mirror of
https://github.com/tailscale/tailscale.git
synced 2025-12-11 20:32:08 +01:00
6a73c0bdf5
Add new arguments to `tailscale up` so authkeys can be generated dynamically via identity federation. Updates #9192 Signed-off-by: mcoulombe <max@tailscale.com>
87 lines
2.6 KiB
Go
87 lines
2.6 KiB
Go
// Copyright (c) Tailscale Inc & AUTHORS
|
|
// SPDX-License-Identifier: BSD-3-Clause
|
|
|
|
// Package tailscale provides a minimal control plane API client for internal
|
|
// use. A full client for 3rd party use is available at
|
|
// tailscale.com/client/tailscale/v2. The internal client is provided to avoid
|
|
// having to import that whole package.
|
|
package tailscale
|
|
|
|
import (
|
|
"errors"
|
|
"io"
|
|
"net/http"
|
|
|
|
tsclient "tailscale.com/client/tailscale"
|
|
)
|
|
|
|
// maxSize is the maximum read size (10MB) of responses from the server.
|
|
const maxReadSize = 10 << 20
|
|
|
|
func init() {
|
|
tsclient.I_Acknowledge_This_API_Is_Unstable = true
|
|
}
|
|
|
|
// AuthMethod is an alias to tailscale.com/client/tailscale.
|
|
type AuthMethod = tsclient.AuthMethod
|
|
|
|
// APIKey is an alias to tailscale.com/client/tailscale.
|
|
type APIKey = tsclient.APIKey
|
|
|
|
// Device is an alias to tailscale.com/client/tailscale.
|
|
type Device = tsclient.Device
|
|
|
|
// DeviceFieldsOpts is an alias to tailscale.com/client/tailscale.
|
|
type DeviceFieldsOpts = tsclient.DeviceFieldsOpts
|
|
|
|
// Key is an alias to tailscale.com/client/tailscale.
|
|
type Key = tsclient.Key
|
|
|
|
// KeyCapabilities is an alias to tailscale.com/client/tailscale.
|
|
type KeyCapabilities = tsclient.KeyCapabilities
|
|
|
|
// KeyDeviceCapabilities is an alias to tailscale.com/client/tailscale.
|
|
type KeyDeviceCapabilities = tsclient.KeyDeviceCapabilities
|
|
|
|
// KeyDeviceCreateCapabilities is an alias to tailscale.com/client/tailscale.
|
|
type KeyDeviceCreateCapabilities = tsclient.KeyDeviceCreateCapabilities
|
|
|
|
// ErrResponse is an alias to tailscale.com/client/tailscale.
|
|
type ErrResponse = tsclient.ErrResponse
|
|
|
|
// NewClient is an alias to tailscale.com/client/tailscale.
|
|
func NewClient(tailnet string, auth AuthMethod) *Client {
|
|
return &Client{
|
|
Client: tsclient.NewClient(tailnet, auth),
|
|
}
|
|
}
|
|
|
|
// Client is a wrapper of tailscale.com/client/tailscale.
|
|
type Client struct {
|
|
*tsclient.Client
|
|
}
|
|
|
|
// HandleErrorResponse is an alias to tailscale.com/client/tailscale.
|
|
func HandleErrorResponse(b []byte, resp *http.Response) error {
|
|
return tsclient.HandleErrorResponse(b, resp)
|
|
}
|
|
|
|
// SendRequest add the authentication key to the request and sends it. It
|
|
// receives the response and reads up to 10MB of it.
|
|
func SendRequest(c *Client, req *http.Request) ([]byte, *http.Response, error) {
|
|
resp, err := c.Do(req)
|
|
if err != nil {
|
|
return nil, resp, err
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
// Read response. Limit the response to 10MB.
|
|
// This limit is carried over from client/tailscale/tailscale.go.
|
|
body := io.LimitReader(resp.Body, maxReadSize+1)
|
|
b, err := io.ReadAll(body)
|
|
if len(b) > maxReadSize {
|
|
err = errors.New("API response too large")
|
|
}
|
|
return b, resp, err
|
|
}
|