Component Details
Component Details
Section titled “Component Details”Short Summary: A technical breakdown of the internal modules that make up the SSL-CLM platform.
Backend Services
Section titled “Backend Services”The Backend is a monolithic Spring Boot application designed for horizontal scalability.
| Service Module | Responsibility |
|---|---|
api | Exposes REST endpoints; handles Authentication (JWT). |
service | Business logic (CertificateService, DiscoveryService). |
scheduler | Asynchronous job processing (ScanJob, RenewalJob). |
cagateway | Abstraction layer for upstream CAs (DigiCert, ACME). |
certstore | Abstraction layer for target stores (JKS, IIS, PEM). |
The Agent (Go/Java)
Section titled “The Agent (Go/Java)”The Agent acts as a remote execution arm.
Communication Protocol
Section titled “Communication Protocol”- Polling: Agent polls
POST /api/agents/jobs/pullevery 30 seconds. - Heartbeat: Agent sends
POST /api/agents/heartbeatwith health status. - Job Result: Agent posts findings to
POST /api/agents/jobs/result.
Stateless Design
Section titled “Stateless Design”Agents are mostly stateless. They receive a “Job Specification” (JSON), execute it (e.g., “Run Scan on 192.168.1.0/24”), and return the result. They do not store long-term state.
The Job Engine
Section titled “The Job Engine”Certificate operations are asynchronous by nature.
- User Request: “Renew this certificate.”
- State Change: Certificate status ->
RENEWAL_IN_PROGRESS. - Job Queued: A
RENEW_CERTjob is created. - Execution: Agent picks up job, generates Key/CSR, sends to CA.
- Completion: CA returns Cert; Agent installs it; Job marked
COMPLETED.