Documentation
¶
Index ¶
- Constants
- type KubeJWTAuthenticator
- func (a *KubeJWTAuthenticator) Authenticate(ctx context.Context) (*security.Caller, error)
- func (a *KubeJWTAuthenticator) AuthenticateRequest(req *http.Request) (*security.Caller, error)
- func (a *KubeJWTAuthenticator) AuthenticatorType() string
- func (a *KubeJWTAuthenticator) GetKubeClient(clusterID cluster.ID) kubernetes.Interface
- type RemoteKubeClientGetter
Constants ¶
View Source
const (
KubeJWTAuthenticatorType = "KubeJWTAuthenticator"
)
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type KubeJWTAuthenticator ¶
type KubeJWTAuthenticator struct {
// contains filtered or unexported fields
}
KubeJWTAuthenticator authenticates K8s JWTs.
func NewKubeJWTAuthenticator ¶
func NewKubeJWTAuthenticator(meshHolder mesh.Holder, client kubernetes.Interface, clusterID cluster.ID, remoteKubeClientGetter RemoteKubeClientGetter, jwtPolicy string) *KubeJWTAuthenticator
NewKubeJWTAuthenticator creates a new kubeJWTAuthenticator.
func (*KubeJWTAuthenticator) Authenticate ¶
Authenticate authenticates the call using the K8s JWT from the context. The returned Caller.Identities is in SPIFFE format.
func (*KubeJWTAuthenticator) AuthenticateRequest ¶
func (*KubeJWTAuthenticator) AuthenticatorType ¶
func (a *KubeJWTAuthenticator) AuthenticatorType() string
func (*KubeJWTAuthenticator) GetKubeClient ¶
func (a *KubeJWTAuthenticator) GetKubeClient(clusterID cluster.ID) kubernetes.Interface
type RemoteKubeClientGetter ¶
type RemoteKubeClientGetter func(clusterID cluster.ID) kubernetes.Interface
Source Files
Click to show internal directories.
Click to hide internal directories.