pki

package

v5.0.2 Latest Latest Go to latest Published: Oct 3, 2022 License: Apache-2.0 Imports: 10 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/go-micro/microwire

Links

Open Source Insights

Documentation ¶

Overview ¶

Package pki provides PKI all the PKI functions necessary to run micro over an untrusted network including a CA

Index ¶

func CA(opts ...CertOption) ([]byte, []byte, error)
func CSR(opts ...CertOption) ([]byte, error)
func GenerateKey() (ed25519.PublicKey, ed25519.PrivateKey, error)
func Sign(CACrt, CAKey, CSR []byte, opts ...CertOption) ([]byte, error)
type CertOption
type CertOptions

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func CA ¶

func CA(opts ...CertOption) ([]byte, []byte, error)

CA generates a self signed CA and returns cert, key in PEM format.

func CSR ¶

func CSR(opts ...CertOption) ([]byte, error)

CSR generates a certificate request in PEM format.

func GenerateKey ¶

func GenerateKey() (ed25519.PublicKey, ed25519.PrivateKey, error)

GenerateKey returns an ed25519 key.

func Sign ¶

func Sign(CACrt, CAKey, CSR []byte, opts ...CertOption) ([]byte, error)

Sign decodes a CSR and signs it with the CA.

Types ¶

type CertOption ¶

type CertOption func(c *CertOptions)

CertOption sets CertOptions.

func DNSNames ¶

func DNSNames(names ...string) CertOption

DNSNames is a list of hosts to sign in to the certificate.

func IPAddresses ¶

func IPAddresses(ips ...net.IP) CertOption

IPAddresses is a list of IPs to sign in to the certificate.

func IsCA ¶

func IsCA() CertOption

IsCA states the cert is a CA.

func KeyPair ¶

func KeyPair(pub ed25519.PublicKey, priv ed25519.PrivateKey) CertOption

KeyPair is the key pair to sign the certificate with.

func NotAfter ¶

func NotAfter(time time.Time) CertOption

NotAfter is the time the certificate is not valid after.

func NotBefore ¶

func NotBefore(time time.Time) CertOption

NotBefore is the time the certificate is not valid before.

func SerialNumber ¶

func SerialNumber(serial *big.Int) CertOption

SerialNumber is the Certificate Serial number.

func Subject ¶

func Subject(subject pkix.Name) CertOption

Subject sets the Subject field.

type CertOptions ¶

type CertOptions struct {
	IsCA         bool
	Subject      pkix.Name
	DNSNames     []string
	IPAddresses  []net.IP
	SerialNumber *big.Int
	NotBefore    time.Time
	NotAfter     time.Time

	Parent *x509.Certificate
	Pub    ed25519.PublicKey
	Priv   ed25519.PrivateKey
}

CertOptions are passed to cert options.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL