certificate

package

v1.36.2 Latest Latest Go to latest Published: Sep 13, 2022 License: Apache-2.0 Imports: 20 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/deckhouse/deckhouse

Links

Open Source Insights

Documentation ¶

Index ¶

func ApplyCaSelfSignedCertFilter(obj *unstructured.Unstructured) (go_hook.FilterResult, error)
func GenerateCSR(logger *logrus.Entry, cn string, options ...Option) (csrPEM, key []byte, err error)
func IsCertificateExpiringSoon(cert []byte, durationLeft time.Duration) (bool, error)
func ParseCertificate(crt string) (*x509.Certificate, error)
func ParseCertificatesFromBase64(ca, crt, key string) (*x509.Certificate, *tls.Certificate, error)
func ParseCertificatesFromPEM(ca, crt, key string) (*x509.Certificate, *tls.Certificate, error)
func Validator(req *csr.CertificateRequest) error
type Authority
- func GenerateCA(logger *logrus.Entry, cn string, options ...Option) (Authority, error)
- func GetOrCreateCa(input *go_hook.HookInput, snapshot, cn string) (*Authority, error)
type Certificate
- func GenerateSelfSignedCert(logger *logrus.Entry, cn string, ca Authority, options ...interface{}) (Certificate, error)
type Option
type SigningOption
- func WithSigningDefaultExpiry(expiry time.Duration) SigningOption
- func WithSigningDefaultUsage(usage []string) SigningOption

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func ApplyCaSelfSignedCertFilter ¶

func ApplyCaSelfSignedCertFilter(obj *unstructured.Unstructured) (go_hook.FilterResult, error)

func GenerateCSR ¶

func GenerateCSR(logger *logrus.Entry, cn string, options ...Option) (csrPEM, key []byte, err error)

func IsCertificateExpiringSoon ¶

func IsCertificateExpiringSoon(cert []byte, durationLeft time.Duration) (bool, error)

func ParseCertificate ¶ added in v1.35.0

func ParseCertificate(crt string) (*x509.Certificate, error)

ParseCertificate parse x509 certificate PEM encoded

func ParseCertificatesFromBase64 ¶

func ParseCertificatesFromBase64(ca, crt, key string) (*x509.Certificate, *tls.Certificate, error)

ParseCertificatesFromBase64 parsing base64 input string and return ca cert and/or verified tls.Certificate

func ParseCertificatesFromPEM ¶

func ParseCertificatesFromPEM(ca, crt, key string) (*x509.Certificate, *tls.Certificate, error)

ParseCertificatesFromPEM parsing PEM input strings and return ca cert and/or verified tls.Certificate

func Validator ¶

func Validator(req *csr.CertificateRequest) error

Validator does nothing and will never return an error. It exists because creating a csr.Generator requires a Validator.

Types ¶

type Authority ¶

type Authority struct {
	Key  string `json:"key"`
	Cert string `json:"cert"`
}

func GenerateCA ¶

func GenerateCA(logger *logrus.Entry, cn string, options ...Option) (Authority, error)

func GetOrCreateCa ¶

func GetOrCreateCa(input *go_hook.HookInput, snapshot, cn string) (*Authority, error)

type Certificate ¶

type Certificate struct {
	Key  string `json:"key"`
	Cert string `json:"cert"`
	CA   string `json:"ca"`
}

func GenerateSelfSignedCert ¶

func GenerateSelfSignedCert(logger *logrus.Entry, cn string, ca Authority, options ...interface{}) (Certificate, error)

type Option ¶

type Option func(request *csr.CertificateRequest)

func WithCAConfig ¶

func WithCAConfig(caConfig *csr.CAConfig) Option

func WithCAExpiry ¶

func WithCAExpiry(expiry string) Option

func WithCSRKeyRequest ¶

func WithCSRKeyRequest(keyRequest *csr.KeyRequest) Option

WithCSRKeyRequest redeclare basic(ecdsa 2048) key alg and size

func WithGroups ¶

func WithGroups(groups ...string) Option

func WithKeyAlgo ¶

func WithKeyAlgo(algo string) Option

func WithKeyRequest ¶

func WithKeyRequest(keyRequest *csr.KeyRequest) Option

func WithKeySize ¶

func WithKeySize(size int) Option

func WithNames ¶

func WithNames(names ...csr.Name) Option

func WithSANs ¶

func WithSANs(sans ...string) Option

type SigningOption ¶

type SigningOption func(signing *config.Signing)

func WithSigningDefaultExpiry ¶

func WithSigningDefaultExpiry(expiry time.Duration) SigningOption

func WithSigningDefaultUsage ¶

func WithSigningDefaultUsage(usage []string) SigningOption

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL