Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type CaProvider ¶
type CaProvider interface {
// Get returns all PEM encoded CAs, a list of CAs that were used to generate a secret and an error.
Get(context.Context, *core_mesh.MeshResource) (*core_xds.CaSecret, []string, error)
}
func NewCaProvider ¶
func NewCaProvider(caManagers core_ca.Managers) CaProvider
type Identity ¶
type Identity struct {
Mesh string
Name string
Services mesh_proto.MultiValueTagSet
}
type IdentityProvider ¶
type IdentityProvider interface {
// Get returns PEM encoded cert + key, backend that was used to generate this pair and an error.
Get(context.Context, Identity, *core_mesh.MeshResource) (*core_xds.IdentitySecret, string, error)
}
func NewIdentityProvider ¶
func NewIdentityProvider(caManagers core_ca.Managers) IdentityProvider
type Info ¶
type Info struct {
Expiration time.Time
Generation time.Time
Tags mesh_proto.MultiValueTagSet
MTLS *mesh_proto.Mesh_Mtls
IssuedBackend string
SupportedBackends []string
}
func (*Info) CertLifetime ¶
func (*Info) ExpiringSoon ¶
type Secrets ¶
type Secrets interface {
GetForDataPlane(dataplane *core_mesh.DataplaneResource, mesh *core_mesh.MeshResource) (*core_xds.IdentitySecret, *core_xds.CaSecret, error)
GetForZoneEgress(zoneEgress *core_mesh.ZoneEgressResource, mesh *core_mesh.MeshResource) (*core_xds.IdentitySecret, *core_xds.CaSecret, error)
Info(dpKey model.ResourceKey) *Info
Cleanup(dpKey model.ResourceKey)
}
func NewSecrets ¶
func NewSecrets(caProvider CaProvider, identityProvider IdentityProvider, metrics metrics.Metrics) (Secrets, error)
Source Files
Click to show internal directories.
Click to hide internal directories.