tls

package

v0.5.0 Latest Latest Go to latest Published: Oct 29, 2025 License: Apache-2.0 Imports: 12 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/absmach/mgate

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
Variables
func ClientCert(conn net.Conn) (x509.Certificate, error)
func LoadTLSConfig[sc TLSConfig](c *Config, s sc) (sc, error)
func SecurityStatus[sc TLSConfig](s sc) string
type Config
- func NewConfig(opts env.Options) (Config, error)
type TLSConfig

Constants ¶

View Source

const (
	OCSP verification = iota + 1
	CRL
)

Variables ¶

View Source

var ErrInvalidCertVerification = errors.New("invalid certificate verification method")

ErrInvalidCertVerification represents an error during the cert verification method loading. Supported are OCSP and CRL verification methods.

Functions ¶

func ClientCert ¶

func ClientCert(conn net.Conn) (x509.Certificate, error)

ClientCert returns client certificate.

func LoadTLSConfig ¶ added in v0.5.0

func LoadTLSConfig[sc TLSConfig](c *Config, s sc) (sc, error)

LoadTLSConfig returns a TLS or DTLS configuration that can be used for TLS or DTLS servers.

func SecurityStatus ¶

func SecurityStatus[sc TLSConfig](s sc) string

SecurityStatus returns log message from TLS config.

Types ¶

type Config ¶

type Config struct {
	CertFile     string `env:"CERT_FILE"      envDefault:""`
	KeyFile      string `env:"KEY_FILE"       envDefault:""`
	ServerCAFile string `env:"SERVER_CA_FILE" envDefault:""`
	ClientCAFile string `env:"CLIENT_CA_FILE" envDefault:""`
	Validator    verifier.Validator
}

func NewConfig ¶

func NewConfig(opts env.Options) (Config, error)

type TLSConfig ¶ added in v0.5.0

type TLSConfig interface {
	*tls.Config | *dtls.Config
}

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
verifier
crl
ocsp

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL