Documentation ¶
Index ¶
- Constants
- Variables
- func AddTkeCidr(request *restful.Request, response *restful.Response)
- func AdminAuthFunc(rb *restful.RouteBuilder) *restful.RouteBuilder
- func AdminTokenAuthenticate(request *restful.Request, response *restful.Response, ...)
- func ApplyTkeCidr(request *restful.Request, response *restful.Response)
- func AuthFunc(rb *restful.RouteBuilder) *restful.RouteBuilder
- func CreateAdminUser(request *restful.Request, response *restful.Response)
- func CreateCluster(request *restful.Request, response *restful.Response)
- func CreatePlainUser(request *restful.Request, response *restful.Response)
- func CreateRegisterToken(request *restful.Request, response *restful.Response)
- func CreateSaasUser(request *restful.Request, response *restful.Response)
- func GetAdminUser(request *restful.Request, response *restful.Response)
- func GetCredentials(request *restful.Request, response *restful.Response)
- func GetPermission(request *restful.Request, response *restful.Response)
- func GetPlainUser(request *restful.Request, response *restful.Response)
- func GetRegisterToken(request *restful.Request, response *restful.Response)
- func GetSaasUser(request *restful.Request, response *restful.Response)
- func GetUser(req *restful.Request) *models.BcsUser
- func GrantPermission(request *restful.Request, response *restful.Response)
- func InitV1Routers(ws *restful.WebService)
- func ListCredentials(request *restful.Request, response *restful.Response)
- func ListTkeCidr(request *restful.Request, response *restful.Response)
- func RefreshPlainToken(request *restful.Request, response *restful.Response)
- func RefreshSaasToken(request *restful.Request, response *restful.Response)
- func ReleaseTkeCidr(request *restful.Request, response *restful.Response)
- func RevokePermission(request *restful.Request, response *restful.Response)
- func SyncTkeClusterCredentials(request *restful.Request, response *restful.Response)
- func TokenAuthenticate(request *restful.Request, response *restful.Response, ...)
- func UpdateCredentials(request *restful.Request, response *restful.Response)
- func VerifyPermission(request *restful.Request, response *restful.Response)
- type AddTkeCidrForm
- type ApplyTkeCidrForm
- type ApplyTkeCidrResult
- type CreateClusterForm
- type CredentialResp
- type GetPermissionForm
- type OwnedPermissions
- type PermissionForm
- type PermissionsResp
- type ReleaseTkeCidrForm
- type TkeCidr
- type TokenAuthConfig
- type TokenAuthenticater
- func (ta *TokenAuthenticater) GetUser() (*models.BcsUser, bool)
- func (ta *TokenAuthenticater) GetUserFromToken(s string) (*models.BcsUser, bool)
- func (ta *TokenAuthenticater) ParseTokenBasicAuth() string
- func (ta *TokenAuthenticater) ParseTokenBearer() string
- func (ta *TokenAuthenticater) ParseTokenString() string
- type UpdateCredentialsForm
- type UserPermissions
- type UserResourceAction
- type VerifyPermissionForm
- type VerifyPermissionResponse
Constants ¶
const ( BcsK8sCluster = iota + 1 BcsMesosCluster BcsTkeCluster )
const (
CurrentUserAttr = "current-user"
)
const DefaultTokenLength = 32
DefaultTokenLength user token default length token is consisted of digital and alphabet(case sensetive) we can refer to http://coolaf.com/tool/rd when testing
Variables ¶
var PermissionsCache map[uint][]UserPermissions
Functions ¶
func AddTkeCidr ¶
func AddTkeCidr(request *restful.Request, response *restful.Response)
AddTkeCidr init tke cidrs
func AdminAuthFunc ¶
func AdminAuthFunc(rb *restful.RouteBuilder) *restful.RouteBuilder
func AdminTokenAuthenticate ¶
func AdminTokenAuthenticate(request *restful.Request, response *restful.Response, chain *restful.FilterChain)
func ApplyTkeCidr ¶
func ApplyTkeCidr(request *restful.Request, response *restful.Response)
ApplyTkeCidr assign an cidr to client
func CreateAdminUser ¶
func CreateAdminUser(request *restful.Request, response *restful.Response)
CreateAdminUser create a admin user
func CreateCluster ¶
func CreateCluster(request *restful.Request, response *restful.Response)
func CreatePlainUser ¶
func CreatePlainUser(request *restful.Request, response *restful.Response)
CreatePlainUser create a plain user
func CreateRegisterToken ¶
func CreateRegisterToken(request *restful.Request, response *restful.Response)
CreateRegisterToken http handler for register specified cluster token
func CreateSaasUser ¶
func CreateSaasUser(request *restful.Request, response *restful.Response)
CreateSaasUser create a saas user
func GetAdminUser ¶
func GetAdminUser(request *restful.Request, response *restful.Response)
GetAdminUser get an admin user and usertoken information
func GetCredentials ¶
func GetCredentials(request *restful.Request, response *restful.Response)
func GetPermission ¶
func GetPermission(request *restful.Request, response *restful.Response)
GetPermission get permissions of a user for a resourceType
func GetPlainUser ¶
func GetPlainUser(request *restful.Request, response *restful.Response)
GetPlainUser get an plain user and usertoken information
func GetRegisterToken ¶
func GetRegisterToken(request *restful.Request, response *restful.Response)
GetRegisterToken http handler for search specified cluster token it's served for bcs-gateway-discovery for cluster service discovery
func GetSaasUser ¶
func GetSaasUser(request *restful.Request, response *restful.Response)
GetSaasUser get an saas user and usertoken information
func GrantPermission ¶
func GrantPermission(request *restful.Request, response *restful.Response)
GrantPermission grant permissions
func InitV1Routers ¶
func InitV1Routers(ws *restful.WebService)
InitV1Routers init v1 version route, it's compatable with bcs-api
func ListCredentials ¶
func ListCredentials(request *restful.Request, response *restful.Response)
func ListTkeCidr ¶
func ListTkeCidr(request *restful.Request, response *restful.Response)
ListTkeCidr list cidr count group by vpc
func RefreshPlainToken ¶
func RefreshPlainToken(request *restful.Request, response *restful.Response)
RefreshPlainToken refresh usertoken for a plain user
func RefreshSaasToken ¶
func RefreshSaasToken(request *restful.Request, response *restful.Response)
RefreshSaasToken refresh usertoken for a saas user
func ReleaseTkeCidr ¶
func ReleaseTkeCidr(request *restful.Request, response *restful.Response)
ReleaseTkeCidr release a cidr to be available
func RevokePermission ¶
func RevokePermission(request *restful.Request, response *restful.Response)
RevokePermission revoke permissions
func SyncTkeClusterCredentials ¶
func SyncTkeClusterCredentials(request *restful.Request, response *restful.Response)
SyncTkeClusterCredentials sync the tke cluster credentials from tke
func TokenAuthenticate ¶
func TokenAuthenticate(request *restful.Request, response *restful.Response, chain *restful.FilterChain)
func UpdateCredentials ¶
func UpdateCredentials(request *restful.Request, response *restful.Response)
UpdateCredentials updates the current cluster credentials, a valid registerToken is required to performe a credentials updating.
func VerifyPermission ¶
func VerifyPermission(request *restful.Request, response *restful.Response)
Types ¶
type AddTkeCidrForm ¶
type ApplyTkeCidrForm ¶
type ApplyTkeCidrResult ¶
type CreateClusterForm ¶
type CreateClusterForm struct { ClusterID string `json:"cluster_id" validate:"required"` ClusterType string `json:"cluster_type" validate:"required"` TkeClusterID string `json:"tke_cluster_id"` TkeClusterRegion string `json:"tke_cluster_region"` }
CreateClusterForm
type CredentialResp ¶
type GetPermissionForm ¶
type OwnedPermissions ¶
type OwnedPermissions struct {
Actions string `json:"actions"`
}
type PermissionForm ¶
type PermissionsResp ¶
type ReleaseTkeCidrForm ¶
type TokenAuthConfig ¶
type TokenAuthenticater ¶
type TokenAuthenticater struct {
// contains filtered or unexported fields
}
func (*TokenAuthenticater) GetUser ¶
func (ta *TokenAuthenticater) GetUser() (*models.BcsUser, bool)
func (*TokenAuthenticater) GetUserFromToken ¶
func (ta *TokenAuthenticater) GetUserFromToken(s string) (*models.BcsUser, bool)
GetUserFromToken returns a user object if the given token is valid
func (*TokenAuthenticater) ParseTokenBasicAuth ¶
func (ta *TokenAuthenticater) ParseTokenBasicAuth() string
func (*TokenAuthenticater) ParseTokenBearer ¶
func (ta *TokenAuthenticater) ParseTokenBearer() string
func (*TokenAuthenticater) ParseTokenString ¶
func (ta *TokenAuthenticater) ParseTokenString() string
ParseTokenString parses token string from incoming request, currently supports authorization header and basicauth
type UpdateCredentialsForm ¶
type UpdateCredentialsForm struct { RegisterToken string `json:"register_token" validate:"required"` ServerAddresses string `json:"server_addresses" validate:"required,apiserver_addresses"` CaCertData string `json:"cacert_data" validate:"required"` UserToken string `json:"user_token" validate:"required"` }