Skip to main content

TlsCert

tako

Enum TlsCert 

Source 
pub enum TlsCert {
    PemPaths {
        cert_path: String,
        key_path: String,
        client_auth: Option<ClientAuth>,
    },
    Der {
        certs: Arc<Vec<CertificateDer<'static>>>,
        key: Arc<PrivateKeyDer<'static>>,
        client_auth: Option<ClientAuth>,
    },
    Resolver {
        resolver: Arc<dyn ResolvesServerCert>,
        client_auth: Option<ClientAuth>,
    },
}
Expand description

Optional TLS material the builder can attach to a TLS-mode server.

Variants:

Variants§

§

PemPaths

Filesystem paths for cert + key PEM files.

Fields

§cert_path: String

Path to the PEM-encoded certificate chain.

§key_path: String

Path to the PEM-encoded private key.

§client_auth: Option<ClientAuth>
Available on crate feature tls only.

Optional mTLS policy.

§

Der

Available on crate feature tls only.

Pre-loaded DER cert chain + key. Useful when certs come from secret storage rather than the filesystem.

Fields

§certs: Arc<Vec<CertificateDer<'static>>>

DER-encoded certificate chain (leaf first).

§key: Arc<PrivateKeyDer<'static>>

DER-encoded private key.

§client_auth: Option<ClientAuth>

Optional mTLS policy.

§

Resolver

Available on crate feature tls only.

User-supplied certificate resolver. The most flexible variant — drives SNI multi-cert serving, hot reload (see ReloadableResolver), and any custom logic that picks a cert per client-hello.

Fields

§resolver: Arc<dyn ResolvesServerCert>

The resolver used by rustls to pick a cert per handshake.

§client_auth: Option<ClientAuth>

Optional mTLS policy.

Implementations§

Source§

impl TlsCert

Source

pub fn pem_paths(cert: impl Into<String>, key: impl Into<String>) -> TlsCert

Construct from filesystem paths (PEM cert + PEM key).

Source

pub fn pem_paths_with_client_auth( cert: impl Into<String>, key: impl Into<String>, client_auth: ClientAuth, ) -> TlsCert

Available on crate feature tls only.

Like TlsCert::pem_paths with an attached mTLS policy.

Source

pub fn der( certs: Vec<CertificateDer<'static>>, key: PrivateKeyDer<'static>, ) -> TlsCert

Available on crate feature tls only.

Construct from pre-loaded DER cert chain + key.

Source

pub fn resolver(resolver: Arc<dyn ResolvesServerCert>) -> TlsCert

Available on crate feature tls only.

Construct from a user-supplied certificate resolver. This is the entry point for SNI multi-cert servers and hot-reload (see ReloadableResolver).

Source

pub fn with_client_auth(self, auth: ClientAuth) -> TlsCert

Available on crate feature tls only.

Returns a clone of the resolver (or no-op for static cert variants).

Useful when the caller wants to swap the live cert at runtime — they pass in a ReloadableResolver via TlsCert::resolver and keep the Arc for later .reload_*() calls.

Trait Implementations§

Source§

impl Clone for TlsCert

Source§

fn clone(&self) -> TlsCert

Returns a duplicate of the value. Read more
1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for TlsCert

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), Error>

Formats the value using the given formatter. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> FutureExt for T

Source§

fn with_context(self, otel_cx: Context) -> WithContext<Self>

Attaches the provided Context to this type, returning a WithContext wrapper. Read more
Source§

fn with_current_context(self) -> WithContext<Self>

Attaches the current Context to this type, returning a WithContext wrapper. Read more
Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more