Documentation
¶
Index ¶
- Constants
- func New(ctx context.Context, signer, pass, tinkKEKURI, tinkKeysetPath string) (signature.Signer, error)
- func NewTinkSigner(ctx context.Context, kekURI, keysetPath string) (signature.Signer, error)
- func NewTinkSignerWithHandle(kek tink.AEAD, keysetPath string) (signature.Signer, error)
- type File
- type Memory
- type SigningConfig
Constants ¶
View Source
const MemoryScheme = "memory"
View Source
const TinkScheme = "tink"
Variables ¶
This section is empty.
Functions ¶
func NewTinkSigner ¶
NewTinkSigner returns a signature.SignerVerifier that wraps crypto.Signer and a hash function. Provide a path to the encrypted keyset and cloud KMS key URI for decryption
func NewTinkSignerWithHandle ¶
NewTinkSignerWithHandle returns a signature.SignerVerifier that wraps crypto.Signer and a hash function. Provide a path to the encrypted keyset and a key handle for decrypting the keyset
Types ¶
type File ¶
type File struct {
signature.SignerVerifier
}
returns an file based signer and verify, used for spinning up local instances
type Memory ¶
type Memory struct {
signature.ECDSASignerVerifier
}
returns an in-memory signer and verify, used for spinning up local instances
type SigningConfig ¶
type SigningConfig struct {
SigningSchemeOrKeyPath string `json:"signingSchemeOrKeyPath" yaml:"signingSchemeOrKeyPath"`
FileSignerPassword string `json:"fileSignerPassword" yaml:"fileSignerPassword"`
TinkKEKURI string `json:"tinkKEKURI" yaml:"tinkKEKURI"`
TinkKeysetPath string `json:"tinkKeysetPath" yaml:"tinkKeysetPath"`
}
SigningConfig initializes the signer for a specific shard
func (SigningConfig) IsUnset ¶
func (sc SigningConfig) IsUnset() bool
Source Files
Click to show internal directories.
Click to hide internal directories.