arn

package

v0.6.19 Latest Latest Go to latest Published: Mar 25, 2024 License: Apache-2.0 Imports: 4 Imported by: 3

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This section is empty.

This section is empty.

func StripPath(arn string) (string, error)

TODO: add strip path functionality Canonicalize after testing it in all mappers - this can be used to support role paths in the configmap

type PrincipalType int

const (
	// Supported principals
	NONE PrincipalType = iota
	ROLE
	USER
	ROOT
	FEDERATED_USER
	ASSUMED_ROLE
)

func Canonicalize(arn string) (PrincipalType, string, error)

Canonicalize validates IAM resources are appropriate for the authenticator and converts STS assumed roles into the IAM role resource.

Supported IAM resources are:

AWS root user: arn:aws:iam::123456789012:root
IAM user: arn:aws:iam::123456789012:user/Bob
IAM role: arn:aws:iam::123456789012:role/S3Access
IAM Assumed role: arn:aws:sts::123456789012:assumed-role/Accounting-Role/Mary (converted to IAM role)
Federated user: arn:aws:sts::123456789012:federated-user/Bob