Documentation
¶
Index ¶
- Constants
- Variables
- func RegisterSecureTLSBootstrapServiceServer(s grpc.ServiceRegistrar, srv SecureTLSBootstrapServiceServer)
- type GetCredentialRequest
- func (*GetCredentialRequest) Descriptor() ([]byte, []int)deprecated
- func (x *GetCredentialRequest) GetAttestedData() string
- func (x *GetCredentialRequest) GetEncodedCsrPem() string
- func (x *GetCredentialRequest) GetNonce() string
- func (x *GetCredentialRequest) GetResourceId() string
- func (*GetCredentialRequest) ProtoMessage()
- func (x *GetCredentialRequest) ProtoReflect() protoreflect.Message
- func (x *GetCredentialRequest) Reset()
- func (x *GetCredentialRequest) String() string
- type GetCredentialResponse
- func (*GetCredentialResponse) Descriptor() ([]byte, []int)deprecated
- func (x *GetCredentialResponse) GetEncodedCertPem() string
- func (*GetCredentialResponse) ProtoMessage()
- func (x *GetCredentialResponse) ProtoReflect() protoreflect.Message
- func (x *GetCredentialResponse) Reset()
- func (x *GetCredentialResponse) String() string
- type GetNonceRequest
- type GetNonceResponse
- type SecureTLSBootstrapServiceClient
- type SecureTLSBootstrapServiceServer
- type UnimplementedSecureTLSBootstrapServiceServer
- type UnsafeSecureTLSBootstrapServiceServer
Constants ¶
View Source
const ( SecureTLSBootstrapService_GetNonce_FullMethodName = "/akssecuretlsbootstrap.v1.SecureTLSBootstrapService/GetNonce" SecureTLSBootstrapService_GetCredential_FullMethodName = "/akssecuretlsbootstrap.v1.SecureTLSBootstrapService/GetCredential" )
Variables ¶
View Source
var File_akssecuretlsbootstrap_v1_credential_proto protoreflect.FileDescriptor
View Source
var File_akssecuretlsbootstrap_v1_nonce_proto protoreflect.FileDescriptor
View Source
var File_akssecuretlsbootstrap_v1_service_proto protoreflect.FileDescriptor
View Source
var SecureTLSBootstrapService_ServiceDesc = grpc.ServiceDesc{ ServiceName: "akssecuretlsbootstrap.v1.SecureTLSBootstrapService", HandlerType: (*SecureTLSBootstrapServiceServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "GetNonce", Handler: _SecureTLSBootstrapService_GetNonce_Handler, }, { MethodName: "GetCredential", Handler: _SecureTLSBootstrapService_GetCredential_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "akssecuretlsbootstrap/v1/service.proto", }
SecureTLSBootstrapService_ServiceDesc is the grpc.ServiceDesc for SecureTLSBootstrapService service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)
Functions ¶
func RegisterSecureTLSBootstrapServiceServer ¶
func RegisterSecureTLSBootstrapServiceServer(s grpc.ServiceRegistrar, srv SecureTLSBootstrapServiceServer)
Types ¶
type GetCredentialRequest ¶
type GetCredentialRequest struct {
// Resource ID of the bootstrapping VM.
ResourceId string `protobuf:"bytes,1,opt,name=resource_id,json=resourceId,proto3" json:"resource_id,omitempty"`
// Nonce received from the GetNonce RPC.
Nonce string `protobuf:"bytes,2,opt,name=nonce,proto3" json:"nonce,omitempty"`
// Attested data blob retrieved from IMDS.
AttestedData string `protobuf:"bytes,3,opt,name=attested_data,json=attestedData,proto3" json:"attested_data,omitempty"`
// TLS CSR PEM, b64-encoded.
EncodedCsrPem string `protobuf:"bytes,4,opt,name=encoded_csr_pem,json=encodedCsrPem,proto3" json:"encoded_csr_pem,omitempty"`
// contains filtered or unexported fields
}
func (*GetCredentialRequest) Descriptor
deprecated
func (*GetCredentialRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetCredentialRequest.ProtoReflect.Descriptor instead.
func (*GetCredentialRequest) GetAttestedData ¶
func (x *GetCredentialRequest) GetAttestedData() string
func (*GetCredentialRequest) GetEncodedCsrPem ¶
func (x *GetCredentialRequest) GetEncodedCsrPem() string
func (*GetCredentialRequest) GetNonce ¶
func (x *GetCredentialRequest) GetNonce() string
func (*GetCredentialRequest) GetResourceId ¶
func (x *GetCredentialRequest) GetResourceId() string
func (*GetCredentialRequest) ProtoMessage ¶
func (*GetCredentialRequest) ProtoMessage()
func (*GetCredentialRequest) ProtoReflect ¶
func (x *GetCredentialRequest) ProtoReflect() protoreflect.Message
func (*GetCredentialRequest) Reset ¶
func (x *GetCredentialRequest) Reset()
func (*GetCredentialRequest) String ¶
func (x *GetCredentialRequest) String() string
type GetCredentialResponse ¶
type GetCredentialResponse struct {
// Kubelet client certificate PEM, b64-encoded.
EncodedCertPem string `protobuf:"bytes,1,opt,name=encoded_cert_pem,json=encodedCertPem,proto3" json:"encoded_cert_pem,omitempty"`
// contains filtered or unexported fields
}
func (*GetCredentialResponse) Descriptor
deprecated
func (*GetCredentialResponse) Descriptor() ([]byte, []int)
Deprecated: Use GetCredentialResponse.ProtoReflect.Descriptor instead.
func (*GetCredentialResponse) GetEncodedCertPem ¶
func (x *GetCredentialResponse) GetEncodedCertPem() string
func (*GetCredentialResponse) ProtoMessage ¶
func (*GetCredentialResponse) ProtoMessage()
func (*GetCredentialResponse) ProtoReflect ¶
func (x *GetCredentialResponse) ProtoReflect() protoreflect.Message
func (*GetCredentialResponse) Reset ¶
func (x *GetCredentialResponse) Reset()
func (*GetCredentialResponse) String ¶
func (x *GetCredentialResponse) String() string
type GetNonceRequest ¶
type GetNonceRequest struct {
// Resource ID of the bootstrapping VM.
ResourceId string `protobuf:"bytes,1,opt,name=resource_id,json=resourceId,proto3" json:"resource_id,omitempty"`
// contains filtered or unexported fields
}
func (*GetNonceRequest) Descriptor
deprecated
func (*GetNonceRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetNonceRequest.ProtoReflect.Descriptor instead.
func (*GetNonceRequest) GetResourceId ¶
func (x *GetNonceRequest) GetResourceId() string
func (*GetNonceRequest) ProtoMessage ¶
func (*GetNonceRequest) ProtoMessage()
func (*GetNonceRequest) ProtoReflect ¶
func (x *GetNonceRequest) ProtoReflect() protoreflect.Message
func (*GetNonceRequest) Reset ¶
func (x *GetNonceRequest) Reset()
func (*GetNonceRequest) String ¶
func (x *GetNonceRequest) String() string
type GetNonceResponse ¶
type GetNonceResponse struct {
// Nonce to be used when requesting attested data from IMDS.
Nonce string `protobuf:"bytes,1,opt,name=nonce,proto3" json:"nonce,omitempty"`
// contains filtered or unexported fields
}
func (*GetNonceResponse) Descriptor
deprecated
func (*GetNonceResponse) Descriptor() ([]byte, []int)
Deprecated: Use GetNonceResponse.ProtoReflect.Descriptor instead.
func (*GetNonceResponse) GetNonce ¶
func (x *GetNonceResponse) GetNonce() string
func (*GetNonceResponse) ProtoMessage ¶
func (*GetNonceResponse) ProtoMessage()
func (*GetNonceResponse) ProtoReflect ¶
func (x *GetNonceResponse) ProtoReflect() protoreflect.Message
func (*GetNonceResponse) Reset ¶
func (x *GetNonceResponse) Reset()
func (*GetNonceResponse) String ¶
func (x *GetNonceResponse) String() string
type SecureTLSBootstrapServiceClient ¶
type SecureTLSBootstrapServiceClient interface {
// Generates a nonce to be used when requesting attested data from IMDS.
GetNonce(ctx context.Context, in *GetNonceRequest, opts ...grpc.CallOption) (*GetNonceResponse, error)
// Generates a kubelet client credential used to register with an AKS cluster.
GetCredential(ctx context.Context, in *GetCredentialRequest, opts ...grpc.CallOption) (*GetCredentialResponse, error)
}
SecureTLSBootstrapServiceClient is the client API for SecureTLSBootstrapService service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
func NewSecureTLSBootstrapServiceClient ¶
func NewSecureTLSBootstrapServiceClient(cc grpc.ClientConnInterface) SecureTLSBootstrapServiceClient
type SecureTLSBootstrapServiceServer ¶
type SecureTLSBootstrapServiceServer interface {
// Generates a nonce to be used when requesting attested data from IMDS.
GetNonce(context.Context, *GetNonceRequest) (*GetNonceResponse, error)
// Generates a kubelet client credential used to register with an AKS cluster.
GetCredential(context.Context, *GetCredentialRequest) (*GetCredentialResponse, error)
// contains filtered or unexported methods
}
SecureTLSBootstrapServiceServer is the server API for SecureTLSBootstrapService service. All implementations must embed UnimplementedSecureTLSBootstrapServiceServer for forward compatibility.
type UnimplementedSecureTLSBootstrapServiceServer ¶
type UnimplementedSecureTLSBootstrapServiceServer struct{}
UnimplementedSecureTLSBootstrapServiceServer must be embedded to have forward compatible implementations.
NOTE: this should be embedded by value instead of pointer to avoid a nil pointer dereference when methods are called.
func (UnimplementedSecureTLSBootstrapServiceServer) GetCredential ¶
func (UnimplementedSecureTLSBootstrapServiceServer) GetCredential(context.Context, *GetCredentialRequest) (*GetCredentialResponse, error)
func (UnimplementedSecureTLSBootstrapServiceServer) GetNonce ¶
func (UnimplementedSecureTLSBootstrapServiceServer) GetNonce(context.Context, *GetNonceRequest) (*GetNonceResponse, error)
type UnsafeSecureTLSBootstrapServiceServer ¶
type UnsafeSecureTLSBootstrapServiceServer interface {
// contains filtered or unexported methods
}
UnsafeSecureTLSBootstrapServiceServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to SecureTLSBootstrapServiceServer will result in compilation errors.
Source Files
Click to show internal directories.
Click to hide internal directories.