The go-spiffe project provides two components:
- a command-line utility to parse and verify SPIFFE identities encoded in X.509 certificates as described in the SPIFFE Standards.
- a client library that provides an interface to the SPIFFE Workload API.
go get -u -v github.com/spiffe/go-spiffe
Importing it in your Go code
Installing the command line interface
The command line interface can be used to retrieve and view URIs stored in the SAN extension of certificates
go get -u -v github.com/spiffe/go-spiffe/cmd/spiffe spiffe testdata/leaf.cert.pem $HOME/certs/proj.pem Path:: #1: "testdata/leaf.cert.pem" URI #1: "spiffe://dev.acme.com/path/service"