Documentation ¶
Overview ¶
Package stsclient is for oauth token exchange integration.
Index ¶
Constants ¶
View Source
const (
Scope = "https://www.googleapis.com/auth/cloud-platform"
)
Variables ¶
View Source
var ( // GKEClusterURL is the URL to send requests to the token exchange service. GKEClusterURL = env.Register("GKE_CLUSTER_URL", "", "The url of GKE cluster").Get() // SecureTokenEndpoint is the Endpoint the STS client calls to. SecureTokenEndpoint = "https://sts.googleapis.com/v1/token" )
Functions ¶
This section is empty.
Types ¶
type SecureTokenServiceExchanger ¶
type SecureTokenServiceExchanger struct {
// contains filtered or unexported fields
}
SecureTokenServiceExchanger for google securetoken api interaction.
func NewSecureTokenServiceExchanger ¶
func NewSecureTokenServiceExchanger(credFetcher security.CredFetcher, trustDomain string) (*SecureTokenServiceExchanger, error)
NewSecureTokenServiceExchanger returns an instance of secure token service client plugin
func (*SecureTokenServiceExchanger) ExchangeToken ¶
func (p *SecureTokenServiceExchanger) ExchangeToken(k8sSAjwt string) (string, error)
ExchangeToken exchange oauth access token from trusted domain and k8s sa jwt.
Click to show internal directories.
Click to hide internal directories.