ptls

package

v0.29.0 Latest Latest Go to latest Published: Mar 13, 2024 License: Apache-2.0 Imports: 12 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/vmware-tanzu/pinniped

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func Default(rootCAs *x509.CertPool) *tls.Config
func DefaultLDAP(rootCAs *x509.CertPool) *tls.Config
func Legacy(rootCAs *x509.CertPool) *tls.Config
func Merge(tlsConfigFunc ConfigFunc, tlsConfig *tls.Config)
func Secure(rootCAs *x509.CertPool) *tls.Config
type ConfigFunc
type PrepareServerConfigFunc
- func DefaultRecommendedOptions(opts *options.RecommendedOptions, f RestConfigFunc) (PrepareServerConfigFunc, error)
- func SecureRecommendedOptions(opts *options.RecommendedOptions, f RestConfigFunc) (PrepareServerConfigFunc, error)
type RestConfigFunc

Constants ¶

View Source

const SecureTLSConfigMinTLSVersion = tls.VersionTLS13

SecureTLSConfigMinTLSVersion is the minimum tls version in the format expected by tls.Config.

Variables ¶

This section is empty.

Functions ¶

func Default ¶

func Default(rootCAs *x509.CertPool) *tls.Config

func DefaultLDAP ¶

func DefaultLDAP(rootCAs *x509.CertPool) *tls.Config

func Legacy ¶

func Legacy(rootCAs *x509.CertPool) *tls.Config

func Merge ¶

func Merge(tlsConfigFunc ConfigFunc, tlsConfig *tls.Config)

func Secure ¶

func Secure(rootCAs *x509.CertPool) *tls.Config

Types ¶

type ConfigFunc ¶

type ConfigFunc func(*x509.CertPool) *tls.Config

type PrepareServerConfigFunc ¶ added in v0.29.0

type PrepareServerConfigFunc func(c *genericapiserver.RecommendedConfig)

PrepareServerConfigFunc is a function that can prepare a RecommendedConfig before the use of RecommendedOptions.ApplyTo().

func DefaultRecommendedOptions ¶

func DefaultRecommendedOptions(opts *options.RecommendedOptions, f RestConfigFunc) (PrepareServerConfigFunc, error)

DefaultRecommendedOptions configures the RecommendedOptions for a server to use the appropriate cipher suites, min TLS version, and client configuration options for servers that need to accept incoming connections from arbitrary clients (like the impersonation proxy). It returns a PrepareServerConfigFunc which must be used on a RecommendedConfig before passing it to RecommendedOptions.ApplyTo().

func SecureRecommendedOptions ¶

func SecureRecommendedOptions(opts *options.RecommendedOptions, f RestConfigFunc) (PrepareServerConfigFunc, error)

SecureRecommendedOptions configures the RecommendedOptions for a server to use the appropriate cipher suites, min TLS version, and client configuration options for servers that only need to accept incoming connections from certain well known clients which we expect will always use modern TLS settings (like the Kube API server). It returns a PrepareServerConfigFunc which must be used on a RecommendedConfig before passing it to RecommendedOptions.ApplyTo().

type RestConfigFunc ¶

type RestConfigFunc func(*rest.Config) (kubernetes.Interface, *rest.Config, error)

RestConfigFunc allows this package to not depend on the kubeclient package.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL