-
Notifications
You must be signed in to change notification settings - Fork 115
/
csr.go
58 lines (44 loc) · 1.42 KB
/
csr.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
/*
Copyright 2021 Flant JSC
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package certificate
import (
"bytes"
"log"
"github.com/cloudflare/cfssl/csr"
"github.com/sirupsen/logrus"
)
func GenerateCSR(logger *logrus.Entry, cn string, options ...Option) (csrPEM, key []byte, err error) {
request := &csr.CertificateRequest{
CN: cn,
KeyRequest: csr.NewKeyRequest(),
}
for _, option := range options {
option(request)
}
g := &csr.Generator{Validator: Validator}
// Catch cfssl output and show it only if error is occurred.
var buf bytes.Buffer
logWriter := log.Writer()
log.SetOutput(&buf)
defer log.SetOutput(logWriter)
csrPEM, key, err = g.ProcessRequest(request)
if err != nil && logger != nil {
logger.Errorln(buf.String())
}
return
}
// Validator does nothing and will never return an error. It exists because creating a
// csr.Generator requires a Validator.
func Validator(req *csr.CertificateRequest) error {
return nil
}