minio/docs
1
0
Fork 0
mirror of https://github.com/minio/docs.git synced 2025-04-22 19:02:57 +03:00
Code
docs/source/developers/security-token-service.rst
Ravind Kumar b99c20a16f Docs Multiplatform Slice
2022-06-14 17:01:18 -04:00

1.1 KiB
Raw Blame History

Security Token Service (STS)

minio

Table of Contents

The MinIO Security Token Service (STS) APIs allow applications to generate temporary credentials for accessing the MinIO deployment.

The STS API is required for MinIO deployments configured to use external identity managers, as the API allows conversion of the external IDP credentials into AWS Signature v4-compatible credentials.

MinIO supports the following STS API endpoints:

Endpoint Supported IDP Description
AssumeRoleWithWebIdentity OpenID Connect Generates an access key and secret key using the JWT token returned by the OIDC provider
AssumeRoleWithLDAPIdentity Active Directory / LDAP Generates an access key and secret key using the AD/LDAP credentials specified to the API endpoint.

/developers/security-token-service/*