Documentation
¶
Index ¶
- Constants
- Variables
- func CreateDelegationSet(ctx context.Context, zoneId *string, r53 Route53API) (*types.DelegationSet, error)
- func CreateHostedZone(ctx context.Context, domain string, r53 Route53API) (*types.HostedZone, error)deprecated
- func DeleteDelegationSet(ctx context.Context, delegationSetId *string, r53 Route53API) error
- func GetAccountID(arn string) string
- func GetDelegationSetByZone(ctx context.Context, zoneId *string, r53 Route53API) (*types.DelegationSet, error)
- func GetHostedZoneTags(ctx context.Context, zoneId string, r53 Route53API) (map[string]string, error)
- func GetHostedZonesByName(ctx context.Context, domain string, r53 Route53API) ([]*types.HostedZone, error)
- func IsParameterNotFoundError(err error) booldeprecated
- func IsS3NoSuchKeyError(err error) booldeprecated
- func ListHostedZonesByDelegationSet(ctx context.Context, delegationSetId *string, r53 Route53API) ([]types.HostedZone, error)
- func ListResourceRecords(ctx context.Context, zoneId, recordName string, recordType types.RRType, ...) ([]string, error)
- func ListReusableDelegationSets(ctx context.Context, r53 Route53API) ([]types.DelegationSet, error)
- func LoadDefaultConfig(ctx context.Context, optFns ...func(*config.LoadOptions) error) (aws.Config, error)
- func MakeARN(partition, service, region, accountId, resourceId string) string
- func PutSecretManagerSecret(ctx context.Context, name, value string, svc SecretManagerAPI) (string, error)
- func RetrieveToken(ctx context.Context, ...) (*awsTokenCache, error)
- type Aws
- func (a *Aws) Authenticate(ctx context.Context, interactive bool) error
- func (a *Aws) CheckImageExistOnPublicECR(ctx context.Context, repo, tag string) (bool, error)
- func (a *Aws) CrossDeviceLogin(ctx context.Context) (*awsTokenCache, error)
- func (a *Aws) DeleteSecrets(ctx context.Context, names ...string) error
- func (a *Aws) GetStackAwsProfileRoleArn(ctx context.Context) (string, string, error)
- func (a *Aws) InteractiveLogin(ctx context.Context) (*awsTokenCache, error)
- func (a *Aws) IsValidSecret(ctx context.Context, name string) (bool, error)
- func (a *Aws) ListSecrets(ctx context.Context) ([]string, error)
- func (a *Aws) ListSecretsByPrefix(ctx context.Context, prefix string) ([]string, error)
- func (a *Aws) LoadConfig(ctx context.Context) (aws.Config, error)
- func (a *Aws) MakeRegionalARN(service, resourceId string) string
- func (a *Aws) PutSecret(ctx context.Context, name, value string) error
- func (a *Aws) RevokeDefaultSecurityGroupRules(ctx context.Context, sgId string) error
- type ErrNoSuchKey
- type ErrParameterNotFound
- type MockS3ClientAPI
- type MockStsClientAPI
- type PublicECRAPI
- type Region
- type Route53API
- type S3GetObjectAPI
- type SecretManagerAPI
- type SsmParametersAPI
- type StsClientAPI
- type TokenExchangeRequest
Constants ¶
View Source
const CreateHostedZoneCommentLegacy = "Created by defang cli"
Variables ¶
View Source
var ( ErrZoneNotFound = errors.New("the Route53 hosted zone was not found") ErrNoRecordFound = errors.New("no Route53 record found in the hosted zone") ErrNoDelegationSetFound = errors.New("no Route53 delegation set found") )
View Source
var NewS3FromConfig = func(cfg aws.Config) S3GetObjectAPI { return s3.NewFromConfig(cfg) }
View Source
var NewSsmFromConfig = func(cfg aws.Config) SsmParametersAPI { return ssm.NewFromConfig(cfg) }
View Source
var NewStsFromConfig = func(cfg aws.Config) StsClientAPI { return sts.NewFromConfig(cfg) }
Functions ¶
func CreateDelegationSet ¶
func CreateDelegationSet(ctx context.Context, zoneId *string, r53 Route53API) (*types.DelegationSet, error)
func CreateHostedZone
deprecated
func CreateHostedZone(ctx context.Context, domain string, r53 Route53API) (*types.HostedZone, error)
Deprecated: let Pulumi create the hosted zone
func DeleteDelegationSet ¶
func DeleteDelegationSet(ctx context.Context, delegationSetId *string, r53 Route53API) error
func GetAccountID ¶
func GetDelegationSetByZone ¶
func GetDelegationSetByZone(ctx context.Context, zoneId *string, r53 Route53API) (*types.DelegationSet, error)
func GetHostedZoneTags ¶
func GetHostedZonesByName ¶
func GetHostedZonesByName(ctx context.Context, domain string, r53 Route53API) ([]*types.HostedZone, error)
func IsParameterNotFoundError
deprecated
func IsS3NoSuchKeyError
deprecated
func ListHostedZonesByDelegationSet ¶
func ListHostedZonesByDelegationSet(ctx context.Context, delegationSetId *string, r53 Route53API) ([]types.HostedZone, error)
func ListResourceRecords ¶
func ListReusableDelegationSets ¶
func ListReusableDelegationSets(ctx context.Context, r53 Route53API) ([]types.DelegationSet, error)
func LoadDefaultConfig ¶
func PutSecretManagerSecret ¶
Types ¶
type Aws ¶
type Aws struct {
AccountID string
Region Region
TokenStore tokenstore.TokenStore
Credentials aws.CredentialsProvider
// contains filtered or unexported fields
}
func (*Aws) Authenticate ¶
Authenticate sets up AWS credentials for the session in order of preference:
- Existing default AWS credentials (env vars, ~/.aws/credentials, instance profile, etc.)
- Previously saved OAuth tokens from the TokenStore (auto-refreshed if expired)
- Interactive browser-based OAuth login
On success, a.Credentials is set so that subsequent calls to LoadConfig() use them.
func (*Aws) CheckImageExistOnPublicECR ¶
func (*Aws) CrossDeviceLogin ¶
CrossDeviceLogin runs the cross-device flow for remote/SSH sessions where the browser runs on a different machine. It prints the auth URL and prompts the user to paste the base64-encoded verification code displayed in their browser. TODO: Support cross device login workflow with a flag
func (*Aws) GetStackAwsProfileRoleArn ¶
func (*Aws) InteractiveLogin ¶
InteractiveLogin runs the same-device AWS Sign-In OAuth2 + PKCE + DPoP browser flow:
- Starts a local HTTP server on a random port to receive the redirect
- Builds the authorization URL and prompts the user to open it (Enter opens browser)
- Waits for the callback with code+state
- Exchanges the code for AWS credentials via DPoP-signed token request
func (*Aws) IsValidSecret ¶
func (*Aws) ListSecretsByPrefix ¶
func (*Aws) MakeRegionalARN ¶
type ErrNoSuchKey ¶
type ErrParameterNotFound ¶
type ErrParameterNotFound = types.ParameterNotFound
type MockS3ClientAPI ¶
type MockS3ClientAPI struct{}
func (MockS3ClientAPI) GetObject ¶
func (MockS3ClientAPI) GetObject(ctx context.Context, params *s3.GetObjectInput, optFns ...func(*s3.Options)) (*s3.GetObjectOutput, error)
type MockStsClientAPI ¶
type MockStsClientAPI struct{}
func (MockStsClientAPI) AssumeRole ¶
func (MockStsClientAPI) AssumeRole(ctx context.Context, params *sts.AssumeRoleInput, optFns ...func(*sts.Options)) (*sts.AssumeRoleOutput, error)
func (MockStsClientAPI) GetCallerIdentity ¶
func (MockStsClientAPI) GetCallerIdentity(ctx context.Context, params *sts.GetCallerIdentityInput, optFns ...func(*sts.Options)) (*sts.GetCallerIdentityOutput, error)
type PublicECRAPI ¶
type PublicECRAPI interface {
GetAuthorizationToken(ctx context.Context, params *ecrpublic.GetAuthorizationTokenInput, optFns ...func(*ecrpublic.Options)) (*ecrpublic.GetAuthorizationTokenOutput, error)
}
type Route53API ¶
type Route53API interface {
CreateHostedZone(ctx context.Context, params *route53.CreateHostedZoneInput, optFns ...func(*route53.Options)) (*route53.CreateHostedZoneOutput, error)
CreateReusableDelegationSet(ctx context.Context, params *route53.CreateReusableDelegationSetInput, optFns ...func(*route53.Options)) (*route53.CreateReusableDelegationSetOutput, error)
DeleteReusableDelegationSet(ctx context.Context, params *route53.DeleteReusableDelegationSetInput, optFns ...func(*route53.Options)) (*route53.DeleteReusableDelegationSetOutput, error)
GetHostedZone(ctx context.Context, params *route53.GetHostedZoneInput, optFns ...func(*route53.Options)) (*route53.GetHostedZoneOutput, error)
ListReusableDelegationSets(ctx context.Context, params *route53.ListReusableDelegationSetsInput, optFns ...func(*route53.Options)) (*route53.ListReusableDelegationSetsOutput, error)
ListHostedZones(ctx context.Context, params *route53.ListHostedZonesInput, optFns ...func(*route53.Options)) (*route53.ListHostedZonesOutput, error)
ListHostedZonesByName(ctx context.Context, params *route53.ListHostedZonesByNameInput, optFns ...func(*route53.Options)) (*route53.ListHostedZonesByNameOutput, error)
ListResourceRecordSets(ctx context.Context, params *route53.ListResourceRecordSetsInput, optFns ...func(*route53.Options)) (*route53.ListResourceRecordSetsOutput, error)
ListTagsForResource(ctx context.Context, params *route53.ListTagsForResourceInput, optFns ...func(*route53.Options)) (*route53.ListTagsForResourceOutput, error)
}
type S3GetObjectAPI ¶
type S3GetObjectAPI interface {
GetObject(ctx context.Context, params *s3.GetObjectInput, optFns ...func(*s3.Options)) (*s3.GetObjectOutput, error)
}
type SecretManagerAPI ¶
type SecretManagerAPI interface {
CreateSecret(ctx context.Context, params *secretsmanager.CreateSecretInput, optFns ...func(*secretsmanager.Options)) (*secretsmanager.CreateSecretOutput, error)
UpdateSecret(ctx context.Context, params *secretsmanager.UpdateSecretInput, optFns ...func(*secretsmanager.Options)) (*secretsmanager.UpdateSecretOutput, error)
RestoreSecret(ctx context.Context, params *secretsmanager.RestoreSecretInput, optFns ...func(*secretsmanager.Options)) (*secretsmanager.RestoreSecretOutput, error)
}
type SsmParametersAPI ¶
type SsmParametersAPI interface {
DescribeParameters(ctx context.Context, params *ssm.DescribeParametersInput, optFns ...func(*ssm.Options)) (*ssm.DescribeParametersOutput, error)
PutParameter(ctx context.Context, params *ssm.PutParameterInput, optFns ...func(*ssm.Options)) (*ssm.PutParameterOutput, error)
DeleteParameters(ctx context.Context, params *ssm.DeleteParametersInput, optFns ...func(*ssm.Options)) (*ssm.DeleteParametersOutput, error)
GetParameters(ctx context.Context, params *ssm.GetParametersInput, optFns ...func(*ssm.Options)) (*ssm.GetParametersOutput, error)
GetParametersByPath(ctx context.Context, params *ssm.GetParametersByPathInput, optFns ...func(*ssm.Options)) (*ssm.GetParametersByPathOutput, error)
}
type StsClientAPI ¶
type StsClientAPI interface {
GetCallerIdentity(ctx context.Context, params *sts.GetCallerIdentityInput, optFns ...func(*sts.Options)) (*sts.GetCallerIdentityOutput, error)
AssumeRole(ctx context.Context, params *sts.AssumeRoleInput, optFns ...func(*sts.Options)) (*sts.AssumeRoleOutput, error)
}
type TokenExchangeRequest ¶
type TokenExchangeRequest struct {
ClientID string `json:"clientId"`
GrantType string `json:"grantType"` // "authorization_code" or "refresh_token"
Code string `json:"code,omitempty"`
CodeVerifier string `json:"codeVerifier,omitempty"`
RedirectURI string `json:"redirectUri,omitempty"`
RefreshToken string `json:"refreshToken,omitempty"`
}
Source Files
¶
Directories
Click to show internal directories.
Click to hide internal directories.