adrianosela/sslmgr

Security Libraries

Stars
24
Rank 952,673 (Top 20 %)
Language
Go
License
MIT License
Created about 5 years ago
Updated over 1 year ago

adrianosela/sslmgr

adrianosela

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A layer of abstraction the around acme/autocert certificate manager (Golang)

Simple Secure Server

Prerequisites:

Your server must be reachable through the provided domain name, this is how LetsEncrypt verifies domain ownership and grants your server a trusted certificate

With Default Values:

ss, err := sslmgr.NewSecureServer(handler, "yourhostname.com")
if err != nil {
	log.Fatal(err)
}
ss.ListenAndServe()

Note: This option uses the file system as the certificate cache. If your use case does not have a persistent file system, you should provide a value for CertCache in the ServerConfig as shown below.

With Optional Values:

(Using the certcache library to define a cache)

ss, err := sslmgr.NewServer(sslmgr.ServerConfig{
	Hostnames: []string{os.Getenv("CN_FOR_CERTIFICATE")},
	HTTPPort:  ":80",
	HTTPSPort: ":443",
	Handler:   h,
	ServeSSLFunc: func() bool {
		return strings.ToLower(os.Getenv("PROD")) == "true"
	},
	CertCache: certcache.NewLayered(
		certcache.NewLogger(),
		autocert.DirCache("."),
	),
	ReadTimeout:         5 * time.Second,
	WriteTimeout:        5 * time.Second,
	IdleTimeout:         25 * time.Second,
	GracefulnessTimeout: 5 * time.Second,
	GracefulShutdownErrHandler: func(e error) {
		log.Fatal(e)
	},
})
if err != nil {
	log.Fatal(err)
}

ss.ListenAndServe()

certcache

Useful wrappers around the acme/autocert Cache interface

snyk_code_ignore

A wrapper around the Snyk CLI that allows ignoring code issues with in-line comments

iprepd-firewall

Seamless IP reputation based application-layer firewall for services written in Go

padl

secrets management as-a-service

rdtp

[WIP] A cross OS transport layer service implemented as a daemon process

spoof

a utility for injecting spoofed frames into a network

multikey

n-out-of-N-keys encryption framework based on shamir's secret sharing algorithm

authio

Authenticated message implementations of io.Reader and io.Writer

okta-gbac

A thin group ownership wrapper around the Okta Developer API

GoFirewall

A software defined IP based firewall wrapper library for HTTP endpoint handlers in Go

mapp

The companion app for every event you will ever attend!

GoAway

An OpenCV based motion detector and utilities written in Golang

pipeline

staged pipeline framework in go

GoFaceTrainer

Train a facial recognition model in Go using OpenCV and Machine Box

sni-reverse-proxy

Pure-Go SNI-based reverse proxy

ml

Wasteland for all things related to my ML self-learn journey

nwfacts

The ultimate anti-bias tool for browsing the news

keyswirl

automated key rotation library for replicated authentication services

war

A utility to run commands with assumed-role credentials in the environment.

streamer

A python3 video streaming client and server with RSTP and RTP