Documentation
¶
Overview ¶
Package awssts implements the awssts integration provider.
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ErrProviderMetadataRequired indicates provider metadata is required but not supplied ErrProviderMetadataRequired = errors.New("awssts: provider metadata required") // ErrAuthTypeMismatch indicates the provider spec specifies an incompatible auth type ErrAuthTypeMismatch = errors.New("awssts: auth type mismatch") // ErrBeginAuthNotSupported indicates BeginAuth is not supported for AWS STS providers ErrBeginAuthNotSupported = errors.New("awssts: BeginAuth is not supported; configure credentials via metadata") )
Functions ¶
func Builder ¶
func Builder(provider types.ProviderType, opts ...ProviderOption) providers.Builder
Builder returns a providers.Builder that materializes AWS federation metadata.
Types ¶
type Provider ¶
type Provider struct {
// BaseProvider holds shared provider metadata
providers.BaseProvider
}
Provider persists AWS STS metadata and exposes it via CredentialSet.
func (*Provider) BeginAuth ¶
func (p *Provider) BeginAuth(context.Context, types.AuthContext) (types.AuthSession, error)
BeginAuth is not supported for AWS STS metadata flows.
func (*Provider) Mint ¶
func (p *Provider) Mint(_ context.Context, subject types.CredentialSubject) (types.CredentialPayload, error)
Mint validates the stored AWS metadata and persists structured credential fields.
type ProviderOption ¶
type ProviderOption func(*providerConfig)
ProviderOption customizes AWS STS providers.
func WithClientDescriptors ¶ added in v1.9.3
func WithClientDescriptors(descriptors []types.ClientDescriptor) ProviderOption
WithClientDescriptors registers client descriptors for pooling.
func WithOperations ¶
func WithOperations(descriptors []types.OperationDescriptor) ProviderOption
WithOperations registers provider-published operations.
Source Files
Click to show internal directories.
Click to hide internal directories.