auth

package

v0.0.0-...-9665ab3 Latest Latest Go to latest Published: Jan 2, 2024 License: Apache-2.0, Apache-2.0 Imports: 21 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

jihulab.com/nieyinliang/cloudpods

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
Variables
func AdminCredential() mcclient.TokenCredential
func AdminSession(ctx context.Context, region, zone, endpointType string) *mcclient.ClientSession
func AdminSessionWithInternal(ctx context.Context, region, zone string) *mcclient.ClientSession
func AdminSessionWithPublic(ctx context.Context, region, zone string) *mcclient.ClientSession
func AsyncInit(info *AuthInfo, debug, insecure bool, certFile, keyFile string, ...)
func Authenticate(f appsrv.FilterHandler) appsrv.FilterHandler
func AuthenticateWithDelayDecision(f appsrv.FilterHandler, delayDecision bool) appsrv.FilterHandler
func Client() *mcclient.Client
func FetchMatchPolicies(ctx context.Context, token mcclient.TokenCredential) (*mcclient.SFetchMatchPoliciesOutput, error)
func FetchUserCredential(ctx context.Context, ...) mcclient.TokenCredential
func GetAdminSession(ctx context.Context, region string) *mcclient.ClientSession
func GetAdminSessionWithInternal(ctx context.Context, region string) *mcclient.ClientSession
func GetAdminSessionWithPublic(ctx context.Context, region string) *mcclient.ClientSession
func GetCatalogData(serviceTypes []string, region string) jsonutils.JSONObject
func GetDNSServers(region, zone string) ([]string, error)
func GetDefaultAuthSource() string
func GetNTPServers(region, zone string) ([]string, error)
func GetPublicServiceURL(service, region, zone string) (string, error)
func GetServiceURL(service, region, zone, endpointType string) (string, error)
func GetServiceURLs(service, region, zone, endpointType string) ([]string, error)
func GetSession(ctx context.Context, token mcclient.TokenCredential, region string) *mcclient.ClientSession
func GetSessionWithInternal(ctx context.Context, token mcclient.TokenCredential, region string) *mcclient.ClientSession
func GetSessionWithPublic(ctx context.Context, token mcclient.TokenCredential, region string) *mcclient.ClientSession
func GetTokenString() string
func Init(info *AuthInfo, debug, insecure bool, certFile, keyFile string)
func InitFromClientSession(session *mcclient.ClientSession)
func IsAuthed() bool
func IsGuestToken(userCred rbacutils.IRbacIdentity) bool
func ReAuth()
func RegisterAuthHook(hook TAuthHook)
func RegisterCatalogListener(listener mcclient.IServiceCatalogChangeListener)
func Remove(ctx context.Context, tokenId string) error
func SetDefaultAuthSource(src string)
func SetEndpointType(epType string)
func SetTimeout(t time.Duration)
func Verify(ctx context.Context, tokenId string) (mcclient.TokenCredential, error)
func VerifyRequest(req http.Request, virtualHost bool) (mcclient.TokenCredential, error)
type AuthCompletedCallback
type AuthInfo
- func NewAuthInfo(authUrl, domain, user, passwd, project, projectDomain string) *AuthInfo
- func NewV2AuthInfo(authUrl, user, passwd, tenant string) *AuthInfo
type SessionCache
- func (sc *SessionCache) Get(ctx context.Context) *mcclient.ClientSession
type TAuthHook
type TokenCacheVerify
- func NewTokenCacheVerify() *TokenCacheVerify
- func (c *TokenCacheVerify) AddToken(cred mcclient.TokenCredential) error
- func (c *TokenCacheVerify) DeleteToken(token string) bool
- func (c *TokenCacheVerify) GetToken(token string) (mcclient.TokenCredential, bool)
- func (c *TokenCacheVerify) Remove(ctx context.Context, cli *mcclient.Client, adminToken, token string) error
- func (c *TokenCacheVerify) Verify(ctx context.Context, cli *mcclient.Client, adminToken, token string) (mcclient.TokenCredential, error)
type TokenVerifyFunc

Constants ¶

View Source

const (
	AUTH_TOKEN = appctx.APP_CONTEXT_KEY_AUTH_TOKEN
)

Variables ¶

View Source

var (
	GUEST_USER  = "guest"
	GUEST_TOKEN = "guest_token"
	GuestToken  = mcclient.SSimpleToken{
		User:  GUEST_USER,
		Token: GUEST_TOKEN,
	}

	DefaultTokenVerifier = Verify
)

Functions ¶

func AdminCredential ¶

func AdminCredential() mcclient.TokenCredential

func AdminSession ¶

func AdminSession(ctx context.Context, region, zone, endpointType string) *mcclient.ClientSession

Deprecated

func AdminSessionWithInternal ¶

func AdminSessionWithInternal(ctx context.Context, region, zone string) *mcclient.ClientSession

Deprecated

func AdminSessionWithPublic ¶

func AdminSessionWithPublic(ctx context.Context, region, zone string) *mcclient.ClientSession

Deprecated

func AsyncInit ¶

func AsyncInit(info *AuthInfo, debug, insecure bool, certFile, keyFile string, callback AuthCompletedCallback)

func Authenticate ¶

func Authenticate(f appsrv.FilterHandler) appsrv.FilterHandler

func AuthenticateWithDelayDecision ¶

func AuthenticateWithDelayDecision(f appsrv.FilterHandler, delayDecision bool) appsrv.FilterHandler

func Client ¶

func Client() *mcclient.Client

func FetchMatchPolicies ¶

func FetchMatchPolicies(ctx context.Context, token mcclient.TokenCredential) (*mcclient.SFetchMatchPoliciesOutput, error)

func FetchUserCredential ¶

func FetchUserCredential(ctx context.Context, filter func(mcclient.TokenCredential) mcclient.TokenCredential) mcclient.TokenCredential

func GetAdminSession ¶

func GetAdminSession(ctx context.Context, region string) *mcclient.ClientSession

func GetAdminSessionWithInternal ¶

func GetAdminSessionWithInternal(ctx context.Context, region string) *mcclient.ClientSession

func GetAdminSessionWithPublic ¶

func GetAdminSessionWithPublic(ctx context.Context, region string) *mcclient.ClientSession

func GetCatalogData ¶

func GetCatalogData(serviceTypes []string, region string) jsonutils.JSONObject

func GetDNSServers ¶

func GetDNSServers(region, zone string) ([]string, error)

func GetDefaultAuthSource ¶

func GetDefaultAuthSource() string

func GetNTPServers ¶

func GetNTPServers(region, zone string) ([]string, error)

func GetPublicServiceURL ¶

func GetPublicServiceURL(service, region, zone string) (string, error)

func GetServiceURL ¶

func GetServiceURL(service, region, zone, endpointType string) (string, error)

func GetServiceURLs ¶

func GetServiceURLs(service, region, zone, endpointType string) ([]string, error)

func GetSession ¶

func GetSession(ctx context.Context, token mcclient.TokenCredential, region string) *mcclient.ClientSession

func GetSessionWithInternal ¶

func GetSessionWithInternal(ctx context.Context, token mcclient.TokenCredential, region string) *mcclient.ClientSession

func GetSessionWithPublic ¶

func GetSessionWithPublic(ctx context.Context, token mcclient.TokenCredential, region string) *mcclient.ClientSession

func GetTokenString ¶

func GetTokenString() string

func Init ¶

func Init(info *AuthInfo, debug, insecure bool, certFile, keyFile string)

func InitFromClientSession ¶

func InitFromClientSession(session *mcclient.ClientSession)

use for climc test only

func IsAuthed ¶

func IsAuthed() bool

func IsGuestToken ¶

func IsGuestToken(userCred rbacutils.IRbacIdentity) bool

func ReAuth ¶

func ReAuth()

func RegisterAuthHook ¶

func RegisterAuthHook(hook TAuthHook)

func RegisterCatalogListener ¶

func RegisterCatalogListener(listener mcclient.IServiceCatalogChangeListener)

func Remove ¶

func Remove(ctx context.Context, tokenId string) error

func SetDefaultAuthSource ¶

func SetDefaultAuthSource(src string)

func SetEndpointType ¶

func SetEndpointType(epType string)

func SetTimeout ¶

func SetTimeout(t time.Duration)

func Verify ¶

func Verify(ctx context.Context, tokenId string) (mcclient.TokenCredential, error)

func VerifyRequest ¶

func VerifyRequest(req http.Request, virtualHost bool) (mcclient.TokenCredential, error)

Types ¶

type AuthCompletedCallback ¶

type AuthCompletedCallback func()

type AuthInfo ¶

type AuthInfo struct {
	AuthUrl string
	// Domain not need when v2 auth
	Domain   string
	Username string
	Passwd   string
	// Project is tenant when v2 auth
	Project       string
	ProjectDomain string
}

func NewAuthInfo ¶

func NewAuthInfo(authUrl, domain, user, passwd, project, projectDomain string) *AuthInfo

func NewV2AuthInfo ¶

func NewV2AuthInfo(authUrl, user, passwd, tenant string) *AuthInfo

type SessionCache ¶

type SessionCache struct {
	Region string

	// EarlyRefresh tells the cache how early to fetch a new session before
	// actual expiration of the old
	EarlyRefresh time.Duration

	Token         mcclient.TokenCredential
	UseAdminToken bool
	// contains filtered or unexported fields
}

func (*SessionCache) Get ¶

func (sc *SessionCache) Get(ctx context.Context) *mcclient.ClientSession

type TAuthHook ¶

type TAuthHook func(ctx context.Context, userCred mcclient.TokenCredential)

type TokenCacheVerify ¶

type TokenCacheVerify struct {
	*cache.LRUCache
}

func NewTokenCacheVerify ¶

func NewTokenCacheVerify() *TokenCacheVerify

func (*TokenCacheVerify) AddToken ¶

func (c *TokenCacheVerify) AddToken(cred mcclient.TokenCredential) error

func (*TokenCacheVerify) DeleteToken ¶

func (c *TokenCacheVerify) DeleteToken(token string) bool

func (*TokenCacheVerify) GetToken ¶

func (c *TokenCacheVerify) GetToken(token string) (mcclient.TokenCredential, bool)

func (*TokenCacheVerify) Remove ¶

func (c *TokenCacheVerify) Remove(ctx context.Context, cli *mcclient.Client, adminToken, token string) error

func (*TokenCacheVerify) Verify ¶

func (c *TokenCacheVerify) Verify(ctx context.Context, cli *mcclient.Client, adminToken, token string) (mcclient.TokenCredential, error)

type TokenVerifyFunc ¶

type TokenVerifyFunc func(string) (mcclient.TokenCredential, error)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL