Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( HAHeaderCert = http.CanonicalHeaderKey("X-SSL-Client-Cert") HAHeaderVerify = http.CanonicalHeaderKey("X-SSL-Client-Verify") HAHeaderSub = http.CanonicalHeaderKey("X-SSL-Client-DN") HAHeaderIss = http.CanonicalHeaderKey("X-SSL-Issuer") )
View Source
var ( NGINXHeaderVerify = http.CanonicalHeaderKey("ssl-client-verify") NGINXHeaderSub = http.CanonicalHeaderKey("ssl-client-subject-dn") NGINXHeaderIss = http.CanonicalHeaderKey("ssl-client-issuer-dn") )
Functions ¶
This section is empty.
Types ¶
type DomainFilter ¶
type EscapedCertFilter ¶ added in v0.1.6
type EscapedCertFilter struct {
// contains filtered or unexported fields
}
EscapedCertFilter retrieves user information from a full client certificate in PEM format
func NewEscapedCertFilter ¶ added in v0.3.0
func NewEscapedCertFilter(header string) *EscapedCertFilter
type FilterMode ¶ added in v0.3.0
type FilterMode string
const ( FilterNGINX FilterMode = "nginx" FilterHAProxy FilterMode = "haproxy" FilterEscapedCert FilterMode = "x509_escaped" FilterTLS FilterMode = "x509" )
type HAProxyFilter ¶
type HAProxyFilter struct{}
HAProxyFilter retrieves user information from headers provided by the OpenShift/HAProxy Ingress Controller
type NGINXFilter ¶
type NGINXFilter struct{}
NGINXFilter retrieves user information from headers provided by the NGINX Ingress Controller
type TLSFilter ¶ added in v0.1.6
type TLSFilter struct{}
TLSFilter retrieves user information from a TLS handshake - requires the application to be running using TLS
type UserInfo ¶
type UserInfo struct { // Sub is the Subject of the user (e.g. CN or username) Sub string // Iss is the Issuer of the user (e.g. Certificate Authority or OIDC provider) Iss string // Claims are bits of arbitrary information about a user Claims map[string]interface{} }
UserInfo is the base amount of information required to uniquely identify a user
func (*UserInfo) AsUsername ¶
AsUsername returns the user in a storable string format of Iss/Sub
Click to show internal directories.
Click to hide internal directories.