Documentation ¶
Index ¶
- type OpenIDConnectManager
- func (m *OpenIDConnectManager) CheckProviderExists() (bool, error)
- func (m *OpenIDConnectManager) CreateProvider() error
- func (m *OpenIDConnectManager) DeleteProvider() error
- func (m *OpenIDConnectManager) MakeAssumeRolePolicyDocument() cft.MapOfInterfaces
- func (m *OpenIDConnectManager) MakeAssumeRolePolicyDocumentWithServiceAccountConditions(serviceAccountNamespace, serviceAccountName string) cft.MapOfInterfaces
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type OpenIDConnectManager ¶
type OpenIDConnectManager struct { ProviderARN string // contains filtered or unexported fields }
OpenIDConnectManager hold information about IAM OIDC integration
func NewOpenIDConnectManager ¶
func NewOpenIDConnectManager(iamapi iamiface.IAMAPI, accountID, issuer, partition string) (*OpenIDConnectManager, error)
NewOpenIDConnectManager construct a new IAM OIDC management instance, it can return and error when the given issue URL was invalid
func (*OpenIDConnectManager) CheckProviderExists ¶
func (m *OpenIDConnectManager) CheckProviderExists() (bool, error)
CheckProviderExists will return true when the provider exists, it may return errors if it was unable to call IAM API
func (*OpenIDConnectManager) CreateProvider ¶
func (m *OpenIDConnectManager) CreateProvider() error
CreateProvider will retrieve CA root certificate and compute its thumbprint for the by connecting to it and create the provider using IAM API
func (*OpenIDConnectManager) DeleteProvider ¶
func (m *OpenIDConnectManager) DeleteProvider() error
DeleteProvider will delete the provider using IAM API, it may return an error the API call fails
func (*OpenIDConnectManager) MakeAssumeRolePolicyDocument ¶
func (m *OpenIDConnectManager) MakeAssumeRolePolicyDocument() cft.MapOfInterfaces
func (*OpenIDConnectManager) MakeAssumeRolePolicyDocumentWithServiceAccountConditions ¶
func (m *OpenIDConnectManager) MakeAssumeRolePolicyDocumentWithServiceAccountConditions(serviceAccountNamespace, serviceAccountName string) cft.MapOfInterfaces
MakeAssumeRolePolicyDocumentWithServiceAccountConditions constructs a trust policy document for the given provider