cert

package
v0.121.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: May 3, 2023 License: BSD-3-Clause Imports: 13 Imported by: 0

Documentation

Overview

Package cert contains certificate tools for Google API clients. This package is intended to be used with crypto/tls.Config.GetClientCertificate.

The certificates can be used to satisfy Google's Endpoint Validation. See https://cloud.google.com/endpoint-verification/docs/overview

This package is not intended for use by end developers. Use the google.golang.org/api/option package to configure API clients.

Package cert contains certificate tools for Google API clients. This package is intended to be used with crypto/tls.Config.GetClientCertificate.

The certificates can be used to satisfy Google's Endpoint Validation. See https://cloud.google.com/endpoint-verification/docs/overview

This package is not intended for use by end developers. Use the google.golang.org/api/option package to configure API clients.

Package cert contains certificate tools for Google API clients. This package is intended to be used with crypto/tls.Config.GetClientCertificate.

The certificates can be used to satisfy Google's Endpoint Validation. See https://cloud.google.com/endpoint-verification/docs/overview

This package is not intended for use by end developers. Use the google.golang.org/api/option package to configure API clients.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Source

Source is a function that can be passed into crypto/tls.Config.GetClientCertificate.

func DefaultSource

func DefaultSource() (Source, error)

DefaultSource returns a certificate source using the preferred EnterpriseCertificateProxySource. If EnterpriseCertificateProxySource is not available, fall back to the legacy SecureConnectSource.

If neither source is available (due to missing configurations), a nil Source and a nil Error are returned to indicate that a default certificate source is unavailable.

func NewEnterpriseCertificateProxySource

func NewEnterpriseCertificateProxySource(configFilePath string) (Source, error)

NewEnterpriseCertificateProxySource creates a certificate source using the Enterprise Certificate Proxy client, which delegates certifcate related operations to an OS-specific "signer binary" that communicates with the native keystore (ex. keychain on MacOS).

The configFilePath points to a config file containing relevant parameters such as the certificate issuer and the location of the signer binary. If configFilePath is empty, the client will attempt to load the config from a well-known gcloud location.

func NewSecureConnectSource

func NewSecureConnectSource(configFilePath string) (Source, error)

NewSecureConnectSource creates a certificate source using the Secure Connect Helper and its associated metadata file.

The configFilePath points to the location of the context aware metadata file. If configFilePath is empty, use the default context aware metadata location.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL