Versions in this module Expand all Collapse all v11 v11.3.3 Dec 13, 2022 Changes in this version + var AWSRoleARNsASN1ExtensionOID = asn1.ObjectIdentifier + var ActiveRequestsASN1ExtensionOID = asn1.ObjectIdentifier + var AllowedResourcesASN1ExtensionOID = asn1.ObjectIdentifier + var AppAWSRoleARNASN1ExtensionOID = asn1.ObjectIdentifier + var AppClusterNameASN1ExtensionOID = asn1.ObjectIdentifier + var AppNameASN1ExtensionOID = asn1.ObjectIdentifier + var AppPublicAddrASN1ExtensionOID = asn1.ObjectIdentifier + var AppSessionIDASN1ExtensionOID = asn1.ObjectIdentifier + var ClientIPASN1ExtensionOID = asn1.ObjectIdentifier + var DatabaseNameASN1ExtensionOID = asn1.ObjectIdentifier + var DatabaseNamesASN1ExtensionOID = asn1.ObjectIdentifier + var DatabaseProtocolASN1ExtensionOID = asn1.ObjectIdentifier + var DatabaseServiceNameASN1ExtensionOID = asn1.ObjectIdentifier + var DatabaseUsernameASN1ExtensionOID = asn1.ObjectIdentifier + var DatabaseUsersASN1ExtensionOID = asn1.ObjectIdentifier + var DisallowReissueASN1ExtensionOID = asn1.ObjectIdentifier + var GenerationASN1ExtensionOID = asn1.ObjectIdentifier + var ImpersonatorASN1ExtensionOID = asn1.ObjectIdentifier + var KubeClusterASN1ExtensionOID = asn1.ObjectIdentifier + var KubeGroupsASN1ExtensionOID = asn1.ObjectIdentifier + var KubeUsersASN1ExtensionOID = asn1.ObjectIdentifier + var MFAVerifiedASN1ExtensionOID = asn1.ObjectIdentifier + var PreviousIdentityExpiresASN1ExtensionOID = asn1.ObjectIdentifier + var PrivateKeyPolicyASN1ExtensionOID = asn1.ObjectIdentifier + var RenewableCertificateASN1ExtensionOID = asn1.ObjectIdentifier + var SystemRolesASN1ExtensionOID = asn1.ObjectIdentifier + var TeleportClusterASN1ExtensionOID = asn1.ObjectIdentifier + func CalculatePins(certsBytes []byte) ([]string, error) + func ClusterName(subject pkix.Name) (string, error) + func GenerateCertificateRequestPEM(subject pkix.Name, priv crypto.Signer) ([]byte, error) + func GenerateSelfSignedCA(entity pkix.Name, dnsNames []string, ttl time.Duration) ([]byte, []byte, error) + func GenerateSelfSignedCAWithConfig(config GenerateCAConfig) (certPEM []byte, err error) + func GenerateSelfSignedCAWithSigner(signer crypto.Signer, entity pkix.Name, dnsNames []string, ttl time.Duration) ([]byte, error) + func MarshalCertificatePEM(cert *x509.Certificate) ([]byte, error) + func MarshalPrivateKeyPEM(privateKey *rsa.PrivateKey) []byte + func MarshalPublicKeyFromPrivateKeyPEM(privateKey crypto.PrivateKey) ([]byte, error) + func ParseCertificatePEM(bytes []byte) (*x509.Certificate, error) + func ParseCertificatePEMs(bytes []byte) ([]*x509.Certificate, error) + func ParseCertificateRequestPEM(bytes []byte) (*x509.CertificateRequest, error) + func ParsePrivateKeyDER(der []byte) (crypto.Signer, error) + func ParsePrivateKeyPEM(bytes []byte) (crypto.Signer, error) + func ParsePublicKeyDER(der []byte) (crypto.PublicKey, error) + func ParsePublicKeyPEM(bytes []byte) (interface{}, error) + type CertAuthority struct + Cert *x509.Certificate + Signer crypto.Signer + func FromCertAndSigner(certPEM []byte, signer crypto.Signer) (*CertAuthority, error) + func FromKeys(certPEM, keyPEM []byte) (*CertAuthority, error) + func FromTLSCertificate(ca tls.Certificate) (*CertAuthority, error) + func (ca *CertAuthority) GenerateCertificate(req CertificateRequest) ([]byte, error) + type CertificateRequest struct + CRLDistributionPoints []string + Clock clockwork.Clock + DNSNames []string + ExtraExtensions []pkix.Extension + KeyUsage x509.KeyUsage + NotAfter time.Time + PublicKey crypto.PublicKey + Subject pkix.Name + func (c *CertificateRequest) CheckAndSetDefaults() error + type GenerateCAConfig struct + Clock clockwork.Clock + DNSNames []string + Entity pkix.Name + IPAddresses []net.IP + Signer crypto.Signer + TTL time.Duration + type Identity struct + AWSRoleARNs []string + ActiveRequests []string + AllowedResourceIDs []types.ResourceID + ClientIP string + DatabaseNames []string + DatabaseUsers []string + DisallowReissue bool + Expires time.Time + Generation uint64 + Groups []string + Impersonator string + KubernetesCluster string + KubernetesGroups []string + KubernetesUsers []string + MFAVerified string + PreviousIdentityExpires time.Time + Principals []string + PrivateKeyPolicy keys.PrivateKeyPolicy + Renewable bool + RouteToApp RouteToApp + RouteToCluster string + RouteToDatabase RouteToDatabase + SystemRoles []string + TeleportCluster string + Traits wrappers.Traits + Usage []string + Username string + func FromSubject(subject pkix.Name, expires time.Time) (*Identity, error) + func (id *Identity) CheckAndSetDefaults() error + func (id *Identity) GetEventIdentity() events.Identity + func (id *Identity) GetRouteToApp() (RouteToApp, error) + func (id *Identity) Subject() (pkix.Name, error) + func (id Identity) GetUserMetadata() events.UserMetadata + type RouteToApp struct + AWSRoleARN string + ClusterName string + Name string + PublicAddr string + SessionID string + type RouteToDatabase struct + Database string + Protocol string + ServiceName string + Username string + func (r RouteToDatabase) String() string Other modules containing this package github.com/zmb3/teleport