Documentation
¶
Index ¶
- type SCEP
- func (s *SCEP) AuthorizeRenew(context.Context, *x509.Certificate) error
- func (s *SCEP) AuthorizeRevoke(context.Context, string) error
- func (s *SCEP) AuthorizeSSHRekey(context.Context, string) (*ssh.Certificate, []provisioner.SignOption, error)
- func (s *SCEP) AuthorizeSSHRenew(context.Context, string) (*ssh.Certificate, error)
- func (s *SCEP) AuthorizeSSHRevoke(context.Context, string) error
- func (s *SCEP) AuthorizeSSHSign(context.Context, string) ([]provisioner.SignOption, error)
- func (s *SCEP) AuthorizeSign(context.Context, string) ([]provisioner.SignOption, error)
- func (s *SCEP) GetEncryptedKey() (string, string, bool)
- func (s *SCEP) GetID() string
- func (s *SCEP) GetIDForToken() string
- func (s *SCEP) GetName() string
- func (s *SCEP) GetTokenID(string) (string, error)
- func (s *SCEP) GetType() provisioner.Type
- func (s *SCEP) Init(_ provisioner.Config) (err error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type SCEP ¶
type SCEP struct {
ID string `json:"-"`
Type string `json:"type"`
Name string `json:"name"`
ForceCN bool `json:"forceCN"`
ChallengePassword string `json:"challenge"`
Capabilities []string `json:"capabilities,omitempty"`
IncludeRoot bool `json:"includeRoot"`
ExcludeIntermediate bool `json:"excludeIntermediate"`
MinimumPublicKeyLength int `json:"minimumPublicKeyLength"`
DecrypterCertificate []byte `json:"decrypterCertificate"`
DecrypterKeyPEM []byte `json:"decrypterKeyPEM"`
DecrypterKeyURI string `json:"decrypterKey"`
DecrypterKeyPassword string `json:"decrypterKeyPassword"`
EncryptionAlgorithmIdentifier int `json:"encryptionAlgorithmIdentifier"`
Options *provisioner.Options `json:"options,omitempty"`
Claims *provisioner.Claims `json:"claims,omitempty"`
}
SCEP is the SCEP provisioner model used solely in CA API responses. All methods for the provisioner.Interface interface are implemented, but return a dummy error. TODO(hs): remove reliance on the interface for the API responses
func (*SCEP) AuthorizeRenew ¶
AuthorizeRenew returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for renewing x509 Certificates.
func (*SCEP) AuthorizeRevoke ¶
AuthorizeRevoke returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for revoking x509 Certificates.
func (*SCEP) AuthorizeSSHRekey ¶
func (s *SCEP) AuthorizeSSHRekey(context.Context, string) (*ssh.Certificate, []provisioner.SignOption, error)
AuthorizeSSHRekey returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for rekeying SSH Certificates.
func (*SCEP) AuthorizeSSHRenew ¶
AuthorizeSSHRenew returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for renewing SSH Certificates.
func (*SCEP) AuthorizeSSHRevoke ¶
AuthorizeSSHRevoke returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for revoking SSH Certificates.
func (*SCEP) AuthorizeSSHSign ¶
func (s *SCEP) AuthorizeSSHSign(context.Context, string) ([]provisioner.SignOption, error)
AuthorizeSSHSign returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for signing SSH Certificates.
func (*SCEP) AuthorizeSign ¶
func (s *SCEP) AuthorizeSign(context.Context, string) ([]provisioner.SignOption, error)
AuthorizeSign returns an unimplemented error. Provisioners should overwrite this method if they will support authorizing tokens for signing x509 Certificates.
func (*SCEP) GetEncryptedKey ¶
GetEncryptedKey returns the base provisioner encrypted key if it's defined.
func (*SCEP) GetIDForToken ¶
GetIDForToken returns an identifier that will be used to load the provisioner from a token.
func (*SCEP) GetTokenID ¶
GetTokenID returns the identifier of the token.
func (*SCEP) GetType ¶
func (s *SCEP) GetType() provisioner.Type
GetType returns the type of provisioner.
Source Files