Documentation ¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type DatapathKey ¶
type DatapathKey struct { PublicKey *ecdsa.PublicKey Tags []string Expiration time.Time Controller *PKIControllerInfo }
DatapathKey holds the data path key with the corresponding claims.
type PKIControllerInfo ¶
type PKIControllerInfo struct { Namespace string // The namespace of the public key. Controller string // The controller or control plane of the public key. SameController bool // Does the public key come from the same controller }
PKIControllerInfo holds the controller information about public keys
type PKIPublicKey ¶
type PKIPublicKey struct { PublicKey *ecdsa.PublicKey Controller *PKIControllerInfo }
PKIPublicKey holds information about public keys
type PKITokenIssuer ¶
type PKITokenIssuer interface {
CreateTokenFromCertificate(*x509.Certificate, []string) ([]byte, error)
}
PKITokenIssuer is the interface of an object that can issue a PKI token.
func NewPKIIssuer ¶
func NewPKIIssuer(privateKey *ecdsa.PrivateKey) PKITokenIssuer
NewPKIIssuer initializes a new signer structure
type PKITokenVerifier ¶
type PKITokenVerifier interface {
Verify([]byte) (*DatapathKey, error)
}
PKITokenVerifier is the interface of an object that can verify a PKI token.
func NewPKIVerifier ¶
func NewPKIVerifier(publicKeys []*PKIPublicKey, cacheValidity time.Duration) PKITokenVerifier
NewPKIVerifier returns a new PKIConfiguration.
Click to show internal directories.
Click to hide internal directories.