auth

package
v1.17.0-pre.3 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Dec 2, 2024 License: Apache-2.0 Imports: 35 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source
var Cell = cell.Module(
	"auth",
	"Authenticates requests as demanded by policy",

	spire.Cell,

	cell.Provide(
		registerAuthManager,
		func(c config) MeshAuthConfig { return c },
	),
	cell.ProvidePrivate(

		newMutualAuthHandler,

		newAlwaysFailAuthHandler,
	),
	cell.Config(config{
		MeshAuthEnabled:               true,
		MeshAuthQueueSize:             1024,
		MeshAuthGCInterval:            5 * time.Minute,
		MeshAuthSignalBackoffDuration: 1 * time.Second,
	}),
	cell.Config(MutualAuthConfig{}),
)

Cell provides AuthManager which is responsible for request authentication. It does this by registering to "auth required" signals from the signal package and reacting upon received signal events. Actual authentication gets performed by an auth handler which is responsible for the configured auth type on the corresponding policy.

Functions

This section is empty.

Types

type AuthManager

type AuthManager struct {
	// contains filtered or unexported fields
}

func (*AuthManager) CertProviderStatus

func (a *AuthManager) CertProviderStatus() *models.Status

type MeshAuthConfig

type MeshAuthConfig interface {
	IsEnabled() bool
}

type MutualAuthConfig

type MutualAuthConfig struct {
	MutualAuthListenerPort   int           `mapstructure:"mesh-auth-mutual-listener-port"`
	MutualAuthConnectTimeout time.Duration `mapstructure:"mesh-auth-mutual-connect-timeout"`
}

func (MutualAuthConfig) Flags

func (cfg MutualAuthConfig) Flags(flags *pflag.FlagSet)

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL