istio
/
istio.io
mirror of https://github.com/istio/istio.io.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add open source OIDC providers to security page (#2689) 

Adds open source OIDC providers ORY Hydra and Keycloak to the securit
overview page.

Closes #2687
This commit is contained in:
hackerman 2018-10-06 16:46:20 +02:00 committed by Martin Taillefer
parent 9885a6c0e0
commit 60421f4e40
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.spelling
View File

@ -522,6 +522,8 @@ VirtualService
sha256
deployment
webhook
Keycloak
OpenID
- search.md
searchresults

5
content/docs/concepts/security/index.md
View File

@ -224,7 +224,10 @@ Istio provides two types of authentication:
- **Origin authentication**, also known as **end-user authentication**: verifies the
original client making the request as an end-user or device.
Istio enables request-level authentication with JSON Web Token (JWT) validation
and a streamlined developer experience for [Auth0](https://auth0.com/), [Firebase Auth](https://firebase.google.com/docs/auth/),
and a streamlined developer experience for open source OpenID Connect provider
[ORY Hydra](https://www.ory.sh), [Keycloak](https://www.keycloak.org),
[Auth0](https://auth0.com/),
[Firebase Auth](https://firebase.google.com/docs/auth/),
[Google Auth](https://developers.google.com/identity/protocols/OpenIDConnect), and custom auth.
In both cases, Istio stores the authentication policies in the `Istio config store` via a custom Kubernetes API.