filter

package

v0.4.1 Latest Latest Go to latest Published: May 6, 2022 License: Apache-2.0 Imports: 17 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

gitlab.com/av1o/cap10

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
Variables
func SafeHeader(s string) string
type Chain
- func NewChain(opts *Opts, key *passport.KeyProvider, filters ...ChainFilter) *Chain
- func (c *Chain) NewHandler(h http.Handler) http.Handler
type ChainFilter
type Claims
type OIDCCreateOpts
type OIDCFilter
- func NewOIDCFilter(ctx context.Context, baseURL string, issuerURL string, opt *OIDCCreateOpts) (*OIDCFilter, error)
- func (f *OIDCFilter) AddRoutes(ctx context.Context, r *mux.Router)
- func (f *OIDCFilter) DoFilter(w http.ResponseWriter, r *http.Request) (*ingress.UserInfo, error)
type Opts
type PKIFilter
- func NewPKIFilter(mode ingress.FilterMode, escapedHeader string, enforcing bool) *PKIFilter
- func (f *PKIFilter) DoFilter(w http.ResponseWriter, r *http.Request) (*ingress.UserInfo, error)

Constants ¶

View Source

const (
	OIDCAccessTokenName = "oidc-access-token"
	OIDCTokenName       = "oidc-token"
	OIDCIDName          = "oidc-id_token"
)

Variables ¶

View Source

var HeaderKeyRegex = regexp.MustCompile(`[^\w!#$%&'*+\-.^\x60|~]`)

Functions ¶

func SafeHeader ¶ added in v0.4.0

func SafeHeader(s string) string

Types ¶

type Chain ¶

type Chain struct {
	// contains filtered or unexported fields
}

func NewChain ¶

func NewChain(opts *Opts, key *passport.KeyProvider, filters ...ChainFilter) *Chain

func (*Chain) NewHandler ¶ added in v0.1.6

func (c *Chain) NewHandler(h http.Handler) http.Handler

type ChainFilter ¶

type ChainFilter interface {
	DoFilter(http.ResponseWriter, *http.Request) (*ingress.UserInfo, error)
}

type Claims ¶ added in v0.4.0

type Claims map[string]interface{}

type OIDCCreateOpts ¶

type OIDCCreateOpts struct {
	ClientID       string
	ClientSecret   string
	RedirectURL    string
	UserRedirect   string
	FetchUserInfo  bool
	CookieSameSite string
}

type OIDCFilter ¶

type OIDCFilter struct {
	// contains filtered or unexported fields
}

func NewOIDCFilter ¶

func NewOIDCFilter(ctx context.Context, baseURL string, issuerURL string, opt *OIDCCreateOpts) (*OIDCFilter, error)

func (*OIDCFilter) AddRoutes ¶

func (f *OIDCFilter) AddRoutes(ctx context.Context, r *mux.Router)

func (*OIDCFilter) DoFilter ¶

func (f *OIDCFilter) DoFilter(w http.ResponseWriter, r *http.Request) (*ingress.UserInfo, error)

type Opts ¶

type Opts struct {
	SubjectHeader    string // http header to put the user subject
	SourceHeader     string // http header to indicate what the subject means (e.g. to distinguish oauth2 vs pki)
	VerifyHeader     string // http header to put authenticity signature
	VerifyHashHeader string // http header to put authenticity hash
	// ClaimPrefixHeader is the prefix for http headers
	// containing user claims
	ClaimPrefixHeader string
	Append            bool
}

type PKIFilter ¶

type PKIFilter struct {
	// contains filtered or unexported fields
}

func NewPKIFilter ¶

func NewPKIFilter(mode ingress.FilterMode, escapedHeader string, enforcing bool) *PKIFilter

func (*PKIFilter) DoFilter ¶

func (f *PKIFilter) DoFilter(w http.ResponseWriter, r *http.Request) (*ingress.UserInfo, error)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL