- Sort Score
- Result 10 results
- Languages All
Results 1 - 5 of 5 for CSRSign (0.11 sec)
-
security/pkg/nodeagent/caclient/providers/mock/mockcaclient.go
} cl.bundle = bundle atomic.StoreUint64(&cl.SignInvokeCount, 0) return &cl, nil } func (c *CAClient) Close() {} // CSRSign returns the certificate or errors depending on the settings. func (c *CAClient) CSRSign(csrPEM []byte, certValidTTLInSec int64) ([]string, error) { atomic.AddUint64(&c.SignInvokeCount, 1) signingCert, signingKey, certChain, rootCert := c.bundle.GetAll()
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 16 22:12:28 UTC 2024 - 3K bytes - Viewed (0) -
security/pkg/nodeagent/caclient/providers/citadel/client.go
c.conn = conn c.client = pb.NewIstioCertificateServiceClient(conn) return c, nil } func (c *CitadelClient) Close() { if c.conn != nil { c.conn.Close() } } // CSRSign calls Citadel to sign a CSR. func (c *CitadelClient) CSRSign(csrPEM []byte, certValidTTLInSec int64) (res []string, err error) { crMetaStruct := &structpb.Struct{ Fields: map[string]*structpb.Value{ security.CertSigner: {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 16 22:12:28 UTC 2024 - 4.9K bytes - Viewed (0) -
security/pkg/nodeagent/caclient/providers/citadel/client_test.go
return fmt.Sprintf("localhost:%s", port) } func TestCitadelClientRotation(t *testing.T) { checkSign := func(t *testing.T, cli security.Client, expectError bool) { t.Helper() resp, err := cli.CSRSign([]byte{0o1}, 1) if expectError != (err != nil) { t.Fatalf("expected error:%v, got error:%v", expectError, err) } if !expectError && !reflect.DeepEqual(resp, fakeCert) { t.Fatalf("expected cert: %v", resp)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 24 21:03:23 UTC 2024 - 11.8K bytes - Viewed (0) -
pkg/security/security.go
// interface to get back a signed certificate. There is no guarantee that the SAN // in the request will be returned - server may replace it. type Client interface { CSRSign(csrPEM []byte, certValidTTLInSec int64) ([]string, error) Close() // Retrieve CA root certs If CA publishes API endpoint for this GetRootCertBundle() ([]string, error) }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 19.1K bytes - Viewed (0) -
security/pkg/nodeagent/cache/secretcache.go
return nil, err } numOutgoingRequests.With(RequestType.Value(monitoring.CSR)).Increment() timeBeforeCSR := time.Now() certChainPEM, err := sc.caClient.CSRSign(csrPEM, int64(sc.configOptions.SecretTTL.Seconds())) if err == nil { trustBundlePEM, err = sc.caClient.GetRootCertBundle() } csrLatency := float64(time.Since(timeBeforeCSR).Nanoseconds()) / float64(time.Millisecond)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 04 08:29:46 UTC 2024 - 28.2K bytes - Viewed (0)