pki

package

v3.0.0-delta Latest Latest Go to latest Published: Nov 10, 2020 License: Apache-2.0 Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/unistack-org/micro

Documentation ¶

Overview ¶

Package pki provides PKI all the PKI functions necessary to run micro over an untrusted network including a CA

Index ¶

func CA(opts ...CertOption) ([]byte, []byte, error)
func CSR(opts ...CertOption) ([]byte, error)
func GenerateKey() (ed25519.PublicKey, ed25519.PrivateKey, error)
func Sign(CACrt, CAKey, CSR []byte, opts ...CertOption) ([]byte, error)
type CertOption
type CertOptions

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func CA ¶

func CA(opts ...CertOption) ([]byte, []byte, error)

CA generates a self signed CA and returns cert, key in PEM format

func CSR ¶

func CSR(opts ...CertOption) ([]byte, error)

CSR generates a certificate request in PEM format

func GenerateKey ¶

func GenerateKey() (ed25519.PublicKey, ed25519.PrivateKey, error)

GenerateKey returns an ed25519 key

func Sign ¶

func Sign(CACrt, CAKey, CSR []byte, opts ...CertOption) ([]byte, error)

Sign decodes a CSR and signs it with the CA

Types ¶

type CertOption ¶

type CertOption func(c *CertOptions)

CertOption sets CertOptions

func DNSNames ¶

func DNSNames(names ...string) CertOption

DNSNames is a list of hosts to sign in to the certificate

func IPAddresses ¶

func IPAddresses(ips ...net.IP) CertOption

IPAddresses is a list of IPs to sign in to the certificate

func IsCA ¶

func IsCA() CertOption

IsCA states the cert is a CA

func KeyPair ¶

func KeyPair(pub ed25519.PublicKey, priv ed25519.PrivateKey) CertOption

KeyPair is the key pair to sign the certificate with

func NotAfter ¶

func NotAfter(time time.Time) CertOption

NotAfter is the time the certificate is not valid after

func NotBefore ¶

func NotBefore(time time.Time) CertOption

NotBefore is the time the certificate is not valid before

func SerialNumber ¶

func SerialNumber(serial *big.Int) CertOption

SerialNumber is the Certificate Serial number

func Subject ¶

func Subject(subject pkix.Name) CertOption

Subject sets the Subject field

type CertOptions ¶

type CertOptions struct {
	IsCA         bool
	Subject      pkix.Name
	DNSNames     []string
	IPAddresses  []net.IP
	SerialNumber *big.Int
	NotBefore    time.Time
	NotAfter     time.Time

	Parent *x509.Certificate
	Pub    ed25519.PublicKey
	Priv   ed25519.PrivateKey
}

CertOptions are passed to cert options

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL