envoy

package
v2.1.0-rc.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 11, 2023 License: Apache-2.0 Imports: 32 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func AuthzRequestToFlowLabels 

func AuthzRequestToFlowLabels(request *authv3.AttributeContext_Request) flowlabel.FlowLabels

AuthzRequestToFlowLabels converts request attributes to new FlowLabels.

func Module 

func Module() fx.Option

Module provides authz handler

Authz handler is one of the APIs to classification and flowcontrol modules. Authz uses envoy's external authorization gRPC API.

func Register 

func Register(handler *Handler, server *grpc.Server, healthsrv *health.Server)

Register registers the handler on grpc.Server

To be used in fx.Invoke.

Types

type Handler 

type Handler struct {
	// contains filtered or unexported fields
}

Handler implements envoy.service.auth.v3.Authorization and handles Check call.

func NewHandler 

func NewHandler(
	classifier *classification.ClassificationEngine,
	serviceGetter servicegetter.ServiceGetter,
	fcHandler check.HandlerWithValues,
) *Handler

NewHandler creates new authorization handler for authz api

Authz will use the given classifier to inject flow labels and return them as metadata in the response to the Check calls.

func (*Handler) Check 

func (h *Handler) Check(ctx context.Context, req *authv3.CheckRequest) (*authv3.CheckResponse, error)

Check is the Check method of Authorization service

Check * computes flow labels and returns them via DynamicMetadata. * makes the allow/deny decision - sends flow labels to flow control's Check function.

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.