client-go: k8s.io/client-go/util/certificate/csr Index | Files

package csr

import "k8s.io/client-go/util/certificate/csr"

Index

Package Files

csr.go

func ParseCSR Uses

func ParseCSR(obj *certificates.CertificateSigningRequest) (*x509.CertificateRequest, error)

ParseCSR extracts the CSR from the API object and decodes it.

func RequestCertificate Uses

func RequestCertificate(client certificatesclient.CertificateSigningRequestInterface, csrData []byte, name string, usages []certificates.KeyUsage, privateKey interface{}) (req *certificates.CertificateSigningRequest, err error)

RequestCertificate will either use an existing (if this process has run before but not to completion) or create a certificate signing request using the PEM encoded CSR and send it to API server, then it will watch the object's status, once approved by API server, it will return the API server's issued certificate (pem-encoded). If there is any errors, or the watch timeouts, it will return an error.

func RequestNodeCertificate Uses

func RequestNodeCertificate(client certificatesclient.CertificateSigningRequestInterface, privateKeyData []byte, nodeName types.NodeName) (certData []byte, err error)

RequestNodeCertificate will create a certificate signing request for a node (Organization and CommonName for the CSR will be set as expected for node certificates) and send it to API server, then it will watch the object's status, once approved by API server, it will return the API server's issued certificate (pem-encoded). If there is any errors, or the watch timeouts, it will return an error. This is intended for use on nodes (kubelet and kubeadm).

func WaitForCertificate Uses

func WaitForCertificate(client certificatesclient.CertificateSigningRequestInterface, req *certificates.CertificateSigningRequest, timeout time.Duration) (certData []byte, err error)

WaitForCertificate waits for a certificate to be issued until timeout, or returns an error.

Package csr imports 21 packages (graph) and is imported by 3 packages. Updated 2017-12-29. Refresh now. Tools for package owners.