actionlist

package

v0.0.0-...-d389ac1 Latest Latest Go to latest Published: Sep 12, 2024 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package actionlist is a Authorizer that looks at specific claims in a JWT token and allow requests based on the approved list of actions.

The JWT claims must have a "agents" claim that is a list of a strings with the following possible values:

Allow all requests to any agent and action

[]string{"*"}

Allow requests to all actions of rpcutil agent

[]string{"rpcutil.*"}

Allow requests only to rpcutil agent ping action

[]string{"rpcutil.ping"}

Multiple claims are parsed in a first match order, default is deny

[]string{"rpcutil.*", "package.status"}

Here we have 2 allow rules, it will keep looking till it finds a match and then default deny.

This section is empty.

This section is empty.

This section is empty.

type Authorizer struct {
	// contains filtered or unexported fields
}

Authorizer authorizes requests based on their agent and action

func New(log *logrus.Entry, site string) *Authorizer

New creates a new actionlist authorizer

func (a *Authorizer) Authorize(req protocol.Request, claims *tokens.ClientIDClaims) (allowed bool, err error)

Authorize implements authorizers.Authorizer