Closed munnerz closed 3 years ago
Looks good to me, this is what I would expect as a developer.
/lgtm
@jtweaver this is a breaking change to our Golang API and will require any implementations of the driver to update their code to encode the CSR bytes as PEM before returning (in SignRequest
) FYI
Wake up Tide, please? 🙄 🤖
here goes nothing:
/hold
/unhold
EDIT: well, that didn't work :)
[APPROVALNOTIFIER] This PR is APPROVED
This pull-request has been approved by: JoshVanL, munnerz
The full list of commands accepted by this bot can be found here.
The pull request process is described here
/hold
/unhold
/test all
This PR changes the public/exported interface (that consumers will implement) for the library to shift the responsibility for encoding to PEM to the implementor of the library.
This is to allow implementors to add e.g. trailing PEM comments (which are permitted by both the PEM spec and the Certificate(Signing)Request API). These may be used for any purpose, including (but not limited to) attaching additional attestation information that does not fit within the x509 document.