Documentation ¶
Index ¶
- func CopyPipe(a, b net.Conn) error
- func NewProxy(listen string, forward bool, encrypt bool, tp tokenaccessor.TokenAccessor, ...) policyenforcer.Enforcer
- func Pipe(in *net.TCPConn, out int) error
- type Proxy
- func (p *Proxy) CompleteEndPointAuthorization(backendip string, backendport uint16, upConn net.Conn, downConn int, ...) (bool, error)
- func (p *Proxy) Enforce(contextID string, puInfo *policy.PUInfo) error
- func (p *Proxy) GetFilterQueue() *fqconfig.FilterQueue
- func (p *Proxy) GetPortSetInstance() portset.PortSet
- func (p *Proxy) Start() error
- func (p *Proxy) StartClientAuthStateMachine(backendip string, backendport uint16, upConn net.Conn, downConn int, ...) (bool, error)
- func (p *Proxy) StartListener(contextID string, reterr chan error, port string)
- func (p *Proxy) StartServerAuthStateMachine(backendip string, backendport uint16, upConn io.ReadWriter, downConn int, ...) (bool, error)
- func (p *Proxy) Stop() error
- func (p *Proxy) Unenforce(contextID string) error
- func (p *Proxy) UpdateSecrets(secret secrets.Secrets) error
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func NewProxy ¶
func NewProxy(listen string, forward bool, encrypt bool, tp tokenaccessor.TokenAccessor, c collector.EventCollector, puFromContextID cache.DataStore, mutualAuthorization bool, secret secrets.Secrets) policyenforcer.Enforcer
NewProxy creates a new instance of proxy reate a new instance of Proxy
Types ¶
type Proxy ¶
type Proxy struct { // Listen specifies port to listen on. Listen string // Backend address of the backend Backend string // Forward specifies if we should forward this connection. Forward bool // Encrypt specifies if this connection encrypted. Encrypt bool // List of local IP's IPList []string // contains filtered or unexported fields }
Proxy maintains state for proxies connections from listen to backend.
func (*Proxy) CompleteEndPointAuthorization ¶
func (p *Proxy) CompleteEndPointAuthorization(backendip string, backendport uint16, upConn net.Conn, downConn int, contextID string) (bool, error)
CompleteEndPointAuthorization -- Aporeto Handshake on top of a completed connection We will define states here equivalent to SYN_SENT AND SYN_RECEIVED
func (*Proxy) GetFilterQueue ¶
func (p *Proxy) GetFilterQueue() *fqconfig.FilterQueue
GetFilterQueue is a stub for TCP proxy
func (*Proxy) GetPortSetInstance ¶
GetPortSetInstance returns nil for the proxy
func (*Proxy) StartClientAuthStateMachine ¶
func (p *Proxy) StartClientAuthStateMachine(backendip string, backendport uint16, upConn net.Conn, downConn int, contextID string) (bool, error)
StartClientAuthStateMachine -- Starts the aporeto handshake for client application
func (*Proxy) StartListener ¶
StartListener implements policyenforcer.Enforcer interface
func (*Proxy) StartServerAuthStateMachine ¶
func (p *Proxy) StartServerAuthStateMachine(backendip string, backendport uint16, upConn io.ReadWriter, downConn int, contextID string) (bool, error)
StartServerAuthStateMachine -- Start the aporeto handshake for a server application
Click to show internal directories.
Click to hide internal directories.