server

package
v0.9.4 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Mar 4, 2021 License: Apache-2.0 Imports: 32 Imported by: 1

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Config

type Config struct {
	// Configurations for server plugins
	PluginConfigs common.HCLPluginConfigMap

	Log logrus.FieldLogger

	// Address of SPIRE server
	BindAddress *net.TCPAddr

	// Address of the UDS SPIRE server
	BindUDSAddress *net.UnixAddr

	// Directory to store runtime data
	DataDir string

	// Trust domain
	TrustDomain url.URL

	UpstreamBundle bool

	Experimental ExperimentalConfig

	// If true enables profiling.
	ProfilingEnabled bool

	// Port used by the pprof web server when ProfilingEnabled == true
	ProfilingPort int

	// Frequency in seconds by which each profile file will be generated.
	ProfilingFreq int

	// Array of profiles names that will be generated on each profiling tick.
	ProfilingNames []string

	// SVIDTTL is default time-to-live for SVIDs
	SVIDTTL time.Duration

	// CATTL is the time-to-live for the server CA. This only applies to
	// self-signed CA certificates, otherwise it is up to the upstream CA.
	CATTL time.Duration

	// JWTIssuer is used as the issuer claim in JWT-SVIDs minted by the server.
	// If unset, the JWT-SVID will not have an issuer claim.
	JWTIssuer string

	// CASubject is the subject used in the CA certificate
	CASubject pkix.Name

	// Telemetry provides the configuration for metrics exporting
	Telemetry telemetry.FileConfig

	// HealthChecks provides the configuration for health monitoring
	HealthChecks health.Config

	// CAKeyType is the key type used for the X509 and JWT signing keys
	CAKeyType keymanager.KeyType
}

type ExperimentalConfig

type ExperimentalConfig struct {
	// Skip agent id validation in node attestation
	AllowAgentlessNodeAttestors bool

	// BundleEndpointEnabled, if true, enables the federation bundle endpoint
	BundleEndpointEnabled bool

	// BundleEndpointAddress is the address on which to serve the federation
	// bundle endpoint.
	BundleEndpointAddress *net.TCPAddr

	// BundleEndpointACME is the ACME configuration for the bundle endpoint.
	// If unset, the bundle endpoint will use SPIFFE auth.
	BundleEndpointACME *bundle.ACMEConfig

	// FederatesWith holds the federation configuration for trust domains this
	// server federates with.
	FederatesWith map[string]bundle_client.TrustDomainConfig
}

type Server

type Server struct {
	// contains filtered or unexported fields
}

func New

func New(config Config) *Server

func (*Server) Run

func (s *Server) Run(ctx context.Context) error

Run the server This method initializes the server, including its plugins, and then blocks until it's shut down or an error is encountered.

func (*Server) Status

func (s *Server) Status() (interface{}, error)

Status is used as a top-level health check for the Server.

Directories

Path Synopsis
bundle
bundle/internal/acmetest
nolint // forked code
nolint // forked code
bundle/internal/autocert
nolint // forked code nolint // forked code nolint // forked code
nolint // forked code nolint // forked code nolint // forked code
hostservices
plugin
datastore
Provides interfaces and adapters for the DataStore service Generated code.
Provides interfaces and adapters for the DataStore service Generated code.
hostservices
Provides interfaces and adapters for the AgentStore service Generated code.
Provides interfaces and adapters for the AgentStore service Generated code.
keymanager
Provides interfaces and adapters for the KeyManager service Generated code.
Provides interfaces and adapters for the KeyManager service Generated code.
nodeattestor
Provides interfaces and adapters for the NodeAttestor service Generated code.
Provides interfaces and adapters for the NodeAttestor service Generated code.
noderesolver
Provides interfaces and adapters for the NodeResolver service Generated code.
Provides interfaces and adapters for the NodeResolver service Generated code.
notifier
Provides interfaces and adapters for the Notifier service Generated code.
Provides interfaces and adapters for the Notifier service Generated code.
upstreamca
Provides interfaces and adapters for the UpstreamCA service Generated code.
Provides interfaces and adapters for the UpstreamCA service Generated code.
upstreamca/aws
Package aws is a generated GoMock package.
Package aws is a generated GoMock package.
util

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL