Package log implements API-related logging helpers.

Package read implements request object readers.

Package render implements functionality related to response rendering.

CRL is an HTTP handler that returns the current CRL in DER or PEM format.

Federation returns all the public certificates in the federation.

Health is an HTTP handler that returns the status of the server.

LogCertificate adds certificate fields to the log message.

LogSSHCertificate adds SSH certificate fields to the log message.

New creates a new RouterHandler with the CA endpoints.

NewCertificate is a helper method that returns a Certificate from a *x509.Certificate.

NewCertificateRequest is a helper method that returns a CertificateRequest from a *x509.CertificateRequest.

NewTimeDuration returns a TimeDuration with the defined time.

ParseCursor parses the cursor and limit from the request query params.

ParseTimeDuration returns a new TimeDuration parsing the RFC 3339 time or time.Duration string.

ProvisionerKey returns the encrypted key of a provisioner by it's key id.

Provisioners returns the list of provisioners configured in the authority.

Rekey is similar to renew except that the certificate will be renewed with new key from csr.

Renew uses the information of certificate in the TLS connection to create a new one.

Revoke supports handful of different methods that revoke a Certificate.

Root is an HTTP handler that using the SHA256 from the URL, returns the root certificate for the given SHA256.

Roots returns all the root certificates for the CA.

RootsPEM returns all the root certificates for the CA in PEM format.

Sign is an HTTP handler that reads a certificate request and an one-time-token (ott) from the body and creates a new certificate with the information in the certificate request.

SSHBastion provides returns the bastion configured if any.

SSHCheckHost is the HTTP handler that returns if a hosts certificate exists or not.

SSHConfig is an HTTP handler that returns rendered templates for ssh clients and servers.

SSHFederation is an HTTP handler that returns the federated SSH public keys for user and host certificates.

SSHGetHosts is the HTTP handler that returns a list of valid ssh hosts.

SSHRekey is an HTTP handler that reads an RekeySSHRequest with a one-time-token (ott) from the body and creates a new SSH certificate with the information in the request.

SSHRenew is an HTTP handler that reads an RenewSSHRequest with a one-time-token (ott) from the body and creates a new SSH certificate with the information in the request.

Revoke supports handful of different methods that revoke a Certificate.

SSHRoots is an HTTP handler that returns the SSH public keys for user and host certificates.

SSHSign is an HTTP handler that reads an SignSSHRequest with a one-time-token (ott) from the body and creates a new SSH certificate with the information in the request.

Version is an HTTP handler that returns the version of the server.

Certificate wraps a *x509.Certificate and adds the json.Marshaler interface.

CertificateRequest wraps a *x509.CertificateRequest and adds the json.Unmarshaler interface.

FederationResponse is the response object of the federation request.

HealthResponse is the response object that returns the health of the server.

ProvisionerKeyResponse is the response object that returns the encrypted key of a provisioner.

ProvisionersResponse is the response object that returns the list of provisioners.

RekeyRequest is the request body for a certificate rekey request.

RevokeRequest is the request body for a revocation request.

RevokeResponse is the response object that returns the health of the server.

RootResponse is the response object that returns the PEM of a root certificate.

RootsResponse is the response object of the roots request.

SignRequest is the request body for a certificate signature request.

SignResponse is the response object of the certificate signature request.

SSHBastionRequest is the request body used to get the bastion for a given host.

SSHBastionResponse is the response body used to return the bastion for a given host.

SSHCertificate represents the response SSH certificate.

SSHCheckPrincipalRequest is the request body used to check if a principal certificate has been created.

SSHCheckPrincipalResponse is the response body used to check if a principal exists.

SSHConfigRequest is the request body used to get the SSH configuration templates.

SSHConfigResponse is the response that returns the rendered templates.

SSHGetHostsResponse is the response object that returns the list of valid hosts for SSH.

SSHPublicKey represents a public key in a response object.

SSHRekeyRequest is the request body of an SSH certificate request.

SSHRekeyResponse is the response object that returns the SSH certificate.

SSHRenewRequest is the request body of an SSH certificate request.

SSHRenewResponse is the response object that returns the SSH certificate.

SSHRevokeRequest is the request body for a revocation request.

SSHRevokeResponse is the response object that returns the health of the server.

SSHRootsResponse represents the response object that returns the SSH user and host keys.

SSHSignRequest is the request body of an SSH certificate request.

SSHSignResponse is the response object that returns the SSH certificate.

VersionResponse is the response object that returns the version of the server.

Authority is the interface implemented by a CA authority.

Router defines a common router interface.

RouterHandler is the interface that a HTTP handler that manages multiple endpoints will implement.

SSHAuthority is the interface implemented by a SSH CA authority.

Template represents the output of a template.

TimeDuration is an alias of provisioner.TimeDuration.