Documentation ¶
Index ¶
- Constants
- Variables
- func TraceLevelToExplainModeV2(t authorizer.TraceLevel) types.ExplainModeV1
- type AuthorizerServer
- func (s *AuthorizerServer) Compile(ctx context.Context, req *authorizer.CompileRequest) (*authorizer.CompileResponse, error)
- func (s *AuthorizerServer) DecisionTree(ctx context.Context, req *authorizer.DecisionTreeRequest) (*authorizer.DecisionTreeResponse, error)
- func (s *AuthorizerServer) Is(ctx context.Context, req *authorizer.IsRequest) (*authorizer.IsResponse, error)
- func (s *AuthorizerServer) Query(ctx context.Context, req *authorizer.QueryRequest) (*authorizer.QueryResponse, error)
- type DirectoryServer
- func (s *DirectoryServer) CreateTenant(ctx context.Context, req *dir.CreateTenantRequest) (*dir.CreateTenantResponse, error)
- func (s *DirectoryServer) CreateUser(ctx context.Context, req *dir.CreateUserRequest) (*dir.CreateUserResponse, error)
- func (s *DirectoryServer) DeleteApplPermission(ctx context.Context, req *dir.DeleteApplPermissionRequest) (*dir.DeleteApplPermissionResponse, error)
- func (s *DirectoryServer) DeleteApplProperty(ctx context.Context, req *dir.DeleteApplPropertyRequest) (*dir.DeleteApplPropertyResponse, error)
- func (s *DirectoryServer) DeleteApplRole(ctx context.Context, req *dir.DeleteApplRoleRequest) (*dir.DeleteApplRoleResponse, error)
- func (s *DirectoryServer) DeleteResource(ctx context.Context, req *dir.DeleteResourceRequest) (*dir.DeleteResourceResponse, error)
- func (s *DirectoryServer) DeleteTenant(ctx context.Context, req *dir.DeleteTenantRequest) (*dir.DeleteTenantResponse, error)
- func (s *DirectoryServer) DeleteUser(ctx context.Context, req *dir.DeleteUserRequest) (*dir.DeleteUserResponse, error)
- func (s *DirectoryServer) DeleteUserApplication(ctx context.Context, req *dir.DeleteUserApplicationRequest) (*dir.DeleteUserApplicationResponse, error)
- func (s *DirectoryServer) DeleteUserPermission(ctx context.Context, req *dir.DeleteUserPermissionRequest) (*dir.DeleteUserPermissionResponse, error)
- func (s *DirectoryServer) DeleteUserProperty(ctx context.Context, req *dir.DeleteUserPropertyRequest) (*dir.DeleteUserPropertyResponse, error)
- func (s *DirectoryServer) DeleteUserRole(ctx context.Context, req *dir.DeleteUserRoleRequest) (*dir.DeleteUserRoleResponse, error)
- func (s *DirectoryServer) GetApplPermissions(ctx context.Context, req *dir.GetApplPermissionsRequest) (*dir.GetApplPermissionsResponse, error)
- func (s *DirectoryServer) GetApplProperties(ctx context.Context, req *dir.GetApplPropertiesRequest) (*dir.GetApplPropertiesResponse, error)
- func (s *DirectoryServer) GetApplRoles(ctx context.Context, req *dir.GetApplRolesRequest) (*dir.GetApplRolesResponse, error)
- func (s *DirectoryServer) GetIdentity(ctx context.Context, req *dir.GetIdentityRequest) (*dir.GetIdentityResponse, error)
- func (s *DirectoryServer) GetResource(ctx context.Context, req *dir.GetResourceRequest) (*dir.GetResourceResponse, error)
- func (s *DirectoryServer) GetUser(ctx context.Context, req *dir.GetUserRequest) (*dir.GetUserResponse, error)
- func (s *DirectoryServer) GetUserPermissions(ctx context.Context, req *dir.GetUserPermissionsRequest) (*dir.GetUserPermissionsResponse, error)
- func (s *DirectoryServer) GetUserProperties(ctx context.Context, req *dir.GetUserPropertiesRequest) (*dir.GetUserPropertiesResponse, error)
- func (s *DirectoryServer) GetUserRoles(ctx context.Context, req *dir.GetUserRolesRequest) (*dir.GetUserRolesResponse, error)
- func (s *DirectoryServer) GetValue(ctx context.Context, req *dir.GetValueRequest) (*dir.GetValueResponse, error)
- func (s *DirectoryServer) ListResources(ctx context.Context, req *dir.ListResourcesRequest) (*dir.ListResourcesResponse, error)
- func (s *DirectoryServer) ListTenants(ctx context.Context, req *dir.ListTenantsRequest) (*dir.ListTenantsResponse, error)
- func (s *DirectoryServer) ListUserApplications(ctx context.Context, req *dir.ListUserApplicationsRequest) (*dir.ListUserApplicationsResponse, error)
- func (s *DirectoryServer) ListUsers(ctx context.Context, req *dir.ListUsersRequest) (*dir.ListUsersResponse, error)
- func (s *DirectoryServer) LoadUsers(stream dir.Directory_LoadUsersServer) error
- func (s *DirectoryServer) SetApplPermission(ctx context.Context, req *dir.SetApplPermissionRequest) (*dir.SetApplPermissionResponse, error)
- func (s *DirectoryServer) SetApplPermissions(ctx context.Context, req *dir.SetApplPermissionsRequest) (*dir.SetApplPermissionsResponse, error)
- func (s *DirectoryServer) SetApplProperties(ctx context.Context, req *dir.SetApplPropertiesRequest) (*dir.SetApplPropertiesResponse, error)
- func (s *DirectoryServer) SetApplProperty(ctx context.Context, req *dir.SetApplPropertyRequest) (*dir.SetApplPropertyResponse, error)
- func (s *DirectoryServer) SetApplRole(ctx context.Context, req *dir.SetApplRoleRequest) (*dir.SetApplRoleResponse, error)
- func (s *DirectoryServer) SetApplRoles(ctx context.Context, req *dir.SetApplRolesRequest) (*dir.SetApplRolesResponse, error)
- func (s *DirectoryServer) SetResource(ctx context.Context, req *dir.SetResourceRequest) (*dir.SetResourceResponse, error)
- func (s *DirectoryServer) SetUserPermission(ctx context.Context, req *dir.SetUserPermissionRequest) (*dir.SetUserPermissionResponse, error)
- func (s *DirectoryServer) SetUserPermissions(ctx context.Context, req *dir.SetUserPermissionsRequest) (*dir.SetUserPermissionsResponse, error)
- func (s *DirectoryServer) SetUserProperties(ctx context.Context, req *dir.SetUserPropertiesRequest) (*dir.SetUserPropertiesResponse, error)
- func (s *DirectoryServer) SetUserProperty(ctx context.Context, req *dir.SetUserPropertyRequest) (*dir.SetUserPropertyResponse, error)
- func (s *DirectoryServer) SetUserRole(ctx context.Context, req *dir.SetUserRoleRequest) (*dir.SetUserRoleResponse, error)
- func (s *DirectoryServer) SetUserRoles(ctx context.Context, req *dir.SetUserRolesRequest) (*dir.SetUserRolesResponse, error)
- func (s *DirectoryServer) UpdateUser(ctx context.Context, req *dir.UpdateUserRequest) (*dir.UpdateUserResponse, error)
- type InfoServer
- type PolicyServer
- func (p *PolicyServer) GetModule(ctx context.Context, req *api.GetModuleRequest) (*api.GetModuleResponse, error)
- func (p *PolicyServer) GetPolicies(ctx context.Context, req *api.GetPoliciesRequest) (*api.GetPoliciesResponse, error)
- func (p *PolicyServer) ListPolicies(ctx context.Context, req *api.ListPoliciesRequest) (*api.ListPoliciesResponse, error)
Constants ¶
const ( InputUser string = "user" InputIdentity string = "identity" InputPolicy string = "policy" InputResource string = "resource" )
const NoAppl = ""
Variables ¶
var ( // ErrMissingMetadata - metadata element missing ErrMissingMetadata = cerr.ErrInvalidArgument.Msg("missing metadata") // ErrMissingToken - token missing from metadata ErrMissingToken = cerr.ErrInvalidArgument.Msg("missing token") // ErrInvalidToken - token not valid ErrInvalidToken = cerr.ErrAuthenticationFailed.Msg("invalid token") )
Functions ¶
func TraceLevelToExplainModeV2 ¶
func TraceLevelToExplainModeV2(t authorizer.TraceLevel) types.ExplainModeV1
Types ¶
type AuthorizerServer ¶
type AuthorizerServer struct {
// contains filtered or unexported fields
}
func NewAuthorizerServer ¶
func NewAuthorizerServer( logger *zerolog.Logger, cfg *config.Common, runtimeResolver resolvers.RuntimeResolver, directoryResolver resolvers.DirectoryResolver) *AuthorizerServer
func (*AuthorizerServer) Compile ¶
func (s *AuthorizerServer) Compile(ctx context.Context, req *authorizer.CompileRequest) (*authorizer.CompileResponse, error)
func (*AuthorizerServer) DecisionTree ¶
func (s *AuthorizerServer) DecisionTree(ctx context.Context, req *authorizer.DecisionTreeRequest) (*authorizer.DecisionTreeResponse, error)
type DirectoryServer ¶
type DirectoryServer struct {
// contains filtered or unexported fields
}
func NewDirectoryServer ¶
func NewDirectoryServer(logger *zerolog.Logger, directoryResolver resolvers.DirectoryResolver) (*DirectoryServer, error)
func (*DirectoryServer) CreateTenant ¶
func (s *DirectoryServer) CreateTenant(ctx context.Context, req *dir.CreateTenantRequest) (*dir.CreateTenantResponse, error)
CreateTenant, if tenant does not exist, creates a tenant namespace inside EDS and returns a tenant id. If no id is provided, a tenant id will be generated using the tenant id generator logic
func (*DirectoryServer) CreateUser ¶
func (s *DirectoryServer) CreateUser(ctx context.Context, req *dir.CreateUserRequest) (*dir.CreateUserResponse, error)
func (*DirectoryServer) DeleteApplPermission ¶
func (s *DirectoryServer) DeleteApplPermission(ctx context.Context, req *dir.DeleteApplPermissionRequest) (*dir.DeleteApplPermissionResponse, error)
func (*DirectoryServer) DeleteApplProperty ¶
func (s *DirectoryServer) DeleteApplProperty(ctx context.Context, req *dir.DeleteApplPropertyRequest) (*dir.DeleteApplPropertyResponse, error)
func (*DirectoryServer) DeleteApplRole ¶
func (s *DirectoryServer) DeleteApplRole(ctx context.Context, req *dir.DeleteApplRoleRequest) (*dir.DeleteApplRoleResponse, error)
func (*DirectoryServer) DeleteResource ¶
func (s *DirectoryServer) DeleteResource(ctx context.Context, req *dir.DeleteResourceRequest) (*dir.DeleteResourceResponse, error)
func (*DirectoryServer) DeleteTenant ¶
func (s *DirectoryServer) DeleteTenant(ctx context.Context, req *dir.DeleteTenantRequest) (*dir.DeleteTenantResponse, error)
DeleteTenant, if tenant exists, remove the tenant namespace inside EDS
func (*DirectoryServer) DeleteUser ¶
func (s *DirectoryServer) DeleteUser(ctx context.Context, req *dir.DeleteUserRequest) (*dir.DeleteUserResponse, error)
func (*DirectoryServer) DeleteUserApplication ¶
func (s *DirectoryServer) DeleteUserApplication(ctx context.Context, req *dir.DeleteUserApplicationRequest) (*dir.DeleteUserApplicationResponse, error)
func (*DirectoryServer) DeleteUserPermission ¶
func (s *DirectoryServer) DeleteUserPermission( ctx context.Context, req *dir.DeleteUserPermissionRequest) (*dir.DeleteUserPermissionResponse, error)
func (*DirectoryServer) DeleteUserProperty ¶
func (s *DirectoryServer) DeleteUserProperty( ctx context.Context, req *dir.DeleteUserPropertyRequest) (*dir.DeleteUserPropertyResponse, error)
func (*DirectoryServer) DeleteUserRole ¶
func (s *DirectoryServer) DeleteUserRole( ctx context.Context, req *dir.DeleteUserRoleRequest) (*dir.DeleteUserRoleResponse, error)
func (*DirectoryServer) GetApplPermissions ¶
func (s *DirectoryServer) GetApplPermissions(ctx context.Context, req *dir.GetApplPermissionsRequest) (*dir.GetApplPermissionsResponse, error)
func (*DirectoryServer) GetApplProperties ¶
func (s *DirectoryServer) GetApplProperties(ctx context.Context, req *dir.GetApplPropertiesRequest) (*dir.GetApplPropertiesResponse, error)
func (*DirectoryServer) GetApplRoles ¶
func (s *DirectoryServer) GetApplRoles(ctx context.Context, req *dir.GetApplRolesRequest) (*dir.GetApplRolesResponse, error)
func (*DirectoryServer) GetIdentity ¶
func (s *DirectoryServer) GetIdentity(ctx context.Context, req *dir.GetIdentityRequest) (*dir.GetIdentityResponse, error)
func (*DirectoryServer) GetResource ¶
func (s *DirectoryServer) GetResource(ctx context.Context, req *dir.GetResourceRequest) (*dir.GetResourceResponse, error)
func (*DirectoryServer) GetUser ¶
func (s *DirectoryServer) GetUser(ctx context.Context, req *dir.GetUserRequest) (*dir.GetUserResponse, error)
func (*DirectoryServer) GetUserPermissions ¶
func (s *DirectoryServer) GetUserPermissions( ctx context.Context, req *dir.GetUserPermissionsRequest) (*dir.GetUserPermissionsResponse, error)
func (*DirectoryServer) GetUserProperties ¶
func (s *DirectoryServer) GetUserProperties( ctx context.Context, req *dir.GetUserPropertiesRequest) (*dir.GetUserPropertiesResponse, error)
func (*DirectoryServer) GetUserRoles ¶
func (s *DirectoryServer) GetUserRoles(ctx context.Context, req *dir.GetUserRolesRequest) (*dir.GetUserRolesResponse, error)
func (*DirectoryServer) GetValue ¶
func (s *DirectoryServer) GetValue(ctx context.Context, req *dir.GetValueRequest) (*dir.GetValueResponse, error)
func (*DirectoryServer) ListResources ¶
func (s *DirectoryServer) ListResources(ctx context.Context, req *dir.ListResourcesRequest) (*dir.ListResourcesResponse, error)
func (*DirectoryServer) ListTenants ¶
func (s *DirectoryServer) ListTenants(ctx context.Context, req *dir.ListTenantsRequest) (*dir.ListTenantsResponse, error)
ListTenants returns tenant id collection for tenants in edge directory instance. (GRPC-only)
func (*DirectoryServer) ListUserApplications ¶
func (s *DirectoryServer) ListUserApplications( ctx context.Context, req *dir.ListUserApplicationsRequest) (*dir.ListUserApplicationsResponse, error)
func (*DirectoryServer) ListUsers ¶
func (s *DirectoryServer) ListUsers(ctx context.Context, req *dir.ListUsersRequest) (*dir.ListUsersResponse, error)
func (*DirectoryServer) LoadUsers ¶
func (s *DirectoryServer) LoadUsers(stream dir.Directory_LoadUsersServer) error
LoadUsers load user stream into edge directory. (GRPC-only)
func (*DirectoryServer) SetApplPermission ¶
func (s *DirectoryServer) SetApplPermission(ctx context.Context, req *dir.SetApplPermissionRequest) (*dir.SetApplPermissionResponse, error)
func (*DirectoryServer) SetApplPermissions ¶
func (s *DirectoryServer) SetApplPermissions(ctx context.Context, req *dir.SetApplPermissionsRequest) (*dir.SetApplPermissionsResponse, error)
func (*DirectoryServer) SetApplProperties ¶
func (s *DirectoryServer) SetApplProperties( ctx context.Context, req *dir.SetApplPropertiesRequest) (*dir.SetApplPropertiesResponse, error)
func (*DirectoryServer) SetApplProperty ¶
func (s *DirectoryServer) SetApplProperty(ctx context.Context, req *dir.SetApplPropertyRequest) (*dir.SetApplPropertyResponse, error)
func (*DirectoryServer) SetApplRole ¶
func (s *DirectoryServer) SetApplRole(ctx context.Context, req *dir.SetApplRoleRequest) (*dir.SetApplRoleResponse, error)
func (*DirectoryServer) SetApplRoles ¶
func (s *DirectoryServer) SetApplRoles(ctx context.Context, req *dir.SetApplRolesRequest) (*dir.SetApplRolesResponse, error)
func (*DirectoryServer) SetResource ¶
func (s *DirectoryServer) SetResource(ctx context.Context, req *dir.SetResourceRequest) (*dir.SetResourceResponse, error)
func (*DirectoryServer) SetUserPermission ¶
func (s *DirectoryServer) SetUserPermission( ctx context.Context, req *dir.SetUserPermissionRequest) (*dir.SetUserPermissionResponse, error)
func (*DirectoryServer) SetUserPermissions ¶
func (s *DirectoryServer) SetUserPermissions( ctx context.Context, req *dir.SetUserPermissionsRequest) (*dir.SetUserPermissionsResponse, error)
func (*DirectoryServer) SetUserProperties ¶
func (s *DirectoryServer) SetUserProperties( ctx context.Context, req *dir.SetUserPropertiesRequest) (*dir.SetUserPropertiesResponse, error)
func (*DirectoryServer) SetUserProperty ¶
func (s *DirectoryServer) SetUserProperty( ctx context.Context, req *dir.SetUserPropertyRequest) (*dir.SetUserPropertyResponse, error)
func (*DirectoryServer) SetUserRole ¶
func (s *DirectoryServer) SetUserRole(ctx context.Context, req *dir.SetUserRoleRequest) (*dir.SetUserRoleResponse, error)
func (*DirectoryServer) SetUserRoles ¶
func (s *DirectoryServer) SetUserRoles(ctx context.Context, req *dir.SetUserRolesRequest) (*dir.SetUserRolesResponse, error)
func (*DirectoryServer) UpdateUser ¶
func (s *DirectoryServer) UpdateUser(ctx context.Context, req *dir.UpdateUserRequest) (*dir.UpdateUserResponse, error)
type InfoServer ¶
type InfoServer struct {
// contains filtered or unexported fields
}
InfoServer internal - returns basic system information
func NewInfoServer ¶
func NewInfoServer(logger *zerolog.Logger, cfg *config.Config, directoryResolver resolvers.DirectoryResolver) (*InfoServer, error)
NewInfoServer creates a new SystemServer instance
func (*InfoServer) Info ¶
func (s *InfoServer) Info(ctx context.Context, req *info.InfoRequest) (*info.InfoResponse, error)
type PolicyServer ¶
type PolicyServer struct {
// contains filtered or unexported fields
}
PolicyServer implements a Policy Server for the GRPC API
func NewPolicyServer ¶
func NewPolicyServer(logger *zerolog.Logger, runtimeResolver resolvers.RuntimeResolver) *PolicyServer
NewPolicyServer creates a new PoliciesServer
func (*PolicyServer) GetModule ¶
func (p *PolicyServer) GetModule(ctx context.Context, req *api.GetModuleRequest) (*api.GetModuleResponse, error)
GetModule, return policy module for given module id.
func (*PolicyServer) GetPolicies ¶
func (p *PolicyServer) GetPolicies(ctx context.Context, req *api.GetPoliciesRequest) (*api.GetPoliciesResponse, error)
GetPolicies, returns list of policies for a given policy id.
func (*PolicyServer) ListPolicies ¶
func (p *PolicyServer) ListPolicies(ctx context.Context, req *api.ListPoliciesRequest) (*api.ListPoliciesResponse, error)
ListPolicies, returns list of bundles loaded in runtime. (RUNTIME STATE)