/plushcap/analysis/gitpod/modeling-identity-gitpod

Modeling Identity and Access Management with Gitpod: SSO, SCM, and OIDC explained

What's this blog post about?

Modeling Identity and Access Management with Gitpod involves Single Sign On (SSO), Source Control Management (SCM), and OpenID Connect (OIDC). These three integrations work together to create a "defense in depth" strategy for identity and access management in Gitpod. Users authenticate through SSO providers like Google, Okta, Azure AD, or AWS Cognito. Repository access is granted based on users' permissions, and secrets can be accessed from any public cloud provider or secrets manager like Vault. Trust rules are established within the secrets management tool, ensuring that only authorized individuals or repositories have access to sensitive resources. This combination of SSO, SCM, and OIDC ensures secure development environments in Gitpod.

Company
Gitpod

Date published
Feb. 14, 2024

Author(s)
Lou Bichard

Word count
781

Language
English

Hacker News points
None found.


By Matt Makai. 2021-2024.