yogsototh/deft
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
deft/notes/cisco_staging_environment_presentation.org
Yann Esposito (Yogsototh) 0110eee062
save
2024-02-01 15:16:14 +01:00

1.3 KiB
Raw Permalink Blame History

Cisco Staging Environment Presentation

tags
cisco
related
Cisco Staging Environment Doc

Short History

  1. Environment deployment was always a 3rd class citizen.
  2. Node administration was always a 2nd class citizen, we had to build that ourselves in the middle of feature work.

  3. 1st class citizen: "Integration" (make a Platform)

    1. Login

      • Use external IdP for user management (first without internal user DB)

        • supported SAML (deprecated now)
        • support OpenID Connect (as client)

    2. Share tokens

      • OAuth2 Client Credential Grant. (One client per user)
      • OAuth2 Authorization Code Grant. (One client per integration and multiple users, need a dedicated URL)
      • OAuth2 device grant. (One client per integration and multiple users, no dedicated URL)

    3. Share Identity

      • OpenID Connect Provider

    4. Use external APIs

      • Modules:

        • module-record (backend used)
        • module-type (one by integration, one for VirusTotal, Crowdstrike, etc…)
        • module-instance (one by org)

Demo config.edn