renewal

package

v1.14.7-beta.0 Latest Latest Go to latest Published: Aug 19, 2019 License: Apache-2.0 Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cloudish-ufcg/kubernetes

Documentation ¶

Index ¶

func RenewAndMutateExistingEtcdServerCert(certsDir, baseName string, advertiseAddress net.IP, impl Interface) error
func RenewExistingCert(certsDir, baseName string, impl Interface) error
type CertsAPIRenewal
- func (r *CertsAPIRenewal) Renew(cfg *certutil.Config) (*x509.Certificate, *rsa.PrivateKey, error)
type FileRenewal
- func (r *FileRenewal) Renew(cfg *certutil.Config) (*x509.Certificate, *rsa.PrivateKey, error)
type Interface
- func NewCertsAPIRenawal(client kubernetes.Interface) Interface
- func NewFileRenewal(caCert *x509.Certificate, caKey *rsa.PrivateKey) Interface

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func RenewAndMutateExistingEtcdServerCert ¶ added in v1.14.1

func RenewAndMutateExistingEtcdServerCert(certsDir, baseName string, advertiseAddress net.IP, impl Interface) error

RenewAndMutateExistingEtcdServerCert loads a certificate file, uses the renew interface to renew it, and saves the resulting certificate and key over the old one. This method differs from usual RenewExistingCert because it checks if the etcd server certificate includes the advertiseAddress in the SANS list; if not, the certificate is mutated in order to include it. N.B. this code is necessary only in v1.14; starting from v1.15 all the etcd manifests should have 2 endpoints

func RenewExistingCert ¶

func RenewExistingCert(certsDir, baseName string, impl Interface) error

RenewExistingCert loads a certificate file, uses the renew interface to renew it, and saves the resulting certificate and key over the old one.

Types ¶

type CertsAPIRenewal ¶

type CertsAPIRenewal struct {
	// contains filtered or unexported fields
}

CertsAPIRenewal creates new certificates using the certs API

func (*CertsAPIRenewal) Renew ¶

func (r *CertsAPIRenewal) Renew(cfg *certutil.Config) (*x509.Certificate, *rsa.PrivateKey, error)

Renew takes a certificate using the cert and key.

type FileRenewal ¶

type FileRenewal struct {
	// contains filtered or unexported fields
}

FileRenewal renews a certificate using local certs

func (*FileRenewal) Renew ¶

func (r *FileRenewal) Renew(cfg *certutil.Config) (*x509.Certificate, *rsa.PrivateKey, error)

Renew takes a certificate using the cert and key

type Interface ¶

type Interface interface {
	Renew(*certutil.Config) (*x509.Certificate, *rsa.PrivateKey, error)
}

Interface represents a standard way to renew a certificate.

func NewCertsAPIRenawal ¶

func NewCertsAPIRenawal(client kubernetes.Interface) Interface

NewCertsAPIRenawal takes a Kubernetes interface and returns a renewal Interface.

func NewFileRenewal ¶

func NewFileRenewal(caCert *x509.Certificate, caKey *rsa.PrivateKey) Interface

NewFileRenewal takes a certificate pair to construct the Interface.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL