Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security Policy
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

caddytls

package

Go to main page

Versions in this module

v2

v2.4.1

Jan 5, 2021

v2.4.0

Jan 5, 2021

Changes in this version

+ var SupportedCurves = map[string]tls.CurveID

+ var SupportedProtocols = map[string]uint16

+ func CipherSuiteID(name string) uint16

+ func CipherSuiteNameSupported(name string) bool

+ func DefaultIssuers(ctx caddy.Context) ([]certmagic.Issuer, error)

+ func ProtocolName(id uint16) string

+ func SupportedCipherSuites() []*tls.CipherSuite

+ type ACMEIssuer struct

+ ACMETimeout caddy.Duration

+ CA string

+ Challenges *ChallengesConfig

+ Email string

+ ExternalAccount *acme.EAB

+ PreferredChains *ChainPreference

+ TestCA string

+ TrustedRootsPEMFiles []string

+ func (ACMEIssuer) CaddyModule() caddy.ModuleInfo

+ func (iss *ACMEIssuer) GetACMEIssuer() *ACMEIssuer

+ func (iss *ACMEIssuer) Issue(ctx context.Context, csr *x509.CertificateRequest) (*certmagic.IssuedCertificate, error)

+ func (iss *ACMEIssuer) IssuerKey() string

+ func (iss *ACMEIssuer) PreCheck(ctx context.Context, names []string, interactive bool) error

+ func (iss *ACMEIssuer) Provision(ctx caddy.Context) error

+ func (iss *ACMEIssuer) Revoke(ctx context.Context, cert certmagic.CertificateResource, reason int) error

+ func (iss *ACMEIssuer) SetConfig(cfg *certmagic.Config)

+ func (iss *ACMEIssuer) UnmarshalCaddyfile(d *caddyfile.Dispenser) error

+ type AutomateLoader []string

+ func (AutomateLoader) CaddyModule() caddy.ModuleInfo

+ type AutomationConfig struct

+ OCSPCheckInterval caddy.Duration

+ OnDemand *OnDemandConfig

+ Policies []*AutomationPolicy

+ RenewCheckInterval caddy.Duration

+ type AutomationPolicy struct

+ IssuerRaw json.RawMessage

+ Issuers []certmagic.Issuer

+ IssuersRaw []json.RawMessage

+ KeyType string

+ MustStaple bool

+ OnDemand bool

+ RenewalWindowRatio float64

+ StorageRaw json.RawMessage

+ Subjects []string

+ func (ap *AutomationPolicy) Provision(tlsApp *TLS) error

+ type CertCacheOptions struct

+ Capacity int

+ type CertKeyFilePair struct

+ Certificate string

+ Format string

+ Key string

+ Tags []string

+ type CertKeyPEMPair struct

+ CertificatePEM string

+ KeyPEM string

+ Tags []string

+ type Certificate struct

+ Tags []string

+ type CertificateLoader interface

+ LoadCertificates func() ([]Certificate, error)

+ type ChainPreference struct

+ AnyCommonName []string

+ RootCommonName []string

+ Smallest *bool

+ type ChallengesConfig struct

+ BindHost string

+ DNS *DNSChallengeConfig

+ HTTP *HTTPChallengeConfig

+ TLSALPN *TLSALPNChallengeConfig

+ type ClientAuthentication struct

+ Mode string

+ TrustedCACertPEMFiles []string

+ TrustedCACerts []string

+ TrustedLeafCerts []string

+ func (clientauth *ClientAuthentication) ConfigureTLSConfig(cfg *tls.Config) error

+ func (clientauth ClientAuthentication) Active() bool

+ type ConfigSetter interface

+ SetConfig func(cfg *certmagic.Config)

+ type ConnectionMatcher interface

+ Match func(*tls.ClientHelloInfo) bool

+ type ConnectionPolicies []*ConnectionPolicy

+ func (cp ConnectionPolicies) Provision(ctx caddy.Context) error

+ func (cp ConnectionPolicies) TLSConfig(ctx caddy.Context) *tls.Config

+ type ConnectionPolicy struct

+ ALPN []string

+ CertSelection *CustomCertSelectionPolicy

+ CipherSuites []string

+ ClientAuthentication *ClientAuthentication

+ Curves []string

+ DefaultSNI string

+ MatchersRaw caddy.ModuleMap

+ ProtocolMax string

+ ProtocolMin string

+ func (p ConnectionPolicy) SettingsEmpty() bool

+ type CustomCertSelectionPolicy struct

+ AllTags []string

+ AnyTag []string

+ PublicKeyAlgorithm PublicKeyAlgorithm

+ SerialNumber []bigInt

+ SubjectOrganization []string

+ func (p CustomCertSelectionPolicy) SelectCertificate(hello *tls.ClientHelloInfo, choices []certmagic.Certificate) (certmagic.Certificate, error)

+ type DNSChallengeConfig struct

+ PropagationTimeout caddy.Duration

+ ProviderRaw json.RawMessage

+ Resolvers []string

+ TTL caddy.Duration

+ type FileLoader []CertKeyFilePair

+ func (FileLoader) CaddyModule() caddy.ModuleInfo

+ func (fl FileLoader) LoadCertificates() ([]Certificate, error)

+ type FolderLoader []string

+ func (FolderLoader) CaddyModule() caddy.ModuleInfo

+ func (fl FolderLoader) LoadCertificates() ([]Certificate, error)

+ type HTTPChallengeConfig struct

+ AlternatePort int

+ Disabled bool

+ type InternalIssuer struct

+ CA string

+ Lifetime caddy.Duration

+ SignWithRoot bool

+ func (InternalIssuer) CaddyModule() caddy.ModuleInfo

+ func (iss *InternalIssuer) Provision(ctx caddy.Context) error

+ func (iss *InternalIssuer) UnmarshalCaddyfile(d *caddyfile.Dispenser) error

+ func (iss InternalIssuer) Issue(ctx context.Context, csr *x509.CertificateRequest) (*certmagic.IssuedCertificate, error)

+ func (iss InternalIssuer) IssuerKey() string

+ type MatchServerName []string

+ func (MatchServerName) CaddyModule() caddy.ModuleInfo

+ func (m MatchServerName) Match(hello *tls.ClientHelloInfo) bool

+ type OnDemandConfig struct

+ Ask string

+ RateLimit *RateLimit

+ type PEMLoader []CertKeyPEMPair

+ func (PEMLoader) CaddyModule() caddy.ModuleInfo

+ func (pl PEMLoader) LoadCertificates() ([]Certificate, error)

+ type PublicKeyAlgorithm x509.PublicKeyAlgorithm

+ func (a *PublicKeyAlgorithm) UnmarshalJSON(b []byte) error

+ type RateLimit struct

+ Burst int

+ Interval caddy.Duration

+ type STEKProvider interface

+ Initialize func(config *SessionTicketService) ([][32]byte, error)

+ Next func(doneChan <-chan struct{}) (keysChan <-chan [][32]byte)

+ type SessionTicketService struct

+ DisableRotation bool

+ Disabled bool

+ KeySource json.RawMessage

+ MaxKeys int

+ RotationInterval caddy.Duration

+ func (s SessionTicketService) RotateSTEKs(keys [][32]byte) ([][32]byte, error)

+ type TLS struct

+ Automation *AutomationConfig

+ Cache *CertCacheOptions

+ CertificatesRaw caddy.ModuleMap

+ SessionTickets *SessionTicketService

+ func (TLS) CaddyModule() caddy.ModuleInfo

+ func (t *TLS) AddAutomationPolicy(ap *AutomationPolicy) error

+ func (t *TLS) AllMatchingCertificates(san string) []certmagic.Certificate

+ func (t *TLS) Cleanup() error

+ func (t *TLS) HandleHTTPChallenge(w http.ResponseWriter, r *http.Request) bool

+ func (t *TLS) Manage(names []string) error

+ func (t *TLS) Provision(ctx caddy.Context) error

+ func (t *TLS) Start() error

+ func (t *TLS) Stop() error

+ func (t *TLS) Validate() error

+ type TLSALPNChallengeConfig struct

+ AlternatePort int

+ Disabled bool

+ type ZeroSSLIssuer struct

+ APIKey string

+ func (*ZeroSSLIssuer) CaddyModule() caddy.ModuleInfo

+ func (iss *ZeroSSLIssuer) Issue(ctx context.Context, csr *x509.CertificateRequest) (*certmagic.IssuedCertificate, error)

+ func (iss *ZeroSSLIssuer) IssuerKey() string

+ func (iss *ZeroSSLIssuer) PreCheck(ctx context.Context, names []string, interactive bool) error

+ func (iss *ZeroSSLIssuer) Provision(ctx caddy.Context) error

+ func (iss *ZeroSSLIssuer) Revoke(ctx context.Context, cert certmagic.CertificateResource, reason int) error

+ func (iss *ZeroSSLIssuer) UnmarshalCaddyfile(d *caddyfile.Dispenser) error