Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var Cell = cell.Module( "auth", "Authenticates requests as demanded by policy", spire.Cell, cell.Provide( registerAuthManager, func(c config) MeshAuthConfig { return c }, ), cell.ProvidePrivate( newMutualAuthHandler, newAlwaysFailAuthHandler, ), cell.Config(config{ MeshAuthEnabled: true, MeshAuthQueueSize: 1024, MeshAuthGCInterval: 5 * time.Minute, MeshAuthSignalBackoffDuration: 1 * time.Second, }), cell.Config(MutualAuthConfig{}), )
Cell provides AuthManager which is responsible for request authentication. It does this by registering to "auth required" signals from the signal package and reacting upon received signal events. Actual authentication gets performed by an auth handler which is responsible for the configured auth type on the corresponding policy.
Functions ¶
This section is empty.
Types ¶
type AuthManager ¶
type AuthManager struct {
// contains filtered or unexported fields
}
func (*AuthManager) CertProviderStatus ¶
func (a *AuthManager) CertProviderStatus() *models.Status
type MeshAuthConfig ¶
type MeshAuthConfig interface {
IsEnabled() bool
}
type MutualAuthConfig ¶
type MutualAuthConfig struct { MutualAuthListenerPort int `mapstructure:"mesh-auth-mutual-listener-port"` MutualAuthConnectTimeout time.Duration `mapstructure:"mesh-auth-mutual-connect-timeout"` }
func (MutualAuthConfig) Flags ¶
func (cfg MutualAuthConfig) Flags(flags *pflag.FlagSet)
Source Files ¶
Click to show internal directories.
Click to hide internal directories.