Versions in this module Expand all Collapse all v1 v1.0.2 May 18, 2023 Changes in this version + const DefaultUpstreamCABackdate + const DefaultUpstreamCATTL + func ParseAndValidateCSR(csrDER []byte, td spiffeid.TrustDomain) (csr *x509.CertificateRequest, err error) + func UniqueIDAttribute(id spiffeid.ID) pkix.AttributeTypeAndValue + func ValidateCSR(csr *x509.CertificateRequest, td spiffeid.TrustDomain) error + type UpstreamCA struct + func NewUpstreamCA(keypair x509util.Keypair, trustDomain spiffeid.TrustDomain, ...) *UpstreamCA + func (ca *UpstreamCA) SignCSR(ctx context.Context, csrDER []byte, preferredTTL time.Duration) (*x509.Certificate, error) + type UpstreamCAOptions struct + Backdate time.Duration + Clock clock.Clock