HTTPCertGetter can get a certificate via HTTP(S) request.
| 88 | |
| 89 | // HTTPCertGetter can get a certificate via HTTP(S) request. |
| 90 | type HTTPCertGetter struct { |
| 91 | // The URL from which to download the certificate. Required. |
| 92 | // |
| 93 | // The URL will be augmented with query string parameters taken |
| 94 | // from the TLS handshake: |
| 95 | // |
| 96 | // - server_name: The SNI value |
| 97 | // - signature_schemes: Comma-separated list of hex IDs of signatures |
| 98 | // - cipher_suites: Comma-separated list of hex IDs of cipher suites |
| 99 | // |
| 100 | // To be valid, the response must be HTTP 200 with a PEM body |
| 101 | // consisting of blocks for the certificate chain and the private |
| 102 | // key. |
| 103 | // |
| 104 | // To indicate that this manager is not managing a certificate for |
| 105 | // the described handshake, the endpoint should return HTTP 204 |
| 106 | // (No Content). Error statuses will indicate that the manager is |
| 107 | // capable of providing a certificate but was unable to. |
| 108 | URL string `json:"url,omitempty"` |
| 109 | |
| 110 | ctx context.Context |
| 111 | } |
| 112 | |
| 113 | // CaddyModule returns the Caddy module information. |
| 114 | func (hcg HTTPCertGetter) CaddyModule() caddy.ModuleInfo { |
nothing calls this directly
no outgoing calls
no test coverage detected