certs

package

v0.0.0-...-a1fe31f Latest Latest Go to latest Published: Dec 28, 2021 License: Apache-2.0 Imports: 10 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/projectsesame/sesame

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
type Certificates
- func GenerateCerts(config *Configuration) (*Certificates, error)
type Configuration

Constants ¶

View Source

const (
	// DefaultSesameServiceName holds the default service name
	// used for the Sesame Kubernetes service. This value is added
	// to the Sesame certificate's Subject Alt Names.
	DefaultSesameServiceName = "sesame"

	// DefaultEnvoyServiceName holds the default service name
	// used for the Envoy Kubernetes service. This value is added
	// to the Envoy certificate's Subject Alt Names.
	DefaultEnvoyServiceName = "envoy"

	// DefaultCertificateLifetime holds the default certificate lifetime
	// (in days).
	DefaultCertificateLifetime = 365

	// DefaultNamespace where Sesame is deployed. This value is added
	// to the certificates Subject Alt Names.
	DefaultNamespace = "projectsesame"

	// DefaultDNSName holds the Kubernetes local dns suffix name
	// specific to the cluster where Sesame is deployed and is used when
	// configuring Subject Alt Names on the certificates.
	DefaultDNSName = "cluster.local"
)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Certificates ¶

type Certificates struct {
	CACertificate     []byte
	SesameCertificate []byte
	SesamePrivateKey  []byte
	EnvoyCertificate  []byte
	EnvoyPrivateKey   []byte
}

Certificates contains a set of Certificates as []byte each holding the CA Cert along with with Sesame & Envoy Certs.

func GenerateCerts ¶

func GenerateCerts(config *Configuration) (*Certificates, error)

GenerateCerts generates a CA Certificate along with certificates for Sesame & Envoy returning them as a *Certificates struct or error if encountered.

type Configuration ¶

type Configuration struct {

	// Lifetime is the number of days for which certificates will be valid.
	Lifetime uint

	// Namespace is the Kubernetes namespace name to add to the generated
	// certificates Subject Alternate Name values.
	Namespace string

	// DNSName holds the Kubernetes local dns suffix name
	// specific to the cluster where Sesame is deployed and is used when
	// configuring Subject Alt Names on the certificates.
	DNSName string

	// SesameServiceName holds the name of the Sesame service name.
	SesameServiceName string

	// EnvoyServiceName holds the name of the Envoy service name.
	EnvoyServiceName string
}

Configuration holds config parameters used for generating certificates.

Source Files ¶

View all Source files

certgen.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL