Use AuthorizationCrt and AuthorizationChain template variables.

sshutil/templates.go

@@ -11,8 +11,8 @@ const (
 	InsecureKey           = "Insecure"
 	UserKey               = "User"
 	CertificateRequestKey = "CR"
-	CertificateKey        = "Crt"
-	CertificateChainKey   = "Chain"
+	AuthorizationCrtKey   = "AuthorizationCrt"
+	AuthorizationChainKey = "AuthorizationChain"
 )
 
 // TemplateError represents an error in a template produced by the fail
@@ -136,16 +136,16 @@ func (t TemplateData) SetUserData(v interface{}) {
 	t.SetInsecure(UserKey, v)
 }
 
-// SetCertificate sets the given certificate in the template. This certificate
-// is generally present in a token header.
-func (t TemplateData) SetCertificate(crt interface{}) {
-	t.Set(CertificateKey, crt)
+// SetAuthorizationCertificate sets the given certificate in the template. This
+// certificate is generally present in a token header.
+func (t TemplateData) SetAuthorizationCertificate(crt interface{}) {
+	t.Set(AuthorizationCrtKey, crt)
 }
 
-// SetCertificateChain sets a the given certificate chain in the template. These
-// certificates are generally present in a token header.
-func (t TemplateData) SetCertificateChain(chain interface{}) {
-	t.Set(CertificateChainKey, chain)
+// SetAuthorizationCertificateChain sets a the given certificate chain in the
+// template. These certificates are generally present in a token header.
+func (t TemplateData) SetAuthorizationCertificateChain(chain interface{}) {
+	t.Set(AuthorizationChainKey, chain)
 }
 
 // SetCertificateRequest sets the simulated ssh certificate request the insecure

sshutil/templates_test.go

@@ -441,7 +441,7 @@ func TestTemplateData_SetUserData(t *testing.T) {
 	}
 }
 
-func TestTemplateData_SetCertificate(t *testing.T) {
+func TestTemplateData_SetAuthorizationCertificate(t *testing.T) {
 	crt1 := Certificate{Key: mustGeneratePublicKey(t)}
 	crt2 := Certificate{Key: mustGeneratePublicKey(t)}
 	type args struct {
@@ -454,31 +454,31 @@ func TestTemplateData_SetCertificate(t *testing.T) {
 		want TemplateData
 	}{
 		{"ok", TemplateData{}, args{crt1}, TemplateData{
-			CertificateKey: crt1,
+			AuthorizationCrtKey: crt1,
 		}},
 		{"overwrite", TemplateData{
-			CertificateKey: crt1,
+			AuthorizationCrtKey: crt1,
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}, args{crt2}, TemplateData{
-			CertificateKey: crt2,
+			AuthorizationCrtKey: crt2,
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			tt.t.SetCertificate(tt.args.crt)
+			tt.t.SetAuthorizationCertificate(tt.args.crt)
 			if !reflect.DeepEqual(tt.t, tt.want) {
 				t.Errorf("TemplateData.SetCertificate() = %v, want %v", tt.t, tt.want)
 			}
 		})
 	}
 }
 
-func TestTemplateData_SetCertificateChain(t *testing.T) {
+func TestTemplateData_SetAuthorizationCertificateChain(t *testing.T) {
 	crt1 := Certificate{Key: mustGeneratePublicKey(t)}
 	crt2 := Certificate{Key: mustGeneratePublicKey(t)}
 	type args struct {
@@ -491,23 +491,23 @@ func TestTemplateData_SetCertificateChain(t *testing.T) {
 		want TemplateData
 	}{
 		{"ok", TemplateData{}, args{[]interface{}{crt1, crt2}}, TemplateData{
-			CertificateChainKey: []interface{}{crt1, crt2},
+			AuthorizationChainKey: []interface{}{crt1, crt2},
 		}},
 		{"overwrite", TemplateData{
-			CertificateChainKey: []interface{}{crt1, crt2},
+			AuthorizationChainKey: []interface{}{crt1, crt2},
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}, args{[]interface{}{crt1}}, TemplateData{
-			CertificateChainKey: []interface{}{crt1},
+			AuthorizationChainKey: []interface{}{crt1},
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			tt.t.SetCertificateChain(tt.args.crt)
+			tt.t.SetAuthorizationCertificateChain(tt.args.crt)
 			if !reflect.DeepEqual(tt.t, tt.want) {
 				t.Errorf("TemplateData.SetCertificate() = %v, want %v", tt.t, tt.want)
 			}

x509util/templates.go

@@ -12,8 +12,8 @@ const (
 	InsecureKey           = "Insecure"
 	UserKey               = "User"
 	CertificateRequestKey = "CR"
-	CertificateKey        = "Crt"
-	CertificateChainKey   = "Chain"
+	AuthorizationCrtKey   = "AuthorizationCrt"
+	AuthorizationChainKey = "AuthorizationChain"
 )
 
 // TemplateError represents an error in a template produced by the fail
@@ -89,16 +89,16 @@ func (t TemplateData) SetUserData(v interface{}) {
 	t.SetInsecure(UserKey, v)
 }
 
-// SetCertificate sets the given certificate in the template. This certificate
+// SetAuthorizationCertificate sets the given certificate in the template. This certificate
 // is generally present in a token header.
-func (t TemplateData) SetCertificate(crt interface{}) {
-	t.Set(CertificateKey, crt)
+func (t TemplateData) SetAuthorizationCertificate(crt interface{}) {
+	t.Set(AuthorizationCrtKey, crt)
 }
 
-// SetCertificateChain sets a the given certificate chain in the template. These
-// certificates are generally present in a token header.
-func (t TemplateData) SetCertificateChain(chain interface{}) {
-	t.Set(CertificateChainKey, chain)
+// SetAuthorizationCertificateChain sets a the given certificate chain in the
+// template. These certificates are generally present in a token header.
+func (t TemplateData) SetAuthorizationCertificateChain(chain interface{}) {
+	t.Set(AuthorizationChainKey, chain)
 }
 
 // SetCertificateRequest sets the given certificate request in the insecure

x509util/templates_test.go

@@ -226,7 +226,7 @@ func TestTemplateData_SetUserData(t *testing.T) {
 	}
 }
 
-func TestTemplateData_SetCertificate(t *testing.T) {
+func TestTemplateData_SetAuthorizationCertificate(t *testing.T) {
 	crt1 := Certificate{DNSNames: []string{"crt1"}}
 	crt2 := Certificate{DNSNames: []string{"crt2"}}
 	type args struct {
@@ -239,31 +239,31 @@ func TestTemplateData_SetCertificate(t *testing.T) {
 		want TemplateData
 	}{
 		{"ok", TemplateData{}, args{crt1}, TemplateData{
-			CertificateKey: crt1,
+			AuthorizationCrtKey: crt1,
 		}},
 		{"overwrite", TemplateData{
-			CertificateKey: crt1,
+			AuthorizationCrtKey: crt1,
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}, args{crt2}, TemplateData{
-			CertificateKey: crt2,
+			AuthorizationCrtKey: crt2,
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			tt.t.SetCertificate(tt.args.crt)
+			tt.t.SetAuthorizationCertificate(tt.args.crt)
 			if !reflect.DeepEqual(tt.t, tt.want) {
 				t.Errorf("TemplateData.SetCertificate() = %v, want %v", tt.t, tt.want)
 			}
 		})
 	}
 }
 
-func TestTemplateData_SetCertificateChain(t *testing.T) {
+func TestTemplateData_SetAuthorizationCertificateChain(t *testing.T) {
 	crt1 := Certificate{DNSNames: []string{"crt1"}}
 	crt2 := Certificate{DNSNames: []string{"crt2"}}
 	type args struct {
@@ -276,23 +276,23 @@ func TestTemplateData_SetCertificateChain(t *testing.T) {
 		want TemplateData
 	}{
 		{"ok", TemplateData{}, args{[]interface{}{crt1, crt2}}, TemplateData{
-			CertificateChainKey: []interface{}{crt1, crt2},
+			AuthorizationChainKey: []interface{}{crt1, crt2},
 		}},
 		{"overwrite", TemplateData{
-			CertificateChainKey: []interface{}{crt1, crt2},
+			AuthorizationChainKey: []interface{}{crt1, crt2},
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}, args{[]interface{}{crt1}}, TemplateData{
-			CertificateChainKey: []interface{}{crt1},
+			AuthorizationChainKey: []interface{}{crt1},
 			InsecureKey: TemplateData{
 				UserKey: "data",
 			},
 		}},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			tt.t.SetCertificateChain(tt.args.crt)
+			tt.t.SetAuthorizationCertificateChain(tt.args.crt)
 			if !reflect.DeepEqual(tt.t, tt.want) {
 				t.Errorf("TemplateData.SetCertificate() = %v, want %v", tt.t, tt.want)
 			}