istio: Index | Files

package authz

import ""

The auth package provides support for checking the authentication and authorization policy applied in the mesh. It aims to increase the debuggability and observability of auth policies. Note: this is still under active development and is not ready for real use.


Package Files

analyzer.go listener.go util.go

func PrintParsedListeners Uses

func PrintParsedListeners(writer io.Writer, parsedListeners []*ParsedListener, printAll bool)

type Analyzer Uses

type Analyzer struct {
    // contains filtered or unexported fields

Analyzer that can be used to check authentication and authorization policy status.

func NewAnalyzer Uses

func NewAnalyzer(envoyConfig *configdump.Wrapper) (*Analyzer, error)

NewAnalyzer creates a new analyzer for a given pod based on its envoy config.

func (*Analyzer) Print Uses

func (a *Analyzer) Print(writer io.Writer, printAll bool)

Print checks the AuthZ setting for the given envoy config stored in the analyzer.

type ParsedListener Uses

type ParsedListener struct {
    // contains filtered or unexported fields

func ParseListener Uses

func ParseListener(listener *listener.Listener) *ParsedListener

ParseListener parses the envoy listener config by extracting the auth related config.

Package authz imports 22 packages (graph) and is imported by 2 packages. Updated 2020-07-06. Refresh now. Tools for package owners.