Expand description
Kipuka EST (RFC 7030) enrollment server.
This crate provides the core server infrastructure: configuration, state management, database access, TLS, audit trail, and error handling.
Modulesยง
- audit
- Structured audit trail (NIAP CA PP FAU family).
- auth
- Authentication layer for the Kipuka EST server.
- ca
- Certificate Authority operations.
- config
- Configuration loading and validation.
- db
- Database access layer.
- error
- Unified error type for Kipuka EST server.
- ha
- High-Availability subsystem for multi-CA failover.
- ocsp
- OCSP client for certificate revocation checking per RFC 6960.
- routes
- HTTP routing for the Kipuka EST server.
- star
- STAR (Short-Term Automatic Renewal) certificate management (RFC 8739).
- state
- Shared application state threaded through axum handlers via
Arc<AppState>. - tls
- TLS server configuration and client certificate verification.