- Sort Score
- Result 10 results
- Languages All
Results 1 - 3 of 3 for SignCSRK8s (0.1 sec)
-
security/pkg/k8s/chiron/utils.go
} certChain, caCert, err := SignCSRK8s(client, csrPEM, signerName, usages, dnsName, caFilePath, approveCsr, true, requestedLifetime) return certChain, keyPEM, caCert, err } // SignCSRK8s generates a certificate from CSR using the K8s CA // 1. Submit a CSR // 2. Approve a CSR // 3. Read the signed certificate // 4. Clean up the artifacts (e.g., delete CSR)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Apr 05 18:11:22 UTC 2024 - 9.2K bytes - Viewed (0) -
security/pkg/pki/ra/k8s_ra.go
certSigner = r.raOpts.CaSigner } usages := []cert.KeyUsage{ cert.UsageDigitalSignature, cert.UsageKeyEncipherment, cert.UsageServerAuth, cert.UsageClientAuth, } certChain, _, err := chiron.SignCSRK8s(r.csrInterface, csrPEM, certSigner, usages, "", caCertFile, true, false, requestedLifetime) if err != nil { return nil, raerror.NewError(raerror.CertGenError, err) } return certChain, err }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Aug 02 14:34:38 UTC 2023 - 7.2K bytes - Viewed (0) -
security/pkg/k8s/chiron/utils_test.go
t.Run(tc.name, func(t *testing.T) { log.FindScope("default").SetOutputLevel(log.DebugLevel) client := initFakeKubeClient(t, tc.certificateData) // 4. Read the signed certificate _, _, err := SignCSRK8s(client.Kube(), createFakeCsr(t), "fake-signer", []cert.KeyUsage{cert.UsageAny}, "fake.com", tc.k8sCaCertFile, true, true, 1*time.Second) if tc.expectFail { if err == nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 15 03:58:11 UTC 2024 - 13K bytes - Viewed (0)