Documentation
¶
Index ¶
- type AuthInfo
- type ExternalAuthPlugin
- type Identity
- type KubernetesServiceAccountIdentity
- type LocalSigner
- type SPIREServer
- func (s *SPIREServer) FetchJWTBundles(req *workload.JWTBundlesRequest, ...) error
- func (s *SPIREServer) FetchJWTSVID(ctx context.Context, req *workload.JWTSVIDRequest) (*workload.JWTSVIDResponse, error)
- func (s *SPIREServer) FetchX509Bundles(req *workload.X509BundlesRequest, ...) error
- func (s *SPIREServer) FetchX509SVID(req *workload.X509SVIDRequest, ...) error
- func (s *SPIREServer) GetExternalAuth(ctx context.Context, req *v1.GetExternalAuthRequest) (*v1.GetExternalAuthReply, error)
- func (s *SPIREServer) RegisterGRPC(grpcServer *grpc.Server)
- func (s *SPIREServer) ValidateJWTSVID(ctx context.Context, req *workload.ValidateJWTSVIDRequest) (*workload.ValidateJWTSVIDResponse, error)
- type ServerCertificates
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type ExternalAuthPlugin ¶
type ExternalAuthPlugin interface {
}
type KubernetesServiceAccountIdentity ¶
type KubernetesServiceAccountIdentity struct {
// contains filtered or unexported fields
}
func (*KubernetesServiceAccountIdentity) GetName ¶
func (i *KubernetesServiceAccountIdentity) GetName() string
func (*KubernetesServiceAccountIdentity) GetNamespace ¶
func (i *KubernetesServiceAccountIdentity) GetNamespace() string
func (*KubernetesServiceAccountIdentity) SPIFFEID ¶
func (i *KubernetesServiceAccountIdentity) SPIFFEID() url.URL
type LocalSigner ¶
type LocalSigner struct {
// contains filtered or unexported fields
}
func NewLocalSigner ¶
func NewLocalSigner() (*LocalSigner, error)
func (*LocalSigner) CreateCertificate ¶
func (s *LocalSigner) CreateCertificate(ctx context.Context, template x509.Certificate) (*x509.Certificate, crypto.PrivateKey, error)
func (*LocalSigner) GetCACertificates ¶
func (s *LocalSigner) GetCACertificates(ctx context.Context) ([]*x509.Certificate, error)
type SPIREServer ¶
type SPIREServer struct {
workload.UnimplementedSpiffeWorkloadAPIServer
v1.UnimplementedKinspireServer
// contains filtered or unexported fields
}
func NewSPIREServer ¶
func NewSPIREServer(kubeClient client.Client, typedClient kubernetes.Interface, signer *LocalSigner, trustDomain *url.URL) (*SPIREServer, error)
func (*SPIREServer) FetchJWTBundles ¶
func (s *SPIREServer) FetchJWTBundles(req *workload.JWTBundlesRequest, stream workload.SpiffeWorkloadAPI_FetchJWTBundlesServer) error
func (*SPIREServer) FetchJWTSVID ¶
func (s *SPIREServer) FetchJWTSVID(ctx context.Context, req *workload.JWTSVIDRequest) (*workload.JWTSVIDResponse, error)
func (*SPIREServer) FetchX509Bundles ¶
func (s *SPIREServer) FetchX509Bundles(req *workload.X509BundlesRequest, stream workload.SpiffeWorkloadAPI_FetchX509BundlesServer) error
func (*SPIREServer) FetchX509SVID ¶
func (s *SPIREServer) FetchX509SVID(req *workload.X509SVIDRequest, stream workload.SpiffeWorkloadAPI_FetchX509SVIDServer) error
func (*SPIREServer) GetExternalAuth ¶
func (s *SPIREServer) GetExternalAuth(ctx context.Context, req *v1.GetExternalAuthRequest) (*v1.GetExternalAuthReply, error)
func (*SPIREServer) RegisterGRPC ¶
func (s *SPIREServer) RegisterGRPC(grpcServer *grpc.Server)
func (*SPIREServer) ValidateJWTSVID ¶
func (s *SPIREServer) ValidateJWTSVID(ctx context.Context, req *workload.ValidateJWTSVIDRequest) (*workload.ValidateJWTSVIDResponse, error)
type ServerCertificates ¶
type ServerCertificates struct {
TLSCertificate tls.Certificate
// contains filtered or unexported fields
}
func CreateServerCertificates ¶
func CreateServerCertificates(ctx context.Context, signer *LocalSigner) (*ServerCertificates, error)
Source Files
Click to show internal directories.
Click to hide internal directories.