Documentation
¶
Overview ¶
Package pki wraps vault client
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ErrMissingCACertificate indicates missing CA certificate ErrMissingCACertificate = errors.New("missing CA certificate for certificate signing") // ErrFailedCertCreation indicates failed to certificate creation ErrFailedCertCreation = errors.New("failed to create client certificate") // ErrFailedCertRevocation indicates failed certificate revocation ErrFailedCertRevocation = errors.New("failed to revoke certificate") )
Functions ¶
This section is empty.
Types ¶
type Agent ¶
type Agent interface {
// IssueCert issues certificate on PKI
IssueCert(cn string, ttl, keyType string, keyBits int) (Cert, error)
// Read retrieves certificate from PKI
Read(serial string) (Cert, error)
// Revoke revokes certificate from PKI
Revoke(serial string) (time.Time, error)
}
Agent represents the Vault PKI interface.
func NewVaultClient ¶
NewVaultClient instantiates a Vault client.
type Cert ¶
type Cert struct {
ClientCert string `json:"client_cert" mapstructure:"certificate"`
IssuingCA string `json:"issuing_ca" mapstructure:"issuing_ca"`
CAChain []string `json:"ca_chain" mapstructure:"ca_chain"`
ClientKey string `json:"client_key" mapstructure:"private_key"`
PrivateKeyType string `json:"private_key_type" mapstructure:"private_key_type"`
Serial string `json:"serial" mapstructure:"serial_number"`
Expire time.Time `json:"expire" mapstructure:"-"`
}
Source Files
Click to show internal directories.
Click to hide internal directories.