Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func IsInsecureDevMode ¶
func IsInsecureDevMode() bool
IsInsecureDevMode returns 'true' if Teleport daemon was started with the --insecure flag
func SetInsecureDevMode ¶
func SetInsecureDevMode(m bool)
SetInsecureDevMode turns the 'insecure' mode on. In this mode Teleport accepts self-signed HTTPS certificates (for development only!)
Types ¶
This section is empty.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package agentless provides functions to allow connecting to registered OpenSSH (agentless) nodes.
|
Package agentless provides functions to allow connecting to registered OpenSSH (agentless) nodes. |
|
Package asciitable implements a simple ASCII table formatter for printing tabular values into a text terminal.
|
Package asciitable implements a simple ASCII table formatter for printing tabular values into a text terminal. |
|
Package auth implements certificate signing authority and access control server Authority server is composed of several parts:
|
Package auth implements certificate signing authority and access control server Authority server is composed of several parts: |
|
accesspoint
package accesspoint provides helpers for configuring caches in the context of setting up service-level auth access points.
|
package accesspoint provides helpers for configuring caches in the context of setting up service-level auth access points. |
|
authclient
Package authclient contains common code for creating an auth server client which may use SSH tunneling through a proxy.
|
Package authclient contains common code for creating an auth server client which may use SSH tunneling through a proxy. |
|
keystore
Package keystore provides a generic client and associated helpers for handling private keys that may be backed by an HSM or KMS.
|
Package keystore provides a generic client and associated helpers for handling private keys that may be backed by an HSM or KMS. |
|
test
package test contains CA authority acceptance test suite.
|
package test contains CA authority acceptance test suite. |
|
testauthority
Package testauthority implements a wrapper around native.Keygen that uses pre-computed keys.
|
Package testauthority implements a wrapper around native.Keygen that uses pre-computed keys. |
|
webauthn
Package webauthn implements server-side support for the Web Authentication specification.
|
Package webauthn implements server-side support for the Web Authentication specification. |
|
webauthncli
Package webauthncli provides the client-side implementation for WebAuthn.
|
Package webauthncli provides the client-side implementation for WebAuthn. |
|
webauthntypes
Package webauthntypes provides WebAuthn types and conversions for both client-side and server-side implementations.
|
Package webauthntypes provides WebAuthn types and conversions for both client-side and server-side implementations. |
|
webauthnwin
Package webauthnwin is wrapper around Windows webauthn API.
|
Package webauthnwin is wrapper around Windows webauthn API. |
|
Package backend provides storage backend abstraction layer
|
Package backend provides storage backend abstraction layer |
|
dynamo
Package dynamo implements DynamoDB storage backend for Teleport auth service, similar to etcd backend.
|
Package dynamo implements DynamoDB storage backend for Teleport auth service, similar to etcd backend. |
|
etcdbk
Package etcdbk implements Etcd powered backend
|
Package etcdbk implements Etcd powered backend |
|
firestore
Package firestoreFirestoreBackend implements Firestore storage backend for Teleport auth service, similar to DynamoDB backend.
|
Package firestoreFirestoreBackend implements Firestore storage backend for Teleport auth service, similar to DynamoDB backend. |
|
kubernetes
Package kubernetes implements Kubernetes Secret backend used for persisting identity and state for agent's running in Kubernetes clusters.
|
Package kubernetes implements Kubernetes Secret backend used for persisting identity and state for agent's running in Kubernetes clusters. |
|
lite
Package lite implements SQLite backend used for local persistent caches in proxies and nodes and for standalone auth service deployments.
|
Package lite implements SQLite backend used for local persistent caches in proxies and nodes and for standalone auth service deployments. |
|
memory
Package memory implements backend interface using a combination of Minheap (to store expiring items) and B-Tree for storing sorted dictionary of items.
|
Package memory implements backend interface using a combination of Minheap (to store expiring items) and B-Tree for storing sorted dictionary of items. |
|
test
Package test contains a backend acceptance test suite that is backend implementation independent each backend will use the suite to test itself
|
Package test contains a backend acceptance test suite that is backend implementation independent each backend will use the suite to test itself |
|
Package benchmark package provides tools to run progressive or independent benchmarks against teleport services.
|
Package benchmark package provides tools to run progressive or independent benchmarks against teleport services. |
|
Package cache implements event-driven cache layer that is used by auth servers, proxies and nodes.
|
Package cache implements event-driven cache layer that is used by auth servers, proxies and nodes. |
|
db
Package db contains methods for working with database connection profiles that combine connection parameters for a particular database.
|
Package db contains methods for working with database connection profiles that combine connection parameters for a particular database. |
|
escape
Package escape implements client-side escape character logic.
|
Package escape implements client-side escape character logic. |
|
identityfile
Package identityfile handles formatting and parsing of identity files.
|
Package identityfile handles formatting and parsing of identity files. |
|
Package cloud contains common methods and utilities for integrations with various cloud providers such as AWS, GCP or Azure.
|
Package cloud contains common methods and utilities for integrations with various cloud providers such as AWS, GCP or Azure. |
|
Package config provides facilities for configuring Teleport daemons including
|
Package config provides facilities for configuring Teleport daemons including |
|
Package defaults contains default constants set in various parts of teleport codebase
|
Package defaults contains default constants set in various parts of teleport codebase |
|
native
Package native implements OS-specific methods required by Device Trust.
|
Package native implements OS-specific methods required by Device Trust. |
|
Package events implements the audit log interface events.IAuditLog using filesystem backend.
|
Package events implements the audit log interface events.IAuditLog using filesystem backend. |
|
firestoreevents
Package firestoreeventsLog implements Firestore storage backend for Teleport event storage.
|
Package firestoreeventsLog implements Firestore storage backend for Teleport event storage. |
|
gcssessions
Package gcssessionsHandler implements GCS storage for Teleport session recording persistence.
|
Package gcssessionsHandler implements GCS storage for Teleport session recording persistence. |
|
Package httplib implements common utility functions for writing classic HTTP handlers
|
Package httplib implements common utility functions for writing classic HTTP handlers |
|
idp
|
|
|
integrations
|
|
|
Package joinserver contains the implementation of the JoinService gRPC server which runs on both Auth and Proxy.
|
Package joinserver contains the implementation of the JoinService gRPC server which runs on both Auth and Proxy. |
|
Package jwt is used to sign and verify JWT tokens used by application access.
|
Package jwt is used to sign and verify JWT tokens used by application access. |
|
Package kube contains subpackages with utility functions and proxies to intercept and authenticate Kubernetes API traffic
|
Package kube contains subpackages with utility functions and proxies to intercept and authenticate Kubernetes API traffic |
|
kubeconfig
Package kubeconfig manages teleport entries in a local kubeconfig file.
|
Package kubeconfig manages teleport entries in a local kubeconfig file. |
|
Package labels provides a way to get dynamic labels.
|
Package labels provides a way to get dynamic labels. |
|
Package limiter implements connection and rate limiters for teleport
|
Package limiter implements connection and rate limiters for teleport |
|
package modules allows external packages override certain behavioral aspects of teleport
|
package modules allows external packages override certain behavioral aspects of teleport |
|
Package multiplexer implements SSH and TLS multiplexing on the same listener
|
Package multiplexer implements SSH and TLS multiplexing on the same listener |
|
observability
|
|
|
Package player includes an API to play back recorded sessions.
|
Package player includes an API to play back recorded sessions. |
|
Package reversetunnel sets up persistent reverse tunnel between remote site and teleport proxy, when site agents dial to teleport proxy's socket and teleport proxy can connect to any server through this tunnel.
|
Package reversetunnel sets up persistent reverse tunnel between remote site and teleport proxy, when site agents dial to teleport proxy's socket and teleport proxy can connect to any server through this tunnel. |
|
track
Package track provides a simple interface to keep track of proxies as described via "gossip" messages shared by other proxies as part of the reverse tunnel protocol, and to decide if and when it's appropriate to attempt a new connection to a proxy load balancer at any given moment.
|
Package track provides a simple interface to keep track of proxies as described via "gossip" messages shared by other proxies as part of the reverse tunnel protocol, and to decide if and when it's appropriate to attempt a new connection to a proxy load balancer at any given moment. |
|
Package secret implements a authenticated encryption with associated data (AEAD) cipher to be used when symmetric is required in Teleport.
|
Package secret implements a authenticated encryption with associated data (AEAD) cipher to be used when symmetric is required in Teleport. |
|
Package service implements teleport running service, takes care of initialization, cleanup and shutdown procedures
|
Package service implements teleport running service, takes care of initialization, cleanup and shutdown procedures |
|
servicecfg
Package servicecfg contains the runtime configuration for Teleport services
|
Package servicecfg contains the runtime configuration for Teleport services |
|
Package services implements statefule services provided by teleport, like certificate authority management, user and web sessions, events and logs.
|
Package services implements statefule services provided by teleport, like certificate authority management, user and web sessions, events and logs. |
|
local
Package local implements services interfaces using abstract key value backend provided by lib/backend, what makes it possible for teleport to run using boltdb or etcd
|
Package local implements services interfaces using abstract key value backend provided by lib/backend, what makes it possible for teleport to run using boltdb or etcd |
|
Package session is used for bookkeeping of SSH interactive sessions that happen in realtime across the teleport cluster
|
Package session is used for bookkeeping of SSH interactive sessions that happen in realtime across the teleport cluster |
|
app
Package app runs the application proxy process.
|
Package app runs the application proxy process. |
|
db/common
Package common provides common utilities used by all supported database implementations.
|
Package common provides common utilities used by all supported database implementations. |
|
db/mongodb
Package mongodb implements database access proxy that handles authentication, authorization and protocol parsing of connections from MongoDB clients to MongoDB clusters.
|
Package mongodb implements database access proxy that handles authentication, authorization and protocol parsing of connections from MongoDB clients to MongoDB clusters. |
|
db/mongodb/protocol
Package protocol implements reading/writing MongoDB wire protocol messages from/to client/server and converting them into parsed data structures.
|
Package protocol implements reading/writing MongoDB wire protocol messages from/to client/server and converting them into parsed data structures. |
|
db/mysql
Package mysql implements MySQL protocol support for the database access.
|
Package mysql implements MySQL protocol support for the database access. |
|
db/mysql/protocol
Package protocol implements parts of MySQL wire protocol which are needed for the service to be able to interpret the protocol messages but are not readily available in the convenient form in the vendored MySQL library.
|
Package protocol implements parts of MySQL wire protocol which are needed for the service to be able to interpret the protocol messages but are not readily available in the convenient form in the vendored MySQL library. |
|
db/postgres
Package postgres implements components of the database access subsystem that proxy connections between Postgres clients (like, psql or pgAdmin) and Postgres database servers with full protocol awareness.
|
Package postgres implements components of the database access subsystem that proxy connections between Postgres clients (like, psql or pgAdmin) and Postgres database servers with full protocol awareness. |
|
db/redis
Package redis implements database access proxy that handles authentication, authorization and protocol parsing of connections from Redis clients to Redis standalone or Redis clusters.
|
Package redis implements database access proxy that handles authentication, authorization and protocol parsing of connections from Redis clients to Redis standalone or Redis clusters. |
|
db/secrets
Package secrets implements clients for managing secret values using secret management tools like AWS Secrets Manager.
|
Package secrets implements clients for managing secret values using secret management tools like AWS Secrets Manager. |
|
db/sqlserver/kinit
Package kinit provides utilities for interacting with a KDC (Key Distribution Center) for Kerberos5
|
Package kinit provides utilities for interacting with a KDC (Key Distribution Center) for Kerberos5 |
|
desktop
Package desktop implements Desktop Access services, like windows_desktop_access.
|
Package desktop implements Desktop Access services, like windows_desktop_access. |
|
desktop/rdp/rdpclient
Package rdpclient implements an RDP client.
|
Package rdpclient implements an RDP client. |
|
desktop/tdp
Package tdp implements the Teleport desktop protocol (TDP) encoder/decoder.
|
Package tdp implements the Teleport desktop protocol (TDP) encoder/decoder. |
|
regular
Package regular implements SSH server that supports multiplexing tunneling, SSH connections proxying and only supports Key based auth
|
Package regular implements SSH server that supports multiplexing tunneling, SSH connections proxying and only supports Key based auth |
|
uacc
Package uacc concerns itself with updating the user account database and log on nodes that a client connects to with an interactive session.
|
Package uacc concerns itself with updating the user account database and log on nodes that a client connects to with an interactive session. |
|
Package sshca specifies interfaces for SSH certificate authorities
|
Package sshca specifies interfaces for SSH certificate authorities |
|
Package sshutils contains the implementations of the base SSH server used throughout Teleport.
|
Package sshutils contains the implementations of the base SSH server used throughout Teleport. |
|
scp
Package scp handles file uploads and downloads via SCP command.
|
Package scp handles file uploads and downloads via SCP command. |
|
sftp
Package sftp handles file transfers client-side via SFTP.
|
Package sftp handles file transfers client-side via SFTP. |
|
x11
Package X11 contains contains the ssh client/server helper functions for performing X11 forwarding.
|
Package X11 contains contains the ssh client/server helper functions for performing X11 forwarding. |
|
Package tlsca provides internal TLS certificate authority used for mutual TLS authentication with the auth server and internal teleport components and external clients
|
Package tlsca provides internal TLS certificate authority used for mutual TLS authentication with the auth server and internal teleport components and external clients |
|
parse
TODO(nklaassen): evaluate the risks and utility of allowing traits to be used as regular expressions.
|
TODO(nklaassen): evaluate the risks and utility of allowing traits to be used as regular expressions. |
|
socks
package socks implements a SOCKS5 handshake.
|
package socks implements a SOCKS5 handshake. |
|
typical
typical (TYPed predICAte Library) is a library for building better predicate expression parsers faster.
|
typical (TYPed predICAte Library) is a library for building better predicate expression parsers faster. |
|
Package web implements web proxy handler that provides web interface to view and connect to teleport nodes
|
Package web implements web proxy handler that provides web interface to view and connect to teleport nodes |
|
app
Package app connections to applications over a reverse tunnel and forwards HTTP requests to them.
|
Package app connections to applications over a reverse tunnel and forwards HTTP requests to them. |
Click to show internal directories.
Click to hide internal directories.