securesession

package

v0.0.0-...-ce7e112 Latest Latest Go to latest Published: Jan 3, 2024 License: Apache-2.0, BSD-2-Clause, BSD-3-Clause, + 2 more Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/GoogleCloudPlatform/stet

Documentation ¶

Overview ¶

Package securesession defines a client for making RPC calls to the SecureSession service.

Index ¶

Variables
type SecureSessionClient
- func EstablishSecureSession(ctx context.Context, addr, authToken string, opts ...SecureSessionOption) (*SecureSessionClient, error)
type SecureSessionOption
- func HTTPCertPool(pool *x509.CertPool) SecureSessionOption
- func SkipTLSVerify(skipTLSVerify bool) SecureSessionOption

Constants ¶

This section is empty.

Variables ¶

View Source

var DefaultSecureSessionOptions = []SecureSessionOption{
	HTTPCertPool(nil),
	SkipTLSVerify(false),
}

DefaultSecureSessionOptions control the default values before applying options passed to EstablishSecureSession.

Functions ¶

This section is empty.

Types ¶

type SecureSessionClient ¶

type SecureSessionClient struct {
	// contains filtered or unexported fields
}

SecureSessionClient is a SecureSession service client.

func EstablishSecureSession ¶

func EstablishSecureSession(ctx context.Context, addr, authToken string, opts ...SecureSessionOption) (*SecureSessionClient, error)

EstablishSecureSession takes in a service address and performs the handshaking flow, returning a Client object with the fully-established secure session, or an error if one of the steps in the handshake failed.

func (*SecureSessionClient) ConfidentialUnwrap ¶

func (c *SecureSessionClient) ConfidentialUnwrap(ctx context.Context, keyPath, resourceName string, wrappedBlob []byte) ([]byte, error)

ConfidentialUnwrap uses the established secure session to unwrap the given blob via the given key path and resource name, returning the plaintext.

func (*SecureSessionClient) ConfidentialWrap ¶

func (c *SecureSessionClient) ConfidentialWrap(ctx context.Context, keyPath, resourceName string, plaintext []byte) ([]byte, error)

ConfidentialWrap uses the established secure session to wrap the given plaintext using the specified key path and resource name, returning the wrapped blob.

func (*SecureSessionClient) EndSession ¶

func (c *SecureSessionClient) EndSession(ctx context.Context) error

EndSession explicitly closes the previous established secure session.

type SecureSessionOption ¶

type SecureSessionOption func(*secureSessionOptions)

SecureSessionOption configures EstablishSecureSession.

func HTTPCertPool ¶

func HTTPCertPool(pool *x509.CertPool) SecureSessionOption

HTTPCertPool sets an explicitly-configured x509.CertPool for the HTTPS connection. Passing this option again will overwrite earlier values.

func SkipTLSVerify ¶

func SkipTLSVerify(skipTLSVerify bool) SecureSessionOption

SkipTLSVerify specifies whether the inner TLS session's certificate should be validated. Passing this option again will overwrite earlier values.

Source Files ¶

View all Source files

securesession.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL