Documentation
¶
Index ¶
- Variables
- func Builder(provider types.ProviderType, opts ...ProviderOption) providers.Builder
- type Provider
- func (p *Provider) BeginAuth(context.Context, types.AuthContext) (types.AuthSession, error)
- func (p *Provider) Capabilities() types.ProviderCapabilities
- func (p *Provider) Mint(_ context.Context, subject types.CredentialSubject) (types.CredentialPayload, error)
- func (p *Provider) Operations() []types.OperationDescriptor
- func (p *Provider) Type() types.ProviderType
- type ProviderOption
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ErrProviderMetadataRequired indicates provider metadata is required but not supplied ErrProviderMetadataRequired = errors.New("awssts: provider metadata required") // ErrRoleARNRequired indicates the roleArn field is missing from metadata ErrRoleARNRequired = errors.New("awssts: roleArn required") // ErrRegionRequired indicates the region field is missing from metadata ErrRegionRequired = errors.New("awssts: region required") // ErrAuthTypeMismatch indicates the provider spec specifies an incompatible auth type ErrAuthTypeMismatch = errors.New("awssts: auth type mismatch") // ErrBeginAuthNotSupported indicates BeginAuth is not supported for AWS STS providers ErrBeginAuthNotSupported = errors.New("awssts: BeginAuth is not supported; configure credentials via metadata") // ErrProviderNotInitialized indicates the provider instance is nil ErrProviderNotInitialized = errors.New("awssts: provider not initialized") )
Functions ¶
func Builder ¶
func Builder(provider types.ProviderType, opts ...ProviderOption) providers.Builder
Builder returns a providers.Builder that materializes AWS federation metadata.
Types ¶
type Provider ¶
type Provider struct {
// contains filtered or unexported fields
}
Provider persists AWS STS metadata and exposes it via CredentialSet.
func (*Provider) BeginAuth ¶
func (p *Provider) BeginAuth(context.Context, types.AuthContext) (types.AuthSession, error)
BeginAuth is not supported for AWS STS metadata flows.
func (*Provider) Capabilities ¶
func (p *Provider) Capabilities() types.ProviderCapabilities
Capabilities returns optional capability flags.
func (*Provider) Mint ¶
func (p *Provider) Mint(_ context.Context, subject types.CredentialSubject) (types.CredentialPayload, error)
Mint validates the stored AWS metadata and persists structured credential fields.
func (*Provider) Operations ¶
func (p *Provider) Operations() []types.OperationDescriptor
Operations returns provider-published operations.
func (*Provider) Type ¶
func (p *Provider) Type() types.ProviderType
Type returns the provider identifier.
type ProviderOption ¶
type ProviderOption func(*providerConfig)
ProviderOption customizes AWS STS providers.
func WithOperations ¶
func WithOperations(descriptors []types.OperationDescriptor) ProviderOption
WithOperations registers provider-published operations.
Source Files
Click to show internal directories.
Click to hide internal directories.