This PR introduces the teleport.access_graph.v1.SecretsScannerService that will be used by Teleport SSH nodes to report authorized_keys and user's laptops to report secrets found on them.
The ReportAuthorizedKeys uses node TLS certs signed by HostCA for authentication while ReportSecrets leverages the device trust credentials (requires that the device is enrolled) to report secrets without requiring valid user credentials.
This PR introduces the
teleport.access_graph.v1.SecretsScannerService
that will be used by Teleport SSH nodes to reportauthorized_keys
and user's laptops to report secrets found on them.The
ReportAuthorizedKeys
uses node TLS certs signed by HostCA for authentication whileReportSecrets
leverages the device trust credentials (requires that the device is enrolled) to report secrets without requiring valid user credentials.Part of https://github.com/gravitational/access-graph/issues/637