auth

package

v0.0.0-...-5004fd2 Latest Latest Go to latest Published: Jan 19, 2024 License: MIT Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/stephenzsy/small-kms

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func AuthorizeAdminOnly(c context.Context) bool
func AuthorizeSelfOrAdmin(c context.Context, namespaceID uuid.UUID) bool
func GetDelegateClient[C, CK any](c context.Context, contextKey CK) *C
func HasRole(c context.Context, roleValue string) bool
func PreconfiguredKeysJWTAuthorization(keys []cloudkey.JsonWebKey, aud string) echo.MiddlewareFunc
func ProxiedAADAuth(next echo.HandlerFunc) echo.HandlerFunc
func ResolveSelfNamespace(c context.Context, nsID string) uuid.UUID
func UnverifiedAADJwtAuth(next echo.HandlerFunc) echo.HandlerFunc
func WithDelegatedClient[C, CK any](c ctx.RequestContext, contextKey CK, ...) (ctx.RequestContext, *C, error)
type AuthIdentity
- func GetAuthIdentity(c context.Context) AuthIdentity
type AzureAppConfidentialIdentity
type AzureIdentity

Constants ¶

View Source

const (
	RoleValueAgentActiveHost   = "Agent.ActiveHost"
	RoleValueCertificateEnroll = "Certificate.Enroll"
)

View Source

const (
	AppConfidentialIdentityContextKey contextKey
)

Variables ¶

This section is empty.

Functions ¶

func AuthorizeAdminOnly ¶

func AuthorizeAdminOnly(c context.Context) bool

Deprecated use authz.AuthorizeAdminOnly instead.

func AuthorizeSelfOrAdmin ¶

func AuthorizeSelfOrAdmin(c context.Context, namespaceID uuid.UUID) bool

func GetDelegateClient ¶

func GetDelegateClient[C, CK any](c context.Context, contextKey CK) *C

func HasRole ¶

func HasRole(c context.Context, roleValue string) bool

func PreconfiguredKeysJWTAuthorization ¶

func PreconfiguredKeysJWTAuthorization(keys []cloudkey.JsonWebKey, aud string) echo.MiddlewareFunc

func ProxiedAADAuth ¶

func ProxiedAADAuth(next echo.HandlerFunc) echo.HandlerFunc

func ResolveSelfNamespace ¶

func ResolveSelfNamespace(c context.Context, nsID string) uuid.UUID

func UnverifiedAADJwtAuth ¶

func UnverifiedAADJwtAuth(next echo.HandlerFunc) echo.HandlerFunc

func WithDelegatedClient ¶

func WithDelegatedClient[C, CK any](c ctx.RequestContext, contextKey CK, getClient func(azcore.TokenCredential) (*C, error)) (ctx.RequestContext, *C, error)

Types ¶

type AuthIdentity ¶

type AuthIdentity interface {
	ClientPrincipalID() uuid.UUID
	ClientPrincipalDisplayName() string
	AppID() string
	HasAdminRole() bool
	HasRole(roleValue string) bool
	GetOnBehalfOfTokenCredential(c context.Context, opts *azidentity.OnBehalfOfCredentialOptions) (azcore.TokenCredential, error)
}

func GetAuthIdentity ¶

func GetAuthIdentity(c context.Context) AuthIdentity

type AzureAppConfidentialIdentity ¶

type AzureAppConfidentialIdentity interface {
	AzureIdentity
	NewOnBehalfOfTokenCredential(userAssertion string, opts *azidentity.OnBehalfOfCredentialOptions) (azcore.TokenCredential, error)
}

type AzureIdentity ¶

type AzureIdentity interface {
	TokenCredential() azcore.TokenCredential
	TenantID() string
	ClientID() string
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL