pkiverifier

package
v10.323.1+incompatible Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Apr 23, 2021 License: Apache-2.0 Imports: 9 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type DatapathKey

type DatapathKey struct {
	PublicKey  *ecdsa.PublicKey
	Tags       []string
	Expiration time.Time
	Controller *PKIControllerInfo
}

DatapathKey holds the data path key with the corresponding claims.

type PKIControllerInfo

type PKIControllerInfo struct {
	Namespace      string // The namespace of the public key.
	Controller     string // The controller or control plane of the public key.
	SameController bool   // Does the public key come from the same controller
}

PKIControllerInfo holds the controller information about public keys

type PKIPublicKey

type PKIPublicKey struct {
	PublicKey  *ecdsa.PublicKey
	Controller *PKIControllerInfo
}

PKIPublicKey holds information about public keys

type PKITokenIssuer

type PKITokenIssuer interface {
	CreateTokenFromCertificate(*x509.Certificate, []string) ([]byte, error)
}

PKITokenIssuer is the interface of an object that can issue a PKI token.

func NewPKIIssuer

func NewPKIIssuer(privateKey *ecdsa.PrivateKey) PKITokenIssuer

NewPKIIssuer initializes a new signer structure

type PKITokenVerifier

type PKITokenVerifier interface {
	Verify([]byte) (*DatapathKey, error)
}

PKITokenVerifier is the interface of an object that can verify a PKI token.

func NewPKIVerifier

func NewPKIVerifier(publicKeys []*PKIPublicKey, cacheValidity time.Duration) PKITokenVerifier

NewPKIVerifier returns a new PKIConfiguration.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL