Documentation ¶
Index ¶
- type CA
- func (c *CA) Generate(commonName string, validityDuration time.Duration) error
- func (c *CA) IsEmpty() bool
- func (c *CA) LoadFromFile(caCertFile, caKeyFile string) error
- func (c *CA) LoadFromSecret(ctx context.Context, k8sClient *kubernetes.Clientset) error
- func (c *CA) LoadedFromSecret() bool
- func (c *CA) Reset()
- func (c *CA) StoreAsSecret(ctx context.Context, k8sClient *kubernetes.Clientset, force bool) error
- type Cert
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type CA ¶
type CA struct { SecretName string SecretNamespace string CACertBytes []byte CAKeyBytes []byte CACert *x509.Certificate CAKey crypto.Signer // contains filtered or unexported fields }
CA contains the data and metadata of the certificate authority
func (*CA) Generate ¶
Generate the root certificate and keyfile. Populates c.CACertBytes and c.CAKeyBytes
func (*CA) LoadFromFile ¶
LoadFromFile populates c.CACertBytes and c.CAKeyBytes by reading them from file.
func (*CA) LoadFromSecret ¶ added in v0.1.1
LoadFromSecret populates c.CACertBytes and c.CAKeyBytes by reading them from a secret
func (*CA) LoadedFromSecret ¶ added in v0.1.3
LoadedFromSecret returns true if this CA was loaded from a K8s secret
func (*CA) Reset ¶ added in v0.1.8
func (c *CA) Reset()
Reset resets ca key and ca cert values, this is useful for reload or regeneration.
func (*CA) StoreAsSecret ¶ added in v0.1.1
StoreAsSecret creates or updates the CA certificate in a K8s secret
- If force is true, the existing secret with same name in same namespace (if available) will be overwritten.
- If force is false and there is existing secret with same name in same namespace, just throws IsAlreadyExists error to caller
type Cert ¶
type Cert struct { CommonName string ValidityDuration time.Duration Usage []string Name string Namespace string Hosts []string CA *CA CertBytes []byte KeyBytes []byte }
Cert contains the data and metadata of the certificate and keyfile.
func NewCert ¶
func NewCert( commonName string, validityDuration time.Duration, usage []string, name string, namespace string, ) *Cert
NewCert creates a new certificate blueprint
func (*Cert) StoreAsSecret ¶
StoreAsSecret creates or updates the certificate and keyfile in a K8s secret