applications/system

htgettoken - Get OIDC bearer tokens by interacting with Hashicorp vault

Website: https://github.com/fermitools/htgettoken
License: BSD
Vendor: Koji
Description:
htgettoken gets OIDC bearer tokens by interacting with Hashicorp vault

Packages

htgettoken-1.8-1.osg35.el7.src [10.5 MiB] Changelog by Dave Dykstra (2021-11-19):
- If kerberos initialization fails with the default KRB5_CONFIG="", try
    again without it.  Observed to be needed at CNAF, although not for
    FNAL, CERN, or LIGO.  Don't do second try if the first error was due
    to an expired ticket, because that sometimes erroneously succeeds on
    second try.
htgettoken-1.6-1.osg35.el7.src [9.7 MiB] Changelog by Dave Dykstra (2021-09-15):
- Try a default cafile of '/etc/pki/tls/cert.pem' if system default is empty.
  This can happen when the SSL_CERT_FILE environment variable is empty.
htgettoken-1.3-1.osg35.el7.src [9.7 MiB] Changelog by Dave Dykstra (2021-07-13):
- Add --kerbprincipal option
- Change the default kerbpath to include issuer and role
- Limit oidc polling to 2 minutes
- Disable oidc authenticatio when running in the background, that is, when
    none of stdin, stdout, or stderr are on a tty
- Document that audience can be a comma or space separated list
- Updated pip-installed dependent packages to latest versions
htgettoken-1.2-1.osg35.el7.src [9.6 MiB] Changelog by Dave Dykstra (2021-04-08):
- Fix working with a kerberos domain that is missing from krb5.conf
- Extract more formatted information from http exceptions
- Improve format of printed kerberos exceptions
htgettoken-1.1-1.osg35.el7.src [9.6 MiB] Changelog by Dave Dykstra (2020-12-30):
- Integrate with htcondor, including these changes:
 - Change --authpath option name to --oidcpath.
 - Add --noidc option.
 - Add --vaulttokenttl option.
 - Make --vaulttokenfile default to /dev/stdout if the ttl is more than
    a million seconds, and also require it to start with /dev/std or
    /dev/fd if the ttl is more than a million seconds.
 - Add --vaulttokeninfile option.
 - Add --nobearertoken option.
 - Add --showbearerurl option.
 - Send progress output to stderr if --vaulttokenfile is /dev/stdout or
     --showbearerurl option is enabled.
- Use a separate version number for the python library downloads tarball.
htgettoken-1.0-1.osg35.el7.src [8.3 MiB] Changelog by Dave Dykstra (2020-12-01):
- Add --credkey option.
 - Add --vaultalias option.
 - Add --nokerberos and --kerbpath options.
 - Change the name of the --vaultrole option to --role; the short name -r
    remains unchanged.
 - Fill out the man page and add a html version of it to the source,
    generated by a Makefile.

Listing created by Repoview-0.6.6-4.el7