auth

package

v1.10.0 Latest Latest Go to latest Published: Nov 9, 2021 License: MIT Imports: 7 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/pion/ion

Links

Open Source Insights

Documentation ¶

Index ¶

func StreamServerInterceptor(authFunc AuthFunc) grpc.StreamServerInterceptor
func UnaryServerInterceptor(authFunc AuthFunc) grpc.UnaryServerInterceptor
type AuthConfig
- func (a AuthConfig) KeyFunc(t *jwt.Token) (interface{}, error)
type AuthFunc
type Claims
- func GetClaim(ctx context.Context, ac *AuthConfig) (*Claims, error)
type ServiceAuthFuncOverride
type WrappedServerStream
- func WrapServerStream(stream grpc.ServerStream) *WrappedServerStream
- func (w *WrappedServerStream) Context() context.Context

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func StreamServerInterceptor ¶

func StreamServerInterceptor(authFunc AuthFunc) grpc.StreamServerInterceptor

StreamServerInterceptor returns a new unary server interceptors that performs per-request auth.

func UnaryServerInterceptor ¶

func UnaryServerInterceptor(authFunc AuthFunc) grpc.UnaryServerInterceptor

UnaryServerInterceptor returns a new unary server interceptors that performs per-request auth.

Types ¶

func (AuthConfig) KeyFunc ¶

func (a AuthConfig) KeyFunc(t *jwt.Token) (interface{}, error)

KeyFunc auth key types

type AuthFunc ¶

type AuthFunc func(ctx context.Context, fullMethod string) (context.Context, error)

AuthFunc is the pluggable function that performs authentication.

The passed in `Context` will contain the gRPC metadata.MD object (for header-based authentication) and the peer.Peer information that can contain transport-based credentials (e.g. `credentials.AuthInfo`).

The returned context will be propagated to handlers, allowing user changes to `Context`. However, please make sure that the `Context` returned is a child `Context` of the one passed in.

If error is returned, its `grpc.Code()` will be returned to the user as well as the verbatim message. Please make sure you use `codes.Unauthenticated` (lacking auth) and `codes.PermissionDenied` (authed, but lacking perms) appropriately.

type Claims ¶

type Claims struct {
	UID      string   `json:"uid"`
	SID      string   `json:"sid"`
	Publish  bool     `json:"publish"`
	Subcribe bool     `json:"subscribe"`
	Services []string `json:"services"`
	jwt.StandardClaims
}

claims custom claims type for jwt

func GetClaim ¶

func GetClaim(ctx context.Context, ac *AuthConfig) (*Claims, error)

type ServiceAuthFuncOverride ¶

type ServiceAuthFuncOverride interface {
	AuthFuncOverride(ctx context.Context, fullMethodName string) (context.Context, error)
}

ServiceAuthFuncOverride allows a given gRPC service implementation to override the global `AuthFunc`.

If a service implements the AuthFuncOverride method, it takes precedence over the `AuthFunc` method, and will be called instead of AuthFunc for all method invocations within that service.

type WrappedServerStream ¶

type WrappedServerStream struct {
	grpc.ServerStream
	// WrappedContext is the wrapper's own Context. You can assign it.
	WrappedContext context.Context
}

WrappedServerStream is a thin wrapper around grpc.ServerStream that allows modifying context.

func WrapServerStream ¶

func WrapServerStream(stream grpc.ServerStream) *WrappedServerStream

WrapServerStream returns a ServerStream that has the ability to overwrite context.

func (*WrappedServerStream) Context ¶

func (w *WrappedServerStream) Context() context.Context

Context returns the wrapper's WrappedContext, overwriting the nested grpc.ServerStream.Context()

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL