Identity authentication service(身份认证服务) Implement a single sign on system for OAuth 2.0 protocol. Your system can access the platform through OAuth2.0 to achieve single sign on.
Based on the Go language development, the overall use of the go kit framework, the transport layer uses go restful to handle the HTTP protocol of the transport layer, and uses gogo/protobuf for serialization/deserialization.
mkdir -p dist && make ui idas BASE_PATH=/idas
# The compiled output file is dist/idasdist/idas init
# username/password: admin/idas!!! The default username for initialization creation is admin, and the password is idas. Please change it as soon as possible after logging in.
cd dist && ./idas --security.secret=GzOWcPU86JWOzTRtEoiX!!! For security reasons, please change the value of the parameter --security.secret. Please do not change the value of --security.secret arbitrarily after initialization, as changing it may cause some encrypted historical data to be unable to be decrypted.
- Create an Application (Grant Type: Authorization Code)
- Create a key-pair on the App details page
Please save the Access Key and Access Secret - Configure services that require OAuth2 authentication (Example: Grafana)
- Create users and authorize them.
- Use authorized users to log in to the IDAS system to complete authentication
