Documentation ¶
Overview ¶
Package certauthority implements a simple x509 certificate authority suitable for use in an aggregated API service.
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ErrInvalidCACertificate = fmt.Errorf("invalid CA certificate")
ErrInvalidCACertificate is returned when the contents of the loaded CA certificate do not meet our assumptions.
Functions ¶
Types ¶
type CA ¶
type CA struct {
// contains filtered or unexported fields
}
CA holds the state for a simple x509 certificate authority suitable for use in an aggregated API service.
func Load ¶
Load a certificate authority from an existing certificate and private key (in PEM format).
func (*CA) Issue ¶
func (c *CA) Issue(subject pkix.Name, dnsNames []string, ips []net.IP, ttl time.Duration) (*tls.Certificate, error)
Issue a new server certificate for the given identity and duration.
Directories ¶
Path | Synopsis |
---|---|
Package dynamiccertauthority implements a x509 certificate authority capable of issuing certificates from a dynamically updating CA keypair.
|
Package dynamiccertauthority implements a x509 certificate authority capable of issuing certificates from a dynamically updating CA keypair. |
Click to show internal directories.
Click to hide internal directories.