Top 1.5% dependent packages on proxy.golang.org
Top 1.8% dependent repos on proxy.golang.org
proxy.golang.org : github.com/johnsiilver/getcert
Package getcert allows the dialing of a TLS service (http or gRPC) without possessing the public key. This is useful in situations where you don't need a preshared cert because traffic is under internal control (internal Kubernetes routing) or when you have a non self signed cert that can be verified against a chain of trust with a Certificate Authority (CA). The server already has the cert, why would you want to have a static cert to manage? For internal traffic (where DNS is under your control), you can do: For a non self signed certificate you verify with a CA: You can use this in an http.Client with: You can also use this as a gRPC DialOption: Note: I don't know that I believe there is something completely under internal control that is safe. I suggest always using verify and limiting this to only certain trusted CAs. But that's your call. This library is useful where mutual authentication via certs is not needed and you do not want to use self signed certs (which gRPC seems to encourage, but this is no better than preshared secrets and rarely
Registry
-
Source
- Documentation
- JSON
- codemeta.json
purl: pkg:golang/github.com/johnsiilver/getcert
License: MIT
Latest release: about 5 years ago
First release: about 5 years ago
Namespace: github.com/johnsiilver
Dependent packages: 12
Dependent repositories: 8
Stars: 11 on GitHub
Forks: 0 on GitHub
See more repository details: repos.ecosyste.ms
Last synced: 3 months ago