Modeling Identity and Access Management with Gitpod: SSO, SCM, and OIDC explained
Modeling Identity and Access Management with Gitpod involves Single Sign On (SSO), Source Control Management (SCM), and OpenID Connect (OIDC). These three integrations work together to create a "defense in depth" strategy for identity and access management in Gitpod. Users authenticate through SSO providers like Google, Okta, Azure AD, or AWS Cognito. Repository access is granted based on users' permissions, and secrets can be accessed from any public cloud provider or secrets manager like Vault. Trust rules are established within the secrets management tool, ensuring that only authorized individuals or repositories have access to sensitive resources. This combination of SSO, SCM, and OIDC ensures secure development environments in Gitpod.
Company
Gitpod
Date published
Feb. 14, 2024
Author(s)
Lou Bichard
Word count
781
Language
English
Hacker News points
None found.