AllPrivilegeActions returns all Elasticsearch privilege actions used by APM Server.

Authorize is a shortcut for obtaining an Authorizer from ctx and calling its Authorize method.

ContextWithAuthorizer returns a copy of parent associated with auth.

NewAuthenticator creates an Authenticator with config, authenticating clients with one of the allowed methods.

ParseAuthorizationHeader parses an HTTP Authorization header value, which should have the format "<auth-kind> <auth-token>".

ActionAgentConfig is an Action describing an attempt to read agent config.

ActionEventIngest is an Action describing an attempt to ingest events.

ActionSourcemapUpload is an Action describing an attempt to upload a source map.

Application is a constant mapped to the "application" field for the Elasticsearch security API This identifies privileges and keys created for APM.

MethodAnonymous identifies the anonymous access auth method.

MethodAPIKey identifies the auth method using Elasticsearch API Keys.

MethodNone is used when the server has no auth methods configured, meaning access is entirely unrestricted to unauthenticated clients.

MethodSecretToken identifies the auth methd using a shared secret token.

ResourceInternal is only valid for first authorization of a request.

ErrAuthFailed is an error returned by Authenticator.Authenticate to indicate that a client has failed to authenticate, for example by failing to provide credentials or by providing an invalid or expired API Key.

ErrNoAuthorizer is returned from Authorize when the context does not contain an Authorizer.

ErrUnauthorized is an error returned by Authorizer.Authorize to indicate that the client is unauthorized for some action and resource.

PrivilegeAgentConfigRead identifies the Elasticsearch API Key privilege required for authorizing agent config queries.

PrivilegeEventWrite identifies the Elasticsearch API Key privilege required for authorizing event ingestion.

PrivilegeSourcemapWrite identifies the Elasticsearch API Key privilege required for authorizing source map uploads.

APIKeyAuthenticationDetails holds API Key related authentication details.

AuthenticationDetails holds authentication details for a client.

Authenticator authenticates clients.

Resource holds parameters for restricting access that may be checked by Authorizer.Authorize.

Authorizer provides an interface for authorizing an action and resource.

Action identifies an action to authorize.

Method identifies an authentication and authorization method.