Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type CertificateProvider ¶
type CertificateProvider interface {
// GetTrustBundle gives the CA trust bundle for the certificate provider
// this is then used to verify the certificates given by the peer in the handshake
GetTrustBundle() (*x509.CertPool, error)
// GetCertificateForIdentity gives the certificate and intermediates required
// to send as trust chain for a certain identity as well as a private key
GetCertificateForIdentity(identity string) (*tls.Certificate, error)
// ValidateIdentity will check if the SANs or other identity methods are valid
// for the given Cilium identity this function is needed as SPIFFE encodes the
// full ID in the URI SAN.
ValidateIdentity(identity string, cert *x509.Certificate) (bool, error)
}
Source Files
Click to show internal directories.
Click to hide internal directories.