iamoidc

package
v0.193.0-rc.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 18, 2024 License: Apache-2.0 Imports: 12 Imported by: 18

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type OpenIDConnectManager

type OpenIDConnectManager struct {
	ProviderARN string
	// contains filtered or unexported fields
}

OpenIDConnectManager hold information about IAM OIDC integration

func NewOpenIDConnectManager

func NewOpenIDConnectManager(iamapi awsapi.IAM, accountID, issuer, partition string, tags map[string]string) (*OpenIDConnectManager, error)

NewOpenIDConnectManager constructs a new IAM OIDC manager instance. It returns an error if the issuer URL is invalid

func (*OpenIDConnectManager) CheckProviderExists

func (m *OpenIDConnectManager) CheckProviderExists(ctx context.Context) (bool, error)

CheckProviderExists will return true when the provider exists, it may return errors if it was unable to call IAM API

func (*OpenIDConnectManager) CreateProvider

func (m *OpenIDConnectManager) CreateProvider(ctx context.Context) error

CreateProvider will retrieve CA root certificate and compute its thumbprint for the by connecting to it and create the provider using IAM API

func (*OpenIDConnectManager) DeleteProvider

func (m *OpenIDConnectManager) DeleteProvider(ctx context.Context) error

DeleteProvider will delete the provider using IAM API, it may return an error the API call fails

func (*OpenIDConnectManager) MakeAssumeRolePolicyDocument

func (m *OpenIDConnectManager) MakeAssumeRolePolicyDocument() cft.MapOfInterfaces

func (*OpenIDConnectManager) MakeAssumeRolePolicyDocumentWithServiceAccountConditions

func (m *OpenIDConnectManager) MakeAssumeRolePolicyDocumentWithServiceAccountConditions(serviceAccountNamespace, serviceAccountName string) cft.MapOfInterfaces

MakeAssumeRolePolicyDocumentWithServiceAccountConditions constructs a trust policy document for the given provider

type UnsupportedOIDCError added in v0.102.0

type UnsupportedOIDCError struct {
	Message string
}

UnsupportedOIDCError represents an unsupported OIDC error

func (*UnsupportedOIDCError) Error added in v0.102.0

func (u *UnsupportedOIDCError) Error() string

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL