Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type SafeBrowsing ¶
type SafeBrowsing interface { // IsListed returns a non-empty string if the domain was bad. Specifically, // that list is which Google Safe Browsing list the domain was found on. IsListed(url string) (list string, err error) }
SafeBrowsing is an interface for an third-party safe browing API client.
type ValidationAuthorityImpl ¶
type ValidationAuthorityImpl struct {
// contains filtered or unexported fields
}
ValidationAuthorityImpl represents a VA
func NewValidationAuthorityImpl ¶
func NewValidationAuthorityImpl( pc *cmd.PortConfig, sbc SafeBrowsing, cdrClient *cdr.CAADistributedResolver, resolver bdns.DNSResolver, userAgent string, issuerDomain string, stats metrics.Scope, clk clock.Clock, logger blog.Logger, ) *ValidationAuthorityImpl
NewValidationAuthorityImpl constructs a new VA
func (*ValidationAuthorityImpl) IsSafeDomain ¶
func (va *ValidationAuthorityImpl) IsSafeDomain(ctx context.Context, req *vaPB.IsSafeDomainRequest) (*vaPB.IsDomainSafe, error)
IsSafeDomain returns true if the domain given is determined to be safe by an third-party safe browsing API. It's meant be called by the RA before pending authorization creation. If no third-party client was provided, it fails open and increments a Skips metric.
func (*ValidationAuthorityImpl) PerformValidation ¶
func (va *ValidationAuthorityImpl) PerformValidation(ctx context.Context, domain string, challenge core.Challenge, authz core.Authorization) ([]core.ValidationRecord, error)
PerformValidation validates the given challenge. It always returns a list of validation records, even when it also returns an error.
TODO(#1626): remove authz parameter
Click to show internal directories.
Click to hide internal directories.