tlsutil

Documentation

Overview

Inspired by similar approach in: https://github.com/helm/helm (Apache 2.0 License).

Inspired by similar approach in: https://github.com/helm/helm (Apache 2.0 License).

Index

• func CertFromFilePair(certFile, keyFile string) (*tls.Certificate, error)
• func CertPoolFromFile(filename string) (*x509.CertPool, error)
• func ClientConfig(opts Options) (cfg *tls.Config, err error)
• func NewClientTLS(certFile, keyFile, caFile string) (*tls.Config, error)
• type Options

Functions

func CertFromFilePair

func CertFromFilePair(certFile, keyFile string) (*tls.Certificate, error)

CertFromFilePair returns an tls.Certificate containing the certificates public/private key pair from a pair of given PEM-encoded files. Returns an error if the file could not be read, a certificate could not be parsed, or if the file does not contain any certificates.

func CertPoolFromFile

func CertPoolFromFile(filename string) (*x509.CertPool, error)

CertPoolFromFile returns an x509.CertPool containing the certificates in the given PEM-encoded file. Returns an error if the file could not be read, a certificate could not be parsed, or if the file does not contain any certificates.

func ClientConfig

func ClientConfig(opts Options) (cfg *tls.Config, err error)

ClientConfig returns a TLS configuration for use by a Helm client.

func NewClientTLS

func NewClientTLS(certFile, keyFile, caFile string) (*tls.Config, error)

NewClientTLS returns tls.Config appropriate for client auth.

Types

type Options

type Options struct {
	CaCertFile string
	// If either the KeyFile or CertFile is empty, ClientConfig() will not load them.
	KeyFile  string
	CertFile string
	// Client-only options
	InsecureSkipVerify bool
}

Options represents configurable options used to create client and server TLS configurations.