scafctl-plugin-sdk

module
v0.4.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 27, 2026 License: Apache-2.0

README

scafctl-plugin-sdk

Go Report Card License Release CI codecov Go Reference Documentation

Lightweight Go SDK for building scafctl plugins. Plugin authors import this module instead of the full scafctl module, keeping plugin binaries small and dependency-free of host-only packages (CEL, OpenTelemetry, secrets, catalog, etc.).

Plugin Types

The SDK supports two plugin types:

  • Provider plugins -- stateless execution primitives (transform, validate, action)
  • Auth handler plugins -- authentication, credential storage, and token management

Both use hashicorp/go-plugin with gRPC for host-plugin communication.

Installation

go get github.com/oakwood-commons/scafctl-plugin-sdk@latest

Quick Start (Provider Plugin)

package main

import (
    "github.com/oakwood-commons/scafctl-plugin-sdk/plugin"
    "github.com/oakwood-commons/scafctl-plugin-sdk/provider"
    "github.com/oakwood-commons/scafctl-plugin-sdk/provider/schemahelper"
)

type myPlugin struct{}

func (p *myPlugin) GetProviders() ([]string, error) {
    return []string{"my-provider"}, nil
}

func (p *myPlugin) GetProviderDescriptor(name string) (*provider.Descriptor, error) {
    return &provider.Descriptor{
        Type:    name,
        Version: "1.0.0",
        Schema:  schemahelper.ObjectSchema(schemahelper.StringProp("name", "Your name")),
    }, nil
}

// ... implement remaining ProviderPlugin interface methods ...

func main() {
    plugin.Serve(&myPlugin{})
}

Quick Start (Auth Handler Plugin)

package main

import (
    "github.com/oakwood-commons/scafctl-plugin-sdk/auth"
    "github.com/oakwood-commons/scafctl-plugin-sdk/plugin"
)

type myAuthPlugin struct{}

func (p *myAuthPlugin) GetAuthHandlers() ([]auth.HandlerInfo, error) {
    return []auth.HandlerInfo{
        {Name: "my-handler", Flows: []auth.Flow{auth.FlowDeviceCode}},
    }, nil
}

// ... implement remaining AuthHandlerPlugin interface methods ...

func main() {
    plugin.ServeAuthHandler(&myAuthPlugin{})
}

Package Layout

Package Purpose
plugin/ Core plugin framework: interfaces, gRPC wiring, Serve() / ServeAuthHandler() entry points
provider/ Provider types: Descriptor, Output, Capability, context helpers
provider/schemahelper/ JSON Schema builder helpers for provider input schemas
auth/ Auth handler types: Flow, Claims, Token, Status, capabilities
testutil/ MockProviderPlugin for integration testing

Architecture

                   scafctl-plugin-sdk
                   (shared contract)
                  /                  \
                 v                    v
           scafctl (host)        each plugin
           imports SDK for       imports SDK to
           types + proto         implement interfaces

See design/plugin-sdk-extraction-plan.md for the full extraction plan.

External Dependencies

The SDK keeps its dependency footprint minimal:

  • github.com/hashicorp/go-plugin -- host-plugin process management
  • github.com/Masterminds/semver/v3 -- version constraint parsing
  • github.com/google/jsonschema-go -- JSON Schema types
  • google.golang.org/grpc + google.golang.org/protobuf -- gRPC transport
  • github.com/go-logr/logr -- structured logging interface

No CEL, no OpenTelemetry, no Cobra, no secrets, no catalog, no solution.

Compatibility

The SDK version is independent of the scafctl version. Wire compatibility is governed by PluginProtocolVersion (integer) in plugin/constants.go.

SDK version Protocol version Compatible scafctl versions
v0.1.x 2 TBD

Contributing

See CONTRIBUTING.md.

License

Apache License 2.0 -- see LICENSE.

Directories

Path Synopsis
Package auth provides authentication handler types and utilities for scafctl plugins.
 Package auth provides authentication handler types and utilities for scafctl plugins.
examples
echo command
staticauth command
Package plugin provides the shared contract between scafctl (host) and plugin binaries.
 Package plugin provides the shared contract between scafctl (host) and plugin binaries.
proto
schemahelper
Package schemahelper provides ergonomic builder functions for constructing jsonschema.Schema objects used in provider descriptors.
 Package schemahelper provides ergonomic builder functions for constructing jsonschema.Schema objects used in provider descriptors.
Package testutil provides test helpers for plugin integration tests.
 Package testutil provides test helpers for plugin integration tests.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.