oidc

package

v0.3.6 Latest Latest Go to latest Published: Oct 24, 2021 License: GPL-3.0 Imports: 22 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kvdi/kvdi

Links

Open Source Insights

Documentation ¶

Overview ¶

Package oidc contains an AuthProvider implementation backed by OpenID/Oauth.

Index ¶

func New(s *secrets.SecretEngine) common.AuthProvider
type AuthProvider

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func New ¶

func New(s *secrets.SecretEngine) common.AuthProvider

New returns a new OIDC AuthProvider.

Types ¶

type AuthProvider ¶

type AuthProvider struct {
	common.AuthProvider
	// contains filtered or unexported fields
}

AuthProvider implements an auth provider that uses an OIDC provider as the authentication backend. Access to groups provided in the claims is supplied through annotations on VDIRoles.

func (*AuthProvider) Authenticate ¶

func (a *AuthProvider) Authenticate(req *types.LoginRequest) (*types.AuthResult, error)

Authenticate is called for API authentication requests. It should generate a new JWTClaims object and serve an AuthResult back to the API.

func (*AuthProvider) Close ¶

func (a *AuthProvider) Close() error

Close just returns nil as connections are not persistent

func (*AuthProvider) CreateUser ¶

func (a *AuthProvider) CreateUser(*types.CreateUserRequest) error

CreateUser should handle any logic required to register a new user in kVDI.

func (*AuthProvider) DeleteUser ¶

func (a *AuthProvider) DeleteUser(string) error

DeleteUser should remove a VDIUser.

func (*AuthProvider) GetUser ¶

func (a *AuthProvider) GetUser(username string) (*types.VDIUser, error)

GetUser should retrieve a single VDIUser.

func (*AuthProvider) GetUsers ¶

func (a *AuthProvider) GetUsers() ([]*types.VDIUser, error)

GetUsers should return a list of VDIUsers.

func (*AuthProvider) Reconcile ¶

func (a *AuthProvider) Reconcile(ctx context.Context, reqLogger logr.Logger, c client.Client, cluster *appv1.VDICluster, adminPass string) error

Reconcile just makes sure that we have everything needed to perform an OIDC flow. The generated admin password is ignored for now in place of configuring admin groups.

func (*AuthProvider) Setup ¶

func (a *AuthProvider) Setup(c client.Client, cluster *appv1.VDICluster) error

Setup implements the AuthProvider interface and sets a local reference to the k8s client and vdi cluster. It then configures oauth2/oidc for serving authentication requests.

func (*AuthProvider) UpdateUser ¶

func (a *AuthProvider) UpdateUser(string, *types.UpdateUserRequest) error

UpdateUser should update a VDIUser.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL