v2

package

v0.1.7 Latest Latest Go to latest Published: Sep 1, 2023 License: Apache-2.0 Imports: 18 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/google/s2a-go

Links

Open Source Insights

README ¶

This directory has the implementation of the S2Av2's gRPC-Go client libraries

Documentation ¶

Overview ¶

Package v2 provides the S2Av2 transport credentials used by a gRPC application.

Index ¶

func GetS2ATimeout() time.Duration
func NewClientCreds(s2av2Address string, transportCreds credentials.TransportCredentials, ...) (credentials.TransportCredentials, error)
func NewClientTLSConfig(ctx context.Context, s2av2Address string, ...) (*tls.Config, error)
func NewServerCreds(s2av2Address string, transportCreds credentials.TransportCredentials, ...) (credentials.TransportCredentials, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func GetS2ATimeout ¶ added in v0.1.4

func GetS2ATimeout() time.Duration

GetS2ATimeout returns the timeout enforced on the connection to the S2A service for handshake.

func NewClientCreds ¶

func NewClientCreds(s2av2Address string, transportCreds credentials.TransportCredentials, localIdentity *commonpbv1.Identity, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, fallbackClientHandshakeFunc fallback.ClientHandshake, getS2AStream func(ctx context.Context, s2av2Address string) (stream.S2AStream, error), serverAuthorizationPolicy []byte) (credentials.TransportCredentials, error)

NewClientCreds returns a client-side transport credentials object that uses the S2Av2 to establish a secure connection with a server.

func NewClientTLSConfig ¶

func NewClientTLSConfig(
	ctx context.Context,
	s2av2Address string,
	transportCreds credentials.TransportCredentials,
	tokenManager tokenmanager.AccessTokenManager,
	verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode,
	serverName string,
	serverAuthorizationPolicy []byte) (*tls.Config, error)

NewClientTLSConfig returns a tls.Config instance that uses S2Av2 to establish a TLS connection as a client. The tls.Config MUST only be used to establish a single TLS connection.

func NewServerCreds ¶

func NewServerCreds(s2av2Address string, transportCreds credentials.TransportCredentials, localIdentities []*commonpbv1.Identity, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, getS2AStream func(ctx context.Context, s2av2Address string) (stream.S2AStream, error)) (credentials.TransportCredentials, error)

NewServerCreds returns a server-side transport credentials object that uses the S2Av2 to establish a secure connection with a client.

Types ¶

This section is empty.

Source Files ¶

View all Source files

s2av2.go

Directories ¶

Path	Synopsis
certverifier Package certverifier offloads verifications to S2Av2.	Package certverifier offloads verifications to S2Av2.
fakes2av2 Package fakes2av2 is a fake S2Av2 Go implementation.	Package fakes2av2 is a fake S2Av2 Go implementation.
fakes2av2_server Package main runs an S2Av2 service.	Package main runs an S2Av2 service.
remotesigner Package remotesigner offloads private key operations to S2Av2.	Package remotesigner offloads private key operations to S2Av2.
tlsconfigstore Package tlsconfigstore offloads operations to S2Av2.	Package tlsconfigstore offloads operations to S2Av2.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL