Documentation
¶
Index ¶
- Constants
- func EncodeCertPEM(cert *x509.Certificate) []byte
- func NewPrivateKey(keyType x509.PublicKeyAlgorithm) (crypto.Signer, error)
- func PathForCert(pkiPath, name string) string
- func PathForKey(pkiPath, name string) string
- func PathForPublicKey(pkiPath, name string) string
- type AltNames
- type AuthorityCertificateGenerator
- type CertificateDescriptor
- type CertificateFileManger
- type CertificateGenerator
- type CommonCertificateGenerator
- type KeyPairFileGenerator
Constants ¶
View Source
const ( // PrivateKeyBlockType is a possible value for pem.Block.Type. PrivateKeyBlockType = "PRIVATE KEY" // PublicKeyBlockType is a possible value for pem.Block.Type. PublicKeyBlockType = "PUBLIC KEY" // CertificateBlockType is a possible value for pem.Block.Type. CertificateBlockType = "CERTIFICATE" // RSAPrivateKeyBlockType is a possible value for pem.Block.Type. RSAPrivateKeyBlockType = "RSA PRIVATE KEY" )
Variables ¶
This section is empty.
Functions ¶
func EncodeCertPEM ¶
func EncodeCertPEM(cert *x509.Certificate) []byte
EncodeCertPEM returns PEM-encoded certificate data
func NewPrivateKey ¶
func NewPrivateKey(keyType x509.PublicKeyAlgorithm) (crypto.Signer, error)
NewPrivateKey creates an RSA private key
func PathForCert ¶
func PathForKey ¶
func PathForPublicKey ¶
Types ¶
type AltNames ¶
AltNames contains the domain names and IP addresses that will be added to the API Server's x509 certificate SubAltNames field. The values will be passed directly to the x509.Certificate object.
type AuthorityCertificateGenerator ¶
type AuthorityCertificateGenerator struct {
// contains filtered or unexported fields
}
func (AuthorityCertificateGenerator) Generate ¶
func (m AuthorityCertificateGenerator) Generate() (*x509.Certificate, crypto.Signer, error)
type CertificateDescriptor ¶
type CertificateDescriptor struct {
CommonName string
DNSNames []string
Organization []string
Year time.Duration
AltNames AltNames
Usages []x509.ExtKeyUsage
}
CertificateDescriptor contains the basic fields required for creating a certificate
type CertificateFileManger ¶
type CertificateFileManger struct {
// contains filtered or unexported fields
}
CertificateFileManger Asymmetric encryption, like ca.crt and ca.key
func NewCertificateFileManger ¶
func NewCertificateFileManger(certPath string, certName string) CertificateFileManger
func (CertificateFileManger) Read ¶
func (c CertificateFileManger) Read() (cert *x509.Certificate, key crypto.Signer, err error)
func (CertificateFileManger) Write ¶
func (c CertificateFileManger) Write(cert *x509.Certificate, key crypto.Signer) error
type CertificateGenerator ¶
type CertificateGenerator interface {
Generate() (*x509.Certificate, crypto.Signer, error)
}
func NewAuthorityCertificateGenerator ¶
func NewAuthorityCertificateGenerator(config CertificateDescriptor) CertificateGenerator
func NewCommonCertificateGenerator ¶
func NewCommonCertificateGenerator(config CertificateDescriptor, caCert *x509.Certificate, caKey crypto.Signer) (CertificateGenerator, error)
type CommonCertificateGenerator ¶
type CommonCertificateGenerator struct {
// contains filtered or unexported fields
}
func (CommonCertificateGenerator) Generate ¶
func (m CommonCertificateGenerator) Generate() (*x509.Certificate, crypto.Signer, error)
type KeyPairFileGenerator ¶
type KeyPairFileGenerator struct {
// contains filtered or unexported fields
}
KeyPairFileGenerator write symmetric encryption key, like: sa.key and sa.pub
func NewKeyPairFileGenerator ¶
func NewKeyPairFileGenerator(certPath string, certName string) KeyPairFileGenerator
func (KeyPairFileGenerator) GenerateAll ¶
func (k KeyPairFileGenerator) GenerateAll() error
Source Files
Click to show internal directories.
Click to hide internal directories.