8e36950a4ddbe9ef47efad04824aeb0f6ba)

Author	SHA1	Message	Date
Harshavardhana	5353edcc38	Support policy variable replacement (#7085) ... This PR supports iam and bucket policies to have policy variable replacements in resource and condition key values. For example - ${aws:username} - ${aws:userid}	6 years ago
Harshavardhana	2a0e4b6f58	Add boolean function condition support (#7027)	6 years ago
Harshavardhana	4e4f855b30	Add support for new policy conditions (#7024) ... This PR implements following condition types - StringEqualsIgnoreCase and StringNotEqualsIgnoreCase - BinaryEquals	6 years ago
Harshavardhana	d4265f9a13	Simplify OPA to use rootCAs custom transport (#6843) ... Also close the connections properly to use the connection pooling properly for HTTP clients.	6 years ago
Harshavardhana	fde8c38638	Add default canned policies (#6690)	6 years ago
Harshavardhana	3ef3fefd54	Add ListUsers API to list all configured users in IAM (#6619)	6 years ago
Harshavardhana	54ae364def	Introduce STS client grants API and OPA policy integration (#6168) ... This PR introduces two new features - AWS STS compatible STS API named AssumeRoleWithClientGrants ``` POST /?Action=AssumeRoleWithClientGrants&Token=<jwt> ``` This API endpoint returns temporary access credentials, access tokens signature types supported by this API - RSA keys - ECDSA keys Fetches the required public key from the JWKS endpoints, provides them as rsa or ecdsa public keys. - External policy engine support, in this case OPA policy engine - Credentials are stored on disks	6 years ago