Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement tlsconfig package #64

Closed
azdagron opened this issue Mar 9, 2020 · 1 comment
Closed

Implement tlsconfig package #64

azdagron opened this issue Mar 9, 2020 · 1 comment
Assignees
@MarcosDY
Projects
V2 API

Comments

@azdagron
Copy link
Member

azdagron commented Mar 9, 2020
edited
Loading

The tlsconfig package contains various methods of creating/updating TLS configuration with the ability to perform SPIFFE authentication over TLS.

There are 3 primitive helper functions:

  • GetCertificate: takes an x509svid.Source and implements the GetCertificate callback for server tls.Config
  • GetClientCertificate: takes an x509svid.Source and implements the GetClientCertificate callback for client tls.Config
  • VerifyPeerCertificate takes an x509bundle.Source and an authorizer and implements the VerifyPeerCertificate callback for both client and server tls.Config.

Along with the primitive helpers, there are a slew of functions that set up a variety of TLS configurations using the above helpers. Most of the implementation can be borrowed from the existing v1 TLS peer implementation.

The v2-api branch has scaffolding for the implementations in config.go.

This issue depends on #55 and #62.
@azdagron azdagron added this to To do in V2 API via automation Mar 9, 2020
This was referenced Mar 9, 2020
Closed
Closed
Closed
Closed
@MarcosDY MarcosDY self-assigned this Mar 26, 2020
@MarcosDY MarcosDY moved this from To do to In progress in V2 API Mar 26, 2020
@MarcosDY MarcosDY mentioned this issue Mar 27, 2020
Merged
@MarcosDY MarcosDY moved this from In progress to Review in progress in V2 API Apr 1, 2020
@MarcosDY MarcosDY moved this from Review in progress to Reviewer approved in V2 API Apr 1, 2020
@MarcosDY MarcosDY moved this from Reviewer approved to Done in V2 API Apr 6, 2020
@azdagron
Copy link
Member Author

Fixed in #87

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MarcosDY MarcosDY

Labels
None yet
Projects
V2 API
  
Done
Milestone
No milestone
Development

No branches or pull requests
2 participants
@MarcosDY @azdagron