tigerakvc

Documentation

Index

• Constants
• func New(issuerURL string, clientID string, options ...Option) (authentication.KeyValidatorConfig, error)
• type KeyValidatorConfig
  • func (kvc *KeyValidatorConfig) ClientID() string
  • func (kvc *KeyValidatorConfig) Issuer() string
  • func (kvc *KeyValidatorConfig) RequiredAnnotations() map[string]string
  • func (kvc *KeyValidatorConfig) RequiredConfigMaps(namespace string) []*corev1.ConfigMap
  • func (kvc *KeyValidatorConfig) RequiredEnv(prefix string) []corev1.EnvVar
  • func (kvc *KeyValidatorConfig) RequiredSecrets(namespace string) []*corev1.Secret
  • func (kvc *KeyValidatorConfig) RequiredVolumeMounts() []corev1.VolumeMount
  • func (kvc *KeyValidatorConfig) RequiredVolumes() []corev1.Volume
• type Option
  • func WithGroupsClaim(groupClaim string) Option
  • func WithGroupsPrefix(groupsPrefix string) Option
  • func WithRootCA(rootCA []byte) Option
  • func WithUsernameClaim(usernameClaim string) Option
  • func WithUsernamePrefix(usernamePrefix string) Option

Constants

const (
	StaticWellKnownJWKSConfigMapName = "tigera-static-wellknown-jwks"
)

Functions

func New

func New(issuerURL string, clientID string, options ...Option) (authentication.KeyValidatorConfig, error)

Types

type KeyValidatorConfig

type KeyValidatorConfig struct {
	// contains filtered or unexported fields
}

KeyValidatorConfig implements the KeyValidatorConfig interface. It uses the OIDC implicit flow, and maps the wellknown config / jwks keys to a config map.

func (*KeyValidatorConfig) ClientID

func (kvc *KeyValidatorConfig) ClientID() string

func (*KeyValidatorConfig) Issuer

func (kvc *KeyValidatorConfig) Issuer() string

func (*KeyValidatorConfig) RequiredAnnotations

func (kvc *KeyValidatorConfig) RequiredAnnotations() map[string]string

func (*KeyValidatorConfig) RequiredConfigMaps

func (kvc *KeyValidatorConfig) RequiredConfigMaps(namespace string) []*corev1.ConfigMap

func (*KeyValidatorConfig) RequiredEnv

func (kvc *KeyValidatorConfig) RequiredEnv(prefix string) []corev1.EnvVar

func (*KeyValidatorConfig) RequiredSecrets

func (kvc *KeyValidatorConfig) RequiredSecrets(namespace string) []*corev1.Secret

func (*KeyValidatorConfig) RequiredVolumeMounts

func (kvc *KeyValidatorConfig) RequiredVolumeMounts() []corev1.VolumeMount

func (*KeyValidatorConfig) RequiredVolumes

func (kvc *KeyValidatorConfig) RequiredVolumes() []corev1.Volume

type Option

type Option func(*KeyValidatorConfig)

func WithGroupsClaim

func WithGroupsClaim(groupClaim string) Option

func WithGroupsPrefix

func WithGroupsPrefix(groupsPrefix string) Option

func WithRootCA

func WithRootCA(rootCA []byte) Option

func WithUsernameClaim

func WithUsernameClaim(usernameClaim string) Option

func WithUsernamePrefix

func WithUsernamePrefix(usernamePrefix string) Option