ca

package

v1.4.1 Latest Latest Go to latest Published: Nov 13, 2019 License: BSD-2-Clause Imports: 14 Imported by: 57

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cloudflare/cfssl

Links

Open Source Insights

Documentation ¶

Overview ¶

Package ca provides the CertificateAuthority interface for the transport package, which provides an interface to get a CSR signed by some certificate authority.

Index ¶

Variables
type CFSSL
- func NewCFSSLProvider(id *core.Identity, defaultRemote client.Remote) (*CFSSL, error)
- func (cap *CFSSL) CACertificate() ([]byte, error)
- func (cap *CFSSL) SignCSR(csrPEM []byte) (cert []byte, err error)
type CertificateAuthority

Constants ¶

This section is empty.

Variables ¶

View Source

var ErrNoAuth = errors.New("transport: authentication is required for non-local remotes")

ErrNoAuth is returned when a client is talking to a CFSSL remote that is not on a loopback address and doesn't have an authentication provider set.

Functions ¶

This section is empty.

Types ¶

type CFSSL ¶

type CFSSL struct {
	Profile       string
	Label         string
	DefaultRemote client.Remote
	DefaultAuth   config.AuthKey
	// contains filtered or unexported fields
}

CFSSL provides support for signing certificates via CFSSL.

func NewCFSSLProvider ¶

func NewCFSSLProvider(id *core.Identity, defaultRemote client.Remote) (*CFSSL, error)

NewCFSSLProvider takes the configuration information from an Identity (and an optional default remote), returning a CFSSL instance. There should be a profile in id called "cfssl", which should contain label and profile fields as needed.

func (*CFSSL) CACertificate ¶

func (cap *CFSSL) CACertificate() ([]byte, error)

CACertificate returns the certificate for a CFSSL CA.

func (*CFSSL) SignCSR ¶

func (cap *CFSSL) SignCSR(csrPEM []byte) (cert []byte, err error)

SignCSR requests a certificate from a CFSSL signer.

type CertificateAuthority ¶

type CertificateAuthority interface {
	// SignCSR submits a PKCS #10 certificate signing request to a
	// CA for signing.
	SignCSR(csrPEM []byte) (cert []byte, err error)

	// CACertificate returns the certificate authority's
	// certificate.
	CACertificate() (cert []byte, err error)
}

A CertificateAuthority is capable of signing certificates given certificate signing requests.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
localca Package localca implements a localca that is useful for testing the transport package.	Package localca implements a localca that is useful for testing the transport package.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL