search

cyberark / cyberark-conjur-cli

CyberArk Conjur command line interface written in Python
https://www.conjur.org
Apache License 2.0
17 stars 16 forks source link

Add authn-ldap design spec #408

Closed szh closed 2 years ago

szh commented 2 years ago

Desired Outcome

Add design document for authn-ldap support in the CLI and API.

Connected Issue/Story

CyberArk internal issue link: ONYX-20237

jvanderhoof commented 2 years ago

@szh, how does the CLI (and by extension, the SDK), currently store the auth token after authorization?

szh commented 2 years ago

It appears that the SDK itself does not store the API key outside of memory, but the CLI stores it in a CredentialsProvider.

Here are a few bits of relevant code:

https://github.com/cyberark/cyberark-conjur-cli/blob/a2f9f912aa9696b1bda81122745647c43fa9ac49/conjur/controller/login_controller.py#L91-L98

https://github.com/cyberark/cyberark-conjur-cli/blob/a2f9f912aa9696b1bda81122745647c43fa9ac49/conjur/logic/login_logic.py#L63-L67