Versions in this module Expand all Collapse all v2 v2.5.2 Jun 8, 2022 Changes in this version + var SupportedCurves = map[string]tls.CurveID + var SupportedProtocols = map[string]uint16 + func CipherSuiteID(name string) uint16 + func CipherSuiteNameSupported(name string) bool + func DefaultIssuers() []certmagic.Issuer + func DefaultIssuersProvisioned(ctx caddy.Context) ([]certmagic.Issuer, error) + func ProtocolName(id uint16) string + func SupportedCipherSuites() []*tls.CipherSuite + type ACMEIssuer struct + ACMETimeout caddy.Duration + AccountKey string + CA string + Challenges *ChallengesConfig + Email string + ExternalAccount *acme.EAB + PreferredChains *ChainPreference + TestCA string + TrustedRootsPEMFiles []string + func (ACMEIssuer) CaddyModule() caddy.ModuleInfo + func (iss *ACMEIssuer) GetACMEIssuer() *ACMEIssuer + func (iss *ACMEIssuer) Issue(ctx context.Context, csr *x509.CertificateRequest) (*certmagic.IssuedCertificate, error) + func (iss *ACMEIssuer) IssuerKey() string + func (iss *ACMEIssuer) PreCheck(ctx context.Context, names []string, interactive bool) error + func (iss *ACMEIssuer) Provision(ctx caddy.Context) error + func (iss *ACMEIssuer) Revoke(ctx context.Context, cert certmagic.CertificateResource, reason int) error + func (iss *ACMEIssuer) SetConfig(cfg *certmagic.Config) + func (iss *ACMEIssuer) UnmarshalCaddyfile(d *caddyfile.Dispenser) error + type AutomateLoader []string + func (AutomateLoader) CaddyModule() caddy.ModuleInfo + type AutomationConfig struct + OCSPCheckInterval caddy.Duration + OnDemand *OnDemandConfig + Policies []*AutomationPolicy + RenewCheckInterval caddy.Duration + StorageCleanInterval caddy.Duration + type AutomationPolicy struct + DisableOCSPStapling bool + Issuers []certmagic.Issuer + IssuersRaw []json.RawMessage + KeyType string + Managers []certmagic.Manager + ManagersRaw []json.RawMessage + MustStaple bool + OCSPOverrides map[string]string + OnDemand bool + RenewalWindowRatio float64 + StorageRaw json.RawMessage + Subjects []string + func (ap *AutomationPolicy) Provision(tlsApp *TLS) error + type CertCacheOptions struct + Capacity int + type CertKeyFilePair struct + Certificate string + Format string + Key string + Tags []string + type CertKeyPEMPair struct + CertificatePEM string + KeyPEM string + Tags []string + type Certificate struct + Tags []string + type CertificateLoader interface + LoadCertificates func() ([]Certificate, error) + type ChainPreference struct + AnyCommonName []string + RootCommonName []string + Smallest *bool + func ParseCaddyfilePreferredChainsOptions(d *caddyfile.Dispenser) (*ChainPreference, error) + type ChallengesConfig struct + BindHost string + DNS *DNSChallengeConfig + HTTP *HTTPChallengeConfig + TLSALPN *TLSALPNChallengeConfig + type ClientAuthentication struct + Mode string + TrustedCACertPEMFiles []string + TrustedCACerts []string + TrustedLeafCerts []string + func (clientauth *ClientAuthentication) ConfigureTLSConfig(cfg *tls.Config) error + func (clientauth ClientAuthentication) Active() bool + type ConfigSetter interface + SetConfig func(cfg *certmagic.Config) + type ConnectionMatcher interface + Match func(*tls.ClientHelloInfo) bool + type ConnectionPolicies []*ConnectionPolicy + func (cp ConnectionPolicies) Provision(ctx caddy.Context) error + func (cp ConnectionPolicies) TLSConfig(ctx caddy.Context) *tls.Config + type ConnectionPolicy struct + ALPN []string + CertSelection *CustomCertSelectionPolicy + CipherSuites []string + ClientAuthentication *ClientAuthentication + Curves []string + DefaultSNI string + MatchersRaw caddy.ModuleMap + ProtocolMax string + ProtocolMin string + func (p ConnectionPolicy) SettingsEmpty() bool + type CustomCertSelectionPolicy struct + AllTags []string + AnyTag []string + PublicKeyAlgorithm PublicKeyAlgorithm + SerialNumber []bigInt + SubjectOrganization []string + func (p CustomCertSelectionPolicy) SelectCertificate(hello *tls.ClientHelloInfo, choices []certmagic.Certificate) (certmagic.Certificate, error) + type DNSChallengeConfig struct + OverrideDomain string + PropagationDelay caddy.Duration + PropagationTimeout caddy.Duration + ProviderRaw json.RawMessage + Resolvers []string + TTL caddy.Duration + type FileLoader []CertKeyFilePair + func (FileLoader) CaddyModule() caddy.ModuleInfo + func (fl FileLoader) LoadCertificates() ([]Certificate, error) + type FolderLoader []string + func (FolderLoader) CaddyModule() caddy.ModuleInfo + func (fl FolderLoader) LoadCertificates() ([]Certificate, error) + type HTTPCertGetter struct + URL string + func (hcg *HTTPCertGetter) Provision(ctx caddy.Context) error + func (hcg *HTTPCertGetter) UnmarshalCaddyfile(d *caddyfile.Dispenser) error + func (hcg HTTPCertGetter) CaddyModule() caddy.ModuleInfo + func (hcg HTTPCertGetter) GetCertificate(ctx context.Context, hello *tls.ClientHelloInfo) (*tls.Certificate, error) + type HTTPChallengeConfig struct + AlternatePort int + Disabled bool + type InternalIssuer struct + CA string + Lifetime caddy.Duration + SignWithRoot bool + func (InternalIssuer) CaddyModule() caddy.ModuleInfo + func (iss *InternalIssuer) Provision(ctx caddy.Context) error + func (iss *InternalIssuer) UnmarshalCaddyfile(d *caddyfile.Dispenser) error + func (iss InternalIssuer) Issue(ctx context.Context, csr *x509.CertificateRequest) (*certmagic.IssuedCertificate, error) + func (iss InternalIssuer) IssuerKey() string + type MatchRemoteIP struct + NotRanges []string + Ranges []string + func (MatchRemoteIP) CaddyModule() caddy.ModuleInfo + func (m *MatchRemoteIP) Provision(ctx caddy.Context) error + func (m MatchRemoteIP) Match(hello *tls.ClientHelloInfo) bool + type MatchServerName []string + func (MatchServerName) CaddyModule() caddy.ModuleInfo + func (m MatchServerName) Match(hello *tls.ClientHelloInfo) bool + type OnDemandConfig struct + Ask string + RateLimit *RateLimit + type PEMLoader []CertKeyPEMPair + func (PEMLoader) CaddyModule() caddy.ModuleInfo + func (pl PEMLoader) LoadCertificates() ([]Certificate, error) + type PublicKeyAlgorithm x509.PublicKeyAlgorithm + func (a *PublicKeyAlgorithm) UnmarshalJSON(b []byte) error + type RateLimit struct + Burst int + Interval caddy.Duration + type STEKProvider interface + Initialize func(config *SessionTicketService) ([][32]byte, error) + Next func(doneChan <-chan struct{}) (keysChan <-chan [][32]byte) + type SessionTicketService struct + DisableRotation bool + Disabled bool + KeySource json.RawMessage + MaxKeys int + RotationInterval caddy.Duration + func (s SessionTicketService) RotateSTEKs(keys [][32]byte) ([][32]byte, error) + type StorageLoader struct + Pairs []CertKeyFilePair + func (StorageLoader) CaddyModule() caddy.ModuleInfo + func (sl *StorageLoader) Provision(ctx caddy.Context) error + func (sl StorageLoader) LoadCertificates() ([]Certificate, error) + type TLS struct + Automation *AutomationConfig + Cache *CertCacheOptions + CertificatesRaw caddy.ModuleMap + DisableOCSPStapling bool + SessionTickets *SessionTicketService + func (TLS) CaddyModule() caddy.ModuleInfo + func (t *TLS) AddAutomationPolicy(ap *AutomationPolicy) error + func (t *TLS) AllMatchingCertificates(san string) []certmagic.Certificate + func (t *TLS) Cleanup() error + func (t *TLS) HandleHTTPChallenge(w http.ResponseWriter, r *http.Request) bool + func (t *TLS) Manage(names []string) error + func (t *TLS) Provision(ctx caddy.Context) error + func (t *TLS) Start() error + func (t *TLS) Stop() error + func (t *TLS) Validate() error + type TLSALPNChallengeConfig struct + AlternatePort int + Disabled bool + type Tailscale struct + Optional bool + func (Tailscale) CaddyModule() caddy.ModuleInfo + func (Tailscale) UnmarshalCaddyfile(d *caddyfile.Dispenser) error + func (ts *Tailscale) Provision(ctx caddy.Context) error + func (ts Tailscale) GetCertificate(ctx context.Context, hello *tls.ClientHelloInfo) (*tls.Certificate, error) + type ZeroSSLIssuer struct + APIKey string + func (*ZeroSSLIssuer) CaddyModule() caddy.ModuleInfo + func (iss *ZeroSSLIssuer) Issue(ctx context.Context, csr *x509.CertificateRequest) (*certmagic.IssuedCertificate, error) + func (iss *ZeroSSLIssuer) IssuerKey() string + func (iss *ZeroSSLIssuer) PreCheck(ctx context.Context, names []string, interactive bool) error + func (iss *ZeroSSLIssuer) Provision(ctx caddy.Context) error + func (iss *ZeroSSLIssuer) Revoke(ctx context.Context, cert certmagic.CertificateResource, reason int) error + func (iss *ZeroSSLIssuer) UnmarshalCaddyfile(d *caddyfile.Dispenser) error