Skip to content

mchalski/deviceadm

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

532 Commits

api/http

api/http

 
 

client

client

 
 

config

config

 
 

context/httpheader

context/httpheader

 
 

devadm

devadm

 
 

docs

docs

 
 

model

model

 
 

store

store

 
 

tests

tests

 
 

utils

utils

 
 

vendor

vendor

 
 

.gitignore

.gitignore

 
 

.travis.yml

.travis.yml

 
 

Dockerfile

Dockerfile

 
 

Dockerfile.acceptance-testing

Dockerfile.acceptance-testing

 
 

HACKING.md

HACKING.md

 
 

LICENSE

LICENSE

 
 

LIC_FILES_CHKSUM.sha256

LIC_FILES_CHKSUM.sha256

 
 

README.md

README.md

 
 

config.go

config.go

 
 

config.yaml

config.yaml

 
 

deviceadm-test.sh

deviceadm-test.sh

 
 

license_test.go

license_test.go

 
 

main.go

main.go

 
 

main_test.go

main_test.go

 
 

middleware.go

middleware.go

 
 

middleware_test.go

middleware_test.go

 
 

server.go

server.go

 
 

server_test.go

server_test.go

 
 

version.go

version.go

 
 

version_test.go

version_test.go

 
 

Repository files navigation

Build Status codecov Go Report Card Docker pulls

Mender: Device Admission Service

Mender is an open source over-the-air (OTA) software updater for embedded Linux devices. Mender comprises a client running at the embedded device, as well as a server that manages deployments across many devices.

This repository contains the Mender Device Admission service, which is part of the Mender server. The Mender server is designed as a microservices architecture and comprises several repositories.

Device Admission allows the user to review the identities of devices requesting an authentication token, and either grant or deny them access to the system. This decision is based on vendor-specific device identity attributes, which are:

  • reported by the device during bootstrap request as an opaque, encrypted blob
  • decrypted and presented to the user by Device Admission

This service can be considered a reference implementation, and could be replaced with a vendor-specific, proprietary module, implementing any desired identity encoding schema for maximum confidentiality. As such, it serves as a potential integration point with custom 3rd party identity stores.

Mender logo

Getting started

To start using Mender, we recommend that you begin with the Getting started section in the Mender documentation.

Building from source

As the Mender server is designed as microservices architecture, it requires several repositories to be built to be fully functional. If you are testing the Mender server it is therefore easier to follow the getting started section above as it integrates these services.

If you would like to build the Device Audmission service independently, you can follow these steps:

git clone https://github.com/mendersoftware/deviceadm.git
cd deviceadm
go build

Configuration

The service can be configured by:

  • providing configuration file (supports JSON, TOML, YAML and HCL formatting). The default configuration file is provided to be downloaded from config.yaml.
  • setting environment variables. The service will check for a environment variable with a name matching the key uppercased and prefixed with "DEVICEADM_". Eg. for "listen" the variable name is "DEVICEADM_LISTEN".

Contributing

We welcome and ask for your contribution. If you would like to contribute to Mender, please read our guide on how to best get started contributing code or documentation.

License

Mender is licensed under the Apache License, Version 2.0. See LICENSE for the full license text.

Security disclosure

We take security very seriously. If you come across any issue regarding security, please disclose the information by sending an email to security@mender.io. Please do not create a new public issue. We thank you in advance for your cooperation.

Connect with us

About

Mender Device Admission Service

mender.io

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • Go 78.1%
  • Python 21.4%
  • Shell 0.5%