istio.io/istio@v0.0.0-20240520182934-d79c90f27776/pilot/pkg/credentials/model.go

istio.io/istio@v0.0.0-20240520182934-d79c90f27776/pilot/pkg/credentials/model.go (about)

     1  // Copyright Istio Authors
     2  //
     3  // Licensed under the Apache License, Version 2.0 (the "License");
     4  // you may not use this file except in compliance with the License.
     5  // You may obtain a copy of the License at
     6  //
     7  //     http://www.apache.org/licenses/LICENSE-2.0
     8  //
     9  // Unless required by applicable law or agreed to in writing, software
    10  // distributed under the License is distributed on an "AS IS" BASIS,
    11  // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12  // See the License for the specific language governing permissions and
    13  // limitations under the License.
    14  
    15  package credentials
    16  
    17  import (
    18  	"istio.io/istio/pkg/cluster"
    19  )
    20  
    21  // CertInfo wraps a certificate, key, and oscp staple information.
    22  type CertInfo struct {
    23  	// The certificate chain
    24  	Cert []byte
    25  	// The private key
    26  	Key []byte
    27  	// The oscp staple
    28  	Staple []byte
    29  	// Certificate Revocation List information
    30  	CRL []byte
    31  }
    32  
    33  type Controller interface {
    34  	GetCertInfo(name, namespace string) (certInfo *CertInfo, err error)
    35  	GetCaCert(name, namespace string) (certInfo *CertInfo, err error)
    36  	GetDockerCredential(name, namespace string) (cred []byte, err error)
    37  	Authorize(serviceAccount, namespace string) error
    38  }
    39  
    40  type MulticlusterController interface {
    41  	ForCluster(cluster cluster.ID) (Controller, error)
    42  	AddSecretHandler(func(name, namespace string))
    43  }