MCPcopy
hub / github.com/seaweedfs/seaweedfs / IamGrpcServer

Struct IamGrpcServer

weed/server/filer_server_handlers_iam_grpc.go:24–28  ·  view source on GitHub ↗

IamGrpcServer implements the IAM gRPC service on the filer. Auth is opt-in: when jwt.filer_signing.key is set in security.toml the service requires a Bearer token in the "authorization" metadata signed with that key; when it is empty every RPC is accepted unauthenticated, matching the rest of Seawee

Source from the content-addressed store, hash-verified

22// the rest of SeaweedFS's gRPC surface. Operators who expose the filer gRPC
23// port beyond a trusted network should configure the key.
24type IamGrpcServer struct {
25 iam_pb.UnimplementedSeaweedIdentityAccessManagementServer
26 credentialManager *credential.CredentialManager
27 adminSigningKey security.SigningKey
28}
29
30// NewIamGrpcServer creates a new IAM gRPC server. If adminSigningKey is empty
31// the service runs unauthenticated; otherwise every RPC requires a Bearer

Callers

nothing calls this directly

Calls

no outgoing calls

Tested by

no test coverage detected