Add NewCertificateFromX509 function
#239
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The new function can create a `x509util.Certificate` from an x509.Certificate (used as a template). It also supports options, to provide a template, so that data can be set in the certificate. Currently a template is always required. An error will be returned when no template is provided.
|
I ❤️ the option of using generics. |
|
@maraino I've gone ahead and updated the usages within Do you think it's useful to provide helper functions like these: func WithCSRTemplate(text string, data TemplateData) Option[*x509.CertificateRequest] {
return WithTemplate[*x509.CertificateRequest](text, data)
}
// or:
func WithCertificateRequestTemplate(text string, data TemplateData) Option[*x509.CertificateRequest] {
return WithTemplate[*x509.CertificateRequest](text, data)
}Usage would then look a bit cleaner: fn := WithCSRTemplate(tt.args.text, tt.args.data)Instead of fn := WithTemplate[*x509.CertificateRequest](tt.args.text, tt.args.data)Defining aliases like the below is possible, but then requires defining the type CertificateOptions Options[*x509.Certificate]
func (co *CertificateOptions) apply(t *x509.Certificate, opts []Option[*x509.Certificate]) (*Options[*x509.Certificate], error) {
o := &Options[*x509.Certificate]{}
return o.apply(t, opts)
}Then another thing we could add is a type alias for a single type CertificateOption Option[*x509.Certificate]
func (co *CertificateOptions) apply(t *x509.Certificate, opts []CertificateOption) (*Options[*x509.Certificate], error) {
o := &Options[*x509.Certificate]{}
var copts []Option[*x509.Certificate]
for _, opt := range opts {
copts = append(copts, Option[*x509.Certificate](opt))
}
return o.apply(t, copts)
}
// resulting in this function signature:
func NewCertificateFromX509(template *x509.Certificate, opts ...CertificateOption) (*Certificate, error)Let me know if you think the above things would be useful, and which you would like to have available. |
This was referenced May 25, 2023
|
Closing in favor of #248. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The new function can create a
x509util.Certificatefrom an x509.Certificate (used as a template). It also supports options, to provide a template, so that data can be set in the certificate.Currently a template is always required. An error will be returned when no template is provided.
@maraino: I'll add tests later if this approach seems sensible to you. I don't think we can use generics to handle both
x509.Certificateandx509.CertificateRequestoptions using only a single implementation, so I copied them over.