package signingtest

import "go.chromium.org/luci/server/auth/signing/signingtest"

Package signingtest implements signing.Signer interface using fake keys. Useful in unit tests.

Index ¶

• type Signer
• func NewSigner(seed int64, serviceInfo *signing.ServiceInfo) *Signer
• func (s *Signer) Certificates(c context.Context) (*signing.PublicCertificates, error)
• func (s *Signer) KeyForTest() *rsa.PrivateKey
• func (s *Signer) ServiceInfo(c context.Context) (*signing.ServiceInfo, error)
• func (s *Signer) SignBytes(c context.Context, blob []byte) (keyName string, signature []byte, err error)

Package Files ¶

doc.go signer.go

type Signer ¶ Uses

type Signer struct {
    // contains filtered or unexported fields
}

Signer holds private key and corresponding cert and can sign blobs with PKCS1v15.

func NewSigner ¶ Uses

func NewSigner(seed int64, serviceInfo *signing.ServiceInfo) *Signer

NewSigner returns Signer instance deterministically deriving the key from the given seed. Panics on errors.

func (*Signer) Certificates ¶ Uses

func (s *Signer) Certificates(c context.Context) (*signing.PublicCertificates, error)

Certificates returns a bundle with public certificates for all active keys.

func (*Signer) KeyForTest ¶ Uses

func (s *Signer) KeyForTest() *rsa.PrivateKey

KeyForTest returns the RSA key used internally by the test signer.

It is not part of the signing.Signer interface. It should be used only from tests.

func (*Signer) ServiceInfo ¶ Uses

func (s *Signer) ServiceInfo(c context.Context) (*signing.ServiceInfo, error)

ServiceInfo returns information about the current service.

It includes app ID and the service account name (that ultimately owns the signing private key).

func (*Signer) SignBytes ¶ Uses

func (s *Signer) SignBytes(c context.Context, blob []byte) (keyName string, signature []byte, err error)

SignBytes signs the blob with some active private key. Returns the signature and name of the key used.