Documentation ¶
Index ¶
- func IsUntrackedUDSAuth(authInfo credentials.AuthInfo) bool
- func StreamAuthorizeCall(srv interface{}, ss grpc.ServerStream, info *grpc.StreamServerInfo, ...) error
- func UnaryAuthorizeCall(ctx context.Context, req interface{}, info *grpc.UnaryServerInfo, ...) (interface{}, error)
- func UntrackedUDSCredentials() credentials.TransportCredentials
- type Authorizer
- type AuthorizerFunc
- type UntrackedUDSAuthInfo
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func IsUntrackedUDSAuth ¶ added in v0.11.0
func IsUntrackedUDSAuth(authInfo credentials.AuthInfo) bool
func StreamAuthorizeCall ¶
func StreamAuthorizeCall(srv interface{}, ss grpc.ServerStream, info *grpc.StreamServerInfo, handler grpc.StreamHandler) error
func UnaryAuthorizeCall ¶
func UnaryAuthorizeCall(ctx context.Context, req interface{}, info *grpc.UnaryServerInfo, handler grpc.UnaryHandler) (interface{}, error)
func UntrackedUDSCredentials ¶ added in v0.11.0
func UntrackedUDSCredentials() credentials.TransportCredentials
UntrackedUDSCredentials returns credentials for UDS servers that rely solely on file permissions for access control. If the caller information (e.g. PID, UID, GID) is in any way used for further access control or authorization decisions, these credentials SHOULD NOT be used. The peertracker package should instead be used, which provides mitigation against PID reuse and related attacks.
Types ¶
type Authorizer ¶
type AuthorizerFunc ¶
func (AuthorizerFunc) AuthorizeCall ¶
type UntrackedUDSAuthInfo ¶ added in v0.11.0
type UntrackedUDSAuthInfo struct{}
func (UntrackedUDSAuthInfo) AuthType ¶ added in v0.11.0
func (UntrackedUDSAuthInfo) AuthType() string
Click to show internal directories.
Click to hide internal directories.