caddytailscaleauth

package module

v0.0.0-...-0fc63bc Latest Latest Go to latest Published: Oct 12, 2024 License: BSD-3-Clause Imports: 20 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/sprucehealth/caddy-tailscale-auth

Links

Open Source Insights

README ¶

Tailscale authentication plugin for Caddy

This package provides a module for Caddy that implements authentication using the Tailscale network (Tailnet). When a connection comes in over a Tailnet information about the remote party is available such as the user account (for personal devices) and tags (for non-personal "tagged" devices). This information can then be used to limit access to routes.

Building

The xcaddy tool can be used to build Caddy to include this plugin:

xcaddy build --with github.com/sprucehealth/caddy-tailscale-auth

Documentation ¶

Constants ¶

View Source

const (
	PolicyAllow = "allow"
	PolicyDeny  = "deny"
)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type PolicyMatches ¶

type PolicyMatches struct {
	Policy  string
	Matches []string
}

type TailscaleAuth ¶

type TailscaleAuth struct {
	APITailnet                  string              `json:"api_tailnet,omitempty"`
	ExpectedTailnet             string              `json:"expected_tailnet,omitempty"`
	DefaultPolicy               string              `json:"default_policy,omitempty"`
	CapabilityName              string              `json:"capability_name,omitempty"`
	Policies                    []PolicyMatches     `json:"policies,omitempty"`
	Groups                      map[string][]string `json:"groups,omitempty"`
	TailscaleAPIRefreshInterval time.Duration       `json:"tailscale_api_refresh_interval,omitempty"`
	TailscaleOAuthClientID      string              `json:"tailscale_oauth_client_id,omitempty"`
	TailscaleOAuthClientSecret  string              `json:"tailscale_oauth_client_secret,omitempty"`
	// contains filtered or unexported fields
}

func (*TailscaleAuth) Authenticate ¶

func (ta *TailscaleAuth) Authenticate(w http.ResponseWriter, r *http.Request) (caddyauth.User, bool, error)

func (*TailscaleAuth) CaddyModule ¶

func (*TailscaleAuth) CaddyModule() caddy.ModuleInfo

CaddyModule returns the Caddy module information.

func (*TailscaleAuth) Cleanup ¶

func (ta *TailscaleAuth) Cleanup() error

func (*TailscaleAuth) Provision ¶

func (ta *TailscaleAuth) Provision(ctx caddy.Context) error

func (*TailscaleAuth) UnmarshalCaddyfile ¶

func (ta *TailscaleAuth) UnmarshalCaddyfile(d *caddyfile.Dispenser) error

UnmarshalCaddyfile implements caddyfile.Unmarshaler.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL