istio: istio.io/istio/pilot/pkg/security/authn Index | Files | Directories

package authn

import "istio.io/istio/pilot/pkg/security/authn"

Index

Package Files

policy_applier.go

type PolicyApplier Uses

type PolicyApplier interface {
    // InboundFilterChain returns inbound filter chain(s) for the given endpoint (aka workload) port to
    // enforce the underlying authentication policy.
    InboundFilterChain(endpointPort uint32, sdsUdsPath string, node *model.Proxy,
        listenerProtocol networking.ListenerProtocol, trustDomainAliases []string) []networking.FilterChain

    // AuthNFilter returns the JWT HTTP filter to enforce the underlying authentication policy.
    // It may return nil, if no JWT validation is needed.
    JwtFilter() *http_conn.HttpFilter

    // AuthNFilter returns the (authn) HTTP filter to enforce the underlying authentication policy.
    // It may return nil, if no authentication is needed.
    AuthNFilter(proxyType model.NodeType, port uint32, istioMutualGateway bool) *http_conn.HttpFilter

    // PortLevelSetting returns port level mTLS settings.
    PortLevelSetting() map[uint32]*v1beta1.PeerAuthentication_MutualTLS
}

PolicyApplier is the interface provides essential functionalities to help config Envoy (xDS) to enforce authentication policy. Each version of authentication policy will implement this interface.

Directories

PathSynopsis
factory
utils
v1beta1

Package authn imports 4 packages (graph) and is imported by 2 packages. Updated 2021-01-07. Refresh now. Tools for package owners.