trireme-lib: Index | Files

package constants

import ""


Package Files



const (
    // DefaultProcMountPoint The default proc mountpoint
    DefaultProcMountPoint = "/proc"
    // DefaultAporetoProcMountPoint The aporeto proc mountpoint just in case we are launched with some specific docker config
    DefaultAporetoProcMountPoint = "/aporetoproc"
    // DefaultSecretsPath is the default path for the secrets proxy.
    DefaultSecretsPath = "@secrets"
const (

    // EnvMountPoint is an environment variable which will contain the mount point

    // EnvEnforcerType is an environment variable which will indicate what enforcer type we want to use

    // EnvContextSocket stores the path to the context specific socket
    EnvContextSocket = "TRIREME_ENV_SOCKET_PATH"

    // EnvStatsChannel stores the path to the stats channel

    // EnvDebugChannel stores the path to the debug channel

    // EnvRPCClientSecret is the secret used between RPC client/server
    EnvRPCClientSecret = "TRIREME_ENV_SECRET"

    // EnvStatsSecret is the secret to be used for the stats channel

    // EnvContainerPID is the PID of the container

    // EnvNSPath is the path of the network namespace

    // EnvNsenterErrorState stores the error state as reported by remote enforcer

    // EnvNsenterLogs stores the logs as reported by remote enforcer

    // EnvLogLevel store the log level to be used.

    // EnvLogFormat store the log format to be used.

    // EnvLogToConsole specifies if logs should be sent out to console.

    // EnvLogToConsoleEnable specifies value to enable logging to console.
    EnvLogToConsoleEnable = "1"

    // EnvLogID store the context Id for the log file to be used.

    // EnvCompressedTags stores whether we should be using compressed tags.

    // EnvDisableLogWrite tells us if we are running in kubernetes, if true don't write the logs to a file.
const (
    TCPProtoNum    = "6"
    UDPProtoNum    = "17"
    TCPProtoString = "TCP"
    UDPProtoString = "UDP"
    AllProtoString = "ALL"

Protocol constants

const (
    StatsChannel = "/var/run/statschannel.sock"
    DebugChannel = "/var/run/debugchannel.sock"


const (
    // SynTokenCacheValiditity determines how often the data path creates new tokens.
    SynTokenCacheValiditity = 10 * time.Second

    // DatapathTokenValidity determines how long the tokens are valid.
    DatapathTokenValidity = 1 * time.Minute

Token and cache default validities. These have performance implications. The faster the datapath issues new tokens it affects performance. However, making it too slow can potentially allow reuse of the tokens. The token issuance rate must be always faster than the expiration rate.

const (
    CallbackURIExtension = "/aporeto/oidc/callback"

API service related constants

const (
    // DefaultRemoteArg is the default arguments for a remote enforcer
    DefaultRemoteArg = "enforce"
const (
    PortNumberLabelString = "@sys:port"

PortNumberLabelString is the label to use for port numbers

type LogLevel Uses

type LogLevel string

LogLevel corresponds to log level of any logger. eg: zap.

const (
    Info  LogLevel = "Info"
    Debug LogLevel = "Debug"
    Trace LogLevel = "Trace"
    Error LogLevel = "Error"
    Warn  LogLevel = "Warn"

Various log levels.

type ModeType Uses

type ModeType int

ModeType defines the mode of the enforcement and supervisor.

const (
    // RemoteContainer indicates that the Supervisor is implemented in the
    // container namespace
    RemoteContainer ModeType = iota
    // LocalServer indicates that the Supervisor applies to Linux processes
    // Sidecar indicates the controller to be in sidecar mode
    // LocalEnvoyAuthorizer indicates to use a local envoyproxy as enforcer/authorizer
    // RemoteContainerEnvoyAuthorizer indicates to use the envoyproxy enforcer/authorizer for containers

Package constants imports 1 packages (graph) and is imported by 44 packages. Updated 2020-04-02. Refresh now. Tools for package owners.