# Packages
package appmanifest provides utilities for managing app manifest files used by MDM InstallApplication commands.
No description provided by the author
# Functions
No description provided by the author
DecodePrivateKeyPEM decodes PEM-encoded private key data.
EncodeCertPEM returns PEM-endcoded certificate data.
No description provided by the author
EncodePrivateKeyPEM returns PEM-encoded private key data.
No description provided by the author
No description provided by the author
GenerateAPNSCSRKey generates a APNS CSR (certificate signing request) and returns the CSR and private key.
No description provided by the author
GenerateRandomPin generates a `lenght`-digit PIN number that takes into account the current time as described in rfc4226 (for one time passwords)
The implementation details have been mostly taken from https://github.com/pquerna/otp.
GetSignedAPNSCSR makes a request to the fleetdm.com API to get a signed APNs CSR that is sent to the email provided in the certificate subject.
HandleHostMDMProfileInstallResult ingests the result of an install profile command reported via the MDM protocol and updates the verification status in the datastore.
NewDEPClient creates an Apple DEP API HTTP client based on the provided storage that will flag the AppConfig's AppleBMTermsExpired field whenever the status of the terms changes.
NEWDEPKeyPairPEM generates a new public key certificate and private key for downloading the Apple DEP token.
No description provided by the author
NewMDMAppleCommander creates a new commander instance.
NewProfileBimap retuns a new ProfileBimap.
NewProfileMatcher creates a new MDM profile matcher based on Redis.
NewSCEPCACertKey creates a self-signed CA certificate for use with SCEP and returns the certificate and its private key.
No description provided by the author
No description provided by the author
No description provided by the author
VerifyHostMDMProfiles performs the verification of the MDM profiles installed on a host and updates the verification status in the datastore.
# Constants
DEPName is the identifier/name used in nanodep MySQL storage which holds the DEP configuration.
EnrollPath is the HTTP path that serves the mobile profile to devices when enrolling.
FleetdPublicManifestURL contains a valid manifest that can be used by InstallEnterpriseApplication to install `fleetd` in a host.
FleetPayloadIdentifier is the value for the "<key>PayloadIdentifier</key>" used by Fleet MDM on the enrollment profile.
FleetUISSOCallbackPath is the front-end route used to redirect after the SSO flow is completed.
InstallerPath is the HTTP path that serves installers to Apple devices.
MDMPath is Fleet's HTTP path for the core MDM service.
SCEPPath is Fleet's HTTP path for the SCEP service.
# Structs
APNSDeliveryError records an error and the associated host UUIDs in which it occurred.
DEPService is used to encapsulate tasks related to DEP enrollment.
No description provided by the author
MDMAppleCommander contains methods to enqueue commands managed by Fleet and send push notifications to hosts.
ProfileBimap implements bidirectional mapping for profiles, and utility functions to generate those mappings based on frequently used operations.