Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Issuer ¶
type Issuer struct {
// URL is the URL of the Vault instance.
URL *url.URL
// Token is the Vault secret token that should be used
// when issuing certificates.
Token string
// Mount is the name under which the PKI secrets engine
// is mounted. Defaults to `pki`
Mount string
// Role is the Vault Role that should be used
// when issuing certificates.
Role string
// TLSConfig allows configuration of the TLS config
// used when connecting to the Vault server.
TLSConfig *tls.Config
// TimeToLive configures the lifetime of certificates
// requested from the Vault server.
TimeToLive time.Duration
// OtherSubjectAlternativeNames defines custom OID/UTF8-string SANs.
// The format is the same as OpenSSL: <oid>;<type>:<value> where the only current valid <type> is UTF8.
OtherSubjectAlternativeNames []string
// contains filtered or unexported fields
}
Issuer implements the Issuer interface with a Hashicorp Vault PKI Secrets Engine backend.
URL, Token and Role are required.
func FromClient ¶
FromClient returns an Issuer using the provided Vault API client. Any changes to the issuers properties (such as setting the TTL or adding Other SANS) must be done before using it. The client must have its token configured.
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.