acp

package

v1.3.0 Latest Latest Go to latest Published: Mar 24, 2023 License: AGPL-3.0 Imports: 26 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/traefik/hub-agent-kubernetes

Links

Open Source Insights

Documentation ¶

Index ¶

type ACP
type Client
type Config
- func ConfigFromPolicy(policy *hubv1alpha1.AccessControlPolicy) *Config
- func ConfigFromPolicyWithSecret(policy *hubv1alpha1.AccessControlPolicy, secrets SecretGetter) (*Config, error)
type KubeSecretGetter
- func NewKubeSecretValueGetter(secrets corev1lister.SecretLister) *KubeSecretGetter
- func (g KubeSecretGetter) GetValue(secret *corev1.SecretReference, key string) ([]byte, error)
type OIDCGoogle
type SecretGetter
type Watcher
- func NewWatcher(interval time.Duration, client Client, hubClientSet hubclientset.Interface, ...) *Watcher
- func (w *Watcher) Run(ctx context.Context)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type ACP ¶

type ACP struct {
	Config

	ID      string `json:"id"`
	Name    string `json:"name"`
	Version string `json:"version"`
}

ACP is the Access Control Policy retrieved from the platform.

type Client ¶

type Client interface {
	GetACPs(ctx context.Context) ([]ACP, error)
}

Client for the ACP service.

type Config ¶

type Config struct {
	JWT        *jwt.Config        `json:"jwt,omitempty"`
	BasicAuth  *basicauth.Config  `json:"basicAuth,omitempty"`
	APIKey     *apikey.Config     `json:"apiKey,omitempty"`
	OIDC       *oidc.Config       `json:"oidc,omitempty"`
	OIDCGoogle *OIDCGoogle        `json:"oidcGoogle,omitempty"`
	OAuthIntro *oauthintro.Config `json:"oAuthIntro,omitempty"`
}

Config is the configuration of an Access Control Policy. It is used to set up ACP handlers.

func ConfigFromPolicy ¶

func ConfigFromPolicy(policy *hubv1alpha1.AccessControlPolicy) *Config

ConfigFromPolicy returns an ACP configuration for the given policy without resolving secret references.

func ConfigFromPolicyWithSecret ¶ added in v1.2.0

func ConfigFromPolicyWithSecret(policy *hubv1alpha1.AccessControlPolicy, secrets SecretGetter) (*Config, error)

ConfigFromPolicyWithSecret returns an ACP configuration for the given policy and resolves its secret references.

type KubeSecretGetter ¶ added in v1.2.0

type KubeSecretGetter struct {
	// contains filtered or unexported fields
}

KubeSecretGetter allows getting Kubernetes secrets.

func NewKubeSecretValueGetter ¶ added in v1.2.0

func NewKubeSecretValueGetter(secrets corev1lister.SecretLister) *KubeSecretGetter

NewKubeSecretValueGetter creates a KubeSecretGetter instance.

func (KubeSecretGetter) GetValue ¶ added in v1.2.0

func (g KubeSecretGetter) GetValue(secret *corev1.SecretReference, key string) ([]byte, error)

GetValue returns the value of the given key in the given Kubernetes secret.

type OIDCGoogle ¶ added in v0.6.0

type OIDCGoogle struct {
	oidc.Config

	Emails []string `json:"emails,omitempty"`
}

OIDCGoogle is the Google OIDC configuration.

type SecretGetter ¶ added in v1.2.0

type SecretGetter interface {
	GetValue(secret *corev1.SecretReference, key string) ([]byte, error)
}

SecretGetter allows getting secrets.

type Watcher ¶

type Watcher struct {
	// contains filtered or unexported fields
}

Watcher watches hub ACPs.

func NewWatcher ¶

func NewWatcher(interval time.Duration, client Client, hubClientSet hubclientset.Interface, hubInformer hubinformer.SharedInformerFactory) *Watcher

NewWatcher returns a new Watcher.

func (*Watcher) Run ¶

func (w *Watcher) Run(ctx context.Context)

Run runs Watcher.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
admission
ingclass
reviewer
apikey
auth
basicauth
expr
jwt
oauthintro
oidc
token

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL