Documentation ¶
Index ¶
- func AttestedNodeToProto(node *common.AttestedNode, selectors []*types.Selector) (*types.Agent, error)
- func BundleToProto(b *common.Bundle) (*types.Bundle, error)
- func CertificatesToProto(rootCas []*common.Certificate) []*types.X509Certificate
- func CreateStatus(code codes.Code, format string, a ...interface{}) *types.Status
- func HashByte(b []byte) string
- func MakeErr(log logrus.FieldLogger, code codes.Code, msg string, err error) error
- func MakeStatus(log logrus.FieldLogger, code codes.Code, msg string, err error) *types.Status
- func OK() *types.Status
- func ParseJWTAuthorities(keys []*types.JWTKey) ([]*common.PublicKey, error)
- func ParseX509Authorities(certs []*types.X509Certificate) ([]*common.Certificate, error)
- func ProtoFromAttestedNode(n *common.AttestedNode) (*types.Agent, error)
- func ProtoFromID(id spiffeid.ID) *types.SPIFFEID
- func ProtoFromSelectors(in []*common.Selector) []*types.Selector
- func ProtoToBundle(b *types.Bundle) (*common.Bundle, error)
- func ProtoToBundleMask(mask *types.BundleMask) *common.BundleMask
- func ProtoToRegistrationEntry(td spiffeid.TrustDomain, e *types.Entry) (*common.RegistrationEntry, error)
- func ProtoToRegistrationEntryWithMask(td spiffeid.TrustDomain, e *types.Entry, mask *types.EntryMask) (*common.RegistrationEntry, error)
- func PublicKeysToProto(keys []*common.PublicKey) []*types.JWTKey
- func RegistrationEntriesToProto(es []*common.RegistrationEntry) ([]*types.Entry, error)
- func RegistrationEntryToProto(e *common.RegistrationEntry) (*types.Entry, error)
- func SelectorFieldFromProto(proto []*types.Selector) string
- func SelectorsFromProto(proto []*types.Selector) ([]*common.Selector, error)
- func TrustDomainAgentIDFromProto(td spiffeid.TrustDomain, protoID *types.SPIFFEID) (spiffeid.ID, error)
- func TrustDomainMemberIDFromProto(td spiffeid.TrustDomain, protoID *types.SPIFFEID) (spiffeid.ID, error)
- func TrustDomainWorkloadIDFromProto(td spiffeid.TrustDomain, protoID *types.SPIFFEID) (spiffeid.ID, error)
- func VerifyTrustDomainAgentID(td spiffeid.TrustDomain, id spiffeid.ID) error
- func VerifyTrustDomainMemberID(td spiffeid.TrustDomain, id spiffeid.ID) error
- func VerifyTrustDomainWorkloadID(td spiffeid.TrustDomain, id spiffeid.ID) error
- type AuthorizedEntryFetcher
- type AuthorizedEntryFetcherFunc
- type RateLimiter
- type RateLimiterFunc
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func AttestedNodeToProto ¶ added in v0.11.0
func AttestedNodeToProto(node *common.AttestedNode, selectors []*types.Selector) (*types.Agent, error)
AttestedNodeToProto converts an agent from the given *common.AttestedNode with the provided selectors to *types.Agent
func CertificatesToProto ¶
func CertificatesToProto(rootCas []*common.Certificate) []*types.X509Certificate
func CreateStatus ¶
CreateStatus creates a proto Status
func MakeErr ¶ added in v0.11.0
MakeErr logs and returns an error composed of: msg, err and code. Errors are treated differently according to its gRPC code.
func MakeStatus ¶ added in v0.11.0
MakeStatus logs and returns a status composed of: msg, err and code. Errors are treated differently according to its gRPC code.
func ParseJWTAuthorities ¶
func ParseX509Authorities ¶ added in v0.11.0
func ParseX509Authorities(certs []*types.X509Certificate) ([]*common.Certificate, error)
func ProtoFromAttestedNode ¶ added in v0.11.0
func ProtoFromAttestedNode(n *common.AttestedNode) (*types.Agent, error)
func ProtoFromID ¶
ProtoFromID converts a SPIFFE ID from the given spiffeid.ID to types.SPIFFEID
func ProtoFromSelectors ¶ added in v0.11.0
func ProtoToBundleMask ¶ added in v0.11.0
func ProtoToBundleMask(mask *types.BundleMask) *common.BundleMask
func ProtoToRegistrationEntry ¶
func ProtoToRegistrationEntry(td spiffeid.TrustDomain, e *types.Entry) (*common.RegistrationEntry, error)
ProtoToRegistrationEntry converts and validate entry into common registration entry
func ProtoToRegistrationEntryWithMask ¶ added in v0.11.0
func ProtoToRegistrationEntryWithMask(td spiffeid.TrustDomain, e *types.Entry, mask *types.EntryMask) (*common.RegistrationEntry, error)
ProtoToRegistrationEntryWithMask converts and validate entry into common registration entry, while allowing empty values for SpiffeId, ParentId, and Selectors IF their corresponding values in the mask are false. This allows the user to not specify these fields while updating using a mask. All other fields are allowed to be empty (with or without a mask).
func RegistrationEntriesToProto ¶ added in v0.11.0
func RegistrationEntriesToProto(es []*common.RegistrationEntry) ([]*types.Entry, error)
RegistrationEntriesToProto converts RegistrationEntry's into Entry's
func RegistrationEntryToProto ¶
func RegistrationEntryToProto(e *common.RegistrationEntry) (*types.Entry, error)
RegistrationEntryToProto converts RegistrationEntry into types Entry
func SelectorFieldFromProto ¶ added in v1.0.1
func SelectorsFromProto ¶ added in v0.11.0
SelectorsFromProto converts a slice of types.Selector to a slice of common.Selector
func TrustDomainAgentIDFromProto ¶ added in v0.11.0
func TrustDomainMemberIDFromProto ¶ added in v0.11.0
func TrustDomainWorkloadIDFromProto ¶ added in v0.11.0
func VerifyTrustDomainAgentID ¶ added in v0.11.0
func VerifyTrustDomainAgentID(td spiffeid.TrustDomain, id spiffeid.ID) error
func VerifyTrustDomainMemberID ¶ added in v0.11.0
func VerifyTrustDomainMemberID(td spiffeid.TrustDomain, id spiffeid.ID) error
func VerifyTrustDomainWorkloadID ¶ added in v0.11.0
func VerifyTrustDomainWorkloadID(td spiffeid.TrustDomain, id spiffeid.ID) error
Types ¶
type AuthorizedEntryFetcher ¶ added in v0.11.0
type AuthorizedEntryFetcher interface { // FetchAuthorizedEntries fetches the entries that the specified // SPIFFE ID is authorized for FetchAuthorizedEntries(ctx context.Context, id spiffeid.ID) ([]*types.Entry, error) }
AuthorizedEntryFetcher is the interface to fetch authorized entries
type AuthorizedEntryFetcherFunc ¶ added in v0.11.0
AuthorizedEntryFetcherFunc is an implementation of AuthorizedEntryFetcher using a function.
func (AuthorizedEntryFetcherFunc) FetchAuthorizedEntries ¶ added in v0.11.0
func (fn AuthorizedEntryFetcherFunc) FetchAuthorizedEntries(ctx context.Context, id spiffeid.ID) ([]*types.Entry, error)
FetchAuthorizedEntries fetches the entries that the specified SPIFFE ID is authorized for