gatekeeper

package

v1.1.3 Latest Latest Go to latest Published: Nov 13, 2019 License: MIT Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/ChannelMeter/vault-gatekeeper-mesos

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func EnvRequestVaultToken() (string, error)
func LoadCACert(path string) (*x509.CertPool, error)
func LoadCAPath(path string) (*x509.CertPool, error)
func RequestVaultToken(taskId string) (string, error)
type Client
- func NewClient(vaultAddress, gatekeeperAddress string, certPool *x509.CertPool) (*Client, error)
type GatekeeperResponse
type GatekeeperStatus
type UnsealRequest
type VaultError
- func (e VaultError) Error() string

Constants ¶

This section is empty.

Variables ¶

View Source

var ErrNoTaskId = errors.New("No task id provided.")

Functions ¶

func EnvRequestVaultToken ¶

func EnvRequestVaultToken() (string, error)

func LoadCACert ¶

func LoadCACert(path string) (*x509.CertPool, error)

Loads the certificate from given path and creates a certificate pool from it.

func LoadCAPath ¶

func LoadCAPath(path string) (*x509.CertPool, error)

Loads the certificates present in the given directory or file and creates a certificate pool from it. Assumes that _only_ PEM formatted cert files are present in the given directory. The presence of other files will cause this to fail.

func RequestVaultToken ¶

func RequestVaultToken(taskId string) (string, error)

Types ¶

type Client ¶

type Client struct {
	VaultAddress      string
	GatekeeperAddress string
	HttpClient        *http.Client
}

var DefaultClient *Client

func NewClient ¶

func NewClient(vaultAddress, gatekeeperAddress string, certPool *x509.CertPool) (*Client, error)

func (*Client) GetStatus ¶

func (c *Client) GetStatus() (*GatekeeperStatus, error)

func (*Client) InsecureSkipVerify ¶

func (c *Client) InsecureSkipVerify(skipVerify bool)

func (*Client) IsSealed ¶

func (c *Client) IsSealed() (bool, error)

func (*Client) ReloadPolicies ¶

func (c *Client) ReloadPolicies() (*GatekeeperResponse, error)

func (*Client) RequestVaultToken ¶

func (c *Client) RequestVaultToken(taskId string) (string, error)

func (*Client) Unseal ¶

func (c *Client) Unseal(req *UnsealRequest) (*GatekeeperResponse, error)

type GatekeeperResponse ¶

type GatekeeperResponse struct {
	OK     bool   `json:"ok"`
	Status string `json:"status"`
	Error  string `json:"error"`
}

type GatekeeperStatus ¶

type GatekeeperStatus struct {
	OK      bool                   `json:"ok"`
	Started string                 `json:"started"`
	Status  string                 `json:"status"`
	Uptime  string                 `json:"uptime"`
	Stats   map[string]interface{} `json:"stats"`
}

type UnsealRequest ¶

type UnsealRequest struct {
	Type            string `json:"type"`
	Token           string `json:"token"`
	CubbyPath       string `json:"cubby_path"`
	Username        string `json:"username"`
	Password        string `json:"password"`
	AppID           string `json:"app_id"`
	UserIdMethod    string `json:"user_id_method"`
	UserIdInterface string `json:"user_id_interface"`
	UserIdPath      string `json:"user_id_path"`
	UserIdHash      string `json:"user_id_hash"`
	UserIdSalt      string `json:"user_id_salt"`
}

type VaultError ¶

type VaultError struct {
	Code   int      `json:"-"`
	Errors []string `json:"errors"`
}

func (VaultError) Error ¶

func (e VaultError) Error() string

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL