pachyderm: Index | Files

package server

import ""


Package Files

api_server.go config.go saml.go


const (
    // DisableAuthenticationEnvVar specifies an environment variable that, if set, causes
    // Pachyderm authentication to ignore github and authmatically generate a
    // pachyderm token for any username in the AuthenticateRequest.GitHubToken field

    // SamlPort is the port where SAML ID Providers can send auth assertions
    SamlPort = 654


var DefaultAuthConfig = auth.AuthConfig{
    LiveConfigVersion: 1,
    IDProviders: []*auth.IDProvider{
            Name:        "GitHub",
            Description: "oauth-based authentication with",
            GitHub:      &auth.IDProvider_GitHubOptions{},

DefaultAuthConfig is the default config for the auth API server

var DefaultDashRedirectURL = &url.URL{
    Scheme: "http",
    Host:   "localhost:30080",

    Path: path.Join("/", "auth", "autologin"),

DefaultDashRedirectURL is the default URL used for redirecting the dashboard

func GitHubTokenToUsername Uses

func GitHubTokenToUsername(ctx context.Context, oauthToken string) (string, error)

GitHubTokenToUsername takes a OAuth access token issued by GitHub and uses it discover the username of the user who obtained the code (or verify that the code belongs to githubUsername). This is how Pachyderm currently implements authorization in a production cluster

type APIServer Uses

type APIServer interface {

APIServer represents an auth api server

func NewAuthServer Uses

func NewAuthServer(
    env *serviceenv.ServiceEnv,
    txnEnv *txnenv.TransactionEnv,
    etcdPrefix string,
    public bool,
) (APIServer, error)

NewAuthServer returns an implementation of auth.APIServer.

Package server imports 39 packages (graph) and is imported by 4 packages. Updated 2020-03-30. Refresh now. Tools for package owners.