Documentation ¶
Index ¶
Constants ¶
View Source
const ALPNProto = "acme-tls/1"
ALPNProto is the ALPN protocol name used by a CA server when validating tls-alpn-01 challenges.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type Client ¶
type Client struct {
// contains filtered or unexported fields
}
func (*Client) GetTLSCertificate ¶
func (c *Client) GetTLSCertificate(hello *tls.ClientHelloInfo) (*tls.Certificate, error)
func (*Client) RequestCertificate ¶
func (c *Client) RequestCertificate(ctx context.Context, req *GetCertificateRequest) (resp *GetCertificateResponse, err error)
type GetCertificateRequest ¶
type GetCertificateRequest = proto.GetCertificateRequest
type GetCertificateResponse ¶
type GetCertificateResponse = proto.GetCertificateResponse
type Options ¶
type Options struct { // AllowDomains optionally specifies which host names are allowed to // respond to. If not specified, any valid domain will trigger // certificate request towards the backend ssl cert server, and the // backend server take responsibility to check host policy. // // It's recommended to set this option, it helps to reduce influence // of unwelcome requests, such as DDOS, etc. AllowDomains []string // AllowDomainRegex optionally validates host names using regular expressions. // // If AllowDomains and AllowDomainRegex are both configured, // a domain name will be allowed if it matches either one. AllowDomainRegex []string // PreloadDomains optionally specifies host names to preload certificates // when initializing the TLS config. It helps to accelerate the // connecting speed of the first requests after the server started. // It's recommended to set this option for production deployment to // optimize end-user experience. // // As you may guess, this option will slow down the server startup // time, you may enable the following PreloadAsync option to preload // the certificates asynchronously in background. PreloadDomains []string PreloadAsync bool // DisableStapling optionally disables OCSP stapling. // // Deprecated: this option has been renamed to DisableOCSPStapling. DisableStapling bool // DisableOCSPStapling optionally disables OCSP stapling. DisableOCSPStapling bool // ErrorLog specifies an optional function to log error messages. // If nil, error messages will be logged using the default logger from // "log" package. ErrorLog func(format string, args ...interface{}) }
Click to show internal directories.
Click to hide internal directories.