forked from pulse-vadc/go-vtm
/
config_kerberos_principal.go
113 lines (100 loc) · 3.53 KB
/
config_kerberos_principal.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
// Copyright (C) 2018, Pulse Secure, LLC.
// Licensed under the terms of the MPL 2.0. See LICENSE file for details.
// Go library for Pulse Virtual Traffic Manager REST version 5.2.
package vtm
import (
"encoding/json"
)
type KerberosPrincipal struct {
connector *vtmConnector
KerberosPrincipalProperties `json:"properties"`
}
func (vtm VirtualTrafficManager) GetKerberosPrincipal(name string) (*KerberosPrincipal, *vtmErrorResponse) {
if name == "" {
panic("Provided an empty \"name\" parameter to VirtualTrafficManager.GetKerberosPrincipal(name)")
}
conn := vtm.connector.getChildConnector("/tm/5.2/config/active/kerberos/principals/" + name)
data, ok := conn.get()
if ok != true {
object := new(vtmErrorResponse)
json.NewDecoder(data).Decode(object)
return nil, object
}
object := new(KerberosPrincipal)
object.connector = conn
if err := json.NewDecoder(data).Decode(object); err != nil {
panic(err)
}
return object, nil
}
func (object KerberosPrincipal) Apply() (*KerberosPrincipal, *vtmErrorResponse) {
marshalled, err := json.Marshal(object)
if err != nil {
panic(err)
}
data, ok := object.connector.put(string(marshalled), STANDARD_OBJ)
if ok != true {
object := new(vtmErrorResponse)
json.NewDecoder(data).Decode(object)
return nil, object
}
if err := json.NewDecoder(data).Decode(&object); err != nil {
panic(err)
}
return &object, nil
}
func (vtm VirtualTrafficManager) NewKerberosPrincipal(name string, keytab string, service string) *KerberosPrincipal {
object := new(KerberosPrincipal)
object.Basic.Keytab = &keytab
object.Basic.Service = &service
conn := vtm.connector.getChildConnector("/tm/5.2/config/active/kerberos/principals/" + name)
object.connector = conn
return object
}
func (vtm VirtualTrafficManager) DeleteKerberosPrincipal(name string) *vtmErrorResponse {
conn := vtm.connector.getChildConnector("/tm/5.2/config/active/kerberos/principals/" + name)
data, ok := conn.delete()
if ok != true {
object := new(vtmErrorResponse)
json.NewDecoder(data).Decode(object)
return object
}
return nil
}
func (vtm VirtualTrafficManager) ListKerberosPrincipals() (*[]string, *vtmErrorResponse) {
conn := vtm.connector.getChildConnector("/tm/5.2/config/active/kerberos/principals")
data, ok := conn.get()
if ok != true {
object := new(vtmErrorResponse)
json.NewDecoder(data).Decode(object)
return nil, object
}
objectList := new(vtmObjectChildren)
if err := json.NewDecoder(data).Decode(objectList); err != nil {
panic(err)
}
var stringList []string
for _, obj := range objectList.Children {
stringList = append(stringList, obj.Name)
}
return &stringList, nil
}
type KerberosPrincipalProperties struct {
Basic struct {
// A list of "<hostname/ip>:<port>" pairs for Kerberos key distribution
// center (KDC) services to be explicitly used for the realm of
// the principal. If no KDCs are explicitly configured, DNS will
// be used to discover the KDC(s) to use.
Kdcs *[]string `json:"kdcs,omitempty"`
// The name of the Kerberos keytab file containing suitable credentials
// to authenticate as the specified Kerberos principal.
Keytab *string `json:"keytab,omitempty"`
// The name of an optional Kerberos configuration file (krb5.conf).
Krb5Conf *string `json:"krb5conf,omitempty"`
// The Kerberos realm where the principal belongs.
Realm *string `json:"realm,omitempty"`
// The service name part of the Kerberos principal name the traffic
// manager should use to authenticate itself.
Service *string `json:"service,omitempty"`
} `json:"basic"`
}