certificate

package

v3.1.0 Latest Latest Go to latest Published: Feb 7, 2024 License: Apache-2.0 Imports: 10 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/kong/kubernetes-ingress-controller

Links

Open Source Insights

Documentation ¶

Index ¶

func GetKongSystemSelfSignedCerts() (cert []byte, key []byte)
func MustGenerateSelfSignedCert(decorators ...SelfSignedCertificateOptionsDecorator) tls.Certificate
func MustGenerateSelfSignedCertPEMFormat(decorators ...SelfSignedCertificateOptionsDecorator) (cert []byte, key []byte)
type SelfSignedCertificateOptions
type SelfSignedCertificateOptionsDecorator

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func GetKongSystemSelfSignedCerts ¶

func GetKongSystemSelfSignedCerts() (cert []byte, key []byte)

GetKongSystemSelfSignedCerts returns the self-signed certificate and key with CN=*.<controllerNamespace>.svc and subjectAltName=DNS:*.<controllerNamespace>.svc.

func MustGenerateSelfSignedCert ¶

func MustGenerateSelfSignedCert(decorators ...SelfSignedCertificateOptionsDecorator) tls.Certificate

MustGenerateSelfSignedCert generates a tls.Certificate struct to be used in TLS client/listener configurations. Certificate is self-signed thus returned cert can be used as CA for it.

func MustGenerateSelfSignedCertPEMFormat ¶

func MustGenerateSelfSignedCertPEMFormat(decorators ...SelfSignedCertificateOptionsDecorator) (cert []byte, key []byte)

MustGenerateSelfSignedCertPEMFormat generates self-signed certificate and returns certificate and key in PEM format. Certificate is self-signed thus returned cert can be used as CA for it.

Types ¶

type SelfSignedCertificateOptions ¶

type SelfSignedCertificateOptions struct {
	CommonName string
	DNSNames   []string
	CATrue     bool
	Expired    bool
}

type SelfSignedCertificateOptionsDecorator ¶

type SelfSignedCertificateOptionsDecorator func(SelfSignedCertificateOptions) SelfSignedCertificateOptions

func WithAlreadyExpired ¶

func WithAlreadyExpired() SelfSignedCertificateOptionsDecorator

func WithCATrue ¶

func WithCATrue() SelfSignedCertificateOptionsDecorator

WithCATrue allows to use returned certificate to sign other certificates (uses BasicConstraints extension).

func WithCommonName ¶

func WithCommonName(commonName string) SelfSignedCertificateOptionsDecorator

func WithDNSNames ¶

func WithDNSNames(dnsNames ...string) SelfSignedCertificateOptionsDecorator

Source Files ¶

View all Source files

certificate.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL