Documentation ¶
Index ¶
- type KMSAuthClient
- func (c *KMSAuthClient) RequestCert(ctx context.Context) error
- func (c *KMSAuthClient) RequestKMSAuthToken(ctx context.Context) (*kmsauth.EncryptedToken, error)
- func (c *KMSAuthClient) WithAwsClient(client *cziAWS.Client) *KMSAuthClient
- func (c *KMSAuthClient) WithTokenGenerator(tg *kmsauth.TokenGenerator) *KMSAuthClient
- func (c *KMSAuthClient) WithUsername(username string) *KMSAuthClient
- type KMSAuthLambdaPayload
- type LambdaResponse
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type KMSAuthClient ¶ added in v0.6.0
type KMSAuthClient struct {
// contains filtered or unexported fields
}
KMSAuthClient is a client that works with kmsauth identity assertions
func NewKMSAuthClient ¶ added in v0.6.0
func NewKMSAuthClient(conf *config.Config) *KMSAuthClient
New returns a new client
func (*KMSAuthClient) RequestCert ¶ added in v0.6.0
func (c *KMSAuthClient) RequestCert(ctx context.Context) error
func (*KMSAuthClient) RequestKMSAuthToken ¶ added in v0.6.0
func (c *KMSAuthClient) RequestKMSAuthToken(ctx context.Context) (*kmsauth.EncryptedToken, error)
RequestKMSAuthToken requests a new kmsauth token
func (*KMSAuthClient) WithAwsClient ¶ added in v0.6.0
func (c *KMSAuthClient) WithAwsClient(client *cziAWS.Client) *KMSAuthClient
WithAwsClient configures an aws client
func (*KMSAuthClient) WithTokenGenerator ¶ added in v0.6.0
func (c *KMSAuthClient) WithTokenGenerator(tg *kmsauth.TokenGenerator) *KMSAuthClient
WithTokenGenerator configures a token generator
func (*KMSAuthClient) WithUsername ¶ added in v0.6.0
func (c *KMSAuthClient) WithUsername(username string) *KMSAuthClient
WithUsername configures the username
type KMSAuthLambdaPayload ¶ added in v0.6.0
type KMSAuthLambdaPayload struct { RemoteUsernames string `json:"remote_usernames,omitempty"` BastionIPs string `json:"bastion_ips,omitempty"` BastionUser string `json:"bastion_user,omitempty"` BastionUserIP string `json:"bastion_user_ip,omitempty"` Command string `json:"command,omitempty"` PublicKeyToSign string `json:"public_key_to_sign,omitempty"` KMSAuthToken string `json:"kmsauth_token"` }
KMSAuthLambdaPayload is the payload for the bless lambda
func (*KMSAuthLambdaPayload) Marshal ¶ added in v0.6.0
func (k *KMSAuthLambdaPayload) Marshal() ([]byte, error)
type LambdaResponse ¶
type LambdaResponse struct { Certificate *string `json:"certificate,omitempty"` ErrorType *string `json:"errorType"` ErrorMessage *string `json:"errorMessage"` }
LambdaResponse is a lambda response
Click to show internal directories.
Click to hide internal directories.