Documentation ¶
Index ¶
- type SCEP
- func (s *SCEP) AuthorizeRenew(context.Context, *x509.Certificate) error
- func (s *SCEP) AuthorizeRevoke(context.Context, string) error
- func (s *SCEP) AuthorizeSSHRekey(context.Context, string) (*ssh.Certificate, []provisioner.SignOption, error)
- func (s *SCEP) AuthorizeSSHRenew(context.Context, string) (*ssh.Certificate, error)
- func (s *SCEP) AuthorizeSSHRevoke(context.Context, string) error
- func (s *SCEP) AuthorizeSSHSign(context.Context, string) ([]provisioner.SignOption, error)
- func (s *SCEP) AuthorizeSign(context.Context, string) ([]provisioner.SignOption, error)
- func (s *SCEP) GetEncryptedKey() (string, string, bool)
- func (s *SCEP) GetID() string
- func (s *SCEP) GetIDForToken() string
- func (s *SCEP) GetName() string
- func (s *SCEP) GetTokenID(string) (string, error)
- func (s *SCEP) GetType() provisioner.Type
- func (s *SCEP) Init(_ provisioner.Config) (err error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type SCEP ¶
type SCEP struct { ID string `json:"-"` Type string `json:"type"` Name string `json:"name"` ForceCN bool `json:"forceCN"` ChallengePassword string `json:"challenge"` Capabilities []string `json:"capabilities,omitempty"` IncludeRoot bool `json:"includeRoot"` ExcludeIntermediate bool `json:"excludeIntermediate"` MinimumPublicKeyLength int `json:"minimumPublicKeyLength"` DecrypterCertificate []byte `json:"decrypterCertificate"` DecrypterKeyPEM []byte `json:"decrypterKeyPEM"` DecrypterKeyURI string `json:"decrypterKey"` DecrypterKeyPassword string `json:"decrypterKeyPassword"` EncryptionAlgorithmIdentifier int `json:"encryptionAlgorithmIdentifier"` Options *provisioner.Options `json:"options,omitempty"` Claims *provisioner.Claims `json:"claims,omitempty"` }
SCEP is the SCEP provisioner model used solely in CA API responses. All methods for the provisioner.Interface interface are implemented, but return a dummy error. TODO(hs): remove reliance on the interface for the API responses
func (*SCEP) AuthorizeRenew ¶
AuthorizeRenew returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for renewing x509 Certificates.
func (*SCEP) AuthorizeRevoke ¶
AuthorizeRevoke returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for revoking x509 Certificates.
func (*SCEP) AuthorizeSSHRekey ¶
func (s *SCEP) AuthorizeSSHRekey(context.Context, string) (*ssh.Certificate, []provisioner.SignOption, error)
AuthorizeSSHRekey returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for rekeying SSH Certificates.
func (*SCEP) AuthorizeSSHRenew ¶
AuthorizeSSHRenew returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for renewing SSH Certificates.
func (*SCEP) AuthorizeSSHRevoke ¶
AuthorizeRevoke returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for revoking SSH Certificates.
func (*SCEP) AuthorizeSSHSign ¶
func (s *SCEP) AuthorizeSSHSign(context.Context, string) ([]provisioner.SignOption, error)
AuthorizeSSHSign returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for signing SSH Certificates.
func (*SCEP) AuthorizeSign ¶
func (s *SCEP) AuthorizeSign(context.Context, string) ([]provisioner.SignOption, error)
AuthorizeSign returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for signing x509 Certificates.
func (*SCEP) GetEncryptedKey ¶
GetEncryptedKey returns the base provisioner encrypted key if it's defined.
func (*SCEP) GetIDForToken ¶
GetIDForToken returns an identifier that will be used to load the provisioner from a token.
func (*SCEP) GetTokenID ¶
GetTokenID returns the identifier of the token.
func (*SCEP) GetType ¶
func (s *SCEP) GetType() provisioner.Type
GetType returns the type of provisioner.