certgraphapi

package
v0.0.0-...-5152f1c Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Sep 16, 2024 License: Apache-2.0 Imports: 2 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AnnotationValue

type AnnotationValue struct {
	// Key is the annotation key from the resource
	Key string `json:"key"`
	// Value is the annotation value from the resource
	Value string `json:"value"`
}

type CertIdentifier

type CertIdentifier struct {
	CommonName    string
	SerialNumber  string
	PubkeyModulus string

	Issuer *CertIdentifier
}

type CertKeyMetadata

type CertKeyMetadata struct {
	CertIdentifier     CertIdentifier
	SignatureAlgorithm string
	PublicKeyAlgorithm string
	PublicKeyBitSize   string
	ValidityDuration   string
	Usages             []string
	ExtendedUsages     []string
}

type CertKeyPair

type CertKeyPair struct {
	// LogicalName is an inexact representation of what this is for.  It may be empty.  It will usually be some hardcoded
	// heuristic trying to determine it.
	LogicalName string

	Description string

	// Name is CommonName::SerialNumber
	Name string

	Spec   CertKeyPairSpec
	Status CertKeyPairStatus
}

func (*CertKeyPair) DeepCopy

func (t *CertKeyPair) DeepCopy() *CertKeyPair

do better

type CertKeyPairDetails

type CertKeyPairDetails struct {
	CertType string

	SignerDetails      *SignerCertDetails
	ServingCertDetails *ServingCertDetails
	ClientCertDetails  *ClientCertDetails
}

type CertKeyPairList

type CertKeyPairList struct {
	Items []CertKeyPair
}

type CertKeyPairSpec

type CertKeyPairSpec struct {
	SecretLocations []InClusterSecretLocation
	OnDiskLocations []OnDiskCertKeyPairLocation

	CertMetadata CertKeyMetadata
	Details      CertKeyPairDetails
}

type CertKeyPairStatus

type CertKeyPairStatus struct {
	Errors []string
}

type CertificateAuthorityBundle

type CertificateAuthorityBundle struct {
	// LogicalName is an inexact representation of what this is for.  It may be empty.  It will usually be some hardcoded
	// heuristic trying to determine it.
	LogicalName string

	Description string

	// Name is CommonName::SerialNumber
	Name string

	Spec   CertificateAuthorityBundleSpec
	Status CertificateAuthorityBundleStatus
}

func (*CertificateAuthorityBundle) DeepCopy

do better

type CertificateAuthorityBundleList

type CertificateAuthorityBundleList struct {
	Items []CertificateAuthorityBundle
}

type CertificateAuthorityBundleSpec

type CertificateAuthorityBundleSpec struct {
	ConfigMapLocations []InClusterConfigMapLocation
	OnDiskLocations    []OnDiskLocation

	CertificateMetadata []CertKeyMetadata
}

type CertificateAuthorityBundleStatus

type CertificateAuthorityBundleStatus struct {
	Errors []string
}

type ClientCertDetails

type ClientCertDetails struct {
	Organizations []string
}

type ConfigMapRefByNamespaceName

type ConfigMapRefByNamespaceName []InClusterConfigMapLocation

func (ConfigMapRefByNamespaceName) Len

func (ConfigMapRefByNamespaceName) Less

func (n ConfigMapRefByNamespaceName) Less(i, j int) bool

func (ConfigMapRefByNamespaceName) Swap

func (n ConfigMapRefByNamespaceName) Swap(i, j int)

type InClusterConfigMapLocation

type InClusterConfigMapLocation struct {
	Namespace string
	Name      string
}

type InClusterSecretLocation

type InClusterSecretLocation struct {
	Namespace string
	Name      string
}

type OnDiskCertKeyPairLocation

type OnDiskCertKeyPairLocation struct {
	Cert OnDiskLocation
	Key  OnDiskLocation
}

type OnDiskLocation

type OnDiskLocation struct {
	Path string
}

type OnDiskLocationWithMetadata

type OnDiskLocationWithMetadata struct {
	OnDiskLocation

	User           string
	Group          string
	Permissions    string
	SELinuxOptions string
}

type PKIList

type PKIList struct {
	// LogicalName is an inexact representation of what this is for.  It may be empty.  It will usually be some hardcoded
	// heuristic trying to find it.
	LogicalName string

	Description string

	InClusterResourceData PerInClusterResourceData
	OnDiskResourceData    PerOnDiskResourceData

	CertificateAuthorityBundles CertificateAuthorityBundleList
	CertKeyPairs                CertKeyPairList
}

type PKIRegistryCABundle

type PKIRegistryCABundle struct {
	InClusterLocation *PKIRegistryInClusterCABundle
	OnDiskLocation    *PKIRegistryOnDiskCABundle
}

type PKIRegistryCertKeyPair

type PKIRegistryCertKeyPair struct {
	InClusterLocation *PKIRegistryInClusterCertKeyPair
	OnDiskLocation    *PKIRegistryOnDiskCertKeyPair
}

type PKIRegistryCertKeyPairInfo

type PKIRegistryCertKeyPairInfo struct {
	// SelectedCertMetadataAnnotations is a specified subset of annotations. NOT all annotations.
	// The caller will specify which annotations he wants.
	SelectedCertMetadataAnnotations []AnnotationValue `json:"selectedCertMetadataAnnotations,omitempty"`

	// OwningJiraComponent is a component name when a new OCP issue is filed in Jira
	// Deprecated
	OwningJiraComponent string `json:"owningJiraComponent"`
	// Description is a one sentence description of the certificate pair purpose
	// Deprecated
	Description string `json:"description"`
}

PKIRegistryCertKeyPairInfo holds information about certificate key pair

type PKIRegistryCertificateAuthorityInfo

type PKIRegistryCertificateAuthorityInfo struct {
	// SelectedCertMetadataAnnotations is a specified subset of annotations. NOT all annotations.
	// The caller will specify which annotations he wants.
	SelectedCertMetadataAnnotations []AnnotationValue `json:"selectedCertMetadataAnnotations,omitempty"`

	// OwningJiraComponent is a component name when a new OCP issue is filed in Jira
	// Deprecated
	OwningJiraComponent string `json:"owningJiraComponent"`
	// Description is a one sentence description of the certificate pair purpose
	// Deprecated
	Description string `json:"description"`
}

PKIRegistryCertificateAuthorityInfo holds information about certificate authority bundle

type PKIRegistryInClusterCABundle

type PKIRegistryInClusterCABundle struct {
	// ConfigMapLocation points to the configmap location
	ConfigMapLocation InClusterConfigMapLocation `json:"configMapLocation"`
	// CABundleInfo stores metadata for the certificate authority bundle
	CABundleInfo PKIRegistryCertificateAuthorityInfo `json:"certificateAuthorityBundleInfo"`
}

PKIRegistryInClusterCABundle holds information about certificate authority bundle

type PKIRegistryInClusterCertKeyPair

type PKIRegistryInClusterCertKeyPair struct {
	// SecretLocation points to the secret location
	SecretLocation InClusterSecretLocation `json:"secretLocation"`
	// CertKeyInfo stores metadata for certificate key pair
	CertKeyInfo PKIRegistryCertKeyPairInfo `json:"certKeyInfo"`
}

PKIRegistryInClusterCertKeyPair identifies certificate key pair and stores its metadata

type PKIRegistryOnDiskCABundle

type PKIRegistryOnDiskCABundle struct {
	// OnDiskLocation points to the ca bundle location on disk
	OnDiskLocation OnDiskLocation `json:"onDiskLocation"`
	// CABundleInfo stores metadata for the certificate authority bundle
	CABundleInfo PKIRegistryCertificateAuthorityInfo `json:"certificateAuthorityBundleInfo"`
}

PKIRegistryOnDiskCABundle identifies certificate key pair on disk and stores its metadata

type PKIRegistryOnDiskCertKeyPair

type PKIRegistryOnDiskCertKeyPair struct {
	// OnDiskLocation points to the certkeypair location on disk
	OnDiskLocation OnDiskLocation `json:"onDiskLocation"`
	// CertKeyInfo stores metadata for certificate key pair
	CertKeyInfo PKIRegistryCertKeyPairInfo `json:"certKeyInfo"`
}

PKIRegistryOnDiskCertKeyPair identifies certificate key pair on disk and stores its metadata

type PerInClusterResourceData

type PerInClusterResourceData struct {
	// +mapType:=atomic
	CertificateAuthorityBundles []PKIRegistryInClusterCABundle `json:"certificateAuthorityBundles"`
	// +mapType:=atomic
	CertKeyPairs []PKIRegistryInClusterCertKeyPair `json:"certKeyPairs"`
}

PerInClusterResourceData tracks metadata that corresponds to specific secrets and configmaps. This data should not duplicate the analysis of the certkeypair lists, but is pulled from annotations on the resources. It will be stitched together by a generator after the fact.

type PerOnDiskResourceData

type PerOnDiskResourceData struct {
	// +mapType:=atomic
	TLSArtifact []OnDiskLocationWithMetadata `json:"tlsArtifact"`
}

PerOnDiskResourceData tracks metadata that corresponds to specific files on disk. This data should not duplicate the analysis of the certkeypair lists, but is pulled from files on disk. It will be stitched together by a generator after the fact.

type SecretRefByNamespaceName

type SecretRefByNamespaceName []InClusterSecretLocation

func (SecretRefByNamespaceName) Len

func (n SecretRefByNamespaceName) Len() int

func (SecretRefByNamespaceName) Less

func (n SecretRefByNamespaceName) Less(i, j int) bool

func (SecretRefByNamespaceName) Swap

func (n SecretRefByNamespaceName) Swap(i, j int)

type ServingCertDetails

type ServingCertDetails struct {
	DNSNames    []string
	IPAddresses []string
}

type SignerCertDetails

type SignerCertDetails struct {
}

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL