token

package

v1.0.0 Latest Latest Go to latest Published: Jan 1, 2021 License: MIT Imports: 24 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/digital-dream-labs/vector-cloud

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func CompareHashAndToken(hashedToken, token string) error
func GetDevHandlers(s *http.ServeMux)
func NewBackoffHandler(handler RequestHandler) *backoffHandler
type Accessor
- func GetAccessor(identityProvider identity.Provider, handler RequestHandler) Accessor
type Option
- func WithServer() Option
- func WithSocketNameSuffix(socketNameSuffix string) Option
type RequestHandler
type Server

Constants ¶

View Source

const TokenRefreshWindow = time.Hour

TokenRefreshWindow indicates how soon before actual expiration the STS token will be considered expired

Variables ¶

This section is empty.

Functions ¶

func CompareHashAndToken ¶

func CompareHashAndToken(hashedToken, token string) error

CompareHashAndPassword compares a hashed client token with its possible plain text equivalent. Returns nil on success, or an error on failure. Modeled after the crypto/bcrypt interface.

func GetDevHandlers ¶

func GetDevHandlers(s *http.ServeMux)

func NewBackoffHandler ¶

func NewBackoffHandler(handler RequestHandler) *backoffHandler

NewBackoffHandler creates a backoff handler that will respond to PermissionDenied errors in other services by attempting to refresh the current JWT token

Types ¶

type Accessor ¶

type Accessor interface {
	Credentials() (gc.PerRPCCredentials, error)
	GetStsCredentials() (*ac.Credentials, error)
	IdentityProvider() identity.Provider
	UserID() string
}

func GetAccessor ¶

func GetAccessor(identityProvider identity.Provider, handler RequestHandler) Accessor

type Option ¶

type Option func(o *options)

Option defines an option that can be set on the token server

func WithServer ¶

func WithServer() Option

WithServer specifies that an IPC server should be started so other processes can request tokens from this process

func WithSocketNameSuffix ¶

func WithSocketNameSuffix(socketNameSuffix string) Option

WithSocketNameSuffix specifies the (optional) suffix of the socket name

type RequestHandler ¶

type RequestHandler interface {
	// contains filtered or unexported methods
}

type Server ¶

type Server struct {
	// contains filtered or unexported fields
}

Server encapsulates the receiving and queueing of token requests by other robot processes

var TokenServer *Server

func (*Server) ErrorListener ¶

func (s *Server) ErrorListener() util.ErrorListener

func (*Server) Init ¶

func (s *Server) Init(identityProvider identity.Provider) error

Init initializes the token service in advance of other services that depend on it

func (*Server) Run ¶

func (s *Server) Run(ctx context.Context, optionValues ...Option)

Run starts the token service for other code/processes to connect to and request tokens

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
identity

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL