[−][src]Struct krill::daemon::ca::CertAuth
This type defines a Certification Authority at a slightly higher level than one might expect.
Implementations
impl<S: Signer> CertAuth<S>
[src]
pub fn as_ca_info(&self) -> CertAuthInfo
[src]
pub fn roa_definitions(&self) -> Vec<RoaDefinition>
[src]
pub fn child_request(&self) -> ChildRequest
[src]
pub fn publisher_request(&self) -> PublisherRequest
[src]
pub fn id_cert(&self) -> &IdCert
[src]
pub fn id_key(&self) -> &KeyIdentifier
[src]
pub fn handle(&self) -> &Handle
[src]
pub fn all_resources(&self) -> ResourceSet
[src]
impl<S: Signer> CertAuth<S>
[src]
pub fn all_objects(&self) -> Vec<PublishElement>
[src]
pub fn get_repository_contact(&self) -> KrillResult<&RepositoryContact>
[src]
pub fn old_repository_contact(&self) -> Option<&RepositoryContact>
[src]
impl<S: Signer> CertAuth<S>
[src]
pub fn verify_rfc6492(&self, msg: SignedMessage) -> KrillResult<Message>
[src]
pub fn sign_rfc6492_response(
&self,
msg: Message,
signer: &S
) -> KrillResult<Bytes>
[src]
&self,
msg: Message,
signer: &S
) -> KrillResult<Bytes>
pub fn list(&self, child_handle: &Handle) -> KrillResult<Entitlements>
[src]
List entitlements (section 3.3.2 of RFC6492). Return an error if the child is not authorized -- or unknown etc.
pub fn issuance_response(
&self,
child_handle: &Handle,
class_name: &ResourceClassName,
pub_key: &PublicKey
) -> KrillResult<IssuanceResponse>
[src]
&self,
child_handle: &Handle,
class_name: &ResourceClassName,
pub_key: &PublicKey
) -> KrillResult<IssuanceResponse>
Returns an issuance response for a child and a specific resource class name and public key for the issued certificate.
pub fn get_child(&self, child: &Handle) -> KrillResult<&ChildDetails>
[src]
Returns a child, or an error if the child is unknown.
pub fn children(&self) -> impl Iterator<Item = &ChildHandle>
[src]
Returns an iterator for the handles of all children under this CA.
impl<S: Signer> CertAuth<S>
[src]
pub fn parents(&self) -> impl Iterator<Item = &ParentHandle>
[src]
List all parents
pub fn is_ta(&self) -> bool
[src]
Returns true if this CertAuth is set up as a TA.
pub fn parent(&self, parent: &ParentHandle) -> KrillResult<&ParentCaContact>
[src]
Gets the ParentCaContact for this ParentHandle. Returns an Err when the parent does not exist.
pub fn parent_for_rc(
&self,
rcn: &ResourceClassName
) -> KrillResult<&ParentHandle>
[src]
&self,
rcn: &ResourceClassName
) -> KrillResult<&ParentHandle>
Find the parent for a given resource class name.
pub fn cert_requests(
&self,
parent_handle: &ParentHandle
) -> HashMap<ResourceClassName, Vec<IssuanceRequest>>
[src]
&self,
parent_handle: &ParentHandle
) -> HashMap<ResourceClassName, Vec<IssuanceRequest>>
Get all the current open certificate requests for a parent. Returns an empty list if the parent is not found.
pub fn revoke_requests(
&self,
parent: &ParentHandle
) -> HashMap<ResourceClassName, Vec<RevocationRequest>>
[src]
&self,
parent: &ParentHandle
) -> HashMap<ResourceClassName, Vec<RevocationRequest>>
Returns the open revocation requests for the given parent.
impl<S: Signer> CertAuth<S>
[src]
pub fn republish(&self, signer: Arc<RwLock<S>>) -> KrillResult<Vec<Evt>>
[src]
Republish objects for this CA
pub fn update_repo(
&self,
new_contact: RepositoryContact,
signer: Arc<RwLock<S>>
) -> KrillResult<Vec<Evt>>
[src]
&self,
new_contact: RepositoryContact,
signer: Arc<RwLock<S>>
) -> KrillResult<Vec<Evt>>
Update repository:
- check that it is indeed different
- regenerate all objects under the new URI (CRL URIs updated)
- request new certs for all keys
Note that this will then trigger (asynchronous):
- updated objects synchronised with repository
- CSRs submitted to parent(s)
pub fn has_old_repo(&self) -> bool
[src]
Trait Implementations
impl<S: Signer> Aggregate for CertAuth<S>
[src]
type Command = Cmd<S>
type StorableCommandDetails = StorableCaCommand
type Event = Evt
type InitEvent = Ini
type Error = Error
fn init(event: Ini) -> KrillResult<Self>
[src]
fn version(&self) -> u64
[src]
fn apply(&mut self, event: Evt)
[src]
fn process_command(&self, command: Cmd<S>) -> KrillResult<Vec<Evt>>
[src]
fn apply_all(&mut self, events: Vec<Self::Event>)
[src]
impl<S: Clone + Signer> Clone for CertAuth<S>
[src]
impl<S: Debug + Signer> Debug for CertAuth<S>
[src]
impl<'de, S: Signer> Deserialize<'de> for CertAuth<S>
[src]
fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error> where
__D: Deserializer<'de>,
[src]
__D: Deserializer<'de>,
impl<S: Signer> EventListener<CertAuth<S>> for EventQueueListener
[src]
Implement listening for CertAuth Published events.
impl<S: Signer> Serialize for CertAuth<S>
[src]
Auto Trait Implementations
impl<S> RefUnwindSafe for CertAuth<S> where
S: RefUnwindSafe,
S: RefUnwindSafe,
impl<S> Send for CertAuth<S>
impl<S> Sync for CertAuth<S>
impl<S> Unpin for CertAuth<S> where
S: Unpin,
S: Unpin,
impl<S> UnwindSafe for CertAuth<S> where
S: UnwindSafe,
S: UnwindSafe,
Blanket Implementations
impl<T> Any for T where
T: 'static + ?Sized,
[src]
T: 'static + ?Sized,
impl<T> Borrow<T> for T where
T: ?Sized,
[src]
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized,
[src]
T: ?Sized,
fn borrow_mut(&mut self) -> &mut T
[src]
impl<T> DeserializeOwned for T where
T: for<'de> Deserialize<'de>,
[src]
T: for<'de> Deserialize<'de>,
impl<T> From<T> for T
[src]
impl<T, U> Into<U> for T where
U: From<T>,
[src]
U: From<T>,
impl<T> ToOwned for T where
T: Clone,
[src]
T: Clone,
type Owned = T
The resulting type after obtaining ownership.
fn to_owned(&self) -> T
[src]
fn clone_into(&self, target: &mut T)
[src]
impl<T, U> TryFrom<U> for T where
U: Into<T>,
[src]
U: Into<T>,
type Error = Infallible
The type returned in the event of a conversion error.
fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>
[src]
impl<T, U> TryInto<U> for T where
U: TryFrom<T>,
[src]
U: TryFrom<T>,