fionera
/
transfer.sh
derivado de kiska/transfer.sh
1
0
Derivar 0
Código Questões 0 Pedidos de integração 0 Lançamentos 0 Wiki Trabalho
Não pode escolher mais do que 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
268 Cometimentos
9 Ramos
34 MiB
 
 
 
Árvore: f47ce48ecf
Ramos Etiquetas
${ item.name }
Criar ramo ${ searchTerm }
de 'f47ce48ecf'
${ noResults }
transfer.sh/vendor/golang.org/x/crypto/acme/types.go

210 linhas
6.0 KiB
Em bruto Responsabilidade Histórico 

  1. package acme

  2. 

  3. import (

  4. 	"errors"

  5. 	"fmt"

  6. 	"net/http"

  7. )

  8. 

  9. // ACME server response statuses used to describe Authorization and Challenge states.

  10. const (

  11. 	StatusUnknown    = "unknown"

  12. 	StatusPending    = "pending"

  13. 	StatusProcessing = "processing"

  14. 	StatusValid      = "valid"

  15. 	StatusInvalid    = "invalid"

  16. 	StatusRevoked    = "revoked"

  17. )

  18. 

  19. // CRLReasonCode identifies the reason for a certificate revocation.

  20. type CRLReasonCode int

  21. 

  22. // CRL reason codes as defined in RFC 5280.

  23. const (

  24. 	CRLReasonUnspecified          CRLReasonCode = 0

  25. 	CRLReasonKeyCompromise        CRLReasonCode = 1

  26. 	CRLReasonCACompromise         CRLReasonCode = 2

  27. 	CRLReasonAffiliationChanged   CRLReasonCode = 3

  28. 	CRLReasonSuperseded           CRLReasonCode = 4

  29. 	CRLReasonCessationOfOperation CRLReasonCode = 5

  30. 	CRLReasonCertificateHold      CRLReasonCode = 6

  31. 	CRLReasonRemoveFromCRL        CRLReasonCode = 8

  32. 	CRLReasonPrivilegeWithdrawn   CRLReasonCode = 9

  33. 	CRLReasonAACompromise         CRLReasonCode = 10

  34. )

  35. 

  36. var (

  37. 	// ErrAuthorizationFailed indicates that an authorization for an identifier

  38. 	// did not succeed.

  39. 	ErrAuthorizationFailed = errors.New("acme: identifier authorization failed")

  40. 

  41. 	// ErrUnsupportedKey is returned when an unsupported key type is encountered.

  42. 	ErrUnsupportedKey = errors.New("acme: unknown key type; only RSA and ECDSA are supported")

  43. )

  44. 

  45. // Error is an ACME error, defined in Problem Details for HTTP APIs doc

  46. // http://tools.ietf.org/html/draft-ietf-appsawg-http-problem.

  47. type Error struct {

  48. 	// StatusCode is The HTTP status code generated by the origin server.

  49. 	StatusCode int

  50. 	// ProblemType is a URI reference that identifies the problem type,

  51. 	// typically in a "urn:acme:error:xxx" form.

  52. 	ProblemType string

  53. 	// Detail is a human-readable explanation specific to this occurrence of the problem.

  54. 	Detail string

  55. 	// Header is the original server error response headers.

  56. 	Header http.Header

  57. }

  58. 

  59. func (e *Error) Error() string {

  60. 	return fmt.Sprintf("%d %s: %s", e.StatusCode, e.ProblemType, e.Detail)

  61. }

  62. 

  63. // Account is a user account. It is associated with a private key.

  64. type Account struct {

  65. 	// URI is the account unique ID, which is also a URL used to retrieve

  66. 	// account data from the CA.

  67. 	URI string

  68. 

  69. 	// Contact is a slice of contact info used during registration.

  70. 	Contact []string

  71. 

  72. 	// The terms user has agreed to.

  73. 	// A value not matching CurrentTerms indicates that the user hasn't agreed

  74. 	// to the actual Terms of Service of the CA.

  75. 	AgreedTerms string

  76. 

  77. 	// Actual terms of a CA.

  78. 	CurrentTerms string

  79. 

  80. 	// Authz is the authorization URL used to initiate a new authz flow.

  81. 	Authz string

  82. 

  83. 	// Authorizations is a URI from which a list of authorizations

  84. 	// granted to this account can be fetched via a GET request.

  85. 	Authorizations string

  86. 

  87. 	// Certificates is a URI from which a list of certificates

  88. 	// issued for this account can be fetched via a GET request.

  89. 	Certificates string

  90. }

  91. 

  92. // Directory is ACME server discovery data.

  93. type Directory struct {

  94. 	// RegURL is an account endpoint URL, allowing for creating new

  95. 	// and modifying existing accounts.

  96. 	RegURL string

  97. 

  98. 	// AuthzURL is used to initiate Identifier Authorization flow.

  99. 	AuthzURL string

  100. 

  101. 	// CertURL is a new certificate issuance endpoint URL.

  102. 	CertURL string

  103. 

  104. 	// RevokeURL is used to initiate a certificate revocation flow.

  105. 	RevokeURL string

  106. 

  107. 	// Term is a URI identifying the current terms of service.

  108. 	Terms string

  109. 

  110. 	// Website is an HTTP or HTTPS URL locating a website

  111. 	// providing more information about the ACME server.

  112. 	Website string

  113. 

  114. 	// CAA consists of lowercase hostname elements, which the ACME server

  115. 	// recognises as referring to itself for the purposes of CAA record validation

  116. 	// as defined in RFC6844.

  117. 	CAA []string

  118. }

  119. 

  120. // Challenge encodes a returned CA challenge.

  121. type Challenge struct {

  122. 	// Type is the challenge type, e.g. "http-01", "tls-sni-02", "dns-01".

  123. 	Type string

  124. 

  125. 	// URI is where a challenge response can be posted to.

  126. 	URI string

  127. 

  128. 	// Token is a random value that uniquely identifies the challenge.

  129. 	Token string

  130. 

  131. 	// Status identifies the status of this challenge.

  132. 	Status string

  133. }

  134. 

  135. // Authorization encodes an authorization response.

  136. type Authorization struct {

  137. 	// URI uniquely identifies a authorization.

  138. 	URI string

  139. 

  140. 	// Status identifies the status of an authorization.

  141. 	Status string

  142. 

  143. 	// Identifier is what the account is authorized to represent.

  144. 	Identifier AuthzID

  145. 

  146. 	// Challenges that the client needs to fulfill in order to prove possession

  147. 	// of the identifier (for pending authorizations).

  148. 	// For final authorizations, the challenges that were used.

  149. 	Challenges []*Challenge

  150. 

  151. 	// A collection of sets of challenges, each of which would be sufficient

  152. 	// to prove possession of the identifier.

  153. 	// Clients must complete a set of challenges that covers at least one set.

  154. 	// Challenges are identified by their indices in the challenges array.

  155. 	// If this field is empty, the client needs to complete all challenges.

  156. 	Combinations [][]int

  157. }

  158. 

  159. // AuthzID is an identifier that an account is authorized to represent.

  160. type AuthzID struct {

  161. 	Type  string // The type of identifier, e.g. "dns".

  162. 	Value string // The identifier itself, e.g. "example.org".

  163. }

  164. 

  165. // wireAuthz is ACME JSON representation of Authorization objects.

  166. type wireAuthz struct {

  167. 	Status       string

  168. 	Challenges   []wireChallenge

  169. 	Combinations [][]int

  170. 	Identifier   struct {

  171. 		Type  string

  172. 		Value string

  173. 	}

  174. }

  175. 

  176. func (z *wireAuthz) authorization(uri string) *Authorization {

  177. 	a := &Authorization{

  178. 		URI:          uri,

  179. 		Status:       z.Status,

  180. 		Identifier:   AuthzID{Type: z.Identifier.Type, Value: z.Identifier.Value},

  181. 		Combinations: z.Combinations, // shallow copy

  182. 		Challenges:   make([]*Challenge, len(z.Challenges)),

  183. 	}

  184. 	for i, v := range z.Challenges {

  185. 		a.Challenges[i] = v.challenge()

  186. 	}

  187. 	return a

  188. }

  189. 

  190. // wireChallenge is ACME JSON challenge representation.

  191. type wireChallenge struct {

  192. 	URI    string `json:"uri"`

  193. 	Type   string

  194. 	Token  string

  195. 	Status string

  196. }

  197. 

  198. func (c *wireChallenge) challenge() *Challenge {

  199. 	v := &Challenge{

  200. 		URI:    c.URI,

  201. 		Type:   c.Type,

  202. 		Token:  c.Token,

  203. 		Status: c.Status,

  204. 	}

  205. 	if v.Status == "" {

  206. 		v.Status = StatusPending

  207. 	}

  208. 	return v

  209. }