clientregistry

package

v0.25.0 Latest Latest Go to latest Published: Aug 9, 2023 License: Apache-2.0 Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/vmware-tanzu/pinniped

Links

Open Source Insights

Documentation ¶

Overview ¶

Package clientregistry defines Pinniped's OAuth2/OIDC clients.

Index ¶

type Client
- func PinnipedCLI() *Client
- func (c *Client) GetResponseModes() []fosite.ResponseModeType
type ClientManager
- func NewClientManager(oidcClientsClient supervisorclient.OIDCClientInterface, ...) *ClientManager

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Client ¶

type Client struct {
	fosite.DefaultOpenIDConnectClient
}

Client represents a Pinniped OAuth/OIDC client. It can be the static pinniped-cli client or a dynamic client defined by an OIDCClient CR.

func PinnipedCLI ¶

func PinnipedCLI() *Client

PinnipedCLI returns the static Client corresponding to the Pinniped CLI.

func (*Client) GetResponseModes ¶

func (c *Client) GetResponseModes() []fosite.ResponseModeType

type ClientManager ¶ added in v0.20.0

type ClientManager struct {
	// contains filtered or unexported fields
}

ClientManager is a fosite.ClientManager with a statically-defined client and with dynamically-defined clients.

func NewClientManager ¶ added in v0.20.0

func NewClientManager(
	oidcClientsClient supervisorclient.OIDCClientInterface,
	storage *oidcclientsecretstorage.OIDCClientSecretStorage,
	minBcryptCost int,
) *ClientManager

func (*ClientManager) ClientAssertionJWTValid ¶ added in v0.20.0

func (*ClientManager) ClientAssertionJWTValid(ctx context.Context, jti string) error

ClientAssertionJWTValid returns an error if the JTI is known or the DB check failed and nil if the JTI is not known.

This functionality is not supported by the ClientManager.

func (*ClientManager) GetClient ¶ added in v0.20.0

func (m *ClientManager) GetClient(ctx context.Context, id string) (fosite.Client, error)

GetClient returns the client specified by the given ID.

It returns a fosite.ErrNotFound if an unknown client is specified. Other errors returned are plain errors, because fosite will wrap them into a new ErrInvalidClient error and use the plain error's text as that error's debug message (see client_authentication.go in fosite).

func (*ClientManager) SetClientAssertionJWT ¶ added in v0.20.0

func (*ClientManager) SetClientAssertionJWT(ctx context.Context, jti string, exp time.Time) error

SetClientAssertionJWT marks a JTI as known for the given expiry time. Before inserting the new JTI, it will clean up any existing JTIs that have expired as those tokens can not be replayed due to the expiry.

This functionality is not supported by the ClientManager.

Source Files ¶

View all Source files

clientregistry.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL