Documentation ¶
Index ¶
- Constants
- func CleanHexString(hexString string) string
- func ContextToProtobuf(context *change.Context) *edge_cmd_pb.ChangeContext
- func DecodeSalt(s string) ([]byte, error)
- func NewFieldChecker(fields ...string) boltz.FieldChecker
- func ProtobufToContext(context *edge_cmd_pb.ChangeContext) *change.Context
- func RegisterCommand[MT any, CT any, M network.CommandMsg[MT], C decodableCommand[CT, M]](env Env, _ C, _ M)
- type AdvisorEdgeRouter
- type AdvisorIdentityEdgeRouterLinks
- type AdvisorIdentityServiceLinks
- type AdvisorServiceEdgeRouterLinks
- type AdvisorServiceReachability
- type AndFieldChecker
- type ApiSession
- type ApiSessionCertificate
- type ApiSessionCertificateListResult
- type ApiSessionCertificateManager
- func (self *ApiSessionCertificateManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *ApiSessionCertificateManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *ApiSessionCertificateManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *ApiSessionCertificateManager) BaseLoad(id string) (ME, error)
- func (self *ApiSessionCertificateManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *ApiSessionCertificateManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ApiSessionCertificateManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ApiSessionCertificateManager) Create(entity *ApiSessionCertificate, ctx *change.Context) (string, error)
- func (self *ApiSessionCertificateManager) CreateFromCSR(apiSessionId string, lifespan time.Duration, csrPem []byte, ...) (string, error)
- func (self *ApiSessionCertificateManager) Delete(id string, ctx *change.Context) error
- func (self *ApiSessionCertificateManager) Dispatch(command command.Command) error
- func (self *ApiSessionCertificateManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *ApiSessionCertificateManager) GetDb() boltz.Db
- func (self *ApiSessionCertificateManager) GetEntityTypeId() string
- func (self *ApiSessionCertificateManager) GetEnv() Env
- func (self *ApiSessionCertificateManager) GetStore() boltz.EntityStore[PE]
- func (self *ApiSessionCertificateManager) IsUpdated(_ string) bool
- func (self *ApiSessionCertificateManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *ApiSessionCertificateManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *ApiSessionCertificateManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *ApiSessionCertificateManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *ApiSessionCertificateManager) Query(tx *bbolt.Tx, query string) (*ApiSessionCertificateListResult, error)
- func (self *ApiSessionCertificateManager) Read(id string) (ME, error)
- func (self *ApiSessionCertificateManager) ReadByApiSessionId(tx *bbolt.Tx, apiSessionId string) ([]*ApiSessionCertificate, error)
- type ApiSessionListResult
- type ApiSessionManager
- func (self *ApiSessionManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *ApiSessionManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *ApiSessionManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *ApiSessionManager) BaseLoad(id string) (ME, error)
- func (self *ApiSessionManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *ApiSessionManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ApiSessionManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ApiSessionManager) Create(ctx boltz.MutateContext, entity *ApiSession, ...) (string, error)
- func (self *ApiSessionManager) CreateInCtx(ctx boltz.MutateContext, entity *ApiSession, ...) (string, error)
- func (self *ApiSessionManager) Delete(id string, ctx *change.Context) error
- func (self *ApiSessionManager) DeleteBatch(id []string, ctx *change.Context) error
- func (self *ApiSessionManager) DeleteByIdentityId(identityId string, changeCtx *change.Context) error
- func (self *ApiSessionManager) Dispatch(command command.Command) error
- func (self *ApiSessionManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *ApiSessionManager) GetDb() boltz.Db
- func (self *ApiSessionManager) GetEntityTypeId() string
- func (self *ApiSessionManager) GetEnv() Env
- func (self *ApiSessionManager) GetStore() boltz.EntityStore[PE]
- func (self *ApiSessionManager) IsUpdated(_ string) bool
- func (self *ApiSessionManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *ApiSessionManager) MarkLastActivityById(apiSessionId string)
- func (self *ApiSessionManager) MarkLastActivityByTokens(tokens ...string) ([]string, []string, error)
- func (self *ApiSessionManager) MfaCompleted(apiSession *ApiSession, ctx *change.Context) error
- func (self *ApiSessionManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *ApiSessionManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *ApiSessionManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *ApiSessionManager) Query(query string) (*ApiSessionListResult, error)
- func (self *ApiSessionManager) Read(id string) (*ApiSession, error)
- func (self *ApiSessionManager) ReadByToken(token string) (*ApiSession, error)
- func (self *ApiSessionManager) ReadInTx(tx *bbolt.Tx, id string) (*ApiSession, error)
- func (self *ApiSessionManager) Stream(query string, collect func(*ApiSession, error) error) error
- func (self *ApiSessionManager) StreamIds(query string, collect func(string, error) error) error
- func (self *ApiSessionManager) Update(apiSession *ApiSession, ctx *change.Context) error
- func (self *ApiSessionManager) UpdateWithFieldChecker(apiSession *ApiSession, fieldChecker boltz.FieldChecker, ctx *change.Context) error
- func (self *ApiSessionManager) VisitFingerprintsForApiSession(tx *bbolt.Tx, identityId, apiSessionId string, ...) error
- func (self *ApiSessionManager) VisitFingerprintsForApiSessionId(apiSessionId string, visitor func(fingerprint string) bool) error
- type ApiSessionPostureData
- type AuthContext
- type AuthContextHttp
- func (context *AuthContextHttp) GetCerts() []*x509.Certificate
- func (context *AuthContextHttp) GetChangeContext() *change.Context
- func (context *AuthContextHttp) GetData() map[string]interface{}
- func (context *AuthContextHttp) GetHeaders() map[string]interface{}
- func (context *AuthContextHttp) GetMethod() string
- type AuthModuleCert
- type AuthModuleExtJwt
- type AuthModuleUpdb
- type AuthPolicy
- type AuthPolicyCert
- type AuthPolicyExtJwt
- type AuthPolicyManager
- func (self *AuthPolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *AuthPolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*AuthPolicy], ctx boltz.MutateContext) error
- func (self *AuthPolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *AuthPolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*AuthPolicy], ctx boltz.MutateContext) error
- func (self *AuthPolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *AuthPolicyManager) BaseLoad(id string) (ME, error)
- func (self *AuthPolicyManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *AuthPolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *AuthPolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *AuthPolicyManager) Create(entity *AuthPolicy, ctx *change.Context) error
- func (self *AuthPolicyManager) Delete(id string, ctx *change.Context) error
- func (self *AuthPolicyManager) Dispatch(command command.Command) error
- func (self *AuthPolicyManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *AuthPolicyManager) GetDb() boltz.Db
- func (self *AuthPolicyManager) GetEntityTypeId() string
- func (self *AuthPolicyManager) GetEnv() Env
- func (self *AuthPolicyManager) GetStore() boltz.EntityStore[PE]
- func (self *AuthPolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *AuthPolicyManager) Marshall(entity *AuthPolicy) ([]byte, error)
- func (self *AuthPolicyManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *AuthPolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *AuthPolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *AuthPolicyManager) Read(id string) (*AuthPolicy, error)
- func (self *AuthPolicyManager) Unmarshall(bytes []byte) (*AuthPolicy, error)
- func (self *AuthPolicyManager) Update(entity *AuthPolicy, checker fields.UpdatedFields, ctx *change.Context) error
- type AuthPolicyPrimary
- type AuthPolicySecondary
- type AuthPolicyUpdb
- type AuthProcessor
- type AuthProcessorRegistryImpl
- type AuthRegistry
- type AuthResult
- type AuthResultBase
- func (a *AuthResultBase) AuthPolicy() *AuthPolicy
- func (a *AuthResultBase) AuthPolicyId() string
- func (a *AuthResultBase) Authenticator() *Authenticator
- func (a *AuthResultBase) AuthenticatorId() string
- func (a *AuthResultBase) ExternalId() string
- func (a *AuthResultBase) Identity() *Identity
- func (a *AuthResultBase) IdentityId() string
- func (a *AuthResultBase) IsSuccessful() bool
- func (a *AuthResultBase) SessionCerts() []*x509.Certificate
- type AuthResultJwt
- type Authenticator
- type AuthenticatorCert
- type AuthenticatorListQueryResult
- type AuthenticatorManager
- func (self *AuthenticatorManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *AuthenticatorManager) ApplyCreate(cmd *command.CreateEntityCommand[*Authenticator], ctx boltz.MutateContext) error
- func (self *AuthenticatorManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *AuthenticatorManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Authenticator], ctx boltz.MutateContext) error
- func (self *AuthenticatorManager) AuthenticatorToProtobuf(entity *Authenticator) (*edge_cmd_pb.Authenticator, error)
- func (self *AuthenticatorManager) Authorize(authContext AuthContext) (AuthResult, error)
- func (self *AuthenticatorManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *AuthenticatorManager) BaseLoad(id string) (ME, error)
- func (self *AuthenticatorManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *AuthenticatorManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *AuthenticatorManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *AuthenticatorManager) Create(entity *Authenticator, ctx *change.Context) error
- func (self *AuthenticatorManager) DecodeSalt(salt string) []byte
- func (self *AuthenticatorManager) Delete(id string, ctx *change.Context) error
- func (self *AuthenticatorManager) Dispatch(command command.Command) error
- func (self *AuthenticatorManager) ExtendCertForIdentity(identityId string, authenticatorId string, peerCerts []*x509.Certificate, ...) ([]byte, error)
- func (self *AuthenticatorManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *AuthenticatorManager) GetDb() boltz.Db
- func (self *AuthenticatorManager) GetEntityTypeId() string
- func (self *AuthenticatorManager) GetEnv() Env
- func (self *AuthenticatorManager) GetStore() boltz.EntityStore[PE]
- func (self *AuthenticatorManager) HashPassword(password string) *HashedPassword
- func (self *AuthenticatorManager) IsUpdated(field string) bool
- func (self *AuthenticatorManager) ListForIdentity(identityId string, query ast.Query) (*models.EntityListResult[*Authenticator], error)
- func (self *AuthenticatorManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *AuthenticatorManager) Marshall(entity *Authenticator) ([]byte, error)
- func (self *AuthenticatorManager) PatchSelf(authenticatorSelf *AuthenticatorSelf, checker fields.UpdatedFields, ...) error
- func (self *AuthenticatorManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *AuthenticatorManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *AuthenticatorManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *AuthenticatorManager) ProtobufToAuthenticator(msg *edge_cmd_pb.Authenticator) (*Authenticator, error)
- func (self *AuthenticatorManager) ReEnroll(id string, expiresAt time.Time, ctx *change.Context) (string, error)
- func (self *AuthenticatorManager) ReHashPassword(password string, salt []byte) *HashedPassword
- func (self *AuthenticatorManager) Read(id string) (*Authenticator, error)
- func (self *AuthenticatorManager) ReadByFingerprint(fingerprint string) (*Authenticator, error)
- func (self *AuthenticatorManager) ReadByUsername(username string) (*Authenticator, error)
- func (self *AuthenticatorManager) ReadFingerprints(authenticatorId string) ([]string, error)
- func (self *AuthenticatorManager) ReadForIdentity(identityId string, authenticatorId string) (*Authenticator, error)
- func (self *AuthenticatorManager) Unmarshall(bytes []byte) (*Authenticator, error)
- func (self *AuthenticatorManager) Update(entity *Authenticator, unrestricted bool, checker fields.UpdatedFields, ...) error
- func (self *AuthenticatorManager) UpdateSelf(authenticatorSelf *AuthenticatorSelf, ctx *change.Context) error
- func (self *AuthenticatorManager) VerifyExtendCertForIdentity(apiSessionId, identityId, authenticatorId string, verifyCertPem string, ...) error
- type AuthenticatorSelf
- type AuthenticatorUpdb
- type Ca
- type CaListResult
- type CaManager
- func (self *CaManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *CaManager) ApplyCreate(cmd *command.CreateEntityCommand[*Ca], ctx boltz.MutateContext) error
- func (self *CaManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *CaManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Ca], ctx boltz.MutateContext) error
- func (self *CaManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *CaManager) BaseLoad(id string) (ME, error)
- func (self *CaManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *CaManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *CaManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *CaManager) Create(entity *Ca, ctx *change.Context) error
- func (self *CaManager) Delete(id string, ctx *change.Context) error
- func (self *CaManager) Dispatch(command command.Command) error
- func (self *CaManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *CaManager) GetDb() boltz.Db
- func (self *CaManager) GetEntityTypeId() string
- func (self *CaManager) GetEnv() Env
- func (self *CaManager) GetStore() boltz.EntityStore[PE]
- func (self *CaManager) IsUpdated(field string) bool
- func (self *CaManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *CaManager) Marshall(entity *Ca) ([]byte, error)
- func (self *CaManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *CaManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *CaManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *CaManager) Query(query string) (*CaListResult, error)
- func (self *CaManager) Read(id string) (*Ca, error)
- func (self *CaManager) Stream(query string, collect func(*Ca, error) error) error
- func (self *CaManager) Unmarshall(bytes []byte) (*Ca, error)
- func (self *CaManager) Update(entity *Ca, checker fields.UpdatedFields, ctx *change.Context) error
- func (self *CaManager) Verified(ca *Ca, ctx *change.Context) error
- type Config
- type ConfigManager
- func (self *ConfigManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *ConfigManager) ApplyCreate(cmd *command.CreateEntityCommand[*Config], ctx boltz.MutateContext) error
- func (self *ConfigManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *ConfigManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Config], ctx boltz.MutateContext) error
- func (self *ConfigManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *ConfigManager) BaseLoad(id string) (ME, error)
- func (self *ConfigManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *ConfigManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ConfigManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ConfigManager) Create(entity *Config, ctx *change.Context) error
- func (self *ConfigManager) Delete(id string, ctx *change.Context) error
- func (self *ConfigManager) Dispatch(command command.Command) error
- func (self *ConfigManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *ConfigManager) GetDb() boltz.Db
- func (self *ConfigManager) GetEntityTypeId() string
- func (self *ConfigManager) GetEnv() Env
- func (self *ConfigManager) GetStore() boltz.EntityStore[PE]
- func (self *ConfigManager) IsUpdated(field string) bool
- func (self *ConfigManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *ConfigManager) Marshall(entity *Config) ([]byte, error)
- func (self *ConfigManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *ConfigManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *ConfigManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *ConfigManager) Read(id string) (*Config, error)
- func (self *ConfigManager) Unmarshall(bytes []byte) (*Config, error)
- func (self *ConfigManager) Update(entity *Config, checker fields.UpdatedFields, ctx *change.Context) error
- type ConfigType
- type ConfigTypeManager
- func (self *ConfigTypeManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *ConfigTypeManager) ApplyCreate(cmd *command.CreateEntityCommand[*ConfigType], ctx boltz.MutateContext) error
- func (self *ConfigTypeManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *ConfigTypeManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ConfigType], ctx boltz.MutateContext) error
- func (self *ConfigTypeManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *ConfigTypeManager) BaseLoad(id string) (ME, error)
- func (self *ConfigTypeManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *ConfigTypeManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ConfigTypeManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ConfigTypeManager) Create(entity *ConfigType, ctx *change.Context) error
- func (self *ConfigTypeManager) Delete(id string, ctx *change.Context) error
- func (self *ConfigTypeManager) Dispatch(command command.Command) error
- func (self *ConfigTypeManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *ConfigTypeManager) GetDb() boltz.Db
- func (self *ConfigTypeManager) GetEntityTypeId() string
- func (self *ConfigTypeManager) GetEnv() Env
- func (self *ConfigTypeManager) GetStore() boltz.EntityStore[PE]
- func (self *ConfigTypeManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *ConfigTypeManager) MapConfigTypeNamesToIds(values []string, identityId string) map[string]struct{}
- func (self *ConfigTypeManager) Marshall(entity *ConfigType) ([]byte, error)
- func (self *ConfigTypeManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *ConfigTypeManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *ConfigTypeManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *ConfigTypeManager) Read(id string) (*ConfigType, error)
- func (self *ConfigTypeManager) ReadByName(name string) (*ConfigType, error)
- func (self *ConfigTypeManager) Unmarshall(bytes []byte) (*ConfigType, error)
- func (self *ConfigTypeManager) Update(entity *ConfigType, checker fields.UpdatedFields, ctx *change.Context) error
- type CreateEdgeRouterCmd
- type CreateEdgeTerminatorCmd
- func (self *CreateEdgeTerminatorCmd) Apply(ctx boltz.MutateContext) error
- func (self *CreateEdgeTerminatorCmd) Decode(env Env, msg *edge_cmd_pb.CreateEdgeTerminatorCommand) error
- func (self *CreateEdgeTerminatorCmd) Encode() ([]byte, error)
- func (self *CreateEdgeTerminatorCmd) GetChangeContext() *change.Context
- type CreateIdentityWithEnrollmentsCmd
- func (self *CreateIdentityWithEnrollmentsCmd) Apply(ctx boltz.MutateContext) error
- func (self *CreateIdentityWithEnrollmentsCmd) Decode(env Env, msg *edge_cmd_pb.CreateIdentityWithEnrollmentsCmd) error
- func (self *CreateIdentityWithEnrollmentsCmd) Encode() ([]byte, error)
- func (self *CreateIdentityWithEnrollmentsCmd) GetChangeContext() *change.Context
- type CreateTransitRouterCmd
- func (self *CreateTransitRouterCmd) Apply(ctx boltz.MutateContext) error
- func (self *CreateTransitRouterCmd) Decode(env Env, msg *edge_cmd_pb.CreateTransitRouterCmd) error
- func (self *CreateTransitRouterCmd) Encode() ([]byte, error)
- func (self *CreateTransitRouterCmd) GetChangeContext() *change.Context
- type EdgeRouter
- type EdgeRouterListResult
- type EdgeRouterManager
- func (self *EdgeRouterManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *EdgeRouterManager) ApplyCreate(cmd *CreateEdgeRouterCmd, ctx boltz.MutateContext) error
- func (self *EdgeRouterManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *EdgeRouterManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*EdgeRouter], ctx boltz.MutateContext) error
- func (self *EdgeRouterManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *EdgeRouterManager) BaseLoad(id string) (ME, error)
- func (self *EdgeRouterManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *EdgeRouterManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EdgeRouterManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EdgeRouterManager) CollectEnrollments(id string, collector func(entity *Enrollment) error) error
- func (self *EdgeRouterManager) Create(edgeRouter *EdgeRouter, ctx *change.Context) error
- func (self *EdgeRouterManager) Delete(id string, ctx *change.Context) error
- func (self *EdgeRouterManager) Dispatch(command command.Command) error
- func (self *EdgeRouterManager) EdgeRouterToProtobuf(entity *EdgeRouter) (*edge_cmd_pb.EdgeRouter, error)
- func (self *EdgeRouterManager) ExtendEnrollment(router *EdgeRouter, clientCsrPem []byte, serverCertCsrPem []byte, ...) (*ExtendedCerts, error)
- func (self *EdgeRouterManager) ExtendEnrollmentVerify(router *EdgeRouter, ctx *change.Context) error
- func (self *EdgeRouterManager) ExtendEnrollmentWithVerify(router *EdgeRouter, clientCsrPem []byte, serverCertCsrPem []byte, ...) (*ExtendedCerts, error)
- func (self *EdgeRouterManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *EdgeRouterManager) GetDb() boltz.Db
- func (self *EdgeRouterManager) GetEntityTypeId() string
- func (self *EdgeRouterManager) GetEnv() Env
- func (self *EdgeRouterManager) GetStore() boltz.EntityStore[PE]
- func (self *EdgeRouterManager) IsAccessToEdgeRouterAllowed(identityId, serviceId, edgeRouterId string) (bool, error)
- func (self *EdgeRouterManager) IsSharedEdgeRouterPresent(identityId, serviceId string) (bool, error)
- func (self *EdgeRouterManager) ListForIdentityAndService(identityId, serviceId string, limit *int) (*EdgeRouterListResult, error)
- func (self *EdgeRouterManager) ListForIdentityAndServiceWithTx(tx *bbolt.Tx, identityId, serviceId string, limit *int) (*EdgeRouterListResult, error)
- func (self *EdgeRouterManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *EdgeRouterManager) Marshall(entity *EdgeRouter) ([]byte, error)
- func (self *EdgeRouterManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *EdgeRouterManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *EdgeRouterManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *EdgeRouterManager) ProtobufToEdgeRouter(msg *edge_cmd_pb.EdgeRouter) (*EdgeRouter, error)
- func (self *EdgeRouterManager) Query(query string) (*EdgeRouterListResult, error)
- func (self *EdgeRouterManager) QueryRoleAttributes(queryString string) ([]string, *models.QueryMetaData, error)
- func (self *EdgeRouterManager) ReEnroll(router *EdgeRouter, ctx *change.Context) error
- func (self *EdgeRouterManager) Read(id string) (*EdgeRouter, error)
- func (self *EdgeRouterManager) ReadOneByFingerprint(fingerprint string) (*EdgeRouter, error)
- func (self *EdgeRouterManager) ReadOneByQuery(query string) (*EdgeRouter, error)
- func (self *EdgeRouterManager) ReadOneByUnverifiedFingerprint(fingerprint string) (*EdgeRouter, error)
- func (self *EdgeRouterManager) Unmarshall(bytes []byte) (*EdgeRouter, error)
- func (self *EdgeRouterManager) Update(entity *EdgeRouter, unrestricted bool, checker fields.UpdatedFields, ...) error
- type EdgeRouterPolicy
- type EdgeRouterPolicyManager
- func (self *EdgeRouterPolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *EdgeRouterPolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*EdgeRouterPolicy], ctx boltz.MutateContext) error
- func (self *EdgeRouterPolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *EdgeRouterPolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*EdgeRouterPolicy], ctx boltz.MutateContext) error
- func (self *EdgeRouterPolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *EdgeRouterPolicyManager) BaseLoad(id string) (ME, error)
- func (self *EdgeRouterPolicyManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *EdgeRouterPolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EdgeRouterPolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EdgeRouterPolicyManager) Create(entity *EdgeRouterPolicy, ctx *change.Context) error
- func (self *EdgeRouterPolicyManager) Delete(id string, ctx *change.Context) error
- func (self *EdgeRouterPolicyManager) Dispatch(command command.Command) error
- func (self *EdgeRouterPolicyManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *EdgeRouterPolicyManager) GetDb() boltz.Db
- func (self *EdgeRouterPolicyManager) GetEntityTypeId() string
- func (self *EdgeRouterPolicyManager) GetEnv() Env
- func (self *EdgeRouterPolicyManager) GetStore() boltz.EntityStore[PE]
- func (self *EdgeRouterPolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *EdgeRouterPolicyManager) Marshall(entity *EdgeRouterPolicy) ([]byte, error)
- func (self *EdgeRouterPolicyManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *EdgeRouterPolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *EdgeRouterPolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *EdgeRouterPolicyManager) Read(id string) (ME, error)
- func (self *EdgeRouterPolicyManager) Unmarshall(bytes []byte) (*EdgeRouterPolicy, error)
- func (self *EdgeRouterPolicyManager) Update(entity *EdgeRouterPolicy, checker fields.UpdatedFields, ctx *change.Context) error
- type EdgeServiceManager
- func (self *EdgeServiceManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *EdgeServiceManager) ApplyCreate(cmd *command.CreateEntityCommand[*Service], ctx boltz.MutateContext) error
- func (self *EdgeServiceManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *EdgeServiceManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Service], ctx boltz.MutateContext) error
- func (self *EdgeServiceManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *EdgeServiceManager) BaseLoad(id string) (ME, error)
- func (self *EdgeServiceManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *EdgeServiceManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EdgeServiceManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EdgeServiceManager) Create(entity *Service, ctx *change.Context) error
- func (self *EdgeServiceManager) Delete(id string, ctx *change.Context) error
- func (self *EdgeServiceManager) Dispatch(command command.Command) error
- func (self *EdgeServiceManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *EdgeServiceManager) GetDb() boltz.Db
- func (self *EdgeServiceManager) GetDetailLister() *ServiceDetailLister
- func (self *EdgeServiceManager) GetEntityTypeId() string
- func (self *EdgeServiceManager) GetEnv() Env
- func (self *EdgeServiceManager) GetPolicyPostureChecks(identityId, serviceId string) map[string]*PolicyPostureChecks
- func (self *EdgeServiceManager) GetStore() boltz.EntityStore[PE]
- func (self *EdgeServiceManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *EdgeServiceManager) Marshall(entity *Service) ([]byte, error)
- func (self *EdgeServiceManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *EdgeServiceManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *EdgeServiceManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *EdgeServiceManager) PublicQueryForIdentity(sessionIdentity *Identity, configTypes map[string]struct{}, query ast.Query) (*ServiceListResult, error)
- func (self *EdgeServiceManager) QueryForIdentity(identityId string, configTypes map[string]struct{}, query ast.Query) (*ServiceListResult, error)
- func (self *EdgeServiceManager) QueryRoleAttributes(queryString string) ([]string, *models.QueryMetaData, error)
- func (self *EdgeServiceManager) Read(id string) (ME, error)
- func (self *EdgeServiceManager) ReadByName(name string) (*Service, error)
- func (self *EdgeServiceManager) ReadForIdentity(id string, identityId string, configTypes map[string]struct{}) (*ServiceDetail, error)
- func (self *EdgeServiceManager) ReadForIdentityInTx(tx *bbolt.Tx, id string, identityId string, configTypes map[string]struct{}) (*ServiceDetail, error)
- func (self *EdgeServiceManager) ReadForNonAdminIdentityInTx(tx *bbolt.Tx, id string, identityId string) (*ServiceDetail, error)
- func (self *EdgeServiceManager) Unmarshall(bytes []byte) (*Service, error)
- func (self *EdgeServiceManager) Update(entity *Service, checker fields.UpdatedFields, ctx *change.Context) error
- type EnrollModuleCa
- type EnrollModuleEr
- func (module *EnrollModuleEr) CanHandle(method string) bool
- func (module *EnrollModuleEr) Process(context EnrollmentContext) (*EnrollmentResult, error)
- func (module *EnrollModuleEr) ProcessClientCsrPem(clientCertCsrPem []byte, edgeRouterId string) ([]byte, error)
- func (module *EnrollModuleEr) ProcessServerCsrPem(serverCertCsrPem []byte) ([]byte, error)
- type EnrollModuleOtt
- type EnrollModuleOttCa
- type EnrollModuleRouterOtt
- type EnrollModuleUpdb
- type Enrollment
- type EnrollmentContext
- type EnrollmentContextHttp
- func (context *EnrollmentContextHttp) FillFromHttpRequest(request *http.Request, changeCtx *change.Context) error
- func (context *EnrollmentContextHttp) GetCerts() []*x509.Certificate
- func (context *EnrollmentContextHttp) GetChangeContext() *change.Context
- func (context *EnrollmentContextHttp) GetData() interface{}
- func (context *EnrollmentContextHttp) GetDataAsByteArray() []byte
- func (context *EnrollmentContextHttp) GetDataAsMap() map[string]interface{}
- func (context *EnrollmentContextHttp) GetHeaders() map[string]interface{}
- func (context *EnrollmentContextHttp) GetMethod() string
- func (context *EnrollmentContextHttp) GetParameters() map[string]interface{}
- func (context *EnrollmentContextHttp) GetToken() string
- type EnrollmentManager
- func (self *EnrollmentManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *EnrollmentManager) ApplyCreate(cmd *command.CreateEntityCommand[*Enrollment], ctx boltz.MutateContext) error
- func (self *EnrollmentManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *EnrollmentManager) ApplyReEnrollEdgeRouter(cmd *ReEnrollEdgeRouterCmd, ctx boltz.MutateContext) error
- func (self *EnrollmentManager) ApplyReplaceEncoderWithAuthenticatorCommand(cmd *ReplaceEnrollmentWithAuthenticatorCmd, ctx boltz.MutateContext) error
- func (self *EnrollmentManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Enrollment], ctx boltz.MutateContext) error
- func (self *EnrollmentManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *EnrollmentManager) BaseLoad(id string) (ME, error)
- func (self *EnrollmentManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *EnrollmentManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EnrollmentManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *EnrollmentManager) Create(entity *Enrollment, ctx *change.Context) error
- func (self *EnrollmentManager) Delete(id string, ctx *change.Context) error
- func (self *EnrollmentManager) Dispatch(command command.Command) error
- func (self *EnrollmentManager) Enroll(ctx EnrollmentContext) (*EnrollmentResult, error)
- func (self *EnrollmentManager) EnrollmentToProtobuf(entity *Enrollment) (*edge_cmd_pb.Enrollment, error)
- func (self *EnrollmentManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *EnrollmentManager) GetClientCertChain(certRaw []byte) (string, error)
- func (self *EnrollmentManager) GetDb() boltz.Db
- func (self *EnrollmentManager) GetEntityTypeId() string
- func (self *EnrollmentManager) GetEnv() Env
- func (self *EnrollmentManager) GetStore() boltz.EntityStore[PE]
- func (self *EnrollmentManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *EnrollmentManager) Marshall(entity *Enrollment) ([]byte, error)
- func (self *EnrollmentManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *EnrollmentManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *EnrollmentManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *EnrollmentManager) ProtobufToEnrollment(msg *edge_cmd_pb.Enrollment) (*Enrollment, error)
- func (self *EnrollmentManager) Query(query string) ([]*Enrollment, error)
- func (self *EnrollmentManager) Read(id string) (*Enrollment, error)
- func (self *EnrollmentManager) ReadByToken(token string) (*Enrollment, error)
- func (self *EnrollmentManager) RefreshJwt(id string, expiresAt time.Time, ctx *change.Context) error
- func (self *EnrollmentManager) ReplaceWithAuthenticator(enrollmentId string, authenticator *Authenticator, ctx *change.Context) error
- func (self *EnrollmentManager) Unmarshall(bytes []byte) (*Enrollment, error)
- func (self *EnrollmentManager) Update(entity *Enrollment, checker fields.UpdatedFields, ctx *change.Context) error
- type EnrollmentProcessor
- type EnrollmentRegistry
- type EnrollmentRegistryImpl
- type EnrollmentResult
- type EntityManager
- type Env
- type EnvInfo
- type ExtendedCerts
- type ExternalIdClaim
- type ExternalIdFieldType
- type ExternalJwtSigner
- type ExternalJwtSignerManager
- func (self *ExternalJwtSignerManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *ExternalJwtSignerManager) ApplyCreate(cmd *command.CreateEntityCommand[*ExternalJwtSigner], ctx boltz.MutateContext) error
- func (self *ExternalJwtSignerManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *ExternalJwtSignerManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ExternalJwtSigner], ctx boltz.MutateContext) error
- func (self *ExternalJwtSignerManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *ExternalJwtSignerManager) BaseLoad(id string) (ME, error)
- func (self *ExternalJwtSignerManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *ExternalJwtSignerManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ExternalJwtSignerManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ExternalJwtSignerManager) Create(entity *ExternalJwtSigner, ctx *change.Context) error
- func (self *ExternalJwtSignerManager) Delete(id string, ctx *change.Context) error
- func (self *ExternalJwtSignerManager) Dispatch(command command.Command) error
- func (self *ExternalJwtSignerManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *ExternalJwtSignerManager) GetDb() boltz.Db
- func (self *ExternalJwtSignerManager) GetEntityTypeId() string
- func (self *ExternalJwtSignerManager) GetEnv() Env
- func (self *ExternalJwtSignerManager) GetStore() boltz.EntityStore[PE]
- func (self *ExternalJwtSignerManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *ExternalJwtSignerManager) Marshall(entity *ExternalJwtSigner) ([]byte, error)
- func (self *ExternalJwtSignerManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *ExternalJwtSignerManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *ExternalJwtSignerManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *ExternalJwtSignerManager) PublicQuery(query ast.Query) (*ListExtJwtSignerResult, error)
- func (self *ExternalJwtSignerManager) Read(id string) (ME, error)
- func (self *ExternalJwtSignerManager) Unmarshall(bytes []byte) (*ExternalJwtSigner, error)
- func (self *ExternalJwtSignerManager) Update(entity *ExternalJwtSigner, checker fields.UpdatedFields, ctx *change.Context) error
- type Formatter
- type HashResult
- type HashedPassword
- type Heartbeat
- type HeartbeatCollector
- type HeartbeatStatus
- type HostController
- type Identity
- type IdentityManager
- func (self *IdentityManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *IdentityManager) ApplyCreate(cmd *command.CreateEntityCommand[*Identity], ctx boltz.MutateContext) error
- func (self *IdentityManager) ApplyCreateWithEnrollments(cmd *CreateIdentityWithEnrollmentsCmd, ctx boltz.MutateContext) error
- func (self *IdentityManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *IdentityManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Identity], ctx boltz.MutateContext) error
- func (self *IdentityManager) ApplyUpdateServiceConfigs(cmd *UpdateServiceConfigsCmd, ctx boltz.MutateContext) error
- func (self *IdentityManager) AssignServiceConfigs(id string, serviceConfigs []ServiceConfig, ctx *change.Context) error
- func (self *IdentityManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *IdentityManager) BaseLoad(id string) (ME, error)
- func (self *IdentityManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *IdentityManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *IdentityManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *IdentityManager) CollectAuthenticators(id string, collector func(entity *Authenticator) error) error
- func (self *IdentityManager) CollectEnrollments(id string, collector func(entity *Enrollment) error) error
- func (self *IdentityManager) Create(entity *Identity, ctx *change.Context) error
- func (self *IdentityManager) CreateWithAuthenticator(identity *Identity, authenticator *Authenticator, ctx *change.Context) (string, string, error)
- func (self *IdentityManager) CreateWithEnrollments(identityModel *Identity, enrollmentsModels []*Enrollment, ctx *change.Context) error
- func (self *IdentityManager) Delete(id string, ctx *change.Context) error
- func (self *IdentityManager) Disable(identityId string, duration time.Duration, ctx *change.Context) error
- func (self *IdentityManager) Dispatch(command command.Command) error
- func (self *IdentityManager) Enable(identityId string, ctx *change.Context) error
- func (self *IdentityManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *IdentityManager) GetDb() boltz.Db
- func (self *IdentityManager) GetEntityTypeId() string
- func (self *IdentityManager) GetEnv() Env
- func (self *IdentityManager) GetServiceConfigs(id string) ([]ServiceConfig, error)
- func (self *IdentityManager) GetStore() boltz.EntityStore[PE]
- func (self *IdentityManager) HasErConnection(id string) bool
- func (self *IdentityManager) IdentityToProtobuf(entity *Identity) (*edge_cmd_pb.Identity, error)
- func (self *IdentityManager) InitializeDefaultAdmin(username, password, name string) error
- func (self *IdentityManager) IsUpdated(field string) bool
- func (self *IdentityManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *IdentityManager) Marshall(entity *Identity) ([]byte, error)
- func (self *IdentityManager) PatchInfo(identity *Identity, changeCtx *change.Context) error
- func (self *IdentityManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *IdentityManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *IdentityManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *IdentityManager) ProtobufToIdentity(msg *edge_cmd_pb.Identity) (*Identity, error)
- func (self *IdentityManager) QueryRoleAttributes(queryString string) ([]string, *models.QueryMetaData, error)
- func (self *IdentityManager) Read(id string) (ME, error)
- func (self *IdentityManager) ReadByExternalId(externalId string) (*Identity, error)
- func (self *IdentityManager) ReadByName(name string) (*Identity, error)
- func (self *IdentityManager) ReadDefaultAdmin() (*Identity, error)
- func (self *IdentityManager) ReadOneByQuery(query string) (*Identity, error)
- func (self *IdentityManager) RemoveServiceConfigs(id string, serviceConfigs []ServiceConfig, ctx *change.Context) error
- func (self *IdentityManager) SetHasErConnection(identityId string)
- func (self *IdentityManager) Unmarshall(bytes []byte) (*Identity, error)
- func (self *IdentityManager) Update(entity *Identity, checker fields.UpdatedFields, ctx *change.Context) error
- func (self *IdentityManager) VisitIdentityAuthenticatorFingerprints(tx *bbolt.Tx, identityId string, visitor func(string) bool) (bool, error)
- type IdentityType
- type IdentityTypeManager
- func (self *IdentityTypeManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *IdentityTypeManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *IdentityTypeManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *IdentityTypeManager) BaseLoad(id string) (ME, error)
- func (self *IdentityTypeManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *IdentityTypeManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *IdentityTypeManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *IdentityTypeManager) Delete(id string, ctx *change.Context) error
- func (self *IdentityTypeManager) Dispatch(command command.Command) error
- func (self *IdentityTypeManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *IdentityTypeManager) GetDb() boltz.Db
- func (self *IdentityTypeManager) GetEntityTypeId() string
- func (self *IdentityTypeManager) GetEnv() Env
- func (self *IdentityTypeManager) GetStore() boltz.EntityStore[PE]
- func (self *IdentityTypeManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *IdentityTypeManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *IdentityTypeManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *IdentityTypeManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *IdentityTypeManager) Read(id string) (ME, error)
- func (self *IdentityTypeManager) ReadByIdOrName(idOrName string) (*IdentityType, error)
- func (self *IdentityTypeManager) ReadByName(name string) (*IdentityType, error)
- type ListExtJwtSignerResult
- type Managers
- type Mfa
- type MfaListResult
- type MfaManager
- func (self *MfaManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *MfaManager) ApplyCreate(cmd *command.CreateEntityCommand[*Mfa], ctx boltz.MutateContext) error
- func (self *MfaManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *MfaManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Mfa], ctx boltz.MutateContext) error
- func (self *MfaManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *MfaManager) BaseLoad(id string) (ME, error)
- func (self *MfaManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *MfaManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *MfaManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *MfaManager) Create(entity *Mfa, ctx *change.Context) error
- func (self *MfaManager) CreateForIdentity(identity *Identity, ctx *change.Context) (string, error)
- func (self *MfaManager) Delete(id string, ctx *change.Context) error
- func (self *MfaManager) DeleteAllForIdentity(id string, ctx *change.Context) error
- func (self *MfaManager) DeleteForIdentity(identity *Identity, code string, ctx *change.Context) error
- func (self *MfaManager) Dispatch(command command.Command) error
- func (self *MfaManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *MfaManager) GetDb() boltz.Db
- func (self *MfaManager) GetEntityTypeId() string
- func (self *MfaManager) GetEnv() Env
- func (self *MfaManager) GetProvisioningUrl(mfa *Mfa) string
- func (self *MfaManager) GetStore() boltz.EntityStore[PE]
- func (self *MfaManager) IsUpdated(field string) bool
- func (self *MfaManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *MfaManager) Marshall(entity *Mfa) ([]byte, error)
- func (self *MfaManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *MfaManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *MfaManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *MfaManager) QrCodePng(mfa *Mfa) ([]byte, error)
- func (self *MfaManager) Query(query string) (*MfaListResult, error)
- func (self *MfaManager) Read(id string) (ME, error)
- func (self *MfaManager) ReadOneByIdentityId(identityId string) (*Mfa, error)
- func (self *MfaManager) RecreateRecoveryCodes(mfa *Mfa, ctx *change.Context) error
- func (self *MfaManager) Unmarshall(bytes []byte) (*Mfa, error)
- func (self *MfaManager) Update(entity *Mfa, checker fields.UpdatedFields, ctx *change.Context) error
- func (self *MfaManager) Verify(mfa *Mfa, code string, ctx *change.Context) (bool, error)
- func (self *MfaManager) VerifyTOTP(mfa *Mfa, code string) (bool, error)
- type OperatingSystem
- type OrFieldChecker
- type PolicyAdvisor
- func (advisor *PolicyAdvisor) AnalyzeServiceReachability(identityId, serviceId string) (*AdvisorServiceReachability, error)
- func (advisor *PolicyAdvisor) InspectIdentityEdgeRouterLinks(identityId, edgeRouterId string) (*AdvisorIdentityEdgeRouterLinks, error)
- func (advisor *PolicyAdvisor) InspectIdentityServiceLinks(identityId, serviceId string) (*AdvisorIdentityServiceLinks, error)
- func (advisor *PolicyAdvisor) InspectServiceEdgeRouterLinks(serviceId, edgeRouterId string) (*AdvisorServiceEdgeRouterLinks, error)
- type PolicyPostureChecks
- type PostureCache
- func (pc *PostureCache) Add(identityId string, postureResponses []*PostureResponse)
- func (pc *PostureCache) AddSessionRequestFailure(identityId string, failure *PostureSessionRequestFailure)
- func (pc *PostureCache) ApiSessionCreated(apiSession *db.ApiSession)
- func (pc *PostureCache) ApiSessionDeleted(apiSession *db.ApiSession)
- func (pc *PostureCache) Evaluate(identityId, apiSessionId string, postureChecks []*PostureCheck) (bool, []*PostureCheckFailure)
- func (pc *PostureCache) IdentityDeleted(identity *db.Identity)
- func (pc *PostureCache) PostureCheckChanged(entity boltz.Entity)
- func (pc *PostureCache) PostureData(identityId string) *PostureData
- func (pc *PostureCache) Upsert(identityId string, emitDataAltered bool, ...)
- func (pc *PostureCache) WithPostureData(identityId string, f func(data *PostureData))
- type PostureCheck
- func (entity *PostureCheck) Evaluate(apiSessionId string, pd *PostureData) (bool, *PostureCheckFailure)
- func (entity *PostureCheck) LastUpdatedAt(apiSessionId string, pd *PostureData) *time.Time
- func (entity *PostureCheck) TimeoutRemainingSeconds(apiSessionId string, pd *PostureData) int64
- func (entity *PostureCheck) TimeoutSeconds() int64
- type PostureCheckDomains
- func (p *PostureCheckDomains) ActualValue(_ string, pd *PostureData) interface{}
- func (p *PostureCheckDomains) Evaluate(_ string, pd *PostureData) bool
- func (p *PostureCheckDomains) ExpectedValue() interface{}
- func (p *PostureCheckDomains) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
- func (p *PostureCheckDomains) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
- func (p *PostureCheckDomains) GetTimeoutSeconds() int64
- func (p *PostureCheckDomains) LastUpdatedAt(string, *PostureData) *time.Time
- func (p *PostureCheckDomains) TypeId() string
- type PostureCheckFailure
- type PostureCheckFailureSubType
- type PostureCheckFailureValues
- type PostureCheckFailureValuesDomain
- type PostureCheckFailureValuesMac
- type PostureCheckFailureValuesMfa
- type PostureCheckFailureValuesOperatingSystem
- type PostureCheckFailureValuesProcess
- type PostureCheckFailureValuesProcessMulti
- type PostureCheckListResult
- type PostureCheckMacAddresses
- func (p *PostureCheckMacAddresses) Evaluate(_ string, pd *PostureData) bool
- func (p *PostureCheckMacAddresses) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
- func (p *PostureCheckMacAddresses) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
- func (p *PostureCheckMacAddresses) GetTimeoutSeconds() int64
- func (p *PostureCheckMacAddresses) LastUpdatedAt(apiSessionId string, pd *PostureData) *time.Time
- func (p *PostureCheckMacAddresses) TypeId() string
- type PostureCheckManager
- func (self *PostureCheckManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *PostureCheckManager) ApplyCreate(cmd *command.CreateEntityCommand[*PostureCheck], ctx boltz.MutateContext) error
- func (self *PostureCheckManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *PostureCheckManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*PostureCheck], ctx boltz.MutateContext) error
- func (self *PostureCheckManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *PostureCheckManager) BaseLoad(id string) (ME, error)
- func (self *PostureCheckManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *PostureCheckManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *PostureCheckManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *PostureCheckManager) Create(entity *PostureCheck, ctx *change.Context) error
- func (self *PostureCheckManager) Delete(id string, ctx *change.Context) error
- func (self *PostureCheckManager) Dispatch(command command.Command) error
- func (self *PostureCheckManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *PostureCheckManager) GetDb() boltz.Db
- func (self *PostureCheckManager) GetEntityTypeId() string
- func (self *PostureCheckManager) GetEnv() Env
- func (self *PostureCheckManager) GetStore() boltz.EntityStore[PE]
- func (self *PostureCheckManager) IsUpdated(field string) bool
- func (self *PostureCheckManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *PostureCheckManager) Marshall(entity *PostureCheck) ([]byte, error)
- func (self *PostureCheckManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *PostureCheckManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *PostureCheckManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *PostureCheckManager) Query(query string) (*PostureCheckListResult, error)
- func (self *PostureCheckManager) QueryPostureChecks(query ast.Query) (*PostureCheckListResult, error)
- func (self *PostureCheckManager) Read(id string) (*PostureCheck, error)
- func (self *PostureCheckManager) Unmarshall(bytes []byte) (*PostureCheck, error)
- func (self *PostureCheckManager) Update(entity *PostureCheck, checker fields.UpdatedFields, ctx *change.Context) error
- type PostureCheckMfa
- func (p *PostureCheckMfa) Evaluate(apiSessionId string, pd *PostureData) bool
- func (p *PostureCheckMfa) FailureValues(apiSessionId string, pd *PostureData) PostureCheckFailureValues
- func (p *PostureCheckMfa) GetTimeoutRemainingSeconds(apiSessionId string, pd *PostureData) int64
- func (p *PostureCheckMfa) GetTimeoutSeconds() int64
- func (p *PostureCheckMfa) IsLegacyClient(apiSessionData *ApiSessionPostureData) bool
- func (p *PostureCheckMfa) LastUpdatedAt(apiSessionId string, pd *PostureData) *time.Time
- func (p *PostureCheckMfa) PassedOnUnlock(apiSessionData *ApiSessionPostureData, now time.Time) bool
- func (p *PostureCheckMfa) PassedOnWake(apiSessionData *ApiSessionPostureData, now time.Time) bool
- func (p *PostureCheckMfa) TypeId() string
- type PostureCheckMfaCriteria
- type PostureCheckMfaValues
- type PostureCheckOperatingSystem
- func (p *PostureCheckOperatingSystem) Evaluate(_ string, pd *PostureData) bool
- func (p *PostureCheckOperatingSystem) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
- func (p *PostureCheckOperatingSystem) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
- func (p *PostureCheckOperatingSystem) GetTimeoutSeconds() int64
- func (p *PostureCheckOperatingSystem) LastUpdatedAt(id string, pd *PostureData) *time.Time
- func (p *PostureCheckOperatingSystem) TypeId() string
- type PostureCheckProcess
- func (p *PostureCheckProcess) Evaluate(_ string, pd *PostureData) bool
- func (p *PostureCheckProcess) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
- func (p *PostureCheckProcess) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
- func (p *PostureCheckProcess) GetTimeoutSeconds() int64
- func (p *PostureCheckProcess) LastUpdatedAt(id string, pd *PostureData) *time.Time
- func (p *PostureCheckProcess) TypeId() string
- type PostureCheckProcessMulti
- func (p *PostureCheckProcessMulti) Evaluate(_ string, pd *PostureData) bool
- func (p *PostureCheckProcessMulti) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
- func (p *PostureCheckProcessMulti) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
- func (p *PostureCheckProcessMulti) GetTimeoutSeconds() int64
- func (p *PostureCheckProcessMulti) LastUpdatedAt(string, *PostureData) *time.Time
- func (p *PostureCheckProcessMulti) TypeId() string
- type PostureCheckSubType
- type PostureCheckType
- type PostureCheckTypeManager
- func (self *PostureCheckTypeManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *PostureCheckTypeManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *PostureCheckTypeManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *PostureCheckTypeManager) BaseLoad(id string) (ME, error)
- func (self *PostureCheckTypeManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *PostureCheckTypeManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *PostureCheckTypeManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *PostureCheckTypeManager) Delete(id string, ctx *change.Context) error
- func (self *PostureCheckTypeManager) Dispatch(command command.Command) error
- func (self *PostureCheckTypeManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *PostureCheckTypeManager) GetDb() boltz.Db
- func (self *PostureCheckTypeManager) GetEntityTypeId() string
- func (self *PostureCheckTypeManager) GetEnv() Env
- func (self *PostureCheckTypeManager) GetStore() boltz.EntityStore[PE]
- func (self *PostureCheckTypeManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *PostureCheckTypeManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *PostureCheckTypeManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *PostureCheckTypeManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *PostureCheckTypeManager) Read(id string) (ME, error)
- type PostureData
- type PosturePolicyFailure
- type PostureResponse
- type PostureResponseDomain
- type PostureResponseEndpointState
- type PostureResponseMac
- type PostureResponseManager
- func (self *PostureResponseManager) AddPostureDataListener(cb func(env Env, identityId string))
- func (self *PostureResponseManager) Create(identityId string, postureResponses []*PostureResponse)
- func (self *PostureResponseManager) Evaluate(identityId, apiSessionId string, check *PostureCheck) (bool, *PostureCheckFailure)
- func (self *PostureResponseManager) GetEndpointStateChangeAffectedServices(timeSinceLastMfa, gracePeriod time.Duration, onWake bool, onUnlock bool) []*ServiceWithTimeout
- func (self *PostureResponseManager) PostureData(id string) *PostureData
- func (self *PostureResponseManager) SetMfaPosture(identityId string, apiSessionId string, isPassed bool)
- func (self *PostureResponseManager) SetMfaPostureForIdentity(identityId string, isPassed bool)
- func (self *PostureResponseManager) SetSdkInfo(identityId, apiSessionId string, sdkInfo *SdkInfo)
- func (self *PostureResponseManager) WithPostureData(id string, f func(data *PostureData))
- type PostureResponseMfa
- type PostureResponseOs
- type PostureResponseProcess
- type PostureResponseSubType
- type PostureSessionData
- type PostureSessionRequestFailure
- type ProcessMulti
- type ReEnrollEdgeRouterCmd
- type ReplaceEnrollmentWithAuthenticatorCmd
- func (self *ReplaceEnrollmentWithAuthenticatorCmd) Apply(ctx boltz.MutateContext) error
- func (self *ReplaceEnrollmentWithAuthenticatorCmd) Decode(env Env, msg *edge_cmd_pb.ReplaceEnrollmentWithAuthenticatorCmd) error
- func (self *ReplaceEnrollmentWithAuthenticatorCmd) Encode() ([]byte, error)
- func (self *ReplaceEnrollmentWithAuthenticatorCmd) GetChangeContext() *change.Context
- type Revocation
- type RevocationManager
- func (self *RevocationManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *RevocationManager) ApplyCreate(cmd *command.CreateEntityCommand[*Revocation], ctx boltz.MutateContext) error
- func (self *RevocationManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *RevocationManager) ApplyUpdate(_ *command.UpdateEntityCommand[*Revocation], ctx boltz.MutateContext) error
- func (self *RevocationManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *RevocationManager) BaseLoad(id string) (ME, error)
- func (self *RevocationManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *RevocationManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *RevocationManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *RevocationManager) Create(entity *Revocation, ctx *change.Context) error
- func (self *RevocationManager) Delete(id string, ctx *change.Context) error
- func (self *RevocationManager) Dispatch(command command.Command) error
- func (self *RevocationManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *RevocationManager) GetDb() boltz.Db
- func (self *RevocationManager) GetEntityTypeId() string
- func (self *RevocationManager) GetEnv() Env
- func (self *RevocationManager) GetStore() boltz.EntityStore[PE]
- func (self *RevocationManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *RevocationManager) Marshall(entity *Revocation) ([]byte, error)
- func (self *RevocationManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *RevocationManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *RevocationManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *RevocationManager) Read(id string) (*Revocation, error)
- func (self *RevocationManager) Unmarshall(bytes []byte) (*Revocation, error)
- type Schemas
- type SdkInfo
- type Service
- type ServiceConfig
- type ServiceDetail
- type ServiceDetailLister
- func (self *ServiceDetailLister) BaseLoadInTx(tx *bbolt.Tx, id string) (*ServiceDetail, error)
- func (self *ServiceDetailLister) BasePreparedList(query ast.Query) (*models.EntityListResult[*ServiceDetail], error)
- func (self *ServiceDetailLister) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[*ServiceDetail], error)
- func (self *ServiceDetailLister) GetListStore() boltz.Store
- type ServiceEdgeRouterPolicy
- type ServiceEdgeRouterPolicyManager
- func (self *ServiceEdgeRouterPolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *ServiceEdgeRouterPolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*ServiceEdgeRouterPolicy], ...) error
- func (self *ServiceEdgeRouterPolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *ServiceEdgeRouterPolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ServiceEdgeRouterPolicy], ...) error
- func (self *ServiceEdgeRouterPolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *ServiceEdgeRouterPolicyManager) BaseLoad(id string) (ME, error)
- func (self *ServiceEdgeRouterPolicyManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *ServiceEdgeRouterPolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ServiceEdgeRouterPolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ServiceEdgeRouterPolicyManager) Create(entity *ServiceEdgeRouterPolicy, ctx *change.Context) error
- func (self *ServiceEdgeRouterPolicyManager) Delete(id string, ctx *change.Context) error
- func (self *ServiceEdgeRouterPolicyManager) Dispatch(command command.Command) error
- func (self *ServiceEdgeRouterPolicyManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *ServiceEdgeRouterPolicyManager) GetDb() boltz.Db
- func (self *ServiceEdgeRouterPolicyManager) GetEntityTypeId() string
- func (self *ServiceEdgeRouterPolicyManager) GetEnv() Env
- func (self *ServiceEdgeRouterPolicyManager) GetStore() boltz.EntityStore[PE]
- func (self *ServiceEdgeRouterPolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *ServiceEdgeRouterPolicyManager) Marshall(entity *ServiceEdgeRouterPolicy) ([]byte, error)
- func (self *ServiceEdgeRouterPolicyManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *ServiceEdgeRouterPolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *ServiceEdgeRouterPolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *ServiceEdgeRouterPolicyManager) Read(id string) (ME, error)
- func (self *ServiceEdgeRouterPolicyManager) Unmarshall(bytes []byte) (*ServiceEdgeRouterPolicy, error)
- func (self *ServiceEdgeRouterPolicyManager) Update(entity *ServiceEdgeRouterPolicy, checker fields.UpdatedFields, ...) error
- type ServiceListResult
- type ServicePolicy
- type ServicePolicyManager
- func (self *ServicePolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *ServicePolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*ServicePolicy], ctx boltz.MutateContext) error
- func (self *ServicePolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *ServicePolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ServicePolicy], ctx boltz.MutateContext) error
- func (self *ServicePolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *ServicePolicyManager) BaseLoad(id string) (ME, error)
- func (self *ServicePolicyManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *ServicePolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ServicePolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *ServicePolicyManager) Create(entity *ServicePolicy, ctx *change.Context) error
- func (self *ServicePolicyManager) Delete(id string, ctx *change.Context) error
- func (self *ServicePolicyManager) Dispatch(command command.Command) error
- func (self *ServicePolicyManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *ServicePolicyManager) GetDb() boltz.Db
- func (self *ServicePolicyManager) GetEntityTypeId() string
- func (self *ServicePolicyManager) GetEnv() Env
- func (self *ServicePolicyManager) GetStore() boltz.EntityStore[PE]
- func (self *ServicePolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *ServicePolicyManager) Marshall(entity *ServicePolicy) ([]byte, error)
- func (self *ServicePolicyManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *ServicePolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *ServicePolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *ServicePolicyManager) Read(id string) (ME, error)
- func (self *ServicePolicyManager) Unmarshall(bytes []byte) (*ServicePolicy, error)
- func (self *ServicePolicyManager) Update(entity *ServicePolicy, checker fields.UpdatedFields, ctx *change.Context) error
- type ServiceWithTimeout
- type Session
- type SessionListResult
- type SessionManager
- func (self *SessionManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *SessionManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *SessionManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *SessionManager) BaseLoad(id string) (ME, error)
- func (self *SessionManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *SessionManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *SessionManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *SessionManager) Create(entity *Session, ctx *change.Context) (string, error)
- func (self *SessionManager) Delete(id string, ctx *change.Context) error
- func (self *SessionManager) DeleteForIdentity(id, identityId string, ctx *change.Context) error
- func (self *SessionManager) Dispatch(command command.Command) error
- func (self *SessionManager) EvaluatePostureForService(identityId, apiSessionId, sessionType, serviceId, serviceName string) *SessionPostureResult
- func (self *SessionManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *SessionManager) GetDb() boltz.Db
- func (self *SessionManager) GetEntityTypeId() string
- func (self *SessionManager) GetEnv() Env
- func (self *SessionManager) GetStore() boltz.EntityStore[PE]
- func (self *SessionManager) ListSessionsForEdgeRouter(edgeRouterId string) (*SessionListResult, error)
- func (self *SessionManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *SessionManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *SessionManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *SessionManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *SessionManager) PublicQueryForIdentity(sessionIdentity *Identity, query ast.Query) (*SessionListResult, error)
- func (self *SessionManager) Query(query string) (*SessionListResult, error)
- func (self *SessionManager) Read(id string) (*Session, error)
- func (self *SessionManager) ReadByToken(token string) (*Session, error)
- func (self *SessionManager) ReadForIdentity(id string, identityId string) (*Session, error)
- type SessionPostureResult
- type TestContext
- func (ctx *TestContext) Cleanup()
- func (ctx *TestContext) Generate(string, string, jwt.Claims) (string, error)
- func (ctx *TestContext) GetApiClientCsrSigner() cert.Signer
- func (ctx *TestContext) GetApiServerCsrSigner() cert.Signer
- func (ctx *TestContext) GetAuthRegistry() AuthRegistry
- func (ctx *TestContext) GetConfig() *config.Config
- func (ctx *TestContext) GetControlClientCsrSigner() cert.Signer
- func (ctx *TestContext) GetDbProvider() network.DbProvider
- func (ctx *TestContext) GetEnrollRegistry() EnrollmentRegistry
- func (ctx *TestContext) GetFingerprintGenerator() cert.FingerprintGenerator
- func (ctx *TestContext) GetHostController() HostController
- func (ctx *TestContext) GetJwtSigner() jwtsigner.Signer
- func (ctx *TestContext) GetManagers() *Managers
- func (ctx *TestContext) GetMetricsRegistry() metrics.Registry
- func (ctx *TestContext) GetSchemas() Schemas
- func (ctx *TestContext) GetServerCert() (*tls.Certificate, string, jwt.SigningMethod)
- func (ctx *TestContext) HandleServiceUpdatedEventForIdentityId(string)
- func (ctx *TestContext) Init()
- func (ctx *TestContext) IsEdgeRouterOnline(string) bool
- func (ctx *TestContext) JwtSignerKeyFunc(*jwt.Token) (interface{}, error)
- type TransitRouter
- type TransitRouterManager
- func (self *TransitRouterManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
- func (self *TransitRouterManager) ApplyCreate(cmd *CreateTransitRouterCmd, ctx boltz.MutateContext) error
- func (self *TransitRouterManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
- func (self *TransitRouterManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*TransitRouter], ctx boltz.MutateContext) error
- func (self *TransitRouterManager) BaseList(query string) (*models.EntityListResult[ME], error)
- func (self *TransitRouterManager) BaseLoad(id string) (ME, error)
- func (self *TransitRouterManager) BaseLoadInTx(tx *bbolt.Tx, id string) (ME, error)
- func (self *TransitRouterManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
- func (self *TransitRouterManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
- func (self *TransitRouterManager) CollectEnrollments(id string, collector func(entity *Enrollment) error) error
- func (self *TransitRouterManager) Create(txRouter *TransitRouter, ctx *change.Context) error
- func (self *TransitRouterManager) Delete(id string, ctx *change.Context) error
- func (self *TransitRouterManager) Dispatch(command command.Command) error
- func (self *TransitRouterManager) ExtendEnrollment(router *TransitRouter, clientCsrPem []byte, serverCertCsrPem []byte, ...) (*ExtendedCerts, error)
- func (self *TransitRouterManager) ExtendEnrollmentVerify(router *TransitRouter, ctx *change.Context) error
- func (self *TransitRouterManager) ExtendEnrollmentWithVerify(router *TransitRouter, clientCsrPem []byte, serverCertCsrPem []byte, ...) (*ExtendedCerts, error)
- func (self *TransitRouterManager) GetAnnotation(entityId string, key string) (*string, error)
- func (self *TransitRouterManager) GetDb() boltz.Db
- func (self *TransitRouterManager) GetEntityTypeId() string
- func (self *TransitRouterManager) GetEnv() Env
- func (self *TransitRouterManager) GetStore() boltz.EntityStore[PE]
- func (self *TransitRouterManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
- func (self *TransitRouterManager) Marshall(entity *TransitRouter) ([]byte, error)
- func (self *TransitRouterManager) PreparedListAssociatedWithHandler(id string, association string, query ast.Query, ...) error
- func (self *TransitRouterManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, ...) error
- func (self *TransitRouterManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
- func (self *TransitRouterManager) ProtobufToTransitRouter(msg *edge_cmd_pb.TransitRouter) (*TransitRouter, error)
- func (self *TransitRouterManager) Read(id string) (ME, error)
- func (self *TransitRouterManager) ReadOneByFingerprint(fingerprint string) (*TransitRouter, error)
- func (self *TransitRouterManager) ReadOneByQuery(query string) (*TransitRouter, error)
- func (self *TransitRouterManager) ReadOneByUnverifiedFingerprint(fingerprint string) (*TransitRouter, error)
- func (self *TransitRouterManager) TransitRouterToProtobuf(entity *TransitRouter) (*edge_cmd_pb.TransitRouter, error)
- func (self *TransitRouterManager) Unmarshall(bytes []byte) (*TransitRouter, error)
- func (self *TransitRouterManager) Update(entity *TransitRouter, unrestricted bool, checker fields.UpdatedFields, ...) error
- type UpdateServiceConfigsCmd
- func (self *UpdateServiceConfigsCmd) Apply(ctx boltz.MutateContext) error
- func (self *UpdateServiceConfigsCmd) Decode(env Env, msg *edge_cmd_pb.UpdateServiceConfigsCmd) error
- func (self *UpdateServiceConfigsCmd) Encode() ([]byte, error)
- func (self *UpdateServiceConfigsCmd) GetChangeContext() *change.Context
Constants ¶
const ( ClientCertHeader = "X-Client-CertPem" EdgeRouterProxyRequest = "X-Edge-Router-Proxy-Request" )
const ( AuthMethodExtJwt = "ext-jwt" ExtJwtInternalClaim = "-internal-ext-jwt" )
const ( FormatSentinelStart = "[" FormatSentinelEnd = "]" FormatSymbolCaName = "caName" FormatSymbolCaId = "caId" FormatSymbolCommonName = "commonName" FormatSymbolRequestedName = "requestedName" FormatSymbolIdentityId = "identityId" // DefaultCaIdentityNameFormat = "[caName] - [commonName]" DefaultCaIdentityNameFormat = FormatSentinelStart + FormatSymbolCaName + FormatSentinelEnd + "-" + FormatSentinelStart + FormatSymbolCommonName + FormatSentinelEnd )
const ( EdgeRouterEnrollmentCommonNameInvalidCode = "EDGE_ROUTER_ENROLL_COMMON_NAME_INVALID" EdgeRouterEnrollmentCommonNameInvalidMessage = "The edge router CSR enrollment must have a common name that matches the edge router's id" MethodEnrollEdgeRouterOtt = "erott" )
const ( TotpMinLength = 4 TotpMaxLength = 6 )
const ( PostureCheckTypeOs = "OS" PostureCheckTypeDomain = "DOMAIN" PostureCheckTypeProcess = "PROCESS" PostureCheckTypeProcessMulti = "PROCESS_MULTI" PostureCheckTypeMAC = "MAC" PostureCheckTypeMFA = "MFA" )
const AuthMethodPassword = "password"
const (
ConfigTypeAll = "all"
)
const (
EventIdentityPostureDataAltered = "EventIdentityPostureDataAltered"
)
const (
IdentityActiveIntervalSeconds = 60
)
const MaxPostureFailures = 100
const (
MethodEnrollTransitRouterOtt = "trott"
)
const MfaPromptGracePeriod = -5 * time.Minute //5m
const (
MfaProviderZiti string = "ziti"
)
const (
PostureCheckNoTimeout = int64(-1)
)
const (
WindowSizeTOTP int = 5
)
const ZitiSdkTypeC = "ziti-sdk-c"
Variables ¶
This section is empty.
Functions ¶
func CleanHexString ¶
func ContextToProtobuf ¶
func ContextToProtobuf(context *change.Context) *edge_cmd_pb.ChangeContext
func DecodeSalt ¶
func NewFieldChecker ¶
func NewFieldChecker(fields ...string) boltz.FieldChecker
func ProtobufToContext ¶
func ProtobufToContext(context *edge_cmd_pb.ChangeContext) *change.Context
func RegisterCommand ¶
func RegisterCommand[MT any, CT any, M network.CommandMsg[MT], C decodableCommand[CT, M]](env Env, _ C, _ M)
RegisterCommand register a decoder for the given command and message pair MT is the message type (ex: cmd_pb.CreateServiceCommand) CT is the command type (ex: CreateServiceCommand) M is the CommandMsg/command.TypedMessage implementation (ex: *cmd_pb.CreateServiceCommand) C is the decodableCommand/command.Command implementation (ex: *CreateServiceCommand)
We only have both types specified so that we can enforce that each is a pointer type. If didn't enforce that the instances were pointer types, we couldn't use new to instantiate new instances.
Types ¶
type AdvisorEdgeRouter ¶
type AdvisorEdgeRouter struct { Router *EdgeRouter IsOnline bool }
type AdvisorIdentityEdgeRouterLinks ¶
type AdvisorIdentityEdgeRouterLinks struct { Identity *Identity EdgeRouter *EdgeRouter Policies []*EdgeRouterPolicy }
type AdvisorIdentityServiceLinks ¶
type AdvisorIdentityServiceLinks struct { Identity *Identity Service *Service Policies []*ServicePolicy }
type AdvisorServiceEdgeRouterLinks ¶
type AdvisorServiceEdgeRouterLinks struct { Service *Service EdgeRouter *EdgeRouter Policies []*ServiceEdgeRouterPolicy }
type AndFieldChecker ¶
type AndFieldChecker struct {
// contains filtered or unexported fields
}
func (*AndFieldChecker) IsUpdated ¶
func (checker *AndFieldChecker) IsUpdated(field string) bool
type ApiSession ¶
type ApiSessionCertificate ¶
type ApiSessionCertificate struct { models.BaseEntity ApiSession *ApiSession ApiSessionId string Subject string Fingerprint string ValidAfter *time.Time ValidBefore *time.Time PEM string }
func NewApiSessionCertificate ¶
func NewApiSessionCertificate(cert *x509.Certificate) *ApiSessionCertificate
type ApiSessionCertificateListResult ¶
type ApiSessionCertificateListResult struct { ApiSessionCertificates []*ApiSessionCertificate models.QueryMetaData // contains filtered or unexported fields }
type ApiSessionCertificateManager ¶
type ApiSessionCertificateManager struct {
// contains filtered or unexported fields
}
func NewApiSessionCertificateManager ¶
func NewApiSessionCertificateManager(env Env) *ApiSessionCertificateManager
func (*ApiSessionCertificateManager) Annotate ¶
func (self *ApiSessionCertificateManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*ApiSessionCertificateManager) ApplyDelete ¶
func (self *ApiSessionCertificateManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*ApiSessionCertificateManager) BaseList ¶
func (self *ApiSessionCertificateManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*ApiSessionCertificateManager) BaseLoadInTx ¶
func (*ApiSessionCertificateManager) BasePreparedList ¶
func (self *ApiSessionCertificateManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*ApiSessionCertificateManager) BasePreparedListIndexed ¶
func (self *ApiSessionCertificateManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*ApiSessionCertificateManager) Create ¶
func (self *ApiSessionCertificateManager) Create(entity *ApiSessionCertificate, ctx *change.Context) (string, error)
func (*ApiSessionCertificateManager) CreateFromCSR ¶
func (*ApiSessionCertificateManager) Delete ¶
func (self *ApiSessionCertificateManager) Delete(id string, ctx *change.Context) error
func (*ApiSessionCertificateManager) GetAnnotation ¶
func (*ApiSessionCertificateManager) GetEntityTypeId ¶
func (self *ApiSessionCertificateManager) GetEntityTypeId() string
func (*ApiSessionCertificateManager) GetEnv ¶
func (self *ApiSessionCertificateManager) GetEnv() Env
func (*ApiSessionCertificateManager) GetStore ¶
func (self *ApiSessionCertificateManager) GetStore() boltz.EntityStore[PE]
func (*ApiSessionCertificateManager) IsUpdated ¶
func (self *ApiSessionCertificateManager) IsUpdated(_ string) bool
func (*ApiSessionCertificateManager) ListWithHandler ¶
func (self *ApiSessionCertificateManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*ApiSessionCertificateManager) PreparedListAssociatedWithHandler ¶
func (*ApiSessionCertificateManager) PreparedListIndexed ¶
func (self *ApiSessionCertificateManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*ApiSessionCertificateManager) PreparedListWithHandler ¶
func (self *ApiSessionCertificateManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*ApiSessionCertificateManager) Query ¶
func (self *ApiSessionCertificateManager) Query(tx *bbolt.Tx, query string) (*ApiSessionCertificateListResult, error)
func (*ApiSessionCertificateManager) ReadByApiSessionId ¶
func (self *ApiSessionCertificateManager) ReadByApiSessionId(tx *bbolt.Tx, apiSessionId string) ([]*ApiSessionCertificate, error)
type ApiSessionListResult ¶
type ApiSessionListResult struct { ApiSessions []*ApiSession models.QueryMetaData // contains filtered or unexported fields }
type ApiSessionManager ¶
type ApiSessionManager struct { HeartbeatCollector *HeartbeatCollector // contains filtered or unexported fields }
func NewApiSessionManager ¶
func NewApiSessionManager(env Env) *ApiSessionManager
func (*ApiSessionManager) Annotate ¶
func (self *ApiSessionManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*ApiSessionManager) ApplyDelete ¶
func (self *ApiSessionManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*ApiSessionManager) BaseList ¶
func (self *ApiSessionManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*ApiSessionManager) BaseLoadInTx ¶
func (*ApiSessionManager) BasePreparedList ¶
func (self *ApiSessionManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*ApiSessionManager) BasePreparedListIndexed ¶
func (self *ApiSessionManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*ApiSessionManager) Create ¶
func (self *ApiSessionManager) Create(ctx boltz.MutateContext, entity *ApiSession, sessionCerts []*ApiSessionCertificate) (string, error)
func (*ApiSessionManager) CreateInCtx ¶
func (self *ApiSessionManager) CreateInCtx(ctx boltz.MutateContext, entity *ApiSession, sessionCerts []*ApiSessionCertificate) (string, error)
func (*ApiSessionManager) Delete ¶
func (self *ApiSessionManager) Delete(id string, ctx *change.Context) error
func (*ApiSessionManager) DeleteBatch ¶
func (self *ApiSessionManager) DeleteBatch(id []string, ctx *change.Context) error
func (*ApiSessionManager) DeleteByIdentityId ¶
func (self *ApiSessionManager) DeleteByIdentityId(identityId string, changeCtx *change.Context) error
func (*ApiSessionManager) GetAnnotation ¶
func (*ApiSessionManager) GetEntityTypeId ¶
func (self *ApiSessionManager) GetEntityTypeId() string
func (*ApiSessionManager) GetStore ¶
func (self *ApiSessionManager) GetStore() boltz.EntityStore[PE]
func (*ApiSessionManager) IsUpdated ¶
func (self *ApiSessionManager) IsUpdated(_ string) bool
func (*ApiSessionManager) ListWithHandler ¶
func (self *ApiSessionManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*ApiSessionManager) MarkLastActivityById ¶
func (self *ApiSessionManager) MarkLastActivityById(apiSessionId string)
MarkLastActivityById marks the "last activity" of an API Session. This will store a cached "LastUpdatedAt" value for an API Session. This data will be used to populate information for API Sessions and will be persisted to the data store at a future time in bulk.
func (*ApiSessionManager) MarkLastActivityByTokens ¶
func (self *ApiSessionManager) MarkLastActivityByTokens(tokens ...string) ([]string, []string, error)
MarkLastActivityByTokens returns the ids of identities that were affected, tokens that were not found if any or an error. Marking "last activity" will store a cached "LastUpdatedAt" value for an API Session. This data will be used to populate information for API Sessions and will be persisted to the data store at a future time in bulk.
func (*ApiSessionManager) MfaCompleted ¶
func (self *ApiSessionManager) MfaCompleted(apiSession *ApiSession, ctx *change.Context) error
func (*ApiSessionManager) PreparedListAssociatedWithHandler ¶
func (*ApiSessionManager) PreparedListIndexed ¶
func (self *ApiSessionManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*ApiSessionManager) PreparedListWithHandler ¶
func (self *ApiSessionManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*ApiSessionManager) Query ¶
func (self *ApiSessionManager) Query(query string) (*ApiSessionListResult, error)
func (*ApiSessionManager) Read ¶
func (self *ApiSessionManager) Read(id string) (*ApiSession, error)
func (*ApiSessionManager) ReadByToken ¶
func (self *ApiSessionManager) ReadByToken(token string) (*ApiSession, error)
func (*ApiSessionManager) ReadInTx ¶
func (self *ApiSessionManager) ReadInTx(tx *bbolt.Tx, id string) (*ApiSession, error)
func (*ApiSessionManager) Stream ¶
func (self *ApiSessionManager) Stream(query string, collect func(*ApiSession, error) error) error
func (*ApiSessionManager) Update ¶
func (self *ApiSessionManager) Update(apiSession *ApiSession, ctx *change.Context) error
func (*ApiSessionManager) UpdateWithFieldChecker ¶
func (self *ApiSessionManager) UpdateWithFieldChecker(apiSession *ApiSession, fieldChecker boltz.FieldChecker, ctx *change.Context) error
func (*ApiSessionManager) VisitFingerprintsForApiSession ¶
func (*ApiSessionManager) VisitFingerprintsForApiSessionId ¶
func (self *ApiSessionManager) VisitFingerprintsForApiSessionId(apiSessionId string, visitor func(fingerprint string) bool) error
type ApiSessionPostureData ¶
type ApiSessionPostureData struct { Mfa *PostureResponseMfa `json:"mfa"` EndpointState *PostureResponseEndpointState `json:"endpointState"` SdkInfo *SdkInfo }
func (*ApiSessionPostureData) GetPassedMfaAt ¶
func (self *ApiSessionPostureData) GetPassedMfaAt() *time.Time
type AuthContext ¶
type AuthContext interface { GetMethod() string GetData() map[string]interface{} GetCerts() []*x509.Certificate GetHeaders() map[string]interface{} GetChangeContext() *change.Context }
func NewAuthContextHttp ¶
type AuthContextHttp ¶
type AuthContextHttp struct { Method string Data map[string]interface{} Certs []*x509.Certificate Headers map[string]interface{} ChangeContext *change.Context }
func (*AuthContextHttp) GetCerts ¶
func (context *AuthContextHttp) GetCerts() []*x509.Certificate
func (*AuthContextHttp) GetChangeContext ¶
func (context *AuthContextHttp) GetChangeContext() *change.Context
func (*AuthContextHttp) GetData ¶
func (context *AuthContextHttp) GetData() map[string]interface{}
func (*AuthContextHttp) GetHeaders ¶
func (context *AuthContextHttp) GetHeaders() map[string]interface{}
func (*AuthContextHttp) GetMethod ¶
func (context *AuthContextHttp) GetMethod() string
type AuthModuleCert ¶
type AuthModuleCert struct {
// contains filtered or unexported fields
}
func NewAuthModuleCert ¶
func NewAuthModuleCert(env Env, caChain []byte) *AuthModuleCert
func (*AuthModuleCert) CanHandle ¶
func (module *AuthModuleCert) CanHandle(method string) bool
func (*AuthModuleCert) Process ¶
func (module *AuthModuleCert) Process(context AuthContext) (AuthResult, error)
Process will inspect the provided AuthContext and attempt to verify the client certificates provided during a TLS handshake. Authentication via client certificates follows these steps:
1) obtain client certificates 2) verify client certificates against known CAs 3) link a CA certificate back to a model.Ca if possible 4) obtain the target identity by authenticator (cert fingerprint) or by external id (claims stuffed into a x509.Certificate resolved by model.Ca) 5) verify identity status (disabled) 6) obtain the target identity's auth policy 7) verify according to auth policy
type AuthModuleExtJwt ¶
type AuthModuleExtJwt struct {
// contains filtered or unexported fields
}
func NewAuthModuleExtJwt ¶
func NewAuthModuleExtJwt(env Env) *AuthModuleExtJwt
func (*AuthModuleExtJwt) CanHandle ¶
func (a *AuthModuleExtJwt) CanHandle(method string) bool
func (*AuthModuleExtJwt) Process ¶
func (a *AuthModuleExtJwt) Process(context AuthContext) (AuthResult, error)
func (*AuthModuleExtJwt) ProcessSecondary ¶
func (a *AuthModuleExtJwt) ProcessSecondary(context AuthContext) (AuthResult, error)
type AuthModuleUpdb ¶
type AuthModuleUpdb struct {
// contains filtered or unexported fields
}
func NewAuthModuleUpdb ¶
func NewAuthModuleUpdb(env Env) *AuthModuleUpdb
func (*AuthModuleUpdb) CanHandle ¶
func (module *AuthModuleUpdb) CanHandle(method string) bool
func (*AuthModuleUpdb) Process ¶
func (module *AuthModuleUpdb) Process(context AuthContext) (AuthResult, error)
type AuthPolicy ¶
type AuthPolicy struct { models.BaseEntity Name string Primary AuthPolicyPrimary Secondary AuthPolicySecondary }
type AuthPolicyCert ¶
type AuthPolicyExtJwt ¶
type AuthPolicyManager ¶
type AuthPolicyManager struct {
// contains filtered or unexported fields
}
func NewAuthPolicyManager ¶
func NewAuthPolicyManager(env Env) *AuthPolicyManager
func (*AuthPolicyManager) Annotate ¶
func (self *AuthPolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*AuthPolicyManager) ApplyCreate ¶
func (self *AuthPolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*AuthPolicy], ctx boltz.MutateContext) error
func (*AuthPolicyManager) ApplyDelete ¶
func (self *AuthPolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*AuthPolicyManager) ApplyUpdate ¶
func (self *AuthPolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*AuthPolicy], ctx boltz.MutateContext) error
func (*AuthPolicyManager) BaseList ¶
func (self *AuthPolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*AuthPolicyManager) BaseLoadInTx ¶
func (*AuthPolicyManager) BasePreparedList ¶
func (self *AuthPolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*AuthPolicyManager) BasePreparedListIndexed ¶
func (self *AuthPolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*AuthPolicyManager) Create ¶
func (self *AuthPolicyManager) Create(entity *AuthPolicy, ctx *change.Context) error
func (*AuthPolicyManager) GetAnnotation ¶
func (*AuthPolicyManager) GetEntityTypeId ¶
func (self *AuthPolicyManager) GetEntityTypeId() string
func (*AuthPolicyManager) GetStore ¶
func (self *AuthPolicyManager) GetStore() boltz.EntityStore[PE]
func (*AuthPolicyManager) ListWithHandler ¶
func (self *AuthPolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*AuthPolicyManager) Marshall ¶
func (self *AuthPolicyManager) Marshall(entity *AuthPolicy) ([]byte, error)
func (*AuthPolicyManager) PreparedListAssociatedWithHandler ¶
func (*AuthPolicyManager) PreparedListIndexed ¶
func (self *AuthPolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*AuthPolicyManager) PreparedListWithHandler ¶
func (self *AuthPolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*AuthPolicyManager) Read ¶
func (self *AuthPolicyManager) Read(id string) (*AuthPolicy, error)
func (*AuthPolicyManager) Unmarshall ¶
func (self *AuthPolicyManager) Unmarshall(bytes []byte) (*AuthPolicy, error)
func (*AuthPolicyManager) Update ¶
func (self *AuthPolicyManager) Update(entity *AuthPolicy, checker fields.UpdatedFields, ctx *change.Context) error
type AuthPolicyPrimary ¶
type AuthPolicyPrimary struct { Cert AuthPolicyCert Updb AuthPolicyUpdb ExtJwt AuthPolicyExtJwt }
type AuthPolicySecondary ¶
type AuthPolicyUpdb ¶
type AuthProcessor ¶
type AuthProcessor interface { CanHandle(method string) bool Process(context AuthContext) (AuthResult, error) }
type AuthProcessorRegistryImpl ¶
type AuthProcessorRegistryImpl struct {
// contains filtered or unexported fields
}
func (*AuthProcessorRegistryImpl) Add ¶
func (registry *AuthProcessorRegistryImpl) Add(processor AuthProcessor)
func (*AuthProcessorRegistryImpl) GetByMethod ¶
func (registry *AuthProcessorRegistryImpl) GetByMethod(method string) AuthProcessor
type AuthRegistry ¶
type AuthRegistry interface { Add(method AuthProcessor) GetByMethod(method string) AuthProcessor }
type AuthResult ¶
type AuthResult interface { IdentityId() string ExternalId() string AuthenticatorId() string SessionCerts() []*x509.Certificate Identity() *Identity Authenticator() *Authenticator AuthPolicy() *AuthPolicy AuthPolicyId() string IsSuccessful() bool }
type AuthResultBase ¶
type AuthResultBase struct {
// contains filtered or unexported fields
}
func (*AuthResultBase) AuthPolicy ¶
func (a *AuthResultBase) AuthPolicy() *AuthPolicy
func (*AuthResultBase) AuthPolicyId ¶
func (a *AuthResultBase) AuthPolicyId() string
func (*AuthResultBase) Authenticator ¶
func (a *AuthResultBase) Authenticator() *Authenticator
func (*AuthResultBase) AuthenticatorId ¶
func (a *AuthResultBase) AuthenticatorId() string
func (*AuthResultBase) ExternalId ¶
func (a *AuthResultBase) ExternalId() string
func (*AuthResultBase) Identity ¶
func (a *AuthResultBase) Identity() *Identity
func (*AuthResultBase) IdentityId ¶
func (a *AuthResultBase) IdentityId() string
func (*AuthResultBase) IsSuccessful ¶
func (a *AuthResultBase) IsSuccessful() bool
func (*AuthResultBase) SessionCerts ¶
func (a *AuthResultBase) SessionCerts() []*x509.Certificate
type AuthResultJwt ¶
type AuthResultJwt struct { AuthResultBase // contains filtered or unexported fields }
func (*AuthResultJwt) AuthenticatorId ¶
func (a *AuthResultJwt) AuthenticatorId() string
func (*AuthResultJwt) IsSuccessful ¶
func (a *AuthResultJwt) IsSuccessful() bool
type Authenticator ¶
type Authenticator struct { models.BaseEntity Method string IdentityId string SubType interface{} }
func (*Authenticator) Fingerprints ¶
func (entity *Authenticator) Fingerprints() []string
func (*Authenticator) ToCert ¶
func (entity *Authenticator) ToCert() *AuthenticatorCert
func (*Authenticator) ToUpdb ¶
func (entity *Authenticator) ToUpdb() *AuthenticatorUpdb
type AuthenticatorCert ¶
type AuthenticatorCert struct { *Authenticator Fingerprint string Pem string UnverifiedFingerprint string UnverifiedPem string }
type AuthenticatorListQueryResult ¶
type AuthenticatorListQueryResult struct { *models.EntityListResult[*Authenticator] Authenticators []*Authenticator }
type AuthenticatorManager ¶
type AuthenticatorManager struct {
// contains filtered or unexported fields
}
func NewAuthenticatorManager ¶
func NewAuthenticatorManager(env Env) *AuthenticatorManager
func (*AuthenticatorManager) Annotate ¶
func (self *AuthenticatorManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*AuthenticatorManager) ApplyCreate ¶
func (self *AuthenticatorManager) ApplyCreate(cmd *command.CreateEntityCommand[*Authenticator], ctx boltz.MutateContext) error
func (*AuthenticatorManager) ApplyDelete ¶
func (self *AuthenticatorManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*AuthenticatorManager) ApplyUpdate ¶
func (self *AuthenticatorManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Authenticator], ctx boltz.MutateContext) error
func (*AuthenticatorManager) AuthenticatorToProtobuf ¶
func (self *AuthenticatorManager) AuthenticatorToProtobuf(entity *Authenticator) (*edge_cmd_pb.Authenticator, error)
func (*AuthenticatorManager) Authorize ¶
func (self *AuthenticatorManager) Authorize(authContext AuthContext) (AuthResult, error)
func (*AuthenticatorManager) BaseList ¶
func (self *AuthenticatorManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*AuthenticatorManager) BaseLoadInTx ¶
func (*AuthenticatorManager) BasePreparedList ¶
func (self *AuthenticatorManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*AuthenticatorManager) BasePreparedListIndexed ¶
func (self *AuthenticatorManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*AuthenticatorManager) Create ¶
func (self *AuthenticatorManager) Create(entity *Authenticator, ctx *change.Context) error
func (*AuthenticatorManager) DecodeSalt ¶
func (self *AuthenticatorManager) DecodeSalt(salt string) []byte
func (*AuthenticatorManager) ExtendCertForIdentity ¶
func (self *AuthenticatorManager) ExtendCertForIdentity(identityId string, authenticatorId string, peerCerts []*x509.Certificate, csrPem string, ctx *change.Context) ([]byte, error)
func (*AuthenticatorManager) GetAnnotation ¶
func (*AuthenticatorManager) GetEntityTypeId ¶
func (self *AuthenticatorManager) GetEntityTypeId() string
func (*AuthenticatorManager) GetStore ¶
func (self *AuthenticatorManager) GetStore() boltz.EntityStore[PE]
func (*AuthenticatorManager) HashPassword ¶
func (self *AuthenticatorManager) HashPassword(password string) *HashedPassword
func (*AuthenticatorManager) IsUpdated ¶
func (self *AuthenticatorManager) IsUpdated(field string) bool
func (*AuthenticatorManager) ListForIdentity ¶
func (self *AuthenticatorManager) ListForIdentity(identityId string, query ast.Query) (*models.EntityListResult[*Authenticator], error)
func (*AuthenticatorManager) ListWithHandler ¶
func (self *AuthenticatorManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*AuthenticatorManager) Marshall ¶
func (self *AuthenticatorManager) Marshall(entity *Authenticator) ([]byte, error)
func (*AuthenticatorManager) PatchSelf ¶
func (self *AuthenticatorManager) PatchSelf(authenticatorSelf *AuthenticatorSelf, checker fields.UpdatedFields, ctx *change.Context) error
func (*AuthenticatorManager) PreparedListAssociatedWithHandler ¶
func (*AuthenticatorManager) PreparedListIndexed ¶
func (self *AuthenticatorManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*AuthenticatorManager) PreparedListWithHandler ¶
func (self *AuthenticatorManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*AuthenticatorManager) ProtobufToAuthenticator ¶
func (self *AuthenticatorManager) ProtobufToAuthenticator(msg *edge_cmd_pb.Authenticator) (*Authenticator, error)
func (*AuthenticatorManager) ReEnroll ¶
func (self *AuthenticatorManager) ReEnroll(id string, expiresAt time.Time, ctx *change.Context) (string, error)
ReEnroll converts the given authenticator `id` back to an enrollment of the same type with the same constraints that expires at the time specified by `expiresAt`. The result is a string id of the new enrollment or an error.
func (*AuthenticatorManager) ReHashPassword ¶
func (self *AuthenticatorManager) ReHashPassword(password string, salt []byte) *HashedPassword
func (*AuthenticatorManager) Read ¶
func (self *AuthenticatorManager) Read(id string) (*Authenticator, error)
func (*AuthenticatorManager) ReadByFingerprint ¶
func (self *AuthenticatorManager) ReadByFingerprint(fingerprint string) (*Authenticator, error)
func (*AuthenticatorManager) ReadByUsername ¶
func (self *AuthenticatorManager) ReadByUsername(username string) (*Authenticator, error)
func (*AuthenticatorManager) ReadFingerprints ¶
func (self *AuthenticatorManager) ReadFingerprints(authenticatorId string) ([]string, error)
func (*AuthenticatorManager) ReadForIdentity ¶
func (self *AuthenticatorManager) ReadForIdentity(identityId string, authenticatorId string) (*Authenticator, error)
func (*AuthenticatorManager) Unmarshall ¶
func (self *AuthenticatorManager) Unmarshall(bytes []byte) (*Authenticator, error)
func (*AuthenticatorManager) Update ¶
func (self *AuthenticatorManager) Update(entity *Authenticator, unrestricted bool, checker fields.UpdatedFields, ctx *change.Context) error
func (*AuthenticatorManager) UpdateSelf ¶
func (self *AuthenticatorManager) UpdateSelf(authenticatorSelf *AuthenticatorSelf, ctx *change.Context) error
func (*AuthenticatorManager) VerifyExtendCertForIdentity ¶
type AuthenticatorSelf ¶
type AuthenticatorUpdb ¶
type AuthenticatorUpdb struct { *Authenticator Username string Password string Salt string }
func (*AuthenticatorUpdb) DecodedSalt ¶
func (au *AuthenticatorUpdb) DecodedSalt() []byte
type Ca ¶
type Ca struct { models.BaseEntity Name string Fingerprint string CertPem string IsVerified bool VerificationToken string IsAutoCaEnrollmentEnabled bool IsOttCaEnrollmentEnabled bool IsAuthEnabled bool IdentityRoles []string IdentityNameFormat string ExternalIdClaim *ExternalIdClaim }
func (*Ca) GetExternalId ¶
func (entity *Ca) GetExternalId(cert *x509.Certificate) (string, error)
GetExternalId will attempt to retrieve a string claim from a x509 Certificate based on location, matching, and parsing of various x509 Certificate fields.
type CaListResult ¶
type CaListResult struct { Cas []*Ca models.QueryMetaData // contains filtered or unexported fields }
type CaManager ¶
type CaManager struct {
// contains filtered or unexported fields
}
func NewCaManager ¶
func (*CaManager) Annotate ¶
func (self *CaManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*CaManager) ApplyCreate ¶
func (self *CaManager) ApplyCreate(cmd *command.CreateEntityCommand[*Ca], ctx boltz.MutateContext) error
func (*CaManager) ApplyDelete ¶
func (self *CaManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*CaManager) ApplyUpdate ¶
func (self *CaManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Ca], ctx boltz.MutateContext) error
func (*CaManager) BaseList ¶
func (self *CaManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*CaManager) BaseLoadInTx ¶
func (*CaManager) BasePreparedList ¶
func (self *CaManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*CaManager) BasePreparedListIndexed ¶
func (self *CaManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*CaManager) GetAnnotation ¶
func (*CaManager) GetEntityTypeId ¶
func (self *CaManager) GetEntityTypeId() string
func (*CaManager) GetStore ¶
func (self *CaManager) GetStore() boltz.EntityStore[PE]
func (*CaManager) ListWithHandler ¶
func (self *CaManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*CaManager) PreparedListAssociatedWithHandler ¶
func (*CaManager) PreparedListIndexed ¶
func (self *CaManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*CaManager) PreparedListWithHandler ¶
func (self *CaManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
type Config ¶
type Config struct { models.BaseEntity Name string TypeId string Data map[string]interface{} }
type ConfigManager ¶
type ConfigManager struct {
// contains filtered or unexported fields
}
func NewConfigManager ¶
func NewConfigManager(env Env) *ConfigManager
func (*ConfigManager) Annotate ¶
func (self *ConfigManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*ConfigManager) ApplyCreate ¶
func (self *ConfigManager) ApplyCreate(cmd *command.CreateEntityCommand[*Config], ctx boltz.MutateContext) error
func (*ConfigManager) ApplyDelete ¶
func (self *ConfigManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*ConfigManager) ApplyUpdate ¶
func (self *ConfigManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Config], ctx boltz.MutateContext) error
func (*ConfigManager) BaseList ¶
func (self *ConfigManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*ConfigManager) BaseLoadInTx ¶
func (*ConfigManager) BasePreparedList ¶
func (self *ConfigManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*ConfigManager) BasePreparedListIndexed ¶
func (self *ConfigManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*ConfigManager) Create ¶
func (self *ConfigManager) Create(entity *Config, ctx *change.Context) error
func (*ConfigManager) GetAnnotation ¶
func (*ConfigManager) GetEntityTypeId ¶
func (self *ConfigManager) GetEntityTypeId() string
func (*ConfigManager) GetStore ¶
func (self *ConfigManager) GetStore() boltz.EntityStore[PE]
func (*ConfigManager) IsUpdated ¶
func (self *ConfigManager) IsUpdated(field string) bool
func (*ConfigManager) ListWithHandler ¶
func (self *ConfigManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*ConfigManager) Marshall ¶
func (self *ConfigManager) Marshall(entity *Config) ([]byte, error)
func (*ConfigManager) PreparedListAssociatedWithHandler ¶
func (*ConfigManager) PreparedListIndexed ¶
func (self *ConfigManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*ConfigManager) PreparedListWithHandler ¶
func (self *ConfigManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*ConfigManager) Unmarshall ¶
func (self *ConfigManager) Unmarshall(bytes []byte) (*Config, error)
func (*ConfigManager) Update ¶
func (self *ConfigManager) Update(entity *Config, checker fields.UpdatedFields, ctx *change.Context) error
type ConfigType ¶
type ConfigType struct { models.BaseEntity Name string Schema map[string]interface{} }
func (*ConfigType) GetCompiledSchema ¶
func (entity *ConfigType) GetCompiledSchema() (*gojsonschema.Schema, error)
type ConfigTypeManager ¶
type ConfigTypeManager struct {
// contains filtered or unexported fields
}
func NewConfigTypeManager ¶
func NewConfigTypeManager(env Env) *ConfigTypeManager
func (*ConfigTypeManager) Annotate ¶
func (self *ConfigTypeManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*ConfigTypeManager) ApplyCreate ¶
func (self *ConfigTypeManager) ApplyCreate(cmd *command.CreateEntityCommand[*ConfigType], ctx boltz.MutateContext) error
func (*ConfigTypeManager) ApplyDelete ¶
func (self *ConfigTypeManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*ConfigTypeManager) ApplyUpdate ¶
func (self *ConfigTypeManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ConfigType], ctx boltz.MutateContext) error
func (*ConfigTypeManager) BaseList ¶
func (self *ConfigTypeManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*ConfigTypeManager) BaseLoadInTx ¶
func (*ConfigTypeManager) BasePreparedList ¶
func (self *ConfigTypeManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*ConfigTypeManager) BasePreparedListIndexed ¶
func (self *ConfigTypeManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*ConfigTypeManager) Create ¶
func (self *ConfigTypeManager) Create(entity *ConfigType, ctx *change.Context) error
func (*ConfigTypeManager) GetAnnotation ¶
func (*ConfigTypeManager) GetEntityTypeId ¶
func (self *ConfigTypeManager) GetEntityTypeId() string
func (*ConfigTypeManager) GetStore ¶
func (self *ConfigTypeManager) GetStore() boltz.EntityStore[PE]
func (*ConfigTypeManager) ListWithHandler ¶
func (self *ConfigTypeManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*ConfigTypeManager) MapConfigTypeNamesToIds ¶
func (self *ConfigTypeManager) MapConfigTypeNamesToIds(values []string, identityId string) map[string]struct{}
func (*ConfigTypeManager) Marshall ¶
func (self *ConfigTypeManager) Marshall(entity *ConfigType) ([]byte, error)
func (*ConfigTypeManager) PreparedListAssociatedWithHandler ¶
func (*ConfigTypeManager) PreparedListIndexed ¶
func (self *ConfigTypeManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*ConfigTypeManager) PreparedListWithHandler ¶
func (self *ConfigTypeManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*ConfigTypeManager) Read ¶
func (self *ConfigTypeManager) Read(id string) (*ConfigType, error)
func (*ConfigTypeManager) ReadByName ¶
func (self *ConfigTypeManager) ReadByName(name string) (*ConfigType, error)
func (*ConfigTypeManager) Unmarshall ¶
func (self *ConfigTypeManager) Unmarshall(bytes []byte) (*ConfigType, error)
func (*ConfigTypeManager) Update ¶
func (self *ConfigTypeManager) Update(entity *ConfigType, checker fields.UpdatedFields, ctx *change.Context) error
type CreateEdgeRouterCmd ¶
type CreateEdgeRouterCmd struct {
// contains filtered or unexported fields
}
func (*CreateEdgeRouterCmd) Apply ¶
func (self *CreateEdgeRouterCmd) Apply(ctx boltz.MutateContext) error
func (*CreateEdgeRouterCmd) Decode ¶
func (self *CreateEdgeRouterCmd) Decode(env Env, msg *edge_cmd_pb.CreateEdgeRouterCmd) error
func (*CreateEdgeRouterCmd) Encode ¶
func (self *CreateEdgeRouterCmd) Encode() ([]byte, error)
func (*CreateEdgeRouterCmd) GetChangeContext ¶
func (self *CreateEdgeRouterCmd) GetChangeContext() *change.Context
type CreateEdgeTerminatorCmd ¶
type CreateEdgeTerminatorCmd struct { Env Env Entity *network.Terminator Context *change.Context }
func (*CreateEdgeTerminatorCmd) Apply ¶
func (self *CreateEdgeTerminatorCmd) Apply(ctx boltz.MutateContext) error
func (*CreateEdgeTerminatorCmd) Decode ¶
func (self *CreateEdgeTerminatorCmd) Decode(env Env, msg *edge_cmd_pb.CreateEdgeTerminatorCommand) error
func (*CreateEdgeTerminatorCmd) Encode ¶
func (self *CreateEdgeTerminatorCmd) Encode() ([]byte, error)
func (*CreateEdgeTerminatorCmd) GetChangeContext ¶
func (self *CreateEdgeTerminatorCmd) GetChangeContext() *change.Context
type CreateIdentityWithEnrollmentsCmd ¶
type CreateIdentityWithEnrollmentsCmd struct {
// contains filtered or unexported fields
}
func (*CreateIdentityWithEnrollmentsCmd) Apply ¶
func (self *CreateIdentityWithEnrollmentsCmd) Apply(ctx boltz.MutateContext) error
func (*CreateIdentityWithEnrollmentsCmd) Decode ¶
func (self *CreateIdentityWithEnrollmentsCmd) Decode(env Env, msg *edge_cmd_pb.CreateIdentityWithEnrollmentsCmd) error
func (*CreateIdentityWithEnrollmentsCmd) Encode ¶
func (self *CreateIdentityWithEnrollmentsCmd) Encode() ([]byte, error)
func (*CreateIdentityWithEnrollmentsCmd) GetChangeContext ¶
func (self *CreateIdentityWithEnrollmentsCmd) GetChangeContext() *change.Context
type CreateTransitRouterCmd ¶
type CreateTransitRouterCmd struct {
// contains filtered or unexported fields
}
func (*CreateTransitRouterCmd) Apply ¶
func (self *CreateTransitRouterCmd) Apply(ctx boltz.MutateContext) error
func (*CreateTransitRouterCmd) Decode ¶
func (self *CreateTransitRouterCmd) Decode(env Env, msg *edge_cmd_pb.CreateTransitRouterCmd) error
func (*CreateTransitRouterCmd) Encode ¶
func (self *CreateTransitRouterCmd) Encode() ([]byte, error)
func (*CreateTransitRouterCmd) GetChangeContext ¶
func (self *CreateTransitRouterCmd) GetChangeContext() *change.Context
type EdgeRouter ¶
type EdgeRouter struct { models.BaseEntity Name string RoleAttributes []string IsVerified bool Fingerprint *string CertPem *string Hostname *string VersionInfo *versions.VersionInfo IsTunnelerEnabled bool AppData map[string]interface{} UnverifiedFingerprint *string UnverifiedCertPem *string Cost uint16 NoTraversal bool Disabled bool }
func (*EdgeRouter) GetName ¶
func (self *EdgeRouter) GetName() string
type EdgeRouterListResult ¶
type EdgeRouterListResult struct { EdgeRouters []*EdgeRouter models.QueryMetaData // contains filtered or unexported fields }
type EdgeRouterManager ¶
type EdgeRouterManager struct {
// contains filtered or unexported fields
}
func NewEdgeRouterManager ¶
func NewEdgeRouterManager(env Env) *EdgeRouterManager
func (*EdgeRouterManager) Annotate ¶
func (self *EdgeRouterManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*EdgeRouterManager) ApplyCreate ¶
func (self *EdgeRouterManager) ApplyCreate(cmd *CreateEdgeRouterCmd, ctx boltz.MutateContext) error
func (*EdgeRouterManager) ApplyDelete ¶
func (self *EdgeRouterManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*EdgeRouterManager) ApplyUpdate ¶
func (self *EdgeRouterManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*EdgeRouter], ctx boltz.MutateContext) error
func (*EdgeRouterManager) BaseList ¶
func (self *EdgeRouterManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*EdgeRouterManager) BaseLoadInTx ¶
func (*EdgeRouterManager) BasePreparedList ¶
func (self *EdgeRouterManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*EdgeRouterManager) BasePreparedListIndexed ¶
func (self *EdgeRouterManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*EdgeRouterManager) CollectEnrollments ¶
func (self *EdgeRouterManager) CollectEnrollments(id string, collector func(entity *Enrollment) error) error
func (*EdgeRouterManager) Create ¶
func (self *EdgeRouterManager) Create(edgeRouter *EdgeRouter, ctx *change.Context) error
func (*EdgeRouterManager) EdgeRouterToProtobuf ¶
func (self *EdgeRouterManager) EdgeRouterToProtobuf(entity *EdgeRouter) (*edge_cmd_pb.EdgeRouter, error)
func (*EdgeRouterManager) ExtendEnrollment ¶
func (self *EdgeRouterManager) ExtendEnrollment(router *EdgeRouter, clientCsrPem []byte, serverCertCsrPem []byte, ctx *change.Context) (*ExtendedCerts, error)
func (*EdgeRouterManager) ExtendEnrollmentVerify ¶
func (self *EdgeRouterManager) ExtendEnrollmentVerify(router *EdgeRouter, ctx *change.Context) error
func (*EdgeRouterManager) ExtendEnrollmentWithVerify ¶
func (self *EdgeRouterManager) ExtendEnrollmentWithVerify(router *EdgeRouter, clientCsrPem []byte, serverCertCsrPem []byte, ctx *change.Context) (*ExtendedCerts, error)
func (*EdgeRouterManager) GetAnnotation ¶
func (*EdgeRouterManager) GetEntityTypeId ¶
func (self *EdgeRouterManager) GetEntityTypeId() string
func (*EdgeRouterManager) GetStore ¶
func (self *EdgeRouterManager) GetStore() boltz.EntityStore[PE]
func (*EdgeRouterManager) IsAccessToEdgeRouterAllowed ¶
func (self *EdgeRouterManager) IsAccessToEdgeRouterAllowed(identityId, serviceId, edgeRouterId string) (bool, error)
func (*EdgeRouterManager) IsSharedEdgeRouterPresent ¶
func (self *EdgeRouterManager) IsSharedEdgeRouterPresent(identityId, serviceId string) (bool, error)
func (*EdgeRouterManager) ListForIdentityAndService ¶
func (self *EdgeRouterManager) ListForIdentityAndService(identityId, serviceId string, limit *int) (*EdgeRouterListResult, error)
func (*EdgeRouterManager) ListForIdentityAndServiceWithTx ¶
func (self *EdgeRouterManager) ListForIdentityAndServiceWithTx(tx *bbolt.Tx, identityId, serviceId string, limit *int) (*EdgeRouterListResult, error)
func (*EdgeRouterManager) ListWithHandler ¶
func (self *EdgeRouterManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*EdgeRouterManager) Marshall ¶
func (self *EdgeRouterManager) Marshall(entity *EdgeRouter) ([]byte, error)
func (*EdgeRouterManager) PreparedListAssociatedWithHandler ¶
func (*EdgeRouterManager) PreparedListIndexed ¶
func (self *EdgeRouterManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*EdgeRouterManager) PreparedListWithHandler ¶
func (self *EdgeRouterManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*EdgeRouterManager) ProtobufToEdgeRouter ¶
func (self *EdgeRouterManager) ProtobufToEdgeRouter(msg *edge_cmd_pb.EdgeRouter) (*EdgeRouter, error)
func (*EdgeRouterManager) Query ¶
func (self *EdgeRouterManager) Query(query string) (*EdgeRouterListResult, error)
func (*EdgeRouterManager) QueryRoleAttributes ¶
func (self *EdgeRouterManager) QueryRoleAttributes(queryString string) ([]string, *models.QueryMetaData, error)
func (*EdgeRouterManager) ReEnroll ¶
func (self *EdgeRouterManager) ReEnroll(router *EdgeRouter, ctx *change.Context) error
ReEnroll creates a new JWT enrollment for an existing edge router. If the edge router already exists with a JWT, a new JWT is created. If the edge router was already enrolled, all record of the enrollment is reset and the edge router is disconnected forcing the edge router to complete enrollment before connecting.
func (*EdgeRouterManager) Read ¶
func (self *EdgeRouterManager) Read(id string) (*EdgeRouter, error)
func (*EdgeRouterManager) ReadOneByFingerprint ¶
func (self *EdgeRouterManager) ReadOneByFingerprint(fingerprint string) (*EdgeRouter, error)
func (*EdgeRouterManager) ReadOneByQuery ¶
func (self *EdgeRouterManager) ReadOneByQuery(query string) (*EdgeRouter, error)
func (*EdgeRouterManager) ReadOneByUnverifiedFingerprint ¶
func (self *EdgeRouterManager) ReadOneByUnverifiedFingerprint(fingerprint string) (*EdgeRouter, error)
func (*EdgeRouterManager) Unmarshall ¶
func (self *EdgeRouterManager) Unmarshall(bytes []byte) (*EdgeRouter, error)
func (*EdgeRouterManager) Update ¶
func (self *EdgeRouterManager) Update(entity *EdgeRouter, unrestricted bool, checker fields.UpdatedFields, ctx *change.Context) error
type EdgeRouterPolicy ¶
type EdgeRouterPolicyManager ¶
type EdgeRouterPolicyManager struct {
// contains filtered or unexported fields
}
func NewEdgeRouterPolicyManager ¶
func NewEdgeRouterPolicyManager(env Env) *EdgeRouterPolicyManager
func (*EdgeRouterPolicyManager) Annotate ¶
func (self *EdgeRouterPolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*EdgeRouterPolicyManager) ApplyCreate ¶
func (self *EdgeRouterPolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*EdgeRouterPolicy], ctx boltz.MutateContext) error
func (*EdgeRouterPolicyManager) ApplyDelete ¶
func (self *EdgeRouterPolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*EdgeRouterPolicyManager) ApplyUpdate ¶
func (self *EdgeRouterPolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*EdgeRouterPolicy], ctx boltz.MutateContext) error
func (*EdgeRouterPolicyManager) BaseList ¶
func (self *EdgeRouterPolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*EdgeRouterPolicyManager) BaseLoadInTx ¶
func (*EdgeRouterPolicyManager) BasePreparedList ¶
func (self *EdgeRouterPolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*EdgeRouterPolicyManager) BasePreparedListIndexed ¶
func (self *EdgeRouterPolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*EdgeRouterPolicyManager) Create ¶
func (self *EdgeRouterPolicyManager) Create(entity *EdgeRouterPolicy, ctx *change.Context) error
func (*EdgeRouterPolicyManager) GetAnnotation ¶
func (*EdgeRouterPolicyManager) GetEntityTypeId ¶
func (self *EdgeRouterPolicyManager) GetEntityTypeId() string
func (*EdgeRouterPolicyManager) GetStore ¶
func (self *EdgeRouterPolicyManager) GetStore() boltz.EntityStore[PE]
func (*EdgeRouterPolicyManager) ListWithHandler ¶
func (self *EdgeRouterPolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*EdgeRouterPolicyManager) Marshall ¶
func (self *EdgeRouterPolicyManager) Marshall(entity *EdgeRouterPolicy) ([]byte, error)
func (*EdgeRouterPolicyManager) PreparedListAssociatedWithHandler ¶
func (*EdgeRouterPolicyManager) PreparedListIndexed ¶
func (self *EdgeRouterPolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*EdgeRouterPolicyManager) PreparedListWithHandler ¶
func (self *EdgeRouterPolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*EdgeRouterPolicyManager) Unmarshall ¶
func (self *EdgeRouterPolicyManager) Unmarshall(bytes []byte) (*EdgeRouterPolicy, error)
func (*EdgeRouterPolicyManager) Update ¶
func (self *EdgeRouterPolicyManager) Update(entity *EdgeRouterPolicy, checker fields.UpdatedFields, ctx *change.Context) error
type EdgeServiceManager ¶
type EdgeServiceManager struct {
// contains filtered or unexported fields
}
func NewEdgeServiceManager ¶
func NewEdgeServiceManager(env Env) *EdgeServiceManager
func (*EdgeServiceManager) Annotate ¶
func (self *EdgeServiceManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*EdgeServiceManager) ApplyCreate ¶
func (self *EdgeServiceManager) ApplyCreate(cmd *command.CreateEntityCommand[*Service], ctx boltz.MutateContext) error
func (*EdgeServiceManager) ApplyDelete ¶
func (self *EdgeServiceManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*EdgeServiceManager) ApplyUpdate ¶
func (self *EdgeServiceManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Service], ctx boltz.MutateContext) error
func (*EdgeServiceManager) BaseList ¶
func (self *EdgeServiceManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*EdgeServiceManager) BaseLoadInTx ¶
func (*EdgeServiceManager) BasePreparedList ¶
func (self *EdgeServiceManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*EdgeServiceManager) BasePreparedListIndexed ¶
func (self *EdgeServiceManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*EdgeServiceManager) Create ¶
func (self *EdgeServiceManager) Create(entity *Service, ctx *change.Context) error
func (*EdgeServiceManager) GetAnnotation ¶
func (*EdgeServiceManager) GetDetailLister ¶
func (self *EdgeServiceManager) GetDetailLister() *ServiceDetailLister
func (*EdgeServiceManager) GetEntityTypeId ¶
func (self *EdgeServiceManager) GetEntityTypeId() string
func (*EdgeServiceManager) GetPolicyPostureChecks ¶
func (self *EdgeServiceManager) GetPolicyPostureChecks(identityId, serviceId string) map[string]*PolicyPostureChecks
func (*EdgeServiceManager) GetStore ¶
func (self *EdgeServiceManager) GetStore() boltz.EntityStore[PE]
func (*EdgeServiceManager) ListWithHandler ¶
func (self *EdgeServiceManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*EdgeServiceManager) Marshall ¶
func (self *EdgeServiceManager) Marshall(entity *Service) ([]byte, error)
func (*EdgeServiceManager) PreparedListAssociatedWithHandler ¶
func (*EdgeServiceManager) PreparedListIndexed ¶
func (self *EdgeServiceManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*EdgeServiceManager) PreparedListWithHandler ¶
func (self *EdgeServiceManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*EdgeServiceManager) PublicQueryForIdentity ¶
func (self *EdgeServiceManager) PublicQueryForIdentity(sessionIdentity *Identity, configTypes map[string]struct{}, query ast.Query) (*ServiceListResult, error)
func (*EdgeServiceManager) QueryForIdentity ¶
func (self *EdgeServiceManager) QueryForIdentity(identityId string, configTypes map[string]struct{}, query ast.Query) (*ServiceListResult, error)
func (*EdgeServiceManager) QueryRoleAttributes ¶
func (self *EdgeServiceManager) QueryRoleAttributes(queryString string) ([]string, *models.QueryMetaData, error)
func (*EdgeServiceManager) ReadByName ¶
func (self *EdgeServiceManager) ReadByName(name string) (*Service, error)
func (*EdgeServiceManager) ReadForIdentity ¶
func (self *EdgeServiceManager) ReadForIdentity(id string, identityId string, configTypes map[string]struct{}) (*ServiceDetail, error)
func (*EdgeServiceManager) ReadForIdentityInTx ¶
func (self *EdgeServiceManager) ReadForIdentityInTx(tx *bbolt.Tx, id string, identityId string, configTypes map[string]struct{}) (*ServiceDetail, error)
func (*EdgeServiceManager) ReadForNonAdminIdentityInTx ¶
func (self *EdgeServiceManager) ReadForNonAdminIdentityInTx(tx *bbolt.Tx, id string, identityId string) (*ServiceDetail, error)
func (*EdgeServiceManager) Unmarshall ¶
func (self *EdgeServiceManager) Unmarshall(bytes []byte) (*Service, error)
func (*EdgeServiceManager) Update ¶
func (self *EdgeServiceManager) Update(entity *Service, checker fields.UpdatedFields, ctx *change.Context) error
type EnrollModuleCa ¶
type EnrollModuleCa struct {
// contains filtered or unexported fields
}
func NewEnrollModuleCa ¶
func NewEnrollModuleCa(env Env) *EnrollModuleCa
func (*EnrollModuleCa) CanHandle ¶
func (module *EnrollModuleCa) CanHandle(method string) bool
func (*EnrollModuleCa) Process ¶
func (module *EnrollModuleCa) Process(context EnrollmentContext) (*EnrollmentResult, error)
Process will attempt to verify a client certificate bundle (supplied via the TLS handshake) with known CAs. The first certificate must be the client certificate and all subsequent certificates are treated as untrusted intermediates. If a verifying CA has `externalIdClaim` configuration present, the claim will be searched for. If it resolves, the values will be used as the `externalId` for the resulting identity. Subsequent authentications will match the certificate `externalId`. If not present, a certificate authenticator will be created where the fingerprint of the certificate will be matched on subsequent authentications.
type EnrollModuleEr ¶
type EnrollModuleEr struct {
// contains filtered or unexported fields
}
func NewEnrollModuleEdgeRouterOtt ¶
func NewEnrollModuleEdgeRouterOtt(env Env) *EnrollModuleEr
func (*EnrollModuleEr) CanHandle ¶
func (module *EnrollModuleEr) CanHandle(method string) bool
func (*EnrollModuleEr) Process ¶
func (module *EnrollModuleEr) Process(context EnrollmentContext) (*EnrollmentResult, error)
func (*EnrollModuleEr) ProcessClientCsrPem ¶
func (module *EnrollModuleEr) ProcessClientCsrPem(clientCertCsrPem []byte, edgeRouterId string) ([]byte, error)
func (*EnrollModuleEr) ProcessServerCsrPem ¶
func (module *EnrollModuleEr) ProcessServerCsrPem(serverCertCsrPem []byte) ([]byte, error)
type EnrollModuleOtt ¶
type EnrollModuleOtt struct {
// contains filtered or unexported fields
}
func NewEnrollModuleOtt ¶
func NewEnrollModuleOtt(env Env) *EnrollModuleOtt
func (*EnrollModuleOtt) CanHandle ¶
func (module *EnrollModuleOtt) CanHandle(method string) bool
func (*EnrollModuleOtt) Process ¶
func (module *EnrollModuleOtt) Process(ctx EnrollmentContext) (*EnrollmentResult, error)
type EnrollModuleOttCa ¶
type EnrollModuleOttCa struct {
// contains filtered or unexported fields
}
func NewEnrollModuleOttCa ¶
func NewEnrollModuleOttCa(env Env) *EnrollModuleOttCa
func (*EnrollModuleOttCa) CanHandle ¶
func (module *EnrollModuleOttCa) CanHandle(method string) bool
func (*EnrollModuleOttCa) Process ¶
func (module *EnrollModuleOttCa) Process(ctx EnrollmentContext) (*EnrollmentResult, error)
type EnrollModuleRouterOtt ¶
type EnrollModuleRouterOtt struct {
// contains filtered or unexported fields
}
func NewEnrollModuleTransitRouterOtt ¶
func NewEnrollModuleTransitRouterOtt(env Env) *EnrollModuleRouterOtt
func (*EnrollModuleRouterOtt) CanHandle ¶
func (module *EnrollModuleRouterOtt) CanHandle(method string) bool
func (*EnrollModuleRouterOtt) Process ¶
func (module *EnrollModuleRouterOtt) Process(context EnrollmentContext) (*EnrollmentResult, error)
type EnrollModuleUpdb ¶
type EnrollModuleUpdb struct {
// contains filtered or unexported fields
}
func NewEnrollModuleUpdb ¶
func NewEnrollModuleUpdb(env Env) *EnrollModuleUpdb
func (*EnrollModuleUpdb) CanHandle ¶
func (module *EnrollModuleUpdb) CanHandle(method string) bool
func (*EnrollModuleUpdb) Process ¶
func (module *EnrollModuleUpdb) Process(ctx EnrollmentContext) (*EnrollmentResult, error)
type Enrollment ¶
type Enrollment struct { models.BaseEntity Method string IdentityId *string TransitRouterId *string EdgeRouterId *string Token string IssuedAt *time.Time ExpiresAt *time.Time Jwt string CaId *string Username *string }
func (*Enrollment) FillJwtInfo ¶
func (entity *Enrollment) FillJwtInfo(env Env, subject string) error
func (*Enrollment) FillJwtInfoWithExpiresAt ¶
type EnrollmentContext ¶
type EnrollmentContext interface { GetParameters() map[string]interface{} GetToken() string GetData() interface{} GetDataAsMap() map[string]interface{} GetDataAsByteArray() []byte GetCerts() []*x509.Certificate GetHeaders() map[string]interface{} GetMethod() string GetChangeContext() *change.Context }
type EnrollmentContextHttp ¶
type EnrollmentContextHttp struct { Headers map[string]interface{} Parameters map[string]interface{} Data interface{} Certs []*x509.Certificate Token string Method string ChangeContext *change.Context }
func (*EnrollmentContextHttp) FillFromHttpRequest ¶
func (*EnrollmentContextHttp) GetCerts ¶
func (context *EnrollmentContextHttp) GetCerts() []*x509.Certificate
func (*EnrollmentContextHttp) GetChangeContext ¶
func (context *EnrollmentContextHttp) GetChangeContext() *change.Context
func (*EnrollmentContextHttp) GetData ¶
func (context *EnrollmentContextHttp) GetData() interface{}
func (*EnrollmentContextHttp) GetDataAsByteArray ¶
func (context *EnrollmentContextHttp) GetDataAsByteArray() []byte
func (*EnrollmentContextHttp) GetDataAsMap ¶
func (context *EnrollmentContextHttp) GetDataAsMap() map[string]interface{}
func (*EnrollmentContextHttp) GetHeaders ¶
func (context *EnrollmentContextHttp) GetHeaders() map[string]interface{}
func (*EnrollmentContextHttp) GetMethod ¶
func (context *EnrollmentContextHttp) GetMethod() string
func (*EnrollmentContextHttp) GetParameters ¶
func (context *EnrollmentContextHttp) GetParameters() map[string]interface{}
func (*EnrollmentContextHttp) GetToken ¶
func (context *EnrollmentContextHttp) GetToken() string
type EnrollmentManager ¶
type EnrollmentManager struct {
// contains filtered or unexported fields
}
func NewEnrollmentManager ¶
func NewEnrollmentManager(env Env) *EnrollmentManager
func (*EnrollmentManager) Annotate ¶
func (self *EnrollmentManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*EnrollmentManager) ApplyCreate ¶
func (self *EnrollmentManager) ApplyCreate(cmd *command.CreateEntityCommand[*Enrollment], ctx boltz.MutateContext) error
func (*EnrollmentManager) ApplyDelete ¶
func (self *EnrollmentManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*EnrollmentManager) ApplyReEnrollEdgeRouter ¶ added in v0.32.1
func (self *EnrollmentManager) ApplyReEnrollEdgeRouter(cmd *ReEnrollEdgeRouterCmd, ctx boltz.MutateContext) error
func (*EnrollmentManager) ApplyReplaceEncoderWithAuthenticatorCommand ¶
func (self *EnrollmentManager) ApplyReplaceEncoderWithAuthenticatorCommand(cmd *ReplaceEnrollmentWithAuthenticatorCmd, ctx boltz.MutateContext) error
func (*EnrollmentManager) ApplyUpdate ¶
func (self *EnrollmentManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Enrollment], ctx boltz.MutateContext) error
func (*EnrollmentManager) BaseList ¶
func (self *EnrollmentManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*EnrollmentManager) BaseLoadInTx ¶
func (*EnrollmentManager) BasePreparedList ¶
func (self *EnrollmentManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*EnrollmentManager) BasePreparedListIndexed ¶
func (self *EnrollmentManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*EnrollmentManager) Create ¶
func (self *EnrollmentManager) Create(entity *Enrollment, ctx *change.Context) error
func (*EnrollmentManager) Enroll ¶
func (self *EnrollmentManager) Enroll(ctx EnrollmentContext) (*EnrollmentResult, error)
func (*EnrollmentManager) EnrollmentToProtobuf ¶
func (self *EnrollmentManager) EnrollmentToProtobuf(entity *Enrollment) (*edge_cmd_pb.Enrollment, error)
func (*EnrollmentManager) GetAnnotation ¶
func (*EnrollmentManager) GetClientCertChain ¶
func (self *EnrollmentManager) GetClientCertChain(certRaw []byte) (string, error)
func (*EnrollmentManager) GetEntityTypeId ¶
func (self *EnrollmentManager) GetEntityTypeId() string
func (*EnrollmentManager) GetStore ¶
func (self *EnrollmentManager) GetStore() boltz.EntityStore[PE]
func (*EnrollmentManager) ListWithHandler ¶
func (self *EnrollmentManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*EnrollmentManager) Marshall ¶
func (self *EnrollmentManager) Marshall(entity *Enrollment) ([]byte, error)
func (*EnrollmentManager) PreparedListAssociatedWithHandler ¶
func (*EnrollmentManager) PreparedListIndexed ¶
func (self *EnrollmentManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*EnrollmentManager) PreparedListWithHandler ¶
func (self *EnrollmentManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*EnrollmentManager) ProtobufToEnrollment ¶
func (self *EnrollmentManager) ProtobufToEnrollment(msg *edge_cmd_pb.Enrollment) (*Enrollment, error)
func (*EnrollmentManager) Query ¶
func (self *EnrollmentManager) Query(query string) ([]*Enrollment, error)
func (*EnrollmentManager) Read ¶
func (self *EnrollmentManager) Read(id string) (*Enrollment, error)
func (*EnrollmentManager) ReadByToken ¶
func (self *EnrollmentManager) ReadByToken(token string) (*Enrollment, error)
func (*EnrollmentManager) RefreshJwt ¶
func (*EnrollmentManager) ReplaceWithAuthenticator ¶
func (self *EnrollmentManager) ReplaceWithAuthenticator(enrollmentId string, authenticator *Authenticator, ctx *change.Context) error
func (*EnrollmentManager) Unmarshall ¶
func (self *EnrollmentManager) Unmarshall(bytes []byte) (*Enrollment, error)
func (*EnrollmentManager) Update ¶
func (self *EnrollmentManager) Update(entity *Enrollment, checker fields.UpdatedFields, ctx *change.Context) error
type EnrollmentProcessor ¶
type EnrollmentProcessor interface { CanHandle(method string) bool Process(context EnrollmentContext) (*EnrollmentResult, error) }
type EnrollmentRegistry ¶
type EnrollmentRegistry interface { Add(method EnrollmentProcessor) GetByMethod(method string) EnrollmentProcessor }
type EnrollmentRegistryImpl ¶
type EnrollmentRegistryImpl struct {
// contains filtered or unexported fields
}
func (*EnrollmentRegistryImpl) Add ¶
func (registry *EnrollmentRegistryImpl) Add(processor EnrollmentProcessor)
func (*EnrollmentRegistryImpl) GetByMethod ¶
func (registry *EnrollmentRegistryImpl) GetByMethod(method string) EnrollmentProcessor
type EnrollmentResult ¶
type EntityManager ¶
type EntityManager[E models.Entity] interface { models.EntityRetriever[E] command.EntityDeleter GetEnv() Env // contains filtered or unexported methods }
type Env ¶
type Env interface { GetManagers() *Managers GetConfig() *config.Config GetJwtSigner() jwtsigner.Signer GetDbProvider() network.DbProvider GetStores() *db.Stores GetAuthRegistry() AuthRegistry GetEnrollRegistry() EnrollmentRegistry GetApiClientCsrSigner() cert.Signer GetApiServerCsrSigner() cert.Signer GetControlClientCsrSigner() cert.Signer GetHostController() HostController IsEdgeRouterOnline(id string) bool GetMetricsRegistry() metrics.Registry GetFingerprintGenerator() cert.FingerprintGenerator HandleServiceUpdatedEventForIdentityId(identityId string) GetServerCert() (*tls.Certificate, string, jwt.SigningMethod) JwtSignerKeyFunc(token *jwt.Token) (interface{}, error) }
type ExtendedCerts ¶
type ExternalIdClaim ¶
type ExternalIdFieldType ¶
type ExternalIdFieldType string
type ExternalJwtSigner ¶
type ExternalJwtSigner struct { models.BaseEntity Name string CertPem *string JwksEndpoint *string Kid *string Enabled bool ExternalAuthUrl *string UseExternalId bool ClaimsProperty *string Issuer *string Audience *string CommonName string Fingerprint *string NotAfter time.Time NotBefore time.Time }
type ExternalJwtSignerManager ¶
type ExternalJwtSignerManager struct {
// contains filtered or unexported fields
}
func NewExternalJwtSignerManager ¶
func NewExternalJwtSignerManager(env Env) *ExternalJwtSignerManager
func (*ExternalJwtSignerManager) Annotate ¶
func (self *ExternalJwtSignerManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*ExternalJwtSignerManager) ApplyCreate ¶
func (self *ExternalJwtSignerManager) ApplyCreate(cmd *command.CreateEntityCommand[*ExternalJwtSigner], ctx boltz.MutateContext) error
func (*ExternalJwtSignerManager) ApplyDelete ¶
func (self *ExternalJwtSignerManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*ExternalJwtSignerManager) ApplyUpdate ¶
func (self *ExternalJwtSignerManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ExternalJwtSigner], ctx boltz.MutateContext) error
func (*ExternalJwtSignerManager) BaseList ¶
func (self *ExternalJwtSignerManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*ExternalJwtSignerManager) BaseLoadInTx ¶
func (*ExternalJwtSignerManager) BasePreparedList ¶
func (self *ExternalJwtSignerManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*ExternalJwtSignerManager) BasePreparedListIndexed ¶
func (self *ExternalJwtSignerManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*ExternalJwtSignerManager) Create ¶
func (self *ExternalJwtSignerManager) Create(entity *ExternalJwtSigner, ctx *change.Context) error
func (*ExternalJwtSignerManager) GetAnnotation ¶
func (*ExternalJwtSignerManager) GetEntityTypeId ¶
func (self *ExternalJwtSignerManager) GetEntityTypeId() string
func (*ExternalJwtSignerManager) GetStore ¶
func (self *ExternalJwtSignerManager) GetStore() boltz.EntityStore[PE]
func (*ExternalJwtSignerManager) ListWithHandler ¶
func (self *ExternalJwtSignerManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*ExternalJwtSignerManager) Marshall ¶
func (self *ExternalJwtSignerManager) Marshall(entity *ExternalJwtSigner) ([]byte, error)
func (*ExternalJwtSignerManager) PreparedListAssociatedWithHandler ¶
func (*ExternalJwtSignerManager) PreparedListIndexed ¶
func (self *ExternalJwtSignerManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*ExternalJwtSignerManager) PreparedListWithHandler ¶
func (self *ExternalJwtSignerManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*ExternalJwtSignerManager) PublicQuery ¶
func (self *ExternalJwtSignerManager) PublicQuery(query ast.Query) (*ListExtJwtSignerResult, error)
func (*ExternalJwtSignerManager) Unmarshall ¶
func (self *ExternalJwtSignerManager) Unmarshall(bytes []byte) (*ExternalJwtSigner, error)
func (*ExternalJwtSignerManager) Update ¶
func (self *ExternalJwtSignerManager) Update(entity *ExternalJwtSigner, checker fields.UpdatedFields, ctx *change.Context) error
type Formatter ¶
type Formatter struct {
// contains filtered or unexported fields
}
func NewFormatter ¶
func NewIdentityNameFormatter ¶
func NewIdentityNameFormatter(ca *Ca, clientCert *x509.Certificate, identityName, identityId string) *Formatter
type HashResult ¶
func Hash ¶
func Hash(password string) *HashResult
func ReHash ¶
func ReHash(password string, s []byte) *HashResult
type HashedPassword ¶
type HashedPassword struct { RawResult *HashResult //raw byte hash results Salt string //base64 encoded hash Password string //base64 encoded hash }
type HeartbeatCollector ¶
type HeartbeatCollector struct {
// contains filtered or unexported fields
}
func NewHeartbeatCollector ¶
func NewHeartbeatCollector(env Env, batchSize int, updateInterval time.Duration, action func([]*Heartbeat)) *HeartbeatCollector
NewHeartbeatCollector creates a HeartbeatCollector which is used to manage situations where an SDK is connecting to multiple Edge Routers and making API calls that all update their last updated at and trigger writes. The heartbeat collector aggregates all of those calls into a single write and acts as an in memory buffer for last update times.
func (*HeartbeatCollector) LastAccessedAt ¶
func (self *HeartbeatCollector) LastAccessedAt(apiSessionId string) (*time.Time, bool)
LastAccessedAt will return the last time an API Sessions was either connected to an Edge Router or made a REST API call and true. If no such action has happened or the API Session no longer exists nil and false will be returned.
func (*HeartbeatCollector) Mark ¶
func (self *HeartbeatCollector) Mark(apiSessionId string)
func (*HeartbeatCollector) Remove ¶
func (self *HeartbeatCollector) Remove(id string)
func (*HeartbeatCollector) Start ¶
func (self *HeartbeatCollector) Start()
func (*HeartbeatCollector) Stop ¶
func (self *HeartbeatCollector) Stop()
type HeartbeatStatus ¶
type HeartbeatStatus struct {
// contains filtered or unexported fields
}
type HostController ¶
type Identity ¶
type Identity struct { models.BaseEntity Name string IdentityTypeId string IsDefaultAdmin bool IsAdmin bool RoleAttributes []string EnvInfo *EnvInfo SdkInfo *SdkInfo HasErConnection bool DefaultHostingPrecedence ziti.Precedence DefaultHostingCost uint16 ServiceHostingPrecedences map[string]ziti.Precedence ServiceHostingCosts map[string]uint16 AppData map[string]interface{} AuthPolicyId string ExternalId *string Disabled bool DisabledAt *time.Time DisabledUntil *time.Time }
type IdentityManager ¶
type IdentityManager struct {
// contains filtered or unexported fields
}
func NewIdentityManager ¶
func NewIdentityManager(env Env) *IdentityManager
func (*IdentityManager) Annotate ¶
func (self *IdentityManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*IdentityManager) ApplyCreate ¶
func (self *IdentityManager) ApplyCreate(cmd *command.CreateEntityCommand[*Identity], ctx boltz.MutateContext) error
func (*IdentityManager) ApplyCreateWithEnrollments ¶
func (self *IdentityManager) ApplyCreateWithEnrollments(cmd *CreateIdentityWithEnrollmentsCmd, ctx boltz.MutateContext) error
func (*IdentityManager) ApplyDelete ¶
func (self *IdentityManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*IdentityManager) ApplyUpdate ¶
func (self *IdentityManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Identity], ctx boltz.MutateContext) error
func (*IdentityManager) ApplyUpdateServiceConfigs ¶
func (self *IdentityManager) ApplyUpdateServiceConfigs(cmd *UpdateServiceConfigsCmd, ctx boltz.MutateContext) error
func (*IdentityManager) AssignServiceConfigs ¶
func (self *IdentityManager) AssignServiceConfigs(id string, serviceConfigs []ServiceConfig, ctx *change.Context) error
func (*IdentityManager) BaseList ¶
func (self *IdentityManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*IdentityManager) BaseLoadInTx ¶
func (*IdentityManager) BasePreparedList ¶
func (self *IdentityManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*IdentityManager) BasePreparedListIndexed ¶
func (self *IdentityManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*IdentityManager) CollectAuthenticators ¶
func (self *IdentityManager) CollectAuthenticators(id string, collector func(entity *Authenticator) error) error
func (*IdentityManager) CollectEnrollments ¶
func (self *IdentityManager) CollectEnrollments(id string, collector func(entity *Enrollment) error) error
func (*IdentityManager) Create ¶
func (self *IdentityManager) Create(entity *Identity, ctx *change.Context) error
func (*IdentityManager) CreateWithAuthenticator ¶
func (self *IdentityManager) CreateWithAuthenticator(identity *Identity, authenticator *Authenticator, ctx *change.Context) (string, string, error)
func (*IdentityManager) CreateWithEnrollments ¶
func (self *IdentityManager) CreateWithEnrollments(identityModel *Identity, enrollmentsModels []*Enrollment, ctx *change.Context) error
func (*IdentityManager) Enable ¶
func (self *IdentityManager) Enable(identityId string, ctx *change.Context) error
func (*IdentityManager) GetAnnotation ¶
func (*IdentityManager) GetEntityTypeId ¶
func (self *IdentityManager) GetEntityTypeId() string
func (*IdentityManager) GetServiceConfigs ¶
func (self *IdentityManager) GetServiceConfigs(id string) ([]ServiceConfig, error)
func (*IdentityManager) GetStore ¶
func (self *IdentityManager) GetStore() boltz.EntityStore[PE]
func (*IdentityManager) HasErConnection ¶
func (self *IdentityManager) HasErConnection(id string) bool
HasErConnection will return true if the supplied identity id has a current an active ER connection registered.
func (*IdentityManager) IdentityToProtobuf ¶
func (self *IdentityManager) IdentityToProtobuf(entity *Identity) (*edge_cmd_pb.Identity, error)
func (*IdentityManager) InitializeDefaultAdmin ¶
func (self *IdentityManager) InitializeDefaultAdmin(username, password, name string) error
func (*IdentityManager) IsUpdated ¶
func (self *IdentityManager) IsUpdated(field string) bool
func (*IdentityManager) ListWithHandler ¶
func (self *IdentityManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*IdentityManager) Marshall ¶
func (self *IdentityManager) Marshall(entity *Identity) ([]byte, error)
func (*IdentityManager) PatchInfo ¶
func (self *IdentityManager) PatchInfo(identity *Identity, changeCtx *change.Context) error
func (*IdentityManager) PreparedListAssociatedWithHandler ¶
func (*IdentityManager) PreparedListIndexed ¶
func (self *IdentityManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*IdentityManager) PreparedListWithHandler ¶
func (self *IdentityManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*IdentityManager) ProtobufToIdentity ¶
func (self *IdentityManager) ProtobufToIdentity(msg *edge_cmd_pb.Identity) (*Identity, error)
func (*IdentityManager) QueryRoleAttributes ¶
func (self *IdentityManager) QueryRoleAttributes(queryString string) ([]string, *models.QueryMetaData, error)
func (*IdentityManager) ReadByExternalId ¶
func (self *IdentityManager) ReadByExternalId(externalId string) (*Identity, error)
func (*IdentityManager) ReadByName ¶
func (self *IdentityManager) ReadByName(name string) (*Identity, error)
func (*IdentityManager) ReadDefaultAdmin ¶
func (self *IdentityManager) ReadDefaultAdmin() (*Identity, error)
func (*IdentityManager) ReadOneByQuery ¶
func (self *IdentityManager) ReadOneByQuery(query string) (*Identity, error)
func (*IdentityManager) RemoveServiceConfigs ¶
func (self *IdentityManager) RemoveServiceConfigs(id string, serviceConfigs []ServiceConfig, ctx *change.Context) error
func (*IdentityManager) SetHasErConnection ¶
func (self *IdentityManager) SetHasErConnection(identityId string)
SetHasErConnection will register an identity as having an ER connection. The registration has a TTL depending on how the status map was configured.
func (*IdentityManager) Unmarshall ¶
func (self *IdentityManager) Unmarshall(bytes []byte) (*Identity, error)
func (*IdentityManager) Update ¶
func (self *IdentityManager) Update(entity *Identity, checker fields.UpdatedFields, ctx *change.Context) error
func (*IdentityManager) VisitIdentityAuthenticatorFingerprints ¶
type IdentityType ¶
type IdentityType struct { models.BaseEntity Name string `json:"name"` }
type IdentityTypeManager ¶
type IdentityTypeManager struct {
// contains filtered or unexported fields
}
func NewIdentityTypeManager ¶
func NewIdentityTypeManager(env Env) *IdentityTypeManager
func (*IdentityTypeManager) Annotate ¶
func (self *IdentityTypeManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*IdentityTypeManager) ApplyDelete ¶
func (self *IdentityTypeManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*IdentityTypeManager) BaseList ¶
func (self *IdentityTypeManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*IdentityTypeManager) BaseLoadInTx ¶
func (*IdentityTypeManager) BasePreparedList ¶
func (self *IdentityTypeManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*IdentityTypeManager) BasePreparedListIndexed ¶
func (self *IdentityTypeManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*IdentityTypeManager) GetAnnotation ¶
func (*IdentityTypeManager) GetEntityTypeId ¶
func (self *IdentityTypeManager) GetEntityTypeId() string
func (*IdentityTypeManager) GetStore ¶
func (self *IdentityTypeManager) GetStore() boltz.EntityStore[PE]
func (*IdentityTypeManager) ListWithHandler ¶
func (self *IdentityTypeManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*IdentityTypeManager) PreparedListAssociatedWithHandler ¶
func (*IdentityTypeManager) PreparedListIndexed ¶
func (self *IdentityTypeManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*IdentityTypeManager) PreparedListWithHandler ¶
func (self *IdentityTypeManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*IdentityTypeManager) ReadByIdOrName ¶
func (self *IdentityTypeManager) ReadByIdOrName(idOrName string) (*IdentityType, error)
func (*IdentityTypeManager) ReadByName ¶
func (self *IdentityTypeManager) ReadByName(name string) (*IdentityType, error)
type ListExtJwtSignerResult ¶
type ListExtJwtSignerResult struct { QueryMetaData models.QueryMetaData ExtJwtSigners []*ExternalJwtSigner // contains filtered or unexported fields }
type Managers ¶
type Managers struct { // fabric Router *network.RouterManager Service *network.ServiceManager Terminator *network.TerminatorManager Command *network.CommandManager // edge ApiSession *ApiSessionManager ApiSessionCertificate *ApiSessionCertificateManager Ca *CaManager Config *ConfigManager ConfigType *ConfigTypeManager EdgeRouter *EdgeRouterManager EdgeRouterPolicy *EdgeRouterPolicyManager EdgeService *EdgeServiceManager ExternalJwtSigner *ExternalJwtSignerManager Identity *IdentityManager IdentityType *IdentityTypeManager PolicyAdvisor *PolicyAdvisor ServiceEdgeRouterPolicy *ServiceEdgeRouterPolicyManager ServicePolicy *ServicePolicyManager Revocation *RevocationManager TransitRouter *TransitRouterManager Session *SessionManager Authenticator *AuthenticatorManager Enrollment *EnrollmentManager PostureCheck *PostureCheckManager PostureCheckType *PostureCheckTypeManager PostureResponse *PostureResponseManager Mfa *MfaManager AuthPolicy *AuthPolicyManager }
func InitEntityManagers ¶
type MfaListResult ¶
type MfaListResult struct { Mfas []*Mfa models.QueryMetaData // contains filtered or unexported fields }
type MfaManager ¶
type MfaManager struct {
// contains filtered or unexported fields
}
func NewMfaManager ¶
func NewMfaManager(env Env) *MfaManager
func (*MfaManager) Annotate ¶
func (self *MfaManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*MfaManager) ApplyCreate ¶
func (self *MfaManager) ApplyCreate(cmd *command.CreateEntityCommand[*Mfa], ctx boltz.MutateContext) error
func (*MfaManager) ApplyDelete ¶
func (self *MfaManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*MfaManager) ApplyUpdate ¶
func (self *MfaManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*Mfa], ctx boltz.MutateContext) error
func (*MfaManager) BaseList ¶
func (self *MfaManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*MfaManager) BaseLoadInTx ¶
func (*MfaManager) BasePreparedList ¶
func (self *MfaManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*MfaManager) BasePreparedListIndexed ¶
func (self *MfaManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*MfaManager) CreateForIdentity ¶
func (*MfaManager) DeleteAllForIdentity ¶
func (self *MfaManager) DeleteAllForIdentity(id string, ctx *change.Context) error
DeleteAllForIdentity is meant for administrators to remove all MFAs (enrolled or not) from an identity
func (*MfaManager) DeleteForIdentity ¶
func (*MfaManager) GetAnnotation ¶
func (*MfaManager) GetEntityTypeId ¶
func (self *MfaManager) GetEntityTypeId() string
func (*MfaManager) GetProvisioningUrl ¶
func (self *MfaManager) GetProvisioningUrl(mfa *Mfa) string
func (*MfaManager) GetStore ¶
func (self *MfaManager) GetStore() boltz.EntityStore[PE]
func (*MfaManager) IsUpdated ¶
func (self *MfaManager) IsUpdated(field string) bool
func (*MfaManager) ListWithHandler ¶
func (self *MfaManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*MfaManager) PreparedListAssociatedWithHandler ¶
func (*MfaManager) PreparedListIndexed ¶
func (self *MfaManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*MfaManager) PreparedListWithHandler ¶
func (self *MfaManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*MfaManager) Query ¶
func (self *MfaManager) Query(query string) (*MfaListResult, error)
func (*MfaManager) ReadOneByIdentityId ¶
func (self *MfaManager) ReadOneByIdentityId(identityId string) (*Mfa, error)
func (*MfaManager) RecreateRecoveryCodes ¶
func (self *MfaManager) RecreateRecoveryCodes(mfa *Mfa, ctx *change.Context) error
func (*MfaManager) Unmarshall ¶
func (self *MfaManager) Unmarshall(bytes []byte) (*Mfa, error)
func (*MfaManager) Update ¶
func (self *MfaManager) Update(entity *Mfa, checker fields.UpdatedFields, ctx *change.Context) error
func (*MfaManager) VerifyTOTP ¶
func (self *MfaManager) VerifyTOTP(mfa *Mfa, code string) (bool, error)
VerifyTOTP verifies TOTP values only, not recovery codes
type OperatingSystem ¶
type OrFieldChecker ¶
type OrFieldChecker struct {
// contains filtered or unexported fields
}
func NewOrFieldChecker ¶
func NewOrFieldChecker(checker boltz.FieldChecker, fields ...string) *OrFieldChecker
func (*OrFieldChecker) IsUpdated ¶
func (checker *OrFieldChecker) IsUpdated(field string) bool
type PolicyAdvisor ¶
type PolicyAdvisor struct {
// contains filtered or unexported fields
}
func NewPolicyAdvisor ¶
func NewPolicyAdvisor(env Env) *PolicyAdvisor
func (*PolicyAdvisor) AnalyzeServiceReachability ¶
func (advisor *PolicyAdvisor) AnalyzeServiceReachability(identityId, serviceId string) (*AdvisorServiceReachability, error)
func (*PolicyAdvisor) InspectIdentityEdgeRouterLinks ¶
func (advisor *PolicyAdvisor) InspectIdentityEdgeRouterLinks(identityId, edgeRouterId string) (*AdvisorIdentityEdgeRouterLinks, error)
func (*PolicyAdvisor) InspectIdentityServiceLinks ¶
func (advisor *PolicyAdvisor) InspectIdentityServiceLinks(identityId, serviceId string) (*AdvisorIdentityServiceLinks, error)
func (*PolicyAdvisor) InspectServiceEdgeRouterLinks ¶
func (advisor *PolicyAdvisor) InspectServiceEdgeRouterLinks(serviceId, edgeRouterId string) (*AdvisorServiceEdgeRouterLinks, error)
type PolicyPostureChecks ¶
type PolicyPostureChecks struct { PostureChecks []*PostureCheck PolicyType db.PolicyType PolicyName string }
type PostureCache ¶
type PostureCache struct { events.EventEmmiter // contains filtered or unexported fields }
func (*PostureCache) Add ¶
func (pc *PostureCache) Add(identityId string, postureResponses []*PostureResponse)
func (*PostureCache) AddSessionRequestFailure ¶
func (pc *PostureCache) AddSessionRequestFailure(identityId string, failure *PostureSessionRequestFailure)
func (*PostureCache) ApiSessionCreated ¶
func (pc *PostureCache) ApiSessionCreated(apiSession *db.ApiSession)
func (*PostureCache) ApiSessionDeleted ¶
func (pc *PostureCache) ApiSessionDeleted(apiSession *db.ApiSession)
func (*PostureCache) Evaluate ¶
func (pc *PostureCache) Evaluate(identityId, apiSessionId string, postureChecks []*PostureCheck) (bool, []*PostureCheckFailure)
func (*PostureCache) IdentityDeleted ¶
func (pc *PostureCache) IdentityDeleted(identity *db.Identity)
func (*PostureCache) PostureCheckChanged ¶
func (pc *PostureCache) PostureCheckChanged(entity boltz.Entity)
PostureCheckChanged notifies all associated identities that posture configuration has changed and that endpoints may need to reevaluate posture queries.
func (*PostureCache) PostureData ¶
func (pc *PostureCache) PostureData(identityId string) *PostureData
PostureData returns a copy of the current posture data for an identity. Suitable for read only rendering. To alter/update posture data see Upsert.
func (*PostureCache) Upsert ¶
func (pc *PostureCache) Upsert(identityId string, emitDataAltered bool, cb func(exist bool, valueInMap *PostureData, newValue *PostureData) *PostureData)
Upsert is a convenience function to alter the existing PostureData for an identity. If emitDataAltered is true, posture data listeners will be alerted: this will trigger service update notifications and posture check evaluation.
func (*PostureCache) WithPostureData ¶
func (pc *PostureCache) WithPostureData(identityId string, f func(data *PostureData))
type PostureCheck ¶
type PostureCheck struct { models.BaseEntity Name string TypeId string Version int64 RoleAttributes []string SubType PostureCheckSubType }
func (*PostureCheck) Evaluate ¶
func (entity *PostureCheck) Evaluate(apiSessionId string, pd *PostureData) (bool, *PostureCheckFailure)
func (*PostureCheck) LastUpdatedAt ¶
func (entity *PostureCheck) LastUpdatedAt(apiSessionId string, pd *PostureData) *time.Time
LastUpdatedAt returns the last time posture state changed for a specific posture check. If the posture state does not report changes, nil is returned.
func (*PostureCheck) TimeoutRemainingSeconds ¶
func (entity *PostureCheck) TimeoutRemainingSeconds(apiSessionId string, pd *PostureData) int64
func (*PostureCheck) TimeoutSeconds ¶
func (entity *PostureCheck) TimeoutSeconds() int64
type PostureCheckDomains ¶
type PostureCheckDomains struct {
Domains []string
}
func (*PostureCheckDomains) ActualValue ¶
func (p *PostureCheckDomains) ActualValue(_ string, pd *PostureData) interface{}
func (*PostureCheckDomains) Evaluate ¶
func (p *PostureCheckDomains) Evaluate(_ string, pd *PostureData) bool
func (*PostureCheckDomains) ExpectedValue ¶
func (p *PostureCheckDomains) ExpectedValue() interface{}
func (*PostureCheckDomains) FailureValues ¶
func (p *PostureCheckDomains) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
func (*PostureCheckDomains) GetTimeoutRemainingSeconds ¶
func (p *PostureCheckDomains) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
func (*PostureCheckDomains) GetTimeoutSeconds ¶
func (p *PostureCheckDomains) GetTimeoutSeconds() int64
func (*PostureCheckDomains) LastUpdatedAt ¶
func (p *PostureCheckDomains) LastUpdatedAt(string, *PostureData) *time.Time
func (*PostureCheckDomains) TypeId ¶
func (p *PostureCheckDomains) TypeId() string
type PostureCheckFailure ¶
type PostureCheckFailure struct { PostureCheckId string `json:"postureCheckId"` PostureCheckName string `json:"postureCheckName"` PostureCheckType string `json:"postureCheckType"` PostureCheckFailureValues }
func (PostureCheckFailure) ToClientErrorData ¶
func (self PostureCheckFailure) ToClientErrorData() interface{}
type PostureCheckFailureSubType ¶
type PostureCheckFailureSubType interface { Value() interface{} Expected() interface{} }
type PostureCheckFailureValues ¶
type PostureCheckFailureValues interface { Expected() interface{} Actual() interface{} }
type PostureCheckFailureValuesDomain ¶
func (PostureCheckFailureValuesDomain) Actual ¶
func (p PostureCheckFailureValuesDomain) Actual() interface{}
func (PostureCheckFailureValuesDomain) Expected ¶
func (p PostureCheckFailureValuesDomain) Expected() interface{}
type PostureCheckFailureValuesMac ¶
func (PostureCheckFailureValuesMac) Actual ¶
func (p PostureCheckFailureValuesMac) Actual() interface{}
func (PostureCheckFailureValuesMac) Expected ¶
func (p PostureCheckFailureValuesMac) Expected() interface{}
type PostureCheckFailureValuesMfa ¶
type PostureCheckFailureValuesMfa struct { ActualValue PostureCheckMfaValues ExpectedValue PostureCheckMfaValues Criteria PostureCheckMfaCriteria }
func (PostureCheckFailureValuesMfa) Actual ¶
func (p PostureCheckFailureValuesMfa) Actual() interface{}
func (PostureCheckFailureValuesMfa) Expected ¶
func (p PostureCheckFailureValuesMfa) Expected() interface{}
type PostureCheckFailureValuesOperatingSystem ¶
type PostureCheckFailureValuesOperatingSystem struct { ActualValue PostureResponseOs ExpectedValue []OperatingSystem }
func (PostureCheckFailureValuesOperatingSystem) Actual ¶
func (p PostureCheckFailureValuesOperatingSystem) Actual() interface{}
func (PostureCheckFailureValuesOperatingSystem) Expected ¶
func (p PostureCheckFailureValuesOperatingSystem) Expected() interface{}
type PostureCheckFailureValuesProcess ¶
type PostureCheckFailureValuesProcess struct { ActualValue PostureResponseProcess ExpectedValue PostureCheckProcess }
func (PostureCheckFailureValuesProcess) Actual ¶
func (p PostureCheckFailureValuesProcess) Actual() interface{}
func (PostureCheckFailureValuesProcess) Expected ¶
func (p PostureCheckFailureValuesProcess) Expected() interface{}
type PostureCheckFailureValuesProcessMulti ¶
type PostureCheckFailureValuesProcessMulti struct { ActualValue []PostureResponseProcess ExpectedValue PostureCheckProcessMulti }
func (PostureCheckFailureValuesProcessMulti) Actual ¶
func (p PostureCheckFailureValuesProcessMulti) Actual() interface{}
func (PostureCheckFailureValuesProcessMulti) Expected ¶
func (p PostureCheckFailureValuesProcessMulti) Expected() interface{}
type PostureCheckListResult ¶
type PostureCheckListResult struct { PostureChecks []*PostureCheck models.QueryMetaData // contains filtered or unexported fields }
type PostureCheckMacAddresses ¶
type PostureCheckMacAddresses struct {
MacAddresses []string
}
func (*PostureCheckMacAddresses) Evaluate ¶
func (p *PostureCheckMacAddresses) Evaluate(_ string, pd *PostureData) bool
func (*PostureCheckMacAddresses) FailureValues ¶
func (p *PostureCheckMacAddresses) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
func (*PostureCheckMacAddresses) GetTimeoutRemainingSeconds ¶
func (p *PostureCheckMacAddresses) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
func (*PostureCheckMacAddresses) GetTimeoutSeconds ¶
func (p *PostureCheckMacAddresses) GetTimeoutSeconds() int64
func (*PostureCheckMacAddresses) LastUpdatedAt ¶
func (p *PostureCheckMacAddresses) LastUpdatedAt(apiSessionId string, pd *PostureData) *time.Time
func (*PostureCheckMacAddresses) TypeId ¶
func (p *PostureCheckMacAddresses) TypeId() string
type PostureCheckManager ¶
type PostureCheckManager struct {
// contains filtered or unexported fields
}
func NewPostureCheckManager ¶
func NewPostureCheckManager(env Env) *PostureCheckManager
func (*PostureCheckManager) Annotate ¶
func (self *PostureCheckManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*PostureCheckManager) ApplyCreate ¶
func (self *PostureCheckManager) ApplyCreate(cmd *command.CreateEntityCommand[*PostureCheck], ctx boltz.MutateContext) error
func (*PostureCheckManager) ApplyDelete ¶
func (self *PostureCheckManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*PostureCheckManager) ApplyUpdate ¶
func (self *PostureCheckManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*PostureCheck], ctx boltz.MutateContext) error
func (*PostureCheckManager) BaseList ¶
func (self *PostureCheckManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*PostureCheckManager) BaseLoadInTx ¶
func (*PostureCheckManager) BasePreparedList ¶
func (self *PostureCheckManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*PostureCheckManager) BasePreparedListIndexed ¶
func (self *PostureCheckManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*PostureCheckManager) Create ¶
func (self *PostureCheckManager) Create(entity *PostureCheck, ctx *change.Context) error
func (*PostureCheckManager) GetAnnotation ¶
func (*PostureCheckManager) GetEntityTypeId ¶
func (self *PostureCheckManager) GetEntityTypeId() string
func (*PostureCheckManager) GetStore ¶
func (self *PostureCheckManager) GetStore() boltz.EntityStore[PE]
func (*PostureCheckManager) IsUpdated ¶
func (self *PostureCheckManager) IsUpdated(field string) bool
func (*PostureCheckManager) ListWithHandler ¶
func (self *PostureCheckManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*PostureCheckManager) Marshall ¶
func (self *PostureCheckManager) Marshall(entity *PostureCheck) ([]byte, error)
func (*PostureCheckManager) PreparedListAssociatedWithHandler ¶
func (*PostureCheckManager) PreparedListIndexed ¶
func (self *PostureCheckManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*PostureCheckManager) PreparedListWithHandler ¶
func (self *PostureCheckManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*PostureCheckManager) Query ¶
func (self *PostureCheckManager) Query(query string) (*PostureCheckListResult, error)
func (*PostureCheckManager) QueryPostureChecks ¶
func (self *PostureCheckManager) QueryPostureChecks(query ast.Query) (*PostureCheckListResult, error)
func (*PostureCheckManager) Read ¶
func (self *PostureCheckManager) Read(id string) (*PostureCheck, error)
func (*PostureCheckManager) Unmarshall ¶
func (self *PostureCheckManager) Unmarshall(bytes []byte) (*PostureCheck, error)
func (*PostureCheckManager) Update ¶
func (self *PostureCheckManager) Update(entity *PostureCheck, checker fields.UpdatedFields, ctx *change.Context) error
type PostureCheckMfa ¶
type PostureCheckMfa struct { TimeoutSeconds int64 PromptOnWake bool PromptOnUnlock bool IgnoreLegacyEndpoints bool }
func (*PostureCheckMfa) Evaluate ¶
func (p *PostureCheckMfa) Evaluate(apiSessionId string, pd *PostureData) bool
func (*PostureCheckMfa) FailureValues ¶
func (p *PostureCheckMfa) FailureValues(apiSessionId string, pd *PostureData) PostureCheckFailureValues
func (*PostureCheckMfa) GetTimeoutRemainingSeconds ¶
func (p *PostureCheckMfa) GetTimeoutRemainingSeconds(apiSessionId string, pd *PostureData) int64
func (*PostureCheckMfa) GetTimeoutSeconds ¶
func (p *PostureCheckMfa) GetTimeoutSeconds() int64
func (*PostureCheckMfa) IsLegacyClient ¶
func (p *PostureCheckMfa) IsLegacyClient(apiSessionData *ApiSessionPostureData) bool
func (*PostureCheckMfa) LastUpdatedAt ¶
func (p *PostureCheckMfa) LastUpdatedAt(apiSessionId string, pd *PostureData) *time.Time
func (*PostureCheckMfa) PassedOnUnlock ¶
func (p *PostureCheckMfa) PassedOnUnlock(apiSessionData *ApiSessionPostureData, now time.Time) bool
func (*PostureCheckMfa) PassedOnWake ¶
func (p *PostureCheckMfa) PassedOnWake(apiSessionData *ApiSessionPostureData, now time.Time) bool
func (*PostureCheckMfa) TypeId ¶
func (p *PostureCheckMfa) TypeId() string
type PostureCheckMfaCriteria ¶
type PostureCheckMfaValues ¶
type PostureCheckOperatingSystem ¶
type PostureCheckOperatingSystem struct {
OperatingSystems []OperatingSystem
}
func (*PostureCheckOperatingSystem) Evaluate ¶
func (p *PostureCheckOperatingSystem) Evaluate(_ string, pd *PostureData) bool
func (*PostureCheckOperatingSystem) FailureValues ¶
func (p *PostureCheckOperatingSystem) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
func (*PostureCheckOperatingSystem) GetTimeoutRemainingSeconds ¶
func (p *PostureCheckOperatingSystem) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
func (*PostureCheckOperatingSystem) GetTimeoutSeconds ¶
func (p *PostureCheckOperatingSystem) GetTimeoutSeconds() int64
func (*PostureCheckOperatingSystem) LastUpdatedAt ¶
func (p *PostureCheckOperatingSystem) LastUpdatedAt(id string, pd *PostureData) *time.Time
func (*PostureCheckOperatingSystem) TypeId ¶
func (p *PostureCheckOperatingSystem) TypeId() string
type PostureCheckProcess ¶
type PostureCheckProcess struct { PostureCheckId string OsType string Path string Hashes []string Fingerprint string }
func (*PostureCheckProcess) Evaluate ¶
func (p *PostureCheckProcess) Evaluate(_ string, pd *PostureData) bool
func (*PostureCheckProcess) FailureValues ¶
func (p *PostureCheckProcess) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
func (*PostureCheckProcess) GetTimeoutRemainingSeconds ¶
func (p *PostureCheckProcess) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
func (*PostureCheckProcess) GetTimeoutSeconds ¶
func (p *PostureCheckProcess) GetTimeoutSeconds() int64
func (*PostureCheckProcess) LastUpdatedAt ¶
func (p *PostureCheckProcess) LastUpdatedAt(id string, pd *PostureData) *time.Time
func (*PostureCheckProcess) TypeId ¶
func (p *PostureCheckProcess) TypeId() string
type PostureCheckProcessMulti ¶
type PostureCheckProcessMulti struct { PostureCheckId string Semantic string Processes []*ProcessMulti }
func (*PostureCheckProcessMulti) Evaluate ¶
func (p *PostureCheckProcessMulti) Evaluate(_ string, pd *PostureData) bool
func (*PostureCheckProcessMulti) FailureValues ¶
func (p *PostureCheckProcessMulti) FailureValues(_ string, pd *PostureData) PostureCheckFailureValues
func (*PostureCheckProcessMulti) GetTimeoutRemainingSeconds ¶
func (p *PostureCheckProcessMulti) GetTimeoutRemainingSeconds(_ string, _ *PostureData) int64
func (*PostureCheckProcessMulti) GetTimeoutSeconds ¶
func (p *PostureCheckProcessMulti) GetTimeoutSeconds() int64
func (*PostureCheckProcessMulti) LastUpdatedAt ¶
func (p *PostureCheckProcessMulti) LastUpdatedAt(string, *PostureData) *time.Time
func (*PostureCheckProcessMulti) TypeId ¶
func (p *PostureCheckProcessMulti) TypeId() string
type PostureCheckSubType ¶
type PostureCheckSubType interface { TypeId() string Evaluate(apiSessionId string, pd *PostureData) bool FailureValues(_ string, pd *PostureData) PostureCheckFailureValues GetTimeoutSeconds() int64 GetTimeoutRemainingSeconds(apiSessionId string, pd *PostureData) int64 // LastUpdatedAt returns the last time the posture state changed or nil if not supported. LastUpdatedAt(id string, pd *PostureData) *time.Time // contains filtered or unexported methods }
type PostureCheckType ¶
type PostureCheckType struct { models.BaseEntity Name string OperatingSystems []OperatingSystem }
type PostureCheckTypeManager ¶
type PostureCheckTypeManager struct {
// contains filtered or unexported fields
}
func NewPostureCheckTypeManager ¶
func NewPostureCheckTypeManager(env Env) *PostureCheckTypeManager
func (*PostureCheckTypeManager) Annotate ¶
func (self *PostureCheckTypeManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*PostureCheckTypeManager) ApplyDelete ¶
func (self *PostureCheckTypeManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*PostureCheckTypeManager) BaseList ¶
func (self *PostureCheckTypeManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*PostureCheckTypeManager) BaseLoadInTx ¶
func (*PostureCheckTypeManager) BasePreparedList ¶
func (self *PostureCheckTypeManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*PostureCheckTypeManager) BasePreparedListIndexed ¶
func (self *PostureCheckTypeManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*PostureCheckTypeManager) GetAnnotation ¶
func (*PostureCheckTypeManager) GetEntityTypeId ¶
func (self *PostureCheckTypeManager) GetEntityTypeId() string
func (*PostureCheckTypeManager) GetStore ¶
func (self *PostureCheckTypeManager) GetStore() boltz.EntityStore[PE]
func (*PostureCheckTypeManager) ListWithHandler ¶
func (self *PostureCheckTypeManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*PostureCheckTypeManager) PreparedListAssociatedWithHandler ¶
func (*PostureCheckTypeManager) PreparedListIndexed ¶
func (self *PostureCheckTypeManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*PostureCheckTypeManager) PreparedListWithHandler ¶
func (self *PostureCheckTypeManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
type PostureData ¶
type PostureData struct { Mac PostureResponseMac Domain PostureResponseDomain Os PostureResponseOs Processes []*PostureResponseProcess ProcessPathMap map[string]*PostureResponseProcess ApiSessions map[string]*ApiSessionPostureData SessionRequestFailures []*PostureSessionRequestFailure }
func (*PostureData) Copy ¶
func (pd *PostureData) Copy() *PostureData
func (*PostureData) Evaluate ¶
func (pd *PostureData) Evaluate(apiSessionId string, checks []*PostureCheck) (bool, []*PostureCheckFailure)
type PosturePolicyFailure ¶
type PosturePolicyFailure struct { PolicyId string PolicyName string Checks []*PostureCheckFailure }
type PostureResponse ¶
type PostureResponse struct { PostureCheckId string TypeId string TimedOut bool LastUpdatedAt time.Time SubType PostureResponseSubType }
func (*PostureResponse) Apply ¶
func (pr *PostureResponse) Apply(postureData *PostureData)
type PostureResponseDomain ¶
type PostureResponseDomain struct { *PostureResponse Name string `json:"name"` }
func (*PostureResponseDomain) Apply ¶
func (pr *PostureResponseDomain) Apply(postureData *PostureData)
type PostureResponseEndpointState ¶
type PostureResponseEndpointState struct { *PostureResponse ApiSessionId string WokenAt *time.Time UnlockedAt *time.Time }
func (*PostureResponseEndpointState) Apply ¶
func (pr *PostureResponseEndpointState) Apply(postureData *PostureData)
type PostureResponseMac ¶
type PostureResponseMac struct { *PostureResponse Addresses []string `json:"addresses"` }
func (*PostureResponseMac) Apply ¶
func (pr *PostureResponseMac) Apply(postureData *PostureData)
type PostureResponseManager ¶
type PostureResponseManager struct {
// contains filtered or unexported fields
}
func NewPostureResponseManager ¶
func NewPostureResponseManager(env Env) *PostureResponseManager
func (*PostureResponseManager) AddPostureDataListener ¶
func (self *PostureResponseManager) AddPostureDataListener(cb func(env Env, identityId string))
func (*PostureResponseManager) Create ¶
func (self *PostureResponseManager) Create(identityId string, postureResponses []*PostureResponse)
func (*PostureResponseManager) Evaluate ¶
func (self *PostureResponseManager) Evaluate(identityId, apiSessionId string, check *PostureCheck) (bool, *PostureCheckFailure)
func (*PostureResponseManager) GetEndpointStateChangeAffectedServices ¶
func (self *PostureResponseManager) GetEndpointStateChangeAffectedServices(timeSinceLastMfa, gracePeriod time.Duration, onWake bool, onUnlock bool) []*ServiceWithTimeout
func (*PostureResponseManager) PostureData ¶
func (self *PostureResponseManager) PostureData(id string) *PostureData
func (*PostureResponseManager) SetMfaPosture ¶
func (self *PostureResponseManager) SetMfaPosture(identityId string, apiSessionId string, isPassed bool)
SetMfaPosture sets the MFA passing status a specific API Session owned by an identity
func (*PostureResponseManager) SetMfaPostureForIdentity ¶
func (self *PostureResponseManager) SetMfaPostureForIdentity(identityId string, isPassed bool)
SetMfaPostureForIdentity sets the MFA passing status for all API Sessions associated to an identity
func (*PostureResponseManager) SetSdkInfo ¶
func (self *PostureResponseManager) SetSdkInfo(identityId, apiSessionId string, sdkInfo *SdkInfo)
func (*PostureResponseManager) WithPostureData ¶
func (self *PostureResponseManager) WithPostureData(id string, f func(data *PostureData))
type PostureResponseMfa ¶
type PostureResponseMfa struct { *PostureResponse ApiSessionId string `json:"-"` PassedMfaAt *time.Time `json:"passedMfaAt"` }
func (*PostureResponseMfa) Apply ¶
func (pr *PostureResponseMfa) Apply(postureData *PostureData)
type PostureResponseOs ¶
type PostureResponseOs struct { *PostureResponse Type string `json:"type"` Version string `json:"version"` Build string `json:"build"` }
func (*PostureResponseOs) Apply ¶
func (pr *PostureResponseOs) Apply(postureData *PostureData)
type PostureResponseProcess ¶
type PostureResponseProcess struct { *PostureResponse Path string IsRunning bool BinaryHash string SignerFingerprints []string }
func (*PostureResponseProcess) Apply ¶
func (pr *PostureResponseProcess) Apply(postureData *PostureData)
func (*PostureResponseProcess) VerifyMultiCriteria ¶
func (pr *PostureResponseProcess) VerifyMultiCriteria(process *ProcessMulti) bool
type PostureResponseSubType ¶
type PostureResponseSubType interface {
Apply(postureData *PostureData)
}
type PostureSessionData ¶
type PostureSessionData struct {
MfaTimeout int64
}
type ProcessMulti ¶
type ReEnrollEdgeRouterCmd ¶ added in v0.32.1
type ReEnrollEdgeRouterCmd struct {
// contains filtered or unexported fields
}
func (*ReEnrollEdgeRouterCmd) Apply ¶ added in v0.32.1
func (d *ReEnrollEdgeRouterCmd) Apply(ctx boltz.MutateContext) error
func (*ReEnrollEdgeRouterCmd) Decode ¶ added in v0.32.1
func (d *ReEnrollEdgeRouterCmd) Decode(env Env, msg *edge_cmd_pb.ReEnrollEdgeRouterCmd) error
func (*ReEnrollEdgeRouterCmd) Encode ¶ added in v0.32.1
func (d *ReEnrollEdgeRouterCmd) Encode() ([]byte, error)
func (*ReEnrollEdgeRouterCmd) GetChangeContext ¶ added in v0.32.1
func (d *ReEnrollEdgeRouterCmd) GetChangeContext() *change.Context
type ReplaceEnrollmentWithAuthenticatorCmd ¶
type ReplaceEnrollmentWithAuthenticatorCmd struct {
// contains filtered or unexported fields
}
func (*ReplaceEnrollmentWithAuthenticatorCmd) Apply ¶
func (self *ReplaceEnrollmentWithAuthenticatorCmd) Apply(ctx boltz.MutateContext) error
func (*ReplaceEnrollmentWithAuthenticatorCmd) Decode ¶
func (self *ReplaceEnrollmentWithAuthenticatorCmd) Decode(env Env, msg *edge_cmd_pb.ReplaceEnrollmentWithAuthenticatorCmd) error
func (*ReplaceEnrollmentWithAuthenticatorCmd) Encode ¶
func (self *ReplaceEnrollmentWithAuthenticatorCmd) Encode() ([]byte, error)
func (*ReplaceEnrollmentWithAuthenticatorCmd) GetChangeContext ¶
func (self *ReplaceEnrollmentWithAuthenticatorCmd) GetChangeContext() *change.Context
type Revocation ¶
type Revocation struct { models.BaseEntity ExpiresAt time.Time }
type RevocationManager ¶
type RevocationManager struct {
// contains filtered or unexported fields
}
func NewRevocationManager ¶
func NewRevocationManager(env Env) *RevocationManager
func (*RevocationManager) Annotate ¶
func (self *RevocationManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*RevocationManager) ApplyCreate ¶
func (self *RevocationManager) ApplyCreate(cmd *command.CreateEntityCommand[*Revocation], ctx boltz.MutateContext) error
func (*RevocationManager) ApplyDelete ¶
func (self *RevocationManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*RevocationManager) ApplyUpdate ¶
func (self *RevocationManager) ApplyUpdate(_ *command.UpdateEntityCommand[*Revocation], ctx boltz.MutateContext) error
func (*RevocationManager) BaseList ¶
func (self *RevocationManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*RevocationManager) BaseLoadInTx ¶
func (*RevocationManager) BasePreparedList ¶
func (self *RevocationManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*RevocationManager) BasePreparedListIndexed ¶
func (self *RevocationManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*RevocationManager) Create ¶
func (self *RevocationManager) Create(entity *Revocation, ctx *change.Context) error
func (*RevocationManager) GetAnnotation ¶
func (*RevocationManager) GetEntityTypeId ¶
func (self *RevocationManager) GetEntityTypeId() string
func (*RevocationManager) GetStore ¶
func (self *RevocationManager) GetStore() boltz.EntityStore[PE]
func (*RevocationManager) ListWithHandler ¶
func (self *RevocationManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*RevocationManager) Marshall ¶
func (self *RevocationManager) Marshall(entity *Revocation) ([]byte, error)
func (*RevocationManager) PreparedListAssociatedWithHandler ¶
func (*RevocationManager) PreparedListIndexed ¶
func (self *RevocationManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*RevocationManager) PreparedListWithHandler ¶
func (self *RevocationManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*RevocationManager) Read ¶
func (self *RevocationManager) Read(id string) (*Revocation, error)
func (*RevocationManager) Unmarshall ¶
func (self *RevocationManager) Unmarshall(bytes []byte) (*Revocation, error)
type Schemas ¶
type Schemas interface { GetEnrollErPost() *gojsonschema.Schema GetEnrollUpdbPost() *gojsonschema.Schema }
type SdkInfo ¶
type Service ¶
type Service struct { models.BaseEntity Name string `json:"name"` MaxIdleTime time.Duration `json:"maxIdleTime"` TerminatorStrategy string `json:"terminatorStrategy"` RoleAttributes []string `json:"roleAttributes"` Configs []string `json:"configs"` EncryptionRequired bool `json:"encryptionRequired"` }
type ServiceConfig ¶
type ServiceDetail ¶
type ServiceDetail struct { models.BaseEntity Name string `json:"name"` MaxIdleTime time.Duration `json:"maxIdleTime"` TerminatorStrategy string `json:"terminatorStrategy"` RoleAttributes []string `json:"roleAttributes"` Permissions []string `json:"permissions"` Configs []string `json:"configs"` Config map[string]map[string]interface{} `json:"config"` EncryptionRequired bool `json:"encryptionRequired"` }
type ServiceDetailLister ¶
type ServiceDetailLister struct {
// contains filtered or unexported fields
}
func (*ServiceDetailLister) BaseLoadInTx ¶
func (self *ServiceDetailLister) BaseLoadInTx(tx *bbolt.Tx, id string) (*ServiceDetail, error)
func (*ServiceDetailLister) BasePreparedList ¶
func (self *ServiceDetailLister) BasePreparedList(query ast.Query) (*models.EntityListResult[*ServiceDetail], error)
func (*ServiceDetailLister) BasePreparedListIndexed ¶
func (self *ServiceDetailLister) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[*ServiceDetail], error)
func (*ServiceDetailLister) GetListStore ¶
func (self *ServiceDetailLister) GetListStore() boltz.Store
type ServiceEdgeRouterPolicy ¶
type ServiceEdgeRouterPolicyManager ¶
type ServiceEdgeRouterPolicyManager struct {
// contains filtered or unexported fields
}
func NewServiceEdgeRouterPolicyManager ¶
func NewServiceEdgeRouterPolicyManager(env Env) *ServiceEdgeRouterPolicyManager
func (*ServiceEdgeRouterPolicyManager) Annotate ¶
func (self *ServiceEdgeRouterPolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*ServiceEdgeRouterPolicyManager) ApplyCreate ¶
func (self *ServiceEdgeRouterPolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*ServiceEdgeRouterPolicy], ctx boltz.MutateContext) error
func (*ServiceEdgeRouterPolicyManager) ApplyDelete ¶
func (self *ServiceEdgeRouterPolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*ServiceEdgeRouterPolicyManager) ApplyUpdate ¶
func (self *ServiceEdgeRouterPolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ServiceEdgeRouterPolicy], ctx boltz.MutateContext) error
func (*ServiceEdgeRouterPolicyManager) BaseList ¶
func (self *ServiceEdgeRouterPolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*ServiceEdgeRouterPolicyManager) BaseLoadInTx ¶
func (*ServiceEdgeRouterPolicyManager) BasePreparedList ¶
func (self *ServiceEdgeRouterPolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*ServiceEdgeRouterPolicyManager) BasePreparedListIndexed ¶
func (self *ServiceEdgeRouterPolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*ServiceEdgeRouterPolicyManager) Create ¶
func (self *ServiceEdgeRouterPolicyManager) Create(entity *ServiceEdgeRouterPolicy, ctx *change.Context) error
func (*ServiceEdgeRouterPolicyManager) GetAnnotation ¶
func (*ServiceEdgeRouterPolicyManager) GetEntityTypeId ¶
func (self *ServiceEdgeRouterPolicyManager) GetEntityTypeId() string
func (*ServiceEdgeRouterPolicyManager) GetEnv ¶
func (self *ServiceEdgeRouterPolicyManager) GetEnv() Env
func (*ServiceEdgeRouterPolicyManager) GetStore ¶
func (self *ServiceEdgeRouterPolicyManager) GetStore() boltz.EntityStore[PE]
func (*ServiceEdgeRouterPolicyManager) ListWithHandler ¶
func (self *ServiceEdgeRouterPolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*ServiceEdgeRouterPolicyManager) Marshall ¶
func (self *ServiceEdgeRouterPolicyManager) Marshall(entity *ServiceEdgeRouterPolicy) ([]byte, error)
func (*ServiceEdgeRouterPolicyManager) PreparedListAssociatedWithHandler ¶
func (*ServiceEdgeRouterPolicyManager) PreparedListIndexed ¶
func (self *ServiceEdgeRouterPolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*ServiceEdgeRouterPolicyManager) PreparedListWithHandler ¶
func (self *ServiceEdgeRouterPolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*ServiceEdgeRouterPolicyManager) Unmarshall ¶
func (self *ServiceEdgeRouterPolicyManager) Unmarshall(bytes []byte) (*ServiceEdgeRouterPolicy, error)
func (*ServiceEdgeRouterPolicyManager) Update ¶
func (self *ServiceEdgeRouterPolicyManager) Update(entity *ServiceEdgeRouterPolicy, checker fields.UpdatedFields, ctx *change.Context) error
type ServiceListResult ¶
type ServiceListResult struct { Services []*ServiceDetail models.QueryMetaData // contains filtered or unexported fields }
type ServicePolicy ¶
type ServicePolicyManager ¶
type ServicePolicyManager struct {
// contains filtered or unexported fields
}
func NewServicePolicyManager ¶
func NewServicePolicyManager(env Env) *ServicePolicyManager
func (*ServicePolicyManager) Annotate ¶
func (self *ServicePolicyManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*ServicePolicyManager) ApplyCreate ¶
func (self *ServicePolicyManager) ApplyCreate(cmd *command.CreateEntityCommand[*ServicePolicy], ctx boltz.MutateContext) error
func (*ServicePolicyManager) ApplyDelete ¶
func (self *ServicePolicyManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*ServicePolicyManager) ApplyUpdate ¶
func (self *ServicePolicyManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*ServicePolicy], ctx boltz.MutateContext) error
func (*ServicePolicyManager) BaseList ¶
func (self *ServicePolicyManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*ServicePolicyManager) BaseLoadInTx ¶
func (*ServicePolicyManager) BasePreparedList ¶
func (self *ServicePolicyManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*ServicePolicyManager) BasePreparedListIndexed ¶
func (self *ServicePolicyManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*ServicePolicyManager) Create ¶
func (self *ServicePolicyManager) Create(entity *ServicePolicy, ctx *change.Context) error
func (*ServicePolicyManager) GetAnnotation ¶
func (*ServicePolicyManager) GetEntityTypeId ¶
func (self *ServicePolicyManager) GetEntityTypeId() string
func (*ServicePolicyManager) GetStore ¶
func (self *ServicePolicyManager) GetStore() boltz.EntityStore[PE]
func (*ServicePolicyManager) ListWithHandler ¶
func (self *ServicePolicyManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*ServicePolicyManager) Marshall ¶
func (self *ServicePolicyManager) Marshall(entity *ServicePolicy) ([]byte, error)
func (*ServicePolicyManager) PreparedListAssociatedWithHandler ¶
func (*ServicePolicyManager) PreparedListIndexed ¶
func (self *ServicePolicyManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*ServicePolicyManager) PreparedListWithHandler ¶
func (self *ServicePolicyManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*ServicePolicyManager) Unmarshall ¶
func (self *ServicePolicyManager) Unmarshall(bytes []byte) (*ServicePolicy, error)
func (*ServicePolicyManager) Update ¶
func (self *ServicePolicyManager) Update(entity *ServicePolicy, checker fields.UpdatedFields, ctx *change.Context) error
type ServiceWithTimeout ¶
type SessionListResult ¶
type SessionListResult struct { Sessions []*Session models.QueryMetaData // contains filtered or unexported fields }
type SessionManager ¶
type SessionManager struct {
// contains filtered or unexported fields
}
func NewSessionManager ¶
func NewSessionManager(env Env) *SessionManager
func (*SessionManager) Annotate ¶
func (self *SessionManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*SessionManager) ApplyDelete ¶
func (self *SessionManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*SessionManager) BaseList ¶
func (self *SessionManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*SessionManager) BaseLoadInTx ¶
func (*SessionManager) BasePreparedList ¶
func (self *SessionManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*SessionManager) BasePreparedListIndexed ¶
func (self *SessionManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*SessionManager) Delete ¶
func (self *SessionManager) Delete(id string, ctx *change.Context) error
func (*SessionManager) DeleteForIdentity ¶
func (self *SessionManager) DeleteForIdentity(id, identityId string, ctx *change.Context) error
func (*SessionManager) EvaluatePostureForService ¶
func (self *SessionManager) EvaluatePostureForService(identityId, apiSessionId, sessionType, serviceId, serviceName string) *SessionPostureResult
func (*SessionManager) GetAnnotation ¶
func (*SessionManager) GetEntityTypeId ¶
func (self *SessionManager) GetEntityTypeId() string
func (*SessionManager) GetStore ¶
func (self *SessionManager) GetStore() boltz.EntityStore[PE]
func (*SessionManager) ListSessionsForEdgeRouter ¶
func (self *SessionManager) ListSessionsForEdgeRouter(edgeRouterId string) (*SessionListResult, error)
func (*SessionManager) ListWithHandler ¶
func (self *SessionManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*SessionManager) PreparedListAssociatedWithHandler ¶
func (*SessionManager) PreparedListIndexed ¶
func (self *SessionManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*SessionManager) PreparedListWithHandler ¶
func (self *SessionManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*SessionManager) PublicQueryForIdentity ¶
func (self *SessionManager) PublicQueryForIdentity(sessionIdentity *Identity, query ast.Query) (*SessionListResult, error)
func (*SessionManager) Query ¶
func (self *SessionManager) Query(query string) (*SessionListResult, error)
func (*SessionManager) ReadByToken ¶
func (self *SessionManager) ReadByToken(token string) (*Session, error)
func (*SessionManager) ReadForIdentity ¶
func (self *SessionManager) ReadForIdentity(id string, identityId string) (*Session, error)
type SessionPostureResult ¶
type SessionPostureResult struct { Passed bool Failure *PostureSessionRequestFailure PassingPolicyIds []string Cause *fabricApiError.GenericCauseError }
type TestContext ¶
type TestContext struct { *db.TestContext // contains filtered or unexported fields }
func NewTestContext ¶
func NewTestContext(t *testing.T) *TestContext
func (*TestContext) Cleanup ¶
func (ctx *TestContext) Cleanup()
func (*TestContext) Generate ¶
func (ctx *TestContext) Generate(string, string, jwt.Claims) (string, error)
func (*TestContext) GetApiClientCsrSigner ¶
func (ctx *TestContext) GetApiClientCsrSigner() cert.Signer
func (*TestContext) GetApiServerCsrSigner ¶
func (ctx *TestContext) GetApiServerCsrSigner() cert.Signer
func (*TestContext) GetAuthRegistry ¶
func (ctx *TestContext) GetAuthRegistry() AuthRegistry
func (*TestContext) GetConfig ¶
func (ctx *TestContext) GetConfig() *config.Config
func (*TestContext) GetControlClientCsrSigner ¶
func (ctx *TestContext) GetControlClientCsrSigner() cert.Signer
func (*TestContext) GetDbProvider ¶ added in v0.31.1
func (ctx *TestContext) GetDbProvider() network.DbProvider
func (*TestContext) GetEnrollRegistry ¶
func (ctx *TestContext) GetEnrollRegistry() EnrollmentRegistry
func (*TestContext) GetFingerprintGenerator ¶
func (ctx *TestContext) GetFingerprintGenerator() cert.FingerprintGenerator
func (*TestContext) GetHostController ¶
func (ctx *TestContext) GetHostController() HostController
func (*TestContext) GetJwtSigner ¶
func (ctx *TestContext) GetJwtSigner() jwtsigner.Signer
func (*TestContext) GetManagers ¶
func (ctx *TestContext) GetManagers() *Managers
func (*TestContext) GetMetricsRegistry ¶
func (ctx *TestContext) GetMetricsRegistry() metrics.Registry
func (*TestContext) GetSchemas ¶
func (ctx *TestContext) GetSchemas() Schemas
func (*TestContext) GetServerCert ¶
func (ctx *TestContext) GetServerCert() (*tls.Certificate, string, jwt.SigningMethod)
func (*TestContext) HandleServiceUpdatedEventForIdentityId ¶
func (ctx *TestContext) HandleServiceUpdatedEventForIdentityId(string)
func (*TestContext) Init ¶
func (ctx *TestContext) Init()
func (*TestContext) IsEdgeRouterOnline ¶
func (ctx *TestContext) IsEdgeRouterOnline(string) bool
func (*TestContext) JwtSignerKeyFunc ¶
func (ctx *TestContext) JwtSignerKeyFunc(*jwt.Token) (interface{}, error)
type TransitRouter ¶
type TransitRouter struct { models.BaseEntity Name string Fingerprint *string IsVerified bool IsBase bool UnverifiedFingerprint *string UnverifiedCertPem *string Cost uint16 NoTraversal bool Disabled bool }
func (*TransitRouter) GetName ¶
func (self *TransitRouter) GetName() string
type TransitRouterManager ¶
type TransitRouterManager struct {
// contains filtered or unexported fields
}
func NewTransitRouterManager ¶
func NewTransitRouterManager(env Env) *TransitRouterManager
func (*TransitRouterManager) Annotate ¶
func (self *TransitRouterManager) Annotate(ctx boltz.MutateContext, entityId string, key, value string) error
func (*TransitRouterManager) ApplyCreate ¶
func (self *TransitRouterManager) ApplyCreate(cmd *CreateTransitRouterCmd, ctx boltz.MutateContext) error
func (*TransitRouterManager) ApplyDelete ¶
func (self *TransitRouterManager) ApplyDelete(cmd *command.DeleteEntityCommand, ctx boltz.MutateContext) error
func (*TransitRouterManager) ApplyUpdate ¶
func (self *TransitRouterManager) ApplyUpdate(cmd *command.UpdateEntityCommand[*TransitRouter], ctx boltz.MutateContext) error
func (*TransitRouterManager) BaseList ¶
func (self *TransitRouterManager) BaseList(query string) (*models.EntityListResult[ME], error)
func (*TransitRouterManager) BaseLoadInTx ¶
func (*TransitRouterManager) BasePreparedList ¶
func (self *TransitRouterManager) BasePreparedList(query ast.Query) (*models.EntityListResult[ME], error)
func (*TransitRouterManager) BasePreparedListIndexed ¶
func (self *TransitRouterManager) BasePreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query) (*models.EntityListResult[ME], error)
func (*TransitRouterManager) CollectEnrollments ¶
func (self *TransitRouterManager) CollectEnrollments(id string, collector func(entity *Enrollment) error) error
func (*TransitRouterManager) Create ¶
func (self *TransitRouterManager) Create(txRouter *TransitRouter, ctx *change.Context) error
func (*TransitRouterManager) ExtendEnrollment ¶
func (self *TransitRouterManager) ExtendEnrollment(router *TransitRouter, clientCsrPem []byte, serverCertCsrPem []byte, ctx *change.Context) (*ExtendedCerts, error)
func (*TransitRouterManager) ExtendEnrollmentVerify ¶
func (self *TransitRouterManager) ExtendEnrollmentVerify(router *TransitRouter, ctx *change.Context) error
func (*TransitRouterManager) ExtendEnrollmentWithVerify ¶
func (self *TransitRouterManager) ExtendEnrollmentWithVerify(router *TransitRouter, clientCsrPem []byte, serverCertCsrPem []byte, ctx *change.Context) (*ExtendedCerts, error)
func (*TransitRouterManager) GetAnnotation ¶
func (*TransitRouterManager) GetEntityTypeId ¶
func (self *TransitRouterManager) GetEntityTypeId() string
func (*TransitRouterManager) GetStore ¶
func (self *TransitRouterManager) GetStore() boltz.EntityStore[PE]
func (*TransitRouterManager) ListWithHandler ¶
func (self *TransitRouterManager) ListWithHandler(queryString string, resultHandler models.ListResultHandler) error
func (*TransitRouterManager) Marshall ¶
func (self *TransitRouterManager) Marshall(entity *TransitRouter) ([]byte, error)
func (*TransitRouterManager) PreparedListAssociatedWithHandler ¶
func (*TransitRouterManager) PreparedListIndexed ¶
func (self *TransitRouterManager) PreparedListIndexed(cursorProvider ast.SetCursorProvider, query ast.Query, resultHandler models.ListResultHandler) error
func (*TransitRouterManager) PreparedListWithHandler ¶
func (self *TransitRouterManager) PreparedListWithHandler(query ast.Query, resultHandler models.ListResultHandler) error
func (*TransitRouterManager) ProtobufToTransitRouter ¶
func (self *TransitRouterManager) ProtobufToTransitRouter(msg *edge_cmd_pb.TransitRouter) (*TransitRouter, error)
func (*TransitRouterManager) ReadOneByFingerprint ¶
func (self *TransitRouterManager) ReadOneByFingerprint(fingerprint string) (*TransitRouter, error)
func (*TransitRouterManager) ReadOneByQuery ¶
func (self *TransitRouterManager) ReadOneByQuery(query string) (*TransitRouter, error)
func (*TransitRouterManager) ReadOneByUnverifiedFingerprint ¶
func (self *TransitRouterManager) ReadOneByUnverifiedFingerprint(fingerprint string) (*TransitRouter, error)
func (*TransitRouterManager) TransitRouterToProtobuf ¶
func (self *TransitRouterManager) TransitRouterToProtobuf(entity *TransitRouter) (*edge_cmd_pb.TransitRouter, error)
func (*TransitRouterManager) Unmarshall ¶
func (self *TransitRouterManager) Unmarshall(bytes []byte) (*TransitRouter, error)
func (*TransitRouterManager) Update ¶
func (self *TransitRouterManager) Update(entity *TransitRouter, unrestricted bool, checker fields.UpdatedFields, ctx *change.Context) error
type UpdateServiceConfigsCmd ¶
type UpdateServiceConfigsCmd struct {
// contains filtered or unexported fields
}
func (*UpdateServiceConfigsCmd) Apply ¶
func (self *UpdateServiceConfigsCmd) Apply(ctx boltz.MutateContext) error
func (*UpdateServiceConfigsCmd) Decode ¶
func (self *UpdateServiceConfigsCmd) Decode(env Env, msg *edge_cmd_pb.UpdateServiceConfigsCmd) error
func (*UpdateServiceConfigsCmd) Encode ¶
func (self *UpdateServiceConfigsCmd) Encode() ([]byte, error)
func (*UpdateServiceConfigsCmd) GetChangeContext ¶
func (self *UpdateServiceConfigsCmd) GetChangeContext() *change.Context
Source Files ¶
- api_session_certificate_manager.go
- api_session_certificate_model.go
- api_session_heartbeats.go
- api_session_manager.go
- api_session_model.go
- auth_policy_manager.go
- auth_policy_model.go
- authenticator.go
- authenticator_manager.go
- authenticator_mod_cert.go
- authenticator_mod_ext_jwt.go
- authenticator_mod_updb.go
- authenticator_model.go
- base_manager.go
- base_model.go
- ca_manager.go
- ca_model.go
- config_manager.go
- config_model.go
- config_type_manager.go
- config_type_model.go
- create_terminator_cmd.go
- edge_router_manager.go
- edge_router_model.go
- edge_router_policy_manager.go
- edge_router_policy_model.go
- edge_service_manager.go
- edge_service_model.go
- enrollment.go
- enrollment_manager.go
- enrollment_mod_ca.go
- enrollment_mod_erott.go
- enrollment_mod_ott.go
- enrollment_mod_ottca.go
- enrollment_mod_trott.go
- enrollment_mod_updb.go
- enrollment_model.go
- env.go
- external_jwt_signer_manager.go
- external_jwt_signer_model.go
- hash.go
- identity_manager.go
- identity_model.go
- identity_type_manager.go
- identity_type_model.go
- managers.go
- mfa_manager.go
- mfa_model.go
- pbutils.go
- policy_advisor.go
- posture_check_manager.go
- posture_check_model.go
- posture_check_model_mac.go
- posture_check_model_mfa.go
- posture_check_model_os.go
- posture_check_model_process.go
- posture_check_model_process_multi.go
- posture_check_model_windows_domain.go
- posture_check_type_manager.go
- posture_check_type_model.go
- posture_response_manager.go
- posture_response_model.go
- posture_response_model_domain.go
- posture_response_model_endpoint_state.go
- posture_response_model_mac.go
- posture_response_model_mfa.go
- posture_response_model_os.go
- posture_response_model_process.go
- revocation_manager.go
- revocation_model.go
- service_edge_router_policy_manager.go
- service_edge_router_policy_model.go
- service_policy_manager.go
- service_policy_model.go
- session_manager.go
- session_model.go
- testing.go
- transit_router_manager.go
- transit_router_model.go