gmsacredclient

package

v0.0.0-...-b702281 Latest Latest Go to latest Published: Apr 19, 2024 License: Apache-2.0 Imports: 9 Imported by: 1

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/aws/amazon-ecs-agent

Links

Open Source Insights

Documentation ¶

Index ¶

func GetGrpcClientConnection() (*grpc.ClientConn, error)
type CredentialsFetcherArnResponse
type CredentialsFetcherClient
- func NewCredentialsFetcherClient(conn *grpc.ClientConn, timeout time.Duration) CredentialsFetcherClient
type CredentialsFetcherResponse

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func GetGrpcClientConnection ¶

func GetGrpcClientConnection() (*grpc.ClientConn, error)

GetGrpcClientConnection() returns grpc client connection

Types ¶

type CredentialsFetcherArnResponse ¶

type CredentialsFetcherArnResponse struct {
	//lease id is a unique identifier associated with the kerberos tickets created for a container
	LeaseID string
	//path to the kerberos tickets created for the service accounts
	KerberosTicketsMap map[string]string
}

Credentials fetcher is a daemon running on the host which supports gMSA on linux

type CredentialsFetcherClient ¶

type CredentialsFetcherClient struct {
	// contains filtered or unexported fields
}

func NewCredentialsFetcherClient ¶

func NewCredentialsFetcherClient(conn *grpc.ClientConn, timeout time.Duration) CredentialsFetcherClient

func (CredentialsFetcherClient) AddKerberosArnLease ¶

func (c CredentialsFetcherClient) AddKerberosArnLease(ctx context.Context, credentialspecsArns []string, accessKeyId string, secretKey string, sessionToken string, region string) (CredentialsFetcherArnResponse, error)

AddKerberosArnLease() invokes credentials fetcher daemon running on the host to create kerberos tickets associated with gMSA accounts

func (CredentialsFetcherClient) AddKerberosLease ¶

func (c CredentialsFetcherClient) AddKerberosLease(ctx context.Context, credentialspecs []string) (CredentialsFetcherResponse, error)

AddKerberosLease() invokes credentials fetcher daemon running on the host to create kerberos tickets associated with gMSA accounts

func (CredentialsFetcherClient) AddNonDomainJoinedKerberosLease ¶

func (c CredentialsFetcherClient) AddNonDomainJoinedKerberosLease(ctx context.Context, credentialspecs []string, username string, password string, domain string) (CredentialsFetcherResponse, error)

AddNonDomainJoinedKerberosLease() invokes credentials fetcher daemon running on the host to create kerberos tickets associated with gMSA accounts in domainless mode

func (CredentialsFetcherClient) DeleteKerberosLease ¶

func (c CredentialsFetcherClient) DeleteKerberosLease(ctx context.Context, leaseid string) (CredentialsFetcherResponse, error)

DeleteKerberosLease() invokes credentials fetcher daemon running on the host to delete kerberos tickets of gMSA accounts associated with the leaseid

func (CredentialsFetcherClient) HealthCheck ¶

func (c CredentialsFetcherClient) HealthCheck(ctx context.Context, serviceName string) (string, error)

HealthCheck() invokes credentials fetcher daemon running on the host to check the health status of daemon

func (CredentialsFetcherClient) RenewKerberosArnLease ¶

func (c CredentialsFetcherClient) RenewKerberosArnLease(ctx context.Context, accessKeyId string, secretKey string, sessionToken string, region string) (string, error)

RenewKerberosArnLease() invokes credentials fetcher daemon running on the host to renew kerberos tickets associated with gMSA accounts

func (CredentialsFetcherClient) RenewNonDomainJoinedKerberosLease ¶

func (c CredentialsFetcherClient) RenewNonDomainJoinedKerberosLease(ctx context.Context, username string, password string, domain string) (CredentialsFetcherResponse, error)

RenewNonDomainJoinedKerberosLease() invokes credentials fetcher daemon running on the host to renew kerberos tickets associated with gMSA accounts in domainless mode

type CredentialsFetcherResponse ¶

type CredentialsFetcherResponse struct {
	//lease id is a unique identifier associated with the kerberos tickets created for a container
	LeaseID string
	//path to the kerberos tickets created for the service accounts
	KerberosTicketPaths []string
}

Credentials fetcher is a daemon running on the host which supports gMSA on linux

Source Files ¶

View all Source files

credentialsfetcherclient.go

Directories ¶

Path	Synopsis
credentialsfetcher

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL