Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security Policy
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

vault

package

v1.11.1 Latest Latest Go to latest Published: Feb 14, 2023 License: GPL-3.0 Imports: 15 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/soerenschneider/vault-pki-cli

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func FetchCert(vaultAddress, pkiMount string, binary bool) ([]byte, error)
func FetchCertChain(vaultAddress, pkiMount string) ([]byte, error)
func FetchCrl(vaultAddress, pkiMount string, binary bool) ([]byte, error)
type AppRoleAuth
- func NewAppRoleAuth(client *api.Client, loginData map[string]string, mountPath string) (*AppRoleAuth, error)
- func (t *AppRoleAuth) Authenticate() (string, error)
- func (t *AppRoleAuth) Cleanup() error
type AuthMethod
type KubernetesAuth
- func NewVaultKubernetesAuth(client *api.Client, role string) (*KubernetesAuth, error)
- func (t *KubernetesAuth) Authenticate() (string, error)
- func (t *KubernetesAuth) Cleanup() error
type TokenAuth
- func NewTokenAuth(token string) (*TokenAuth, error)
- func (t *TokenAuth) Authenticate() (string, error)
- func (t *TokenAuth) Cleanup() error
type TokenImplicitAuth
- func NewTokenImplicitAuth() *TokenImplicitAuth
- func (t *TokenImplicitAuth) Authenticate() (string, error)
- func (t *TokenImplicitAuth) Cleanup() error
type VaultClient
- func NewVaultPki(client *api.Client, auth AuthMethod, config *conf.Config) (*VaultClient, error)
- func (c *VaultClient) Cleanup() error
- func (c *VaultClient) Issue(opts *conf.Config) (*pki.CertData, error)
- func (c *VaultClient) ReadAcme(commonName string, conf *conf.Config) (*pki.CertData, error)
- func (c *VaultClient) Revoke(serial string) error
- func (c *VaultClient) Sign(csr string, opts *conf.Config) (*pki.Signature, error)
- func (c *VaultClient) Tidy() error

Constants ¶

View Source

const (
	KeyRoleId       = "role_id"
	KeySecretId     = "secret_id"
	KeySecretIdFile = "secret_id_file"
)

Variables ¶

This section is empty.

Functions ¶

func FetchCert ¶ added in v1.1.0

func FetchCert(vaultAddress, pkiMount string, binary bool) ([]byte, error)

func FetchCertChain ¶ added in v1.1.0

func FetchCertChain(vaultAddress, pkiMount string) ([]byte, error)

func FetchCrl ¶ added in v1.2.0

func FetchCrl(vaultAddress, pkiMount string, binary bool) ([]byte, error)

Types ¶

type AppRoleAuth ¶

type AppRoleAuth struct {
	// contains filtered or unexported fields
}

func NewAppRoleAuth ¶

func NewAppRoleAuth(client *api.Client, loginData map[string]string, mountPath string) (*AppRoleAuth, error)

func (*AppRoleAuth) Authenticate ¶

func (t *AppRoleAuth) Authenticate() (string, error)

func (*AppRoleAuth) Cleanup ¶

func (t *AppRoleAuth) Cleanup() error

type AuthMethod ¶

type AuthMethod interface {
	Authenticate() (string, error)
	Cleanup() error
}

type KubernetesAuth ¶ added in v1.8.0

type KubernetesAuth struct {
	// contains filtered or unexported fields
}

func NewVaultKubernetesAuth ¶ added in v1.8.0

func NewVaultKubernetesAuth(client *api.Client, role string) (*KubernetesAuth, error)

func (*KubernetesAuth) Authenticate ¶ added in v1.8.0

func (t *KubernetesAuth) Authenticate() (string, error)

func (*KubernetesAuth) Cleanup ¶ added in v1.8.0

func (t *KubernetesAuth) Cleanup() error

type TokenAuth ¶

type TokenAuth struct {
	// contains filtered or unexported fields
}

func NewTokenAuth ¶

func NewTokenAuth(token string) (*TokenAuth, error)

func (*TokenAuth) Authenticate ¶

func (t *TokenAuth) Authenticate() (string, error)

func (*TokenAuth) Cleanup ¶

func (t *TokenAuth) Cleanup() error

type TokenImplicitAuth ¶ added in v1.11.0

type TokenImplicitAuth struct {
}

func NewTokenImplicitAuth ¶ added in v1.11.0

func NewTokenImplicitAuth() *TokenImplicitAuth

func (*TokenImplicitAuth) Authenticate ¶ added in v1.11.0

func (t *TokenImplicitAuth) Authenticate() (string, error)

func (*TokenImplicitAuth) Cleanup ¶ added in v1.11.0

func (t *TokenImplicitAuth) Cleanup() error

type VaultClient ¶

type VaultClient struct {
	// contains filtered or unexported fields
}

func NewVaultPki ¶ added in v1.2.0

func NewVaultPki(client *api.Client, auth AuthMethod, config *conf.Config) (*VaultClient, error)

func (*VaultClient) Cleanup ¶

func (c *VaultClient) Cleanup() error

func (*VaultClient) Issue ¶

func (c *VaultClient) Issue(opts *conf.Config) (*pki.CertData, error)

func (*VaultClient) ReadAcme ¶ added in v1.9.0

func (c *VaultClient) ReadAcme(commonName string, conf *conf.Config) (*pki.CertData, error)

func (*VaultClient) Revoke ¶

func (c *VaultClient) Revoke(serial string) error

func (*VaultClient) Sign ¶ added in v1.4.0

func (c *VaultClient) Sign(csr string, opts *conf.Config) (*pki.Signature, error)

func (*VaultClient) Tidy ¶

func (c *VaultClient) Tidy() error

Source Files ¶

View all Source files