vault

package

v0.9.2-beta Latest Latest Go to latest Published: Sep 17, 2020 License: Apache-2.0 Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/infamousjoeg/cyberark-aam-pkiaas

Documentation ¶

Index ¶

func NewDefaultVaultClient() (*api.Client, error)
type AccessControl
type Privileges
- func NewDefaultPrivileges() Privileges
type StorageBackend
- func NewFromDefaults() (StorageBackend, error)
- func NewVaultPKI(client *api.Client, access AccessControl) StorageBackend

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func NewDefaultVaultClient ¶

func NewDefaultVaultClient() (*api.Client, error)

NewDefaultVaultClient return the default conjur client

Types ¶

type AccessControl ¶

type AccessControl struct {
	// contains filtered or unexported fields
}

AccessControl ...

func NewAccess ¶

func NewAccess(privileges Privileges, disabled bool) AccessControl

NewAccess ...

func NewAccessFromDefaults ¶

func NewAccessFromDefaults() AccessControl

NewAccessFromDefaults ...

func NewAccessFromDefaultsDisabled ¶

func NewAccessFromDefaultsDisabled(conjurConfig conjurapi.Config, policyBranch string) AccessControl

NewAccessFromDefaultsDisabled ...

func (AccessControl) Authenticate ¶

func (a AccessControl) Authenticate(accessToken string) error

Authenticate If the client has ability to authenticate to the PKI service

func (AccessControl) CRLPurge ¶

func (a AccessControl) CRLPurge(accessToken string) error

CRLPurge ...

func (AccessControl) CreateCertificate ¶

func (a AccessControl) CreateCertificate(accessToken string, templateName string) error

CreateCertificate ...

func (AccessControl) CreateSSHCertificate ¶

func (a AccessControl) CreateSSHCertificate(accessToken string, templateName string) error

CreateSSHCertificate ----

func (AccessControl) CreateSSHTemplate ¶

func (a AccessControl) CreateSSHTemplate(accessToken string) error

CreateSSHTemplate ----

func (AccessControl) CreateTemplate ¶

func (a AccessControl) CreateTemplate(accessToken string) error

CreateTemplate creating a template is not granular, you either have the ability to create templates or not

func (AccessControl) DeleteSSHTemplate ¶

func (a AccessControl) DeleteSSHTemplate(accessToken string, templateName string) error

DeleteSSHTemplate ----

func (AccessControl) DeleteTemplate ¶

func (a AccessControl) DeleteTemplate(accessToken string, templateName string) error

DeleteTemplate ..

func (AccessControl) GenerateIntermediateCSR ¶

func (a AccessControl) GenerateIntermediateCSR(accessToken string) error

GenerateIntermediateCSR ...

func (AccessControl) ListSSHTemplates ¶

func (a AccessControl) ListSSHTemplates(accessToken string) error

ListSSHTemplates ----

func (AccessControl) ListTemplates ¶

func (a AccessControl) ListTemplates(accessToken string) error

ListTemplates ...

func (AccessControl) ManageSSHTemplate ¶

func (a AccessControl) ManageSSHTemplate(accessToken string, templateName string) error

ManageSSHTemplate ---

func (AccessControl) ManageTemplate ¶

func (a AccessControl) ManageTemplate(accessToken string, templateName string) error

ManageTemplate ...

func (AccessControl) Purge ¶

func (a AccessControl) Purge(accessToken string) error

Purge ...

func (AccessControl) ReadSSHTemplate ¶

func (a AccessControl) ReadSSHTemplate(accessToken string, templateName string) error

ReadSSHTemplate ----

func (AccessControl) ReadTemplate ¶

func (a AccessControl) ReadTemplate(accessToken string, templateName string) error

ReadTemplate ...

func (AccessControl) RevokeCertificate ¶

func (a AccessControl) RevokeCertificate(accessToken string, serialNumber string) error

RevokeCertificate ...

func (AccessControl) SetCAChain ¶

func (a AccessControl) SetCAChain(accessToken string) error

SetCAChain ...

func (AccessControl) SetIntermediateCertificate ¶

func (a AccessControl) SetIntermediateCertificate(accessToken string) error

SetIntermediateCertificate ...

func (AccessControl) SignCertificate ¶

func (a AccessControl) SignCertificate(accessToken string, templateName string) error

SignCertificate ...

type Privileges ¶

type Privileges struct {
	Authenticate               string
	Purge                      string
	CRLPurge                   string
	CertificateSignSpecific    string
	CertificateCreateSpecific  string
	CertificateRevokeSpecific  string
	TemplateCreateAny          string
	TemplateManageSpecific     string
	TemplateDeleteSpecific     string
	TemplateReadSpecific       string
	ListTemplates              string
	GenerateIntermediateCSR    string
	SetIntermediateCertificate string
	SetCAChain                 string
}

Privileges ...

func NewDefaultPrivileges ¶

func NewDefaultPrivileges() Privileges

NewDefaultPrivileges ...

type StorageBackend ¶

type StorageBackend struct {
	Access AccessControl
	// contains filtered or unexported fields
}

StorageBackend ...

func NewFromDefaults ¶

func NewFromDefaults() (StorageBackend, error)

NewFromDefaults ...

func NewVaultPKI ¶

func NewVaultPKI(client *api.Client, access AccessControl) StorageBackend

NewVaultPKI ...

func (StorageBackend) CertificateRevoked ¶

func (c StorageBackend) CertificateRevoked(serialNumber *big.Int) (types.RevokedCertificate, error)

CertificateRevoked Return the types.RevokedCertifcate repersented by the certificate If the certificate is not revoked, and empty types.RevokedCertificate is returned

func (StorageBackend) CreateCertificate ¶

func (c StorageBackend) CreateCertificate(cert types.CreateCertificateData) error

CreateCertificate ...

func (StorageBackend) CreateSSHTemplate ¶

func (c StorageBackend) CreateSSHTemplate(template types.SSHTemplate) error

CreateSSHTemplate Creates a new SSH template in the Conjur backend

func (StorageBackend) CreateTemplate ¶

func (c StorageBackend) CreateTemplate(template types.Template) error

CreateTemplate ...

func (StorageBackend) DeleteCertificate ¶

func (c StorageBackend) DeleteCertificate(serialNumber *big.Int) error

DeleteCertificate ...

func (StorageBackend) DeleteSSHTemplate ¶

func (c StorageBackend) DeleteSSHTemplate(templateName string) error

DeleteSSHTemplate Deletes the template with given as `templateName` from the Conjur backend

func (StorageBackend) DeleteTemplate ¶

func (c StorageBackend) DeleteTemplate(templateName string) error

DeleteTemplate ...

func (StorageBackend) GetAccessControl ¶

func (c StorageBackend) GetAccessControl() backend.Access

GetAccessControl -----

func (StorageBackend) GetCAChain ¶

func (c StorageBackend) GetCAChain() ([]string, error)

GetCAChain ...

func (StorageBackend) GetCRL ¶

func (c StorageBackend) GetCRL() (string, error)

GetCRL ...

func (StorageBackend) GetCertificate ¶

func (c StorageBackend) GetCertificate(serialNumber *big.Int) (string, error)

GetCertificate ...

func (StorageBackend) GetRevokedCerts ¶

func (c StorageBackend) GetRevokedCerts() ([]types.RevokedCertificate, error)

GetRevokedCerts ...

func (StorageBackend) GetSSHTemplate ¶

func (c StorageBackend) GetSSHTemplate(templateName string) (types.SSHTemplate, error)

GetSSHTemplate Retrieves the information about a given template with `templateName` from the Conjur backend

func (StorageBackend) GetSigningCert ¶

func (c StorageBackend) GetSigningCert() (string, error)

GetSigningCert ...

func (StorageBackend) GetSigningKey ¶

func (c StorageBackend) GetSigningKey() (string, error)

GetSigningKey ...

func (StorageBackend) GetTemplate ¶

func (c StorageBackend) GetTemplate(templateName string) (types.Template, error)

GetTemplate ...

func (StorageBackend) InitConfig ¶

func (c StorageBackend) InitConfig() error

InitConfig ... TODO: Might have to initilize some roles?? Not sure right now

func (StorageBackend) ListCertificates ¶

func (c StorageBackend) ListCertificates() ([]*big.Int, error)

ListCertificates ...

func (StorageBackend) ListExpiredCertificates ¶

func (c StorageBackend) ListExpiredCertificates(dayBuffer int) ([]*big.Int, error)

ListExpiredCertificates List all certificates that are currenty expired

func (StorageBackend) ListSSHTemplates ¶

func (c StorageBackend) ListSSHTemplates() ([]string, error)

ListSSHTemplates Retrieves a list of all templates in the Conjur backend

func (StorageBackend) ListTemplates ¶

func (c StorageBackend) ListTemplates() ([]string, error)

ListTemplates ...

func (StorageBackend) RevokeCertificate ¶

func (c StorageBackend) RevokeCertificate(serialNumber *big.Int, reasonCode int, revocationDate time.Time) error

RevokeCertificate ...

func (StorageBackend) WriteCAChain ¶

func (c StorageBackend) WriteCAChain(certBundle []string) error

WriteCAChain ...

func (StorageBackend) WriteCRL ¶

func (c StorageBackend) WriteCRL(content string) error

WriteCRL ...

func (StorageBackend) WriteSigningCert ¶

func (c StorageBackend) WriteSigningCert(content string) error

WriteSigningCert ...

func (StorageBackend) WriteSigningKey ¶

func (c StorageBackend) WriteSigningKey(content string) error

WriteSigningKey ...

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL