Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Account ¶
type Account struct {
acme.Account
Key *jose.JSONWebKey `json:"key"`
ID string `json:"-"`
}
type Authorization ¶
type CertID ¶ added in v2.6.0
type CertID struct {
KeyIdentifier []byte
SerialNumber *big.Int
// contains filtered or unexported fields
}
CertID represents a unique identifier (CertID) for a certificate as per the ACME protocol's "renewalInfo" resource, as specified in draft-ietf-acme-ari- 03. The CertID is a composite string derived from the base64url-encoded keyIdentifier of the certificate's Authority Key Identifier (AKI) and the base64url-encoded serial number of the certificate, separated by a period. For more details see: https://datatracker.ietf.org/doc/html/draft-ietf-acme-ari-02#section-4.1.
type Certificate ¶
type Certificate struct {
ID string
Cert *x509.Certificate
DER []byte
IssuerChains [][]*Certificate
AccountID string
// When non-empty, this is the ARI response sent for this certificate.
ARIResponse string
}
func (Certificate) Chain ¶
func (c Certificate) Chain(no int) []byte
func (Certificate) PEM ¶
func (c Certificate) PEM() []byte
type Challenge ¶
type Challenge struct {
sync.RWMutex
acme.Challenge
ID string
Authz *Authorization
ValidatedDate time.Time
}
func (*Challenge) ExpectedKeyAuthorization ¶
func (ch *Challenge) ExpectedKeyAuthorization(key *jose.JSONWebKey) string
type Order ¶
type Order struct {
sync.RWMutex
acme.Order
ID string
AccountID string
Names []string
ParsedCSR *x509.CertificateRequest
ExpiresDate time.Time
AuthorizationObjects []*Authorization
BeganProcessing bool
CertificateObject *Certificate
// Indicates if the finalized order has been successfully replaced via ARI.
IsReplaced bool
}
type RenewalInfo ¶ added in v2.6.0
type RenewalInfo struct {
SuggestedWindow SuggestedWindow `json:"suggestedWindow"`
}
RenewalInfo is a type which is exposed to clients which query the renewalInfo endpoint specified in draft-aaron-ari.
func RenewalInfoImmediate ¶ added in v2.6.0
func RenewalInfoImmediate(now time.Time) *RenewalInfo
RenewalInfoImmediate constructs a `RenewalInfo` object with a suggested window in the past. Per the draft-ietf-acme-ari-01 spec, clients should attempt to renew immediately if the suggested window is in the past. The passed `now` is assumed to be a timestamp representing the current moment in time.
func RenewalInfoSimple ¶ added in v2.6.0
func RenewalInfoSimple(issued time.Time, expires time.Time) *RenewalInfo
RenewalInfoSimple constructs a `RenewalInfo` object and suggested window using a very simple renewal calculation: calculate a point 2/3rds of the way through the validity period, then give a 2-day window around that. Both the `issued` and `expires` timestamps are expected to be UTC.
type RevokedCertificate ¶
type RevokedCertificate struct {
Certificate *Certificate
RevokedAt time.Time
Reason *uint
}
RevokedCertificate is a certificate together with information about its revocation.
type SuggestedWindow ¶ added in v2.6.0
SuggestedWindow is a type exposed inside the RenewalInfo resource.
type ValidationRecord ¶
type ValidationRecord struct {
URL string
Error *acme.ProblemDetails
ValidatedAt time.Time
}
Source Files