Documentation ¶
Index ¶
- Constants
- func CreateCertificateAuthority(commonName, org, orgUnit, country string) (*x509.Certificate, crypto.PrivateKey, error)
- func CreateCertificateAuthorityForConfig(conf *config.Config) (*x509.Certificate, crypto.PrivateKey, error)
- func CreateCertificateRequest(subject pkix.Name, dnsName []string) ([]byte, *ecdsa.PrivateKey, error)
- func CreateNewCertificateForClient(name pkix.Name, serial *big.Int, keyType string, keyBits int, password string, ...) ([]byte, *x509.Certificate, error)
- func GenerateMutualTLSCertificate(ca *x509.Certificate, caPrivateKey crypto.PrivateKey, dnsNames []string, ...) (*x509.Certificate, crypto.PrivateKey, error)
- func GenerateServerCertificate(ca *x509.Certificate, caPrivateKey crypto.PrivateKey, dnsNames []string) (*x509.Certificate, crypto.PrivateKey, error)
- func NewSerialNumber() (*big.Int, error)
- func PemEncode(path, typ string, b []byte, headers map[string]string) error
- func SigningCertificateRequest(r *x509.CertificateRequest, ca *config.CertificateAuthority) (*x509.Certificate, error)
Constants ¶
View Source
const (
CertificateExpirationYear = 10 // year
)
Variables ¶
This section is empty.
Functions ¶
func CreateCertificateAuthority ¶
func CreateCertificateAuthority(commonName, org, orgUnit, country string) (*x509.Certificate, crypto.PrivateKey, error)
func CreateCertificateAuthorityForConfig ¶
func CreateCertificateAuthorityForConfig(conf *config.Config) (*x509.Certificate, crypto.PrivateKey, error)
func GenerateMutualTLSCertificate ¶ added in v0.5.0
func GenerateMutualTLSCertificate(ca *x509.Certificate, caPrivateKey crypto.PrivateKey, dnsNames []string, ips []string) (*x509.Certificate, crypto.PrivateKey, error)
GenerateMutualTLSCertificate will generate a certificate and a private key for server and client auth.
func GenerateServerCertificate ¶
func GenerateServerCertificate(ca *x509.Certificate, caPrivateKey crypto.PrivateKey, dnsNames []string) (*x509.Certificate, crypto.PrivateKey, error)
GenerateServerCertificate will generate a certificate and a private key for server auth. Generated private key is ecdsa 256-bit. The expiration of the certificate is 1 year.
func NewSerialNumber ¶
func SigningCertificateRequest ¶
func SigningCertificateRequest(r *x509.CertificateRequest, ca *config.CertificateAuthority) (*x509.Certificate, error)
Types ¶
This section is empty.
Click to show internal directories.
Click to hide internal directories.