Documentation
¶
Index ¶
Constants ¶
View Source
const ( FLAG_CONFIG_FILE = "config" FLAG_DEBUG = "debug" FLAG_VAULT_ADDRESS = "vault-address" FLAG_VAULT_AUTH_TOKEN = "vault-auth-token" // #nosec G101 FLAG_VAULT_AUTH_IMPLICIT = "vault-auth-implicit" FLAG_VAULT_AUTH_K8S_ROLE = "vault-auth-k8s" FLAG_VAULT_AUTH_APPROLE_ID = "vault-auth-role-id" FLAG_VAULT_AUTH_APPROLE_SECRET_ID = "vault-auth-secret-id" // #nosec G101 FLAG_VAULT_AUTH_APPROLE_SECRET_ID_FILE = "vault-auth-secret-id-file" // #nosec G101 FLAG_VAULT_APPROLE_MOUNT = "vault-approle-mount" FLAG_VAULT_PKI_MOUNT = "vault-pki-mount" FLAG_VAULT_PKI_BACKEND_ROLE = "vault-pki-role-name" FLAG_VAULT_MOUNT_KV2 = "vault-kv2-mount" FLAG_ISSUE_FORCE_NEW_CERTIFICATE = "force-new-certificate" FLAG_ISSUE_LIFETIME_THRESHOLD_PERCENTAGE = "lifetime-threshold-percent" FLAG_ISSUE_PRIVATE_KEY_FILE = "private-key-file" FLAG_ISSUE_BACKEND_CONFIG = "backend-config" FLAG_READACME_ACME_PREFIX = "acme-prefix" FLAG_ISSUE_YUBIKEY_SLOT = "yubi-slot" FLAG_ISSUE_YUBIKEY_PIN = "yubi-pin" FLAG_ISSUE_TTL = "ttl" FLAG_ISSUE_DAEMONIZE = "daemonize" FLAG_ISSUE_IP_SANS = "ip-sans" FLAG_ISSUE_COMMON_NAME = "common-name" FLAG_ISSUE_ALT_NAMES = "alt-names" FLAG_METRICS_FILE = "metrics-file" FLAG_ISSUE_METRICS_ADDR = "metrics-addr" FLAG_ISSUE_HOOKS = "hooks" FLAG_OUTPUT_FILE = "output-file" FLAG_DER_ENCODED = "der-encoding" FLAG_CERTIFICATE_FILE = "certificate-file" FLAG_CA_FILE = "ca-file" FLAG_CSR_FILE = "csr-file" FLAG_FILE_OWNER = "owner" FLAG_FILE_GROUP = "group" )
View Source
const ( FLAG_VAULT_PKI_BACKEND_ROLE_DEFAULT = "my_role" FLAG_VAULT_MOUNT_APPROLE_DEFAULT = "approle" FLAG_VAULT_MOUNT_KV2_DEFAULT = "/secret" FLAG_ISSUE_LIFETIME_THRESHOLD_PERCENTAGE_DEFAULT = 33. FLAG_ISSUE_TTL_DEFAULT = "48h" FLAG_FILE_OWNER_DEFAULT = "root" FLAG_ISSUE_DAEMONIZE_DEFAULT = false FLAG_READACME_ACME_PREFIX_DEFAULT = "acmevault/prod" FLAG_ISSUE_YUBIKEY_SLOT_DEFAULT = math.MaxUint32 FLAG_VAULT_MOUNT_PKI_DEFAULT = "pki_intermediate" FLAG_ISSUE_METRICS_ADDR_DEFAULT = ":9172" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Config ¶
type Config struct {
VaultAddress string `mapstructure:"vault-address"`
VaultToken string `mapstructure:"vault-auth-token"`
VaultAuthImplicit bool `mapstructure:"vault-auth-implicit"`
VaultAuthK8sRole string `mapstructure:"vault-auth-k8s-role"`
VaultRoleId string `mapstructure:"vault-auth-role-id"`
VaultSecretId string `mapstructure:"vault-auth-secret-id"`
VaultSecretIdFile string `mapstructure:"vault-auth-secret-id-file"`
VaultMountApprole string `mapstructure:"vault-approle-mount"`
VaultMountPki string `mapstructure:"vault-pki-mount"`
VaultMountKv2 string `mapstructure:"vault-kv2-mount"`
VaultPkiRole string `mapstructure:"vault-pki-role-name"`
Daemonize bool `mapstructure:"daemonize"`
CommonName string `mapstructure:"common-name"`
Ttl string `mapstructure:"ttl"`
IpSans []string `mapstructure:"ip-sans"`
AltNames []string `mapstructure:"alt-names"`
AcmePrefix string `mapstructure:"acme-prefix"`
MetricsFile string `mapstructure:"metrics-file"`
MetricsAddr string `mapstructure:"metrics-addr"`
ForceNewCertificate bool `mapstructure:"force-new-certificate"`
StorageConfig []map[string]string `mapstructure:"storage"`
PostHooks []string `mapstructure:"post-hooks"`
CertificateLifetimeThresholdPercentage float64 `mapstructure:"lifetime-threshold-percent"`
DerEncoded bool
}
func (*Config) ValidateIssue ¶ added in v1.8.0
Source Files
Click to show internal directories.
Click to hide internal directories.