credsyncer

package

v0.2.2 Latest Latest Go to latest Published: Oct 28, 2022 License: Apache-2.0 Imports: 13 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/refunc/refunc

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
type FlatCreds
- func NewCreds(fni *rfv1beta3.Funcinst, prefix string) *FlatCreds
type Provider
- func NewGeneratedProvider(lifetime time.Duration) Provider
- func NewSimpleProvider() Provider
type Store
type Syncer
- func NewCredSyncer(namespace, prefix string, store Store, ...) (Syncer, error)

Constants ¶

View Source

const (
	// CredentialConfigAnnotation is annotation key for credential configs
	CredentialConfigAnnotation = "refunc.io/is-credential-config"
)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type FlatCreds ¶

type FlatCreds struct {
	// ns/name if it comes from a funcinst
	FuncinstID string `json:"funcinst,omitempty"`

	// meta
	ID        string `json:"id,omitempty"`
	AccessKey string `json:"accessKey,omitempty"`
	SecretKey string `json:"secretKey,omitempty"`

	// storage
	Scope string `json:"scope,omitempty"`

	// network
	Permissions struct {
		Publish   []string `json:"publish,omitempty"`
		Subscribe []string `json:"subscribe,omitempty"`
	} `json:"permissions"`
}

FlatCreds is flat verison of creds and permission

func NewCreds ¶

func NewCreds(fni *rfv1beta3.Funcinst, prefix string) *FlatCreds

NewCreds creates new flat creds from a valid funcinst

type Provider ¶

type Provider interface {
	IssueKeyPair(fni *rfv1beta3.Funcinst) (accessKey, secretKey string, err error)
	IssueAccessToken(fni *rfv1beta3.Funcinst) (accessToken string, err error)
}

Provider is interface for a vault to issue credentials

func NewGeneratedProvider ¶

func NewGeneratedProvider(lifetime time.Duration) Provider

NewGeneratedProvider creates a creds provider generate random keys, issues token using private key in current env

func NewSimpleProvider ¶

func NewSimpleProvider() Provider

NewSimpleProvider creates a creds provider simply forwarding keys and token in current env

type Store ¶

type Store interface {
	AddCreds(creds *FlatCreds) error
	DeleteCreds(accessKey string) error
}

Store is storage interface to manage creds

type Syncer ¶

type Syncer interface {
	Run(stopC <-chan struct{})
}

Syncer sync credentials from refunc and provide for storage layer

func NewCredSyncer ¶

func NewCredSyncer(
	namespace,
	prefix string,
	store Store,
	refuncInformers rfinformers.SharedInformerFactory,
	kubeInformers k8sinformers.SharedInformerFactory,
) (Syncer, error)

NewCredSyncer creates a credential provider

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
verifier

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL