certificates

package

v1.6.1 Latest Latest Go to latest Published: Oct 29, 2021 License: Apache-2.0 Imports: 13 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/jetstack/cert-manager

Links

Open Source Insights

Documentation ¶

Index ¶

func Expect2Or3KeysInSecret(_ *cmapi.Certificate, secret *corev1.Secret) error
func ExpectCARootCertificate(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectCertificateDNSNamesToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectCertificateOrganizationToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectCertificateURIsToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectConditionReadyObservedGeneration(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectCorrectTrustChain(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectEmailsToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectKeyUsageExtKeyUsageClientAuth(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectKeyUsageExtKeyUsageServerAuth(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectKeyUsageUsageDataEncipherment(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectKeyUsageUsageDigitalSignature(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectValidAnnotations(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectValidBasicConstraints(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectValidCertificate(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectValidCommonName(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectValidNotAfterDate(certificate *cmapi.Certificate, secret *corev1.Secret) error
func ExpectValidPrivateKeyData(certificate *cmapi.Certificate, secret *corev1.Secret) error
type ValidationFunc

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func Expect2Or3KeysInSecret ¶

func Expect2Or3KeysInSecret(_ *cmapi.Certificate, secret *corev1.Secret) error

Expect2Or3KeysInSecret checks if the secret resource has the correct amount of fields in the secret data

func ExpectCARootCertificate ¶

func ExpectCARootCertificate(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectCARootCertificate checks if the CA cert is root CA if one is provided

func ExpectCertificateDNSNamesToMatch ¶

func ExpectCertificateDNSNamesToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectCertificateDNSNamesToMatch checks if the issued certificate has all DNS names it requested

func ExpectCertificateOrganizationToMatch ¶

func ExpectCertificateOrganizationToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectCertificateOrganizationToMatch checks if the issued certificate has the same Organization as the requested one

func ExpectCertificateURIsToMatch ¶

func ExpectCertificateURIsToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectCertificateURIsToMatch checks if the issued certificate has all URI SANs names it requested

func ExpectConditionReadyObservedGeneration ¶

func ExpectConditionReadyObservedGeneration(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectConditionReadyObservedGeneration checks that the ObservedGeneration field on the Ready condition which must be true, is set to the Generation of the Certificate.

func ExpectCorrectTrustChain ¶

func ExpectCorrectTrustChain(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectCorrectTrustChain checks if the cert is signed by the root CA if one is provided

func ExpectEmailsToMatch ¶

func ExpectEmailsToMatch(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectEmailsToMatch check if the issued certificate has all requested email SANs

func ExpectKeyUsageExtKeyUsageClientAuth ¶

func ExpectKeyUsageExtKeyUsageClientAuth(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectKeyUsageExtKeyUsageClientAuth checks if the issued certificate has the extended key usage of client auth

func ExpectKeyUsageExtKeyUsageServerAuth ¶

func ExpectKeyUsageExtKeyUsageServerAuth(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectKeyUsageExtKeyUsageServerAuth checks if the issued certificate has the extended key usage of server auth

func ExpectKeyUsageUsageDataEncipherment ¶

func ExpectKeyUsageUsageDataEncipherment(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectKeyUsageUsageDataEncipherment checks if a cert has the KeyUsageDataEncipherment key usage set

func ExpectKeyUsageUsageDigitalSignature ¶

func ExpectKeyUsageUsageDigitalSignature(certificate *cmapi.Certificate, secret *corev1.Secret) error

UsageDigitalSignature checks if a cert has the KeyUsageDigitalSignature key usage set

func ExpectValidAnnotations ¶

func ExpectValidAnnotations(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectValidAnnotations checks if the correct annotations on the secret are present

func ExpectValidBasicConstraints ¶

func ExpectValidBasicConstraints(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectValidBasicConstraints asserts that basicConstraints are set correctly on issued certificates

func ExpectValidCertificate ¶

func ExpectValidCertificate(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectValidCertificate checks if the certificate is a valid x509 certificate

func ExpectValidCommonName ¶

func ExpectValidCommonName(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectValidCommonName checks if the issued certificate has the requested CN or one of the DNS SANs

func ExpectValidNotAfterDate ¶

func ExpectValidNotAfterDate(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectValidNotAfterDate checks if the issued certificate matches the requested duration

func ExpectValidPrivateKeyData ¶

func ExpectValidPrivateKeyData(certificate *cmapi.Certificate, secret *corev1.Secret) error

ExpectValidPrivateKeyData checks of the secret's private key matches the request

Types ¶

type ValidationFunc ¶

type ValidationFunc func(certificate *cmapi.Certificate, secret *corev1.Secret) error

ValidationFunc describes a Certificate validation helper function

Source Files ¶

View all Source files

certificates.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL