v1

package
v0.1.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 14, 2017 License: Apache-2.0 Imports: 21 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func APICSRFHandler 

func APICSRFHandler(next http.Handler) http.Handler

APICSRFHandler add csrf protection only for browsers (see BrowserDetectorHandler)

func APIHandler 

func APIHandler() http.Handler

APIHandler menshend api endpoint handler

func APIPanicHandler 

func APIPanicHandler(rec interface{}, w http.ResponseWriter)

APIPanicHandler handle any panic in the api endpoint

func BrowserDetectorHandler 

func BrowserDetectorHandler(next http.Handler) http.Handler

BrowserDetectorHandler If the vault token is read from the cookie it will assume that is a browser vault token from the cookie will always be selected if both header and cookie are present

func CheckSecretFailIfIsNull 

func CheckSecretFailIfIsNull(s *vault.Secret)

CheckSecretFailIfIsNull panic if vault backend return a empty secret

func NextCSRFHandler 

func NextCSRFHandler(next http.Handler) http.Handler

NextCSRFHandler set the next csrf token, js application should read this token and use it in the next request

func ValidateRegExp 

func ValidateRegExp(s string, r string) bool

ValidateRegExp helper for validate any regexp

func ValidateRole 

func ValidateRole(s string)

ValidateRole validate roles names

func ValidateSecret 

func ValidateSecret(secretID string, user string) (vaultSecretPath string)

ValidateSecret check if a vault secret is associated with the service, panic in case of not

func ValidateService 

func ValidateService(s string)

ValidateService validate the service id

func ValidateSubdomain 

func ValidateSubdomain(s string)

ValidateSubdomain subdomain should end with . and only contains alphanumeric characters and -

Types

type AdminServiceResource 

type AdminServiceResource struct {
	ImpersonateWithinRole bool             `json:"impersonateWithinRole,omitempty"`
	IsActive              *bool            `json:"isActive,omitempty"`
	SecretPaths           []string         `json:"secretPaths,omitempty"`
	FullURL               string           `json:"fullUrl,omitempty"`
	Meta                  *ServiceMetadata `json:"meta,omitempty"`
	Resolver              *ServiceResolver `json:"resolver,omitempty"`
	Strategy              *ServiceStrategy `json:"strategy,omitempty"`
	Cache                 *ServiceCache    `json:"cache,omitempty"`
}

AdminServiceResource service definition struct

func (*AdminServiceResource) Active 

func (as *AdminServiceResource) Active() bool

func (*AdminServiceResource) Register 

func (as *AdminServiceResource) Register(container *restful.Container)

Register ...

type AuthResource 

type AuthResource struct {
}

AuthResource ...

func (*AuthResource) Register 

func (a *AuthResource) Register(container *restful.Container)

Register ...

type ClientServiceResource 

type ClientServiceResource struct {
	Meta                  *ServiceMetadata `json:"meta"`
	ImpersonateWithinRole bool             `json:"impersonateWithinRole"`
	IsActive              *bool            `json:"isActive"`
	SecretPaths           []string         `json:"secretPaths"`
	FullURL               string           `json:"fullUrl"`
}

ClientServiceResource part of the service that is accessible to not admin users

func (*ClientServiceResource) Register 

func (cs *ClientServiceResource) Register(container *restful.Container)

Register ...

type FlashResource 

type FlashResource struct {
	Flashes []string `json:"flashes"`
}

FlashResource this allow to store some error messages in the cookie only useful in the browser

func (*FlashResource) Register 

func (f *FlashResource) Register(container *restful.Container)

Register ...

type LoginStatus 

type LoginStatus struct {
	IsLogged         bool  `json:"isLogged"`
	IsAdmin          bool  `json:"isAdmin"`
	CanImpersonate   bool  `json:"canImpersonate"`
	SessionExpiresAt int64 `json:"sessionExpiresAt"`
}

LoginStatus store the vault token state relative to menshend

type SecretResource 

type SecretResource struct {
}

SecretResource ...

func (*SecretResource) Register 

func (s *SecretResource) Register(container *restful.Container)

Register ...

type ServiceCache 

type ServiceCache struct {
	// time to live seconds
	TTL int `json:"ttl"`
}

ServiceCache activate a cache for the resolvers result

type ServiceLongDescription 

type ServiceLongDescription struct {
	Remote *URLLongDescription    `json:"remote,omitempty"`
	Local  *SimpleLongDescription `json:"local,omitempty"`
}

ServiceLongDescription long description options

func (*ServiceLongDescription) Load 

func (sldn *ServiceLongDescription) Load()

Load load long description from remote/local or whatever resource

func (*ServiceLongDescription) LongDescription 

func (sldn *ServiceLongDescription) LongDescription() string

LongDescription ...

func (*ServiceLongDescription) Validate 

func (sldn *ServiceLongDescription) Validate()

Validate ...

type ServiceMetadata 

type ServiceMetadata struct {
	ID              string                  `json:"id,omitempty"`
	RoleID          string                  `json:"roleId,omitempty"`
	SubDomain       string                  `json:"subDomain,omitempty"`
	Name            string                  `json:"name,omitempty"`
	Description     string                  `json:"description,omitempty"`
	Tags            []string                `json:"tags,omitempty"`
	LongDescription *ServiceLongDescription `json:"longDescription,omitempty"`
}

ServiceMetadata ...

type ServiceResolver 

type ServiceResolver struct {
	Yaml *resolvers.YAMLResolver `json:"yaml"`
	Lua  *resolvers.LuaResolver  `json:"lua"`
}

ServiceResolver ..

func (*ServiceResolver) Get 

func (sr *ServiceResolver) Get() resolvers.Resolver

Get returns the active resolver

func (*ServiceResolver) Validate 

func (sr *ServiceResolver) Validate()

Validate a service can only contains an resolver (lua, yaml, js, etc..)

type ServiceStrategy 

type ServiceStrategy struct {
	Proxy       *strategy.Proxy       `json:"proxy,omitempty"`
	PortForward *strategy.PortForward `json:"portForward,omitempty"`
	Redirect    *strategy.Redirect    `json:"redirect,omitempty"`
}

ServiceStrategy defines how menshend will handle the user request

func (*ServiceStrategy) Get 

func (ss *ServiceStrategy) Get() strategy.Strategy

Get returns the active strategy

func (*ServiceStrategy) Validate 

func (ss *ServiceStrategy) Validate()

Validate a service can only contains a strategy

type SimpleLongDescription 

type SimpleLongDescription struct {
	Content string `json:"content"`
}

SimpleLongDescription the user defines the contents manually - supports markdown

func (*SimpleLongDescription) Load 

func (sld *SimpleLongDescription) Load()

Load ...

func (*SimpleLongDescription) LongDescription 

func (sld *SimpleLongDescription) LongDescription() string

LongDescription ...

type SpaceResource 

type SpaceResource struct {
	Name             string `json:"name"`
	ShortDescription string `json:"shortDescription"`
	LongDescription  string `json:"longDescription"`
	Host             string `json:"host"`
}

SpaceResource ...

func (*SpaceResource) Register 

func (s *SpaceResource) Register(container *restful.Container)

Register ...

type URLLongDescription 

type URLLongDescription struct {
	URL     string `json:"url"`
	Content string `json:"content"`
}

URLLongDescription allow to the user to load the service long description from a remote url a README.md file is preferred

func (*URLLongDescription) Load 

func (uld *URLLongDescription) Load()

Load query the remote endpoint and load the content from there

func (*URLLongDescription) LongDescription 

func (uld *URLLongDescription) LongDescription() string

LongDescription ...

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.