auth

package

v0.0.0-...-dcd54df Latest Latest Go to latest Published: Jul 15, 2020 License: Apache-2.0 Imports: 18 Imported by: 28

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/apigee/istio-mixer-adapter

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
type APIKeyRequest
type APIKeyResponse
type Context
type Manager
- func NewManager(env adapter.Env, options Options) (*Manager, error)
- func (m *Manager) Authenticate(ctx context.Context, apiKey string, claims map[string]interface{}, ...) (*Context, error)
- func (m *Manager) Close()
type Options

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	// AllValidClaims is a list of the claims expected from a JWT token
	AllValidClaims = []string{
		apiProductListClaim, audienceClaim, clientIDClaim, applicationNameClaim,
		scopesClaim, expClaim, developerEmailClaim,
	}
)

View Source

var ErrBadAuth = errors.New("permission denied")

ErrBadAuth is an error because of incorrect auth

View Source

var ErrInternalError = errors.New("internal error")

ErrInternalError is an error because of internal error

View Source

var ErrNoAuth = errors.New("missing authentication")

ErrNoAuth is an error because of missing auth

Functions ¶

This section is empty.

Types ¶

type APIKeyRequest ¶

type APIKeyRequest struct {
	APIKey string `json:"apiKey"`
}

APIKeyRequest is the request to Apigee's verifyAPIKey API

type APIKeyResponse ¶

type APIKeyResponse struct {
	Token string `json:"token"`
}

APIKeyResponse is the response from Apigee's verifyAPIKey API

type Context ¶

type Context struct {
	context.Context
	ClientID       string
	AccessToken    string
	Application    string
	APIProducts    []string
	Expires        time.Time
	DeveloperEmail string
	Scopes         []string
	APIKey         string
}

A Context wraps all the various information that is needed to make requests through the Apigee adapter.

type Manager ¶

type Manager struct {
	// contains filtered or unexported fields
}

An Manager handles all things related to authentication.

func NewManager ¶

func NewManager(env adapter.Env, options Options) (*Manager, error)

NewManager constructs a new Manager and begins an update loop to periodically refresh JWT credentials if options.pollInterval > 0. Call Close() when done.

func (*Manager) Authenticate ¶

func (m *Manager) Authenticate(ctx context.Context, apiKey string,
	claims map[string]interface{}, apiKeyClaimKey string) (*Context, error)

Authenticate constructs an Apigee context from an existing context and either a set of JWT claims, or an Apigee API key. The following logic applies: 1. If JWT w/ API Key - use API Key in claims 2. API Key - use API Key 3. Has JWT token - use JWT claims If any method is provided but fails, the next available one(s) will be attempted. If all provided methods fail, the request will be rejected.

func (*Manager) Close ¶

func (m *Manager) Close()

Close shuts down the Manager.

type Options ¶

type Options struct {
	// PollInterval sets refresh rate of JWT credentials, disabled if = 0
	PollInterval time.Duration
	// Client is a configured HTTPClient
	Client *http.Client
	// APIKeyCacheDuration is the length of time APIKeys are cached when unable to refresh
	APIKeyCacheDuration time.Duration
}

Options allows us to specify options for how this auth manager will run

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL