auth

import "github.com/afreidah/g3/internal/auth"

Index

Variables
type BucketRegistry
- func NewBucketRegistry(buckets []config.BucketConfig) *BucketRegistry
- func (r *BucketRegistry) AuthenticateAndResolveBucket(req *http.Request) (string, error)

Variables

var (
    ErrAccessDenied     = errors.New("access denied")
    ErrMissingAuth      = errors.New("missing authorization header")
    ErrMalformedAuth    = errors.New("malformed authorization header")
    ErrExpiredSignature = errors.New("signature expired")
)

type BucketRegistry

BucketRegistry maps access key IDs to bucket names and secrets for SigV4 verification.

type BucketRegistry struct {
    // contains filtered or unexported fields
}

func NewBucketRegistry

func NewBucketRegistry(buckets []config.BucketConfig) *BucketRegistry

NewBucketRegistry builds a registry from the configured bucket list.

func (*BucketRegistry) AuthenticateAndResolveBucket

func (r *BucketRegistry) AuthenticateAndResolveBucket(req *http.Request) (string, error)

AuthenticateAndResolveBucket validates the SigV4 request signature and returns the bucket name the caller is authorized to access.

Generated by gomarkdoc