The HTTPCertPool fetches the trusted root certificates from HTTP(S) endpoints. The TLS connection properties can be customized, including custom trusted root certificate. One example usage of this module is to get the trusted certificates from another Caddy instance that is running the PKI app and A
| 636 | // trusted root certificate. One example usage of this module is to get the trusted |
| 637 | // certificates from another Caddy instance that is running the PKI app and ACME server. |
| 638 | type HTTPCertPool struct { |
| 639 | // the list of URLs that respond with PEM-encoded certificates to trust. |
| 640 | Endpoints []string `json:"endpoints,omitempty"` |
| 641 | |
| 642 | // Customize the TLS connection knobs to used during the HTTP call |
| 643 | TLS *TLSConfig `json:"tls,omitempty"` |
| 644 | |
| 645 | pool *x509.CertPool |
| 646 | certs []*x509.Certificate |
| 647 | } |
| 648 | |
| 649 | // CaddyModule implements caddy.Module. |
| 650 | func (HTTPCertPool) CaddyModule() caddy.ModuleInfo { |
nothing calls this directly
no outgoing calls
no test coverage detected