Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type ClientAuthorizer ¶
type ClientAuthorizer interface {
IsAuthorized(*tls.ConnectionState) bool
IsReady() bool
}
func NewARM ¶
func NewARM(log *logrus.Entry, im instancemetadata.InstanceMetadata) ClientAuthorizer
func NewAll ¶
func NewAll() ClientAuthorizer
func NewOne ¶
func NewOne(cert []byte) ClientAuthorizer
func NewSubjectNameAndIssuer ¶
func NewSubjectNameAndIssuer(log *logrus.Entry, certPool *x509.CertPool, clientCertCommonName string) (ClientAuthorizer, error)
NewSubjectNameAndIssuer creates a new instance of ClientAuthorizer which allows connections only if they contain a valid client certificate signed by a CA in `certPool` and the client certificate's CommonName equals `clientCertCommonName`.
Source Files
Click to show internal directories.
Click to hide internal directories.