| Safe Haskell | None |
|---|---|
| Language | Haskell2010 |
Kubernetes.Client.Internal.TLSUtils
Synopsis
- defaultTLSClientParams :: IO ClientParams
- parsePEMCerts :: ByteString -> Either ParseCertException [SignedCertificate]
- updateClientParams :: ClientParams -> ByteString -> Either ParseCertException ClientParams
- setCAStore :: [SignedCertificate] -> ClientParams -> ClientParams
- setClientCert :: Credential -> ClientParams -> ClientParams
- clientHooksL :: Lens' ClientParams ClientHooks
- onServerCertificateL :: Lens' ClientParams (CertificateStore -> ValidationCache -> ServiceID -> CertificateChain -> IO [FailedReason])
- clientSharedL :: Lens' ClientParams Shared
- sharedCAStoreL :: Lens' Shared CertificateStore
- disableServerNameValidation :: ClientParams -> ClientParams
- disableServerCertValidation :: ClientParams -> ClientParams
- onCertificateRequestL :: Lens' ClientParams (([CertificateType], Maybe [HashAndSignatureAlgorithm], [DistinguishedName]) -> IO (Maybe (CertificateChain, PrivKey)))
- loadPEMCerts :: (MonadIO m, MonadThrow m) => FilePath -> m [SignedCertificate]
- loadB64EncodedCert :: MonadThrow m => ByteString -> ByteString -> m Credential
- data ParseCertException
Documentation
defaultTLSClientParams :: IO ClientParams Source #
Default TLS settings using the system CA store.
parsePEMCerts :: ByteString -> Either ParseCertException [SignedCertificate] Source #
Parses a PEM-encoded ByteString into a list of certificates.
updateClientParams :: ClientParams -> ByteString -> Either ParseCertException ClientParams Source #
Updates client params, sets CA store to passed bytestring of CA certificates
setCAStore :: [SignedCertificate] -> ClientParams -> ClientParams Source #
Use a custom CA store.
setClientCert :: Credential -> ClientParams -> ClientParams Source #
Use a client cert for authentication.
onServerCertificateL :: Lens' ClientParams (CertificateStore -> ValidationCache -> ServiceID -> CertificateChain -> IO [FailedReason]) Source #
disableServerNameValidation :: ClientParams -> ClientParams Source #
Don't check whether the cert presented by the server matches the name of the server you are connecting to. This is necessary if you specify the server host by its IP address.
disableServerCertValidation :: ClientParams -> ClientParams Source #
Insecure mode. The client will not validate the server cert at all.
onCertificateRequestL :: Lens' ClientParams (([CertificateType], Maybe [HashAndSignatureAlgorithm], [DistinguishedName]) -> IO (Maybe (CertificateChain, PrivKey))) Source #
loadPEMCerts :: (MonadIO m, MonadThrow m) => FilePath -> m [SignedCertificate] Source #
Loads certificates from a PEM-encoded file.
loadB64EncodedCert :: MonadThrow m => ByteString -> ByteString -> m Credential Source #
Loads Base64 encoded certificate and private key
data ParseCertException Source #
Instances
| Show ParseCertException Source # | |
Defined in Kubernetes.Client.Internal.TLSUtils Methods showsPrec :: Int -> ParseCertException -> ShowS # show :: ParseCertException -> String # showList :: [ParseCertException] -> ShowS # | |
| Exception ParseCertException Source # | |
Defined in Kubernetes.Client.Internal.TLSUtils Methods toException :: ParseCertException -> SomeException # fromException :: SomeException -> Maybe ParseCertException # | |