Documentation ¶
Index ¶
- func GetGrpcClientConnection() (*grpc.ClientConn, error)
- type CredentialsFetcherArnResponse
- type CredentialsFetcherClient
- func (c CredentialsFetcherClient) AddKerberosArnLease(ctx context.Context, credentialspecsArns []string, accessKeyId string, ...) (CredentialsFetcherArnResponse, error)
- func (c CredentialsFetcherClient) AddKerberosLease(ctx context.Context, credentialspecs []string) (CredentialsFetcherResponse, error)
- func (c CredentialsFetcherClient) AddNonDomainJoinedKerberosLease(ctx context.Context, credentialspecs []string, username string, ...) (CredentialsFetcherResponse, error)
- func (c CredentialsFetcherClient) DeleteKerberosLease(ctx context.Context, leaseid string) (CredentialsFetcherResponse, error)
- func (c CredentialsFetcherClient) HealthCheck(ctx context.Context, serviceName string) (string, error)
- func (c CredentialsFetcherClient) RenewKerberosArnLease(ctx context.Context, accessKeyId string, secretKey string, sessionToken string, ...) (string, error)
- func (c CredentialsFetcherClient) RenewNonDomainJoinedKerberosLease(ctx context.Context, username string, password string, domain string) (CredentialsFetcherResponse, error)
- type CredentialsFetcherResponse
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func GetGrpcClientConnection ¶
func GetGrpcClientConnection() (*grpc.ClientConn, error)
GetGrpcClientConnection() returns grpc client connection
Types ¶
type CredentialsFetcherArnResponse ¶
type CredentialsFetcherArnResponse struct { //lease id is a unique identifier associated with the kerberos tickets created for a container LeaseID string //path to the kerberos tickets created for the service accounts KerberosTicketsMap map[string]string }
Credentials fetcher is a daemon running on the host which supports gMSA on linux
type CredentialsFetcherClient ¶
type CredentialsFetcherClient struct {
// contains filtered or unexported fields
}
func NewCredentialsFetcherClient ¶
func NewCredentialsFetcherClient(conn *grpc.ClientConn, timeout time.Duration) CredentialsFetcherClient
func (CredentialsFetcherClient) AddKerberosArnLease ¶
func (c CredentialsFetcherClient) AddKerberosArnLease(ctx context.Context, credentialspecsArns []string, accessKeyId string, secretKey string, sessionToken string, region string) (CredentialsFetcherArnResponse, error)
AddKerberosArnLease() invokes credentials fetcher daemon running on the host to create kerberos tickets associated with gMSA accounts
func (CredentialsFetcherClient) AddKerberosLease ¶
func (c CredentialsFetcherClient) AddKerberosLease(ctx context.Context, credentialspecs []string) (CredentialsFetcherResponse, error)
AddKerberosLease() invokes credentials fetcher daemon running on the host to create kerberos tickets associated with gMSA accounts
func (CredentialsFetcherClient) AddNonDomainJoinedKerberosLease ¶
func (c CredentialsFetcherClient) AddNonDomainJoinedKerberosLease(ctx context.Context, credentialspecs []string, username string, password string, domain string) (CredentialsFetcherResponse, error)
AddNonDomainJoinedKerberosLease() invokes credentials fetcher daemon running on the host to create kerberos tickets associated with gMSA accounts in domainless mode
func (CredentialsFetcherClient) DeleteKerberosLease ¶
func (c CredentialsFetcherClient) DeleteKerberosLease(ctx context.Context, leaseid string) (CredentialsFetcherResponse, error)
DeleteKerberosLease() invokes credentials fetcher daemon running on the host to delete kerberos tickets of gMSA accounts associated with the leaseid
func (CredentialsFetcherClient) HealthCheck ¶
func (c CredentialsFetcherClient) HealthCheck(ctx context.Context, serviceName string) (string, error)
HealthCheck() invokes credentials fetcher daemon running on the host to check the health status of daemon
func (CredentialsFetcherClient) RenewKerberosArnLease ¶
func (c CredentialsFetcherClient) RenewKerberosArnLease(ctx context.Context, accessKeyId string, secretKey string, sessionToken string, region string) (string, error)
RenewKerberosArnLease() invokes credentials fetcher daemon running on the host to renew kerberos tickets associated with gMSA accounts
func (CredentialsFetcherClient) RenewNonDomainJoinedKerberosLease ¶
func (c CredentialsFetcherClient) RenewNonDomainJoinedKerberosLease(ctx context.Context, username string, password string, domain string) (CredentialsFetcherResponse, error)
RenewNonDomainJoinedKerberosLease() invokes credentials fetcher daemon running on the host to renew kerberos tickets associated with gMSA accounts in domainless mode
type CredentialsFetcherResponse ¶
type CredentialsFetcherResponse struct { //lease id is a unique identifier associated with the kerberos tickets created for a container LeaseID string //path to the kerberos tickets created for the service accounts KerberosTicketPaths []string }
Credentials fetcher is a daemon running on the host which supports gMSA on linux