forked from google/easypki
-
Notifications
You must be signed in to change notification settings - Fork 0
/
store.go
65 lines (58 loc) · 2.08 KB
/
store.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
// Copyright 2017 Google Inc.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
// Package store provides different methods to store a Public Key Infrastructure.
package store
import (
"crypto/x509/pkix"
"math/big"
"github.com/ad3m3r5/easypki/pkg/certificate"
)
// Store reprents a way to store a Certificate Authority.
type Store interface {
// Add adds a newly signed certificate bundle to the store.
//
// Args:
// The CA name, if the certificate was signed with an intermediate CA.
// The certificate bundle name.
// Is the bundle to add an intermediate CA.
// The raw private key.
// The raw certificate.
//
// Returns an error if it failed to store the bundle.
Add(string, string, bool, []byte, []byte) error
// Fetch fetches a certificate bundle from the store.
//
// Args:
// The CA name, if the certificate was signed with an intermediate CA.
// The name of the certificate bundle.
//
// Returns the raw private key and certificate respectively or an error.
Fetch(string, string) ([]byte, []byte, error)
// Update updates the state of a certificate. (Valid, Revoked, Expired)
//
// Args:
// The CA name, if the certificate was signed with an intermediate CA.
// The serial of the certificate to update.
// The new state.
//
// Returns an error if the update failed.
Update(string, *big.Int, certificate.State) error
// Revoked returns a list of revoked certificates for a given CA.
//
// Args:
// The CA name, if it is for an intermediate CA.
//
// Returns a list of revoked certificate or an error.
Revoked(string) ([]pkix.RevokedCertificate, error)
}