v2

package

v0.1.9 Latest Latest Go to latest Published: Jan 6, 2025 License: Apache-2.0 Imports: 18 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/google/s2a-go

Links

Open Source Insights

README ¶

This directory has the implementation of the S2Av2's gRPC-Go client libraries

Documentation ¶

Overview ¶

Package v2 provides the S2Av2 transport credentials used by a gRPC application.

Index ¶

func GetS2ATimeout() time.Duration
func NewClientCreds(s2av2Address string, transportCreds credentials.TransportCredentials, ...) (credentials.TransportCredentials, error)
func NewClientTLSConfig(ctx context.Context, s2av2Address string, ...) (*tls.Config, error)
func NewServerCreds(s2av2Address string, transportCreds credentials.TransportCredentials, ...) (credentials.TransportCredentials, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func GetS2ATimeout ¶ added in v0.1.4

func GetS2ATimeout() time.Duration

GetS2ATimeout returns the timeout enforced on the connection to the S2A service for handshake.

func NewClientCreds ¶

func NewClientCreds(s2av2Address string, transportCreds credentials.TransportCredentials, localIdentity *commonpb.Identity, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, fallbackClientHandshakeFunc fallback.ClientHandshake, getS2AStream stream.GetS2AStream, serverAuthorizationPolicy []byte) (credentials.TransportCredentials, error)

NewClientCreds returns a client-side transport credentials object that uses the S2Av2 to establish a secure connection with a server.

func NewClientTLSConfig ¶

func NewClientTLSConfig(
	ctx context.Context,
	s2av2Address string,
	transportCreds credentials.TransportCredentials,
	tokenManager tokenmanager.AccessTokenManager,
	verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode,
	serverName string,
	serverAuthorizationPolicy []byte,
	getStream stream.GetS2AStream) (*tls.Config, error)

NewClientTLSConfig returns a tls.Config instance that uses S2Av2 to establish a TLS connection as a client. The tls.Config MUST only be used to establish a single TLS connection.

func NewServerCreds ¶

func NewServerCreds(s2av2Address string, transportCreds credentials.TransportCredentials, localIdentities []*commonpb.Identity, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, getS2AStream stream.GetS2AStream) (credentials.TransportCredentials, error)

NewServerCreds returns a server-side transport credentials object that uses the S2Av2 to establish a secure connection with a client.

Types ¶

This section is empty.

Source Files ¶

View all Source files

s2av2.go

Directories ¶

Path	Synopsis
certverifier Package certverifier offloads verifications to S2Av2.	Package certverifier offloads verifications to S2Av2.
fakes2av2 Package fakes2av2 is a fake S2Av2 Go implementation.	Package fakes2av2 is a fake S2Av2 Go implementation.
fakes2av2_server Package main runs an S2Av2 service.	Package main runs an S2Av2 service.
remotesigner Package remotesigner offloads private key operations to S2Av2.	Package remotesigner offloads private key operations to S2Av2.
tlsconfigstore Package tlsconfigstore offloads operations to S2Av2.	Package tlsconfigstore offloads operations to S2Av2.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL