#include <chrono>
#include <expected>
#include <string>
#include <vector>
Go to the source code of this file.
|
| struct | mm::CertChainLink |
| | One certificate in the served chain — its subject/issuer common names plus the issuing organization (the friendly CA name, e.g. "Let's Encrypt", which lives in the O field rather than the CN). More...
|
| |
| struct | mm::CertInfo |
| | Validity window and identity of a TLS leaf certificate, plus the full served chain. More...
|
| |
|
| std::expected< CertInfo, std::string > | mm::readCertInfo (const std::string &certPath) |
| | Parses a PEM file and extracts the leaf's validity window and the full certificate chain.
|
| |
|
| constexpr int | mm::kCertExpiringSoonDays = 7 |
| | Number of days before notAfter at which a certificate is considered "expiring soon". A cert inside this window is refreshed proactively: it is one of the conditions that trigger the startup self-heal fetch (healCertIfNeeded), so a cert is renewed before it lapses rather than after. Also logs a startup warning and sets the expiresSoon flag returned by GET /api/cert.
|
| |