clcedard

package

v0.26.6 Latest Latest Go to latest Published: Apr 8, 2024 License: MIT Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/crewlinker/clgo

Links

Open Source Insights

Documentation ¶

Overview ¶

Package clcedard provides components for the cedard authorization service.

Index ¶

func Provide() fx.Option
type Client
- func NewClient(cfg Config, logs *zap.Logger, htcl *http.Client) *Client
- func (c *Client) Authorize(ctx context.Context, in *Input) (out *Output, err error)
- func (c *Client) IsAuthorized(ctx context.Context, in *Input) (bool, error)
type Config
type Input
type Output

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func Provide ¶

func Provide() fx.Option

Provide dependencies.

Types ¶

type Client ¶

type Client struct {
	// contains filtered or unexported fields
}

Client implements a client for the cedard authorization service.

func NewClient ¶

func NewClient(cfg Config, logs *zap.Logger, htcl *http.Client) *Client

NewClient inits the client.

func (*Client) Authorize ¶

func (c *Client) Authorize(ctx context.Context, in *Input) (out *Output, err error)

Authorize asks the cedard service authorizes the given input.

func (*Client) IsAuthorized ¶

func (c *Client) IsAuthorized(ctx context.Context, in *Input) (bool, error)

IsAuthorized returns true the authorization returned an Allow decision without errors. Otherwise, it returns false.

type Config ¶

type Config struct {
	// BaseURL configures the base url of the cedard service.
	BaseURL string `env:"BASE_URL" envDefault:"https://authz.crewlinker.com"`
	// JWTSigningSecret configures the secret for signing JWTs.
	JWTSigningSecret string `env:"JWT_SIGNING_SECRET" envDefault:"some-secret-for-testing"`
	// BackoffMaxElapsedTime configures the max elapsed time for the retry mechanism.
	BackoffMaxElapsedTime time.Duration `env:"BACKOFF_MAX_ELAPSED_TIME" envDefault:"3s"`
}

Config configures the package.

type Input ¶

type Input struct {
	Principal string         `json:"principal"`
	Action    string         `json:"action"`
	Resource  string         `json:"resource"`
	Policies  string         `json:"policies"`
	Context   map[string]any `json:"context"`
	Schema    map[string]any `json:"schema"`
	Entities  []any          `json:"entities"`
}

Input for authorzation.

type Output ¶

type Output struct {
	Decision      string   `json:"decision"`
	PolicyIds     []string `json:"policy_ids"`
	ErrorMessages []string `json:"error_messages"`
}

Output from authorization.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL