Liking cljdoc? Tell your friends :D
Clojure only.

tech.io.auth

Authentication layer designed to work with hashicorp vault's aws credentialling system. Given a function that takes no arguments but can produce a credential map, we want to store the latest version of the map but also be prepared for the current credentials to time out thus necessitating a new auth request. In order to do this, providers need to throw exceptions of the type: (ex-info "Doesn't matter" {:exception-action :request-credentials} This layer will then catch such exceptions and attempt threadsafe reauthentication.

Authentication layer designed to work with hashicorp vault's aws credentialling system.
Given a function that takes no arguments but can produce a credential map, we want to store
the latest version of the map but also be prepared for the current credentials to time out
thus necessitating a new auth request.  In order to do this, providers need to throw exceptions
of the type:
  (ex-info "Doesn't matter" {:exception-action :request-credentials}
  This layer will then catch such exceptions and attempt threadsafe reauthentication.
raw docstring

auth-providerclj

(auth-provider cred-fn
               {:keys [cred-propagation-ms cred-request-timeout-ms
                       re-request-time-ms src-provider]
                :or {cred-propagation-ms 50
                     cred-request-timeout-ms 10000
                     re-request-time-ms (* 20 60 1000)
                     src-provider (cache/forwarding-provider
                                    :url-parts->provider
                                    io-prot/url-parts->provider)}})

You need to call com.stuartsierra.component/start on this to enable the credential request system.

You need to call com.stuartsierra.component/start on this to enable the credential request system.
sourceraw docstring

credential-threadclj

(credential-thread re-request-ms credential-fn)
source

get-vault-aws-credsclj

(get-vault-aws-creds vault-path)
source

request-credentialsclj

(request-credentials request-timeout-ms thread-chan)
source

vault-aws-auth-providerclj

(vault-aws-auth-provider vault-path options)
source

with-credential-updateclj

(with-credential-update timeout-ms cred-request-fn execute-fn)

Attempt an s3 operation. If the operation fails with an invalid access key, request new aws credentials from vault exactly once. Continue attempting operation until it either fails with a different exception, hits the timeout, or succeeds

Attempt an s3 operation.  If the operation fails with an invalid
access key, request new aws credentials from vault exactly once.
Continue attempting operation until it either fails with a different
exception, hits the timeout, or succeeds
sourceraw docstring

cljdoc is a website building & hosting documentation for Clojure/Script libraries

Keyboard shortcutsReport a problemcljdoc on GitHub
× close