pb

package
v0.14.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Sep 10, 2024 License: MPL-2.0 Imports: 19 Imported by: 8

Documentation

Index

Constants

View Source 
const (
	Backend_HandleRequest_FullMethodName        = "/pb.Backend/HandleRequest"
	Backend_SpecialPaths_FullMethodName         = "/pb.Backend/SpecialPaths"
	Backend_HandleExistenceCheck_FullMethodName = "/pb.Backend/HandleExistenceCheck"
	Backend_Cleanup_FullMethodName              = "/pb.Backend/Cleanup"
	Backend_InvalidateKey_FullMethodName        = "/pb.Backend/InvalidateKey"
	Backend_Setup_FullMethodName                = "/pb.Backend/Setup"
	Backend_Initialize_FullMethodName           = "/pb.Backend/Initialize"
	Backend_Type_FullMethodName                 = "/pb.Backend/Type"
)
View Source 
const (
	Storage_List_FullMethodName   = "/pb.Storage/List"
	Storage_Get_FullMethodName    = "/pb.Storage/Get"
	Storage_Put_FullMethodName    = "/pb.Storage/Put"
	Storage_Delete_FullMethodName = "/pb.Storage/Delete"
)
View Source 
const (
	SystemView_DefaultLeaseTTL_FullMethodName            = "/pb.SystemView/DefaultLeaseTTL"
	SystemView_MaxLeaseTTL_FullMethodName                = "/pb.SystemView/MaxLeaseTTL"
	SystemView_Tainted_FullMethodName                    = "/pb.SystemView/Tainted"
	SystemView_CachingDisabled_FullMethodName            = "/pb.SystemView/CachingDisabled"
	SystemView_ReplicationState_FullMethodName           = "/pb.SystemView/ReplicationState"
	SystemView_ResponseWrapData_FullMethodName           = "/pb.SystemView/ResponseWrapData"
	SystemView_MlockEnabled_FullMethodName               = "/pb.SystemView/MlockEnabled"
	SystemView_LocalMount_FullMethodName                 = "/pb.SystemView/LocalMount"
	SystemView_EntityInfo_FullMethodName                 = "/pb.SystemView/EntityInfo"
	SystemView_PluginEnv_FullMethodName                  = "/pb.SystemView/PluginEnv"
	SystemView_GroupsForEntity_FullMethodName            = "/pb.SystemView/GroupsForEntity"
	SystemView_GeneratePasswordFromPolicy_FullMethodName = "/pb.SystemView/GeneratePasswordFromPolicy"
	SystemView_ClusterInfo_FullMethodName                = "/pb.SystemView/ClusterInfo"
	SystemView_GenerateIdentityToken_FullMethodName      = "/pb.SystemView/GenerateIdentityToken"
)
View Source 
const (
	ErrTypeUnknown uint32 = iota
	ErrTypeUserError
	ErrTypeInternalError
	ErrTypeCodedError
	ErrTypeStatusBadRequest
	ErrTypeUnsupportedOperation
	ErrTypeUnsupportedPath
	ErrTypeInvalidRequest
	ErrTypePermissionDenied
	ErrTypeMultiAuthzPending
	ErrTypeUnrecoverable
)
View Source 
const (
	Events_SendEvent_FullMethodName = "/pb.Events/SendEvent"
)

Variables

View Source 
var Backend_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "pb.Backend",
	HandlerType: (*BackendServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "HandleRequest",
			Handler:    _Backend_HandleRequest_Handler,
		},
		{
			MethodName: "SpecialPaths",
			Handler:    _Backend_SpecialPaths_Handler,
		},
		{
			MethodName: "HandleExistenceCheck",
			Handler:    _Backend_HandleExistenceCheck_Handler,
		},
		{
			MethodName: "Cleanup",
			Handler:    _Backend_Cleanup_Handler,
		},
		{
			MethodName: "InvalidateKey",
			Handler:    _Backend_InvalidateKey_Handler,
		},
		{
			MethodName: "Setup",
			Handler:    _Backend_Setup_Handler,
		},
		{
			MethodName: "Initialize",
			Handler:    _Backend_Initialize_Handler,
		},
		{
			MethodName: "Type",
			Handler:    _Backend_Type_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "sdk/plugin/pb/backend.proto",
}

Backend_ServiceDesc is the grpc.ServiceDesc for Backend service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var Events_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "pb.Events",
	HandlerType: (*EventsServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "SendEvent",
			Handler:    _Events_SendEvent_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "sdk/plugin/pb/backend.proto",
}

Events_ServiceDesc is the grpc.ServiceDesc for Events service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var File_sdk_plugin_pb_backend_proto protoreflect.FileDescriptor
View Source 
var Storage_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "pb.Storage",
	HandlerType: (*StorageServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "List",
			Handler:    _Storage_List_Handler,
		},
		{
			MethodName: "Get",
			Handler:    _Storage_Get_Handler,
		},
		{
			MethodName: "Put",
			Handler:    _Storage_Put_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _Storage_Delete_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "sdk/plugin/pb/backend.proto",
}

Storage_ServiceDesc is the grpc.ServiceDesc for Storage service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var SystemView_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "pb.SystemView",
	HandlerType: (*SystemViewServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "DefaultLeaseTTL",
			Handler:    _SystemView_DefaultLeaseTTL_Handler,
		},
		{
			MethodName: "MaxLeaseTTL",
			Handler:    _SystemView_MaxLeaseTTL_Handler,
		},
		{
			MethodName: "Tainted",
			Handler:    _SystemView_Tainted_Handler,
		},
		{
			MethodName: "CachingDisabled",
			Handler:    _SystemView_CachingDisabled_Handler,
		},
		{
			MethodName: "ReplicationState",
			Handler:    _SystemView_ReplicationState_Handler,
		},
		{
			MethodName: "ResponseWrapData",
			Handler:    _SystemView_ResponseWrapData_Handler,
		},
		{
			MethodName: "MlockEnabled",
			Handler:    _SystemView_MlockEnabled_Handler,
		},
		{
			MethodName: "LocalMount",
			Handler:    _SystemView_LocalMount_Handler,
		},
		{
			MethodName: "EntityInfo",
			Handler:    _SystemView_EntityInfo_Handler,
		},
		{
			MethodName: "PluginEnv",
			Handler:    _SystemView_PluginEnv_Handler,
		},
		{
			MethodName: "GroupsForEntity",
			Handler:    _SystemView_GroupsForEntity_Handler,
		},
		{
			MethodName: "GeneratePasswordFromPolicy",
			Handler:    _SystemView_GeneratePasswordFromPolicy_Handler,
		},
		{
			MethodName: "ClusterInfo",
			Handler:    _SystemView_ClusterInfo_Handler,
		},
		{
			MethodName: "GenerateIdentityToken",
			Handler:    _SystemView_GenerateIdentityToken_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "sdk/plugin/pb/backend.proto",
}

SystemView_ServiceDesc is the grpc.ServiceDesc for SystemView service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

Functions

func ErrToString 

func ErrToString(e error) string

func ProtoAuthToLogicalAuth 

func ProtoAuthToLogicalAuth(a *Auth) (*logical.Auth, error)

func ProtoCertificateChainToCertificateChain added in v0.3.0 

func ProtoCertificateChainToCertificateChain(cc *CertificateChain) ([]*x509.Certificate, error)

func ProtoCertificateToX509Certificate added in v0.3.0 

func ProtoCertificateToX509Certificate(c *Certificate) (*x509.Certificate, error)

func ProtoConnectionStateToTLSConnectionState added in v0.3.0 

func ProtoConnectionStateToTLSConnectionState(cs *ConnectionState) (*tls.ConnectionState, error)

func ProtoConnectionToLogicalConnection 

func ProtoConnectionToLogicalConnection(c *Connection) (*logical.Connection, error)

func ProtoErrToErr 

func ProtoErrToErr(e *ProtoError) error

func ProtoLeaseOptionsToLogicalLeaseOptions 

func ProtoLeaseOptionsToLogicalLeaseOptions(l *LeaseOptions) (logical.LeaseOptions, error)

func ProtoRequestToLogicalRequest 

func ProtoRequestToLogicalRequest(r *Request) (*logical.Request, error)

func ProtoRequestWrapInfoToLogicalRequestWrapInfo 

func ProtoRequestWrapInfoToLogicalRequestWrapInfo(i *RequestWrapInfo) *logical.RequestWrapInfo

func ProtoResponseToLogicalResponse 

func ProtoResponseToLogicalResponse(r *Response) (*logical.Response, error)

func ProtoResponseWrapInfoToLogicalResponseWrapInfo 

func ProtoResponseWrapInfoToLogicalResponseWrapInfo(i *ResponseWrapInfo) (*wrapping.ResponseWrapInfo, error)

func ProtoSecretToLogicalSecret 

func ProtoSecretToLogicalSecret(s *Secret) (*logical.Secret, error)

func ProtoStorageEntryToLogicalStorageEntry 

func ProtoStorageEntryToLogicalStorageEntry(e *StorageEntry) *logical.StorageEntry

func ProtoTokenEntryToLogicalTokenEntry 

func ProtoTokenEntryToLogicalTokenEntry(t *TokenEntry) (*logical.TokenEntry, error)

func RegisterBackendServer 

func RegisterBackendServer(s grpc.ServiceRegistrar, srv BackendServer)

func RegisterEventsServer added in v0.8.0 

func RegisterEventsServer(s grpc.ServiceRegistrar, srv EventsServer)

func RegisterStorageServer 

func RegisterStorageServer(s grpc.ServiceRegistrar, srv StorageServer)

func RegisterSystemViewServer 

func RegisterSystemViewServer(s grpc.ServiceRegistrar, srv SystemViewServer)

Types

type Auth 

type Auth struct {
	LeaseOptions *LeaseOptions `protobuf:"bytes,1,opt,name=lease_options,json=leaseOptions,proto3" json:"lease_options,omitempty"`
	// InternalData is a JSON object that is stored with the auth struct.
	// This will be sent back during a Renew/Revoke for storing internal data
	// used for those operations.
	InternalData string `protobuf:"bytes,2,opt,name=internal_data,json=internalData,proto3" json:"internal_data,omitempty"`
	// DisplayName is a non-security sensitive identifier that is
	// applicable to this Auth. It is used for logging and prefixing
	// of dynamic secrets. For example, DisplayName may be "armon" for
	// the github credential backend. If the client token is used to
	// generate a SQL credential, the user may be "github-armon-uuid".
	// This is to help identify the source without using audit tables.
	DisplayName string `protobuf:"bytes,3,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
	// Policies is the list of policies that the authenticated user
	// is associated with.
	Policies []string `protobuf:"bytes,4,rep,name=policies,proto3" json:"policies,omitempty"`
	// Metadata is used to attach arbitrary string-type metadata to
	// an authenticated user. This metadata will be outputted into the
	// audit log.
	Metadata map[string]string `` /* 157-byte string literal not displayed */
	// ClientToken is the token that is generated for the authentication.
	// This will be filled in by Vault core when an auth structure is
	// returned. Setting this manually will have no effect.
	ClientToken string `protobuf:"bytes,6,opt,name=client_token,json=clientToken,proto3" json:"client_token,omitempty"`
	// Accessor is the identifier for the ClientToken. This can be used
	// to perform management functionalities (especially revocation) when
	// ClientToken in the audit logs are obfuscated. Accessor can be used
	// to revoke a ClientToken and to lookup the capabilities of the ClientToken,
	// both without actually knowing the ClientToken.
	Accessor string `protobuf:"bytes,7,opt,name=accessor,proto3" json:"accessor,omitempty"`
	// Period indicates that the token generated using this Auth object
	// should never expire. The token should be renewed within the duration
	// specified by this period.
	Period int64 `protobuf:"varint,8,opt,name=period,proto3" json:"period,omitempty"`
	// Number of allowed uses of the issued token
	NumUses int64 `protobuf:"varint,9,opt,name=num_uses,json=numUses,proto3" json:"num_uses,omitempty"`
	// EntityID is the identifier of the entity in identity store to which the
	// identity of the authenticating client belongs to.
	EntityID string `protobuf:"bytes,10,opt,name=entity_id,json=entityId,proto3" json:"entity_id,omitempty"`
	// Alias is the information about the authenticated client returned by
	// the auth backend
	Alias *logical.Alias `protobuf:"bytes,11,opt,name=alias,proto3" json:"alias,omitempty"`
	// GroupAliases are the informational mappings of external groups which an
	// authenticated user belongs to. This is used to check if there are
	// mappings groups for the group aliases in identity store. For all the
	// matching groups, the entity ID of the user will be added.
	GroupAliases []*logical.Alias `protobuf:"bytes,12,rep,name=group_aliases,json=groupAliases,proto3" json:"group_aliases,omitempty"`
	// If set, restricts usage of the certificates to client IPs falling within
	// the range of the specified CIDR(s).
	BoundCIDRs []string `protobuf:"bytes,13,rep,name=bound_cidrs,json=boundCidrs,proto3" json:"bound_cidrs,omitempty"`
	// TokenPolicies and IdentityPolicies break down the list in Policies to
	// help determine where a policy was sourced
	TokenPolicies    []string `protobuf:"bytes,14,rep,name=token_policies,json=tokenPolicies,proto3" json:"token_policies,omitempty"`
	IdentityPolicies []string `protobuf:"bytes,15,rep,name=identity_policies,json=identityPolicies,proto3" json:"identity_policies,omitempty"`
	// Explicit maximum lifetime for the token. Unlike normal TTLs, the maximum
	// TTL is a hard limit and cannot be exceeded, also counts for periodic tokens.
	ExplicitMaxTTL int64 `protobuf:"varint,16,opt,name=explicit_max_ttl,json=explicitMaxTtl,proto3" json:"explicit_max_ttl,omitempty"`
	// TokenType is the type of token being requested
	TokenType uint32 `protobuf:"varint,17,opt,name=token_type,json=tokenType,proto3" json:"token_type,omitempty"`
	// Whether the default policy should be added automatically by core
	NoDefaultPolicy bool `protobuf:"varint,18,opt,name=no_default_policy,json=noDefaultPolicy,proto3" json:"no_default_policy,omitempty"`
	// contains filtered or unexported fields
}

func LogicalAuthToProtoAuth 

func LogicalAuthToProtoAuth(a *logical.Auth) (*Auth, error)

func (*Auth) Descriptor deprecated 

func (*Auth) Descriptor() ([]byte, []int)

Deprecated: Use Auth.ProtoReflect.Descriptor instead.

func (*Auth) GetAccessor 

func (x *Auth) GetAccessor() string

func (*Auth) GetAlias 

func (x *Auth) GetAlias() *logical.Alias

func (*Auth) GetBoundCIDRs 

func (x *Auth) GetBoundCIDRs() []string

func (*Auth) GetClientToken 

func (x *Auth) GetClientToken() string

func (*Auth) GetDisplayName 

func (x *Auth) GetDisplayName() string

func (*Auth) GetEntityID 

func (x *Auth) GetEntityID() string

func (*Auth) GetExplicitMaxTTL 

func (x *Auth) GetExplicitMaxTTL() int64

func (*Auth) GetGroupAliases 

func (x *Auth) GetGroupAliases() []*logical.Alias

func (*Auth) GetIdentityPolicies 

func (x *Auth) GetIdentityPolicies() []string

func (*Auth) GetInternalData 

func (x *Auth) GetInternalData() string

func (*Auth) GetLeaseOptions 

func (x *Auth) GetLeaseOptions() *LeaseOptions

func (*Auth) GetMetadata 

func (x *Auth) GetMetadata() map[string]string

func (*Auth) GetNoDefaultPolicy added in v0.1.12 

func (x *Auth) GetNoDefaultPolicy() bool

func (*Auth) GetNumUses 

func (x *Auth) GetNumUses() int64

func (*Auth) GetPeriod 

func (x *Auth) GetPeriod() int64

func (*Auth) GetPolicies 

func (x *Auth) GetPolicies() []string

func (*Auth) GetTokenPolicies 

func (x *Auth) GetTokenPolicies() []string

func (*Auth) GetTokenType 

func (x *Auth) GetTokenType() uint32

func (*Auth) ProtoMessage 

func (*Auth) ProtoMessage()

func (*Auth) ProtoReflect added in v0.2.0 

func (x *Auth) ProtoReflect() protoreflect.Message

func (*Auth) Reset 

func (x *Auth) Reset()

func (*Auth) String 

func (x *Auth) String() string

type BackendClient 

type BackendClient interface {
	// HandleRequest is used to handle a request and generate a response.
	// The plugins must check the operation type and handle appropriately.
	HandleRequest(ctx context.Context, in *HandleRequestArgs, opts ...grpc.CallOption) (*HandleRequestReply, error)
	// SpecialPaths is a list of paths that are special in some way.
	// See PathType for the types of special paths. The key is the type
	// of the special path, and the value is a list of paths for this type.
	// This is not a regular expression but is an exact match. If the path
	// ends in '*' then it is a prefix-based match. The '*' can only appear
	// at the end.
	SpecialPaths(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*SpecialPathsReply, error)
	// HandleExistenceCheck is used to handle a request and generate a response
	// indicating whether the given path exists or not; this is used to
	// understand whether the request must have a Create or Update capability
	// ACL applied. The first bool indicates whether an existence check
	// function was found for the backend; the second indicates whether, if an
	// existence check function was found, the item exists or not.
	HandleExistenceCheck(ctx context.Context, in *HandleExistenceCheckArgs, opts ...grpc.CallOption) (*HandleExistenceCheckReply, error)
	// Cleanup is invoked during an unmount of a backend to allow it to
	// handle any cleanup like connection closing or releasing of file handles.
	// Cleanup is called right before Vault closes the plugin process.
	Cleanup(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*Empty, error)
	// InvalidateKey may be invoked when an object is modified that belongs
	// to the backend. The backend can use this to clear any caches or reset
	// internal state as needed.
	InvalidateKey(ctx context.Context, in *InvalidateKeyArgs, opts ...grpc.CallOption) (*Empty, error)
	// Setup is used to set up the backend based on the provided backend
	// configuration. The plugin's setup implementation should use the provided
	// broker_id to create a connection back to Vault for use with the Storage
	// and SystemView clients.
	Setup(ctx context.Context, in *SetupArgs, opts ...grpc.CallOption) (*SetupReply, error)
	// Initialize is invoked just after mounting a backend to allow it to
	// handle any initialization tasks that need to be performed.
	Initialize(ctx context.Context, in *InitializeArgs, opts ...grpc.CallOption) (*InitializeReply, error)
	// Type returns the BackendType for the particular backend
	Type(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*TypeReply, error)
}

BackendClient is the client API for Backend service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

Backend is the interface that plugins must satisfy. The plugin should implement the server for this service. Requests will first run the HandleExistenceCheck rpc then run the HandleRequests rpc.

func NewBackendClient 

func NewBackendClient(cc grpc.ClientConnInterface) BackendClient

type BackendServer 

type BackendServer interface {
	// HandleRequest is used to handle a request and generate a response.
	// The plugins must check the operation type and handle appropriately.
	HandleRequest(context.Context, *HandleRequestArgs) (*HandleRequestReply, error)
	// SpecialPaths is a list of paths that are special in some way.
	// See PathType for the types of special paths. The key is the type
	// of the special path, and the value is a list of paths for this type.
	// This is not a regular expression but is an exact match. If the path
	// ends in '*' then it is a prefix-based match. The '*' can only appear
	// at the end.
	SpecialPaths(context.Context, *Empty) (*SpecialPathsReply, error)
	// HandleExistenceCheck is used to handle a request and generate a response
	// indicating whether the given path exists or not; this is used to
	// understand whether the request must have a Create or Update capability
	// ACL applied. The first bool indicates whether an existence check
	// function was found for the backend; the second indicates whether, if an
	// existence check function was found, the item exists or not.
	HandleExistenceCheck(context.Context, *HandleExistenceCheckArgs) (*HandleExistenceCheckReply, error)
	// Cleanup is invoked during an unmount of a backend to allow it to
	// handle any cleanup like connection closing or releasing of file handles.
	// Cleanup is called right before Vault closes the plugin process.
	Cleanup(context.Context, *Empty) (*Empty, error)
	// InvalidateKey may be invoked when an object is modified that belongs
	// to the backend. The backend can use this to clear any caches or reset
	// internal state as needed.
	InvalidateKey(context.Context, *InvalidateKeyArgs) (*Empty, error)
	// Setup is used to set up the backend based on the provided backend
	// configuration. The plugin's setup implementation should use the provided
	// broker_id to create a connection back to Vault for use with the Storage
	// and SystemView clients.
	Setup(context.Context, *SetupArgs) (*SetupReply, error)
	// Initialize is invoked just after mounting a backend to allow it to
	// handle any initialization tasks that need to be performed.
	Initialize(context.Context, *InitializeArgs) (*InitializeReply, error)
	// Type returns the BackendType for the particular backend
	Type(context.Context, *Empty) (*TypeReply, error)
	// contains filtered or unexported methods
}

BackendServer is the server API for Backend service. All implementations must embed UnimplementedBackendServer for forward compatibility

Backend is the interface that plugins must satisfy. The plugin should implement the server for this service. Requests will first run the HandleExistenceCheck rpc then run the HandleRequests rpc.

type CachingDisabledReply 

type CachingDisabledReply struct {
	Disabled bool `protobuf:"varint,1,opt,name=disabled,proto3" json:"disabled,omitempty"`
	// contains filtered or unexported fields
}

func (*CachingDisabledReply) Descriptor deprecated 

func (*CachingDisabledReply) Descriptor() ([]byte, []int)

Deprecated: Use CachingDisabledReply.ProtoReflect.Descriptor instead.

func (*CachingDisabledReply) GetDisabled 

func (x *CachingDisabledReply) GetDisabled() bool

func (*CachingDisabledReply) ProtoMessage 

func (*CachingDisabledReply) ProtoMessage()

func (*CachingDisabledReply) ProtoReflect added in v0.2.0 

func (x *CachingDisabledReply) ProtoReflect() protoreflect.Message

func (*CachingDisabledReply) Reset 

func (x *CachingDisabledReply) Reset()

func (*CachingDisabledReply) String 

func (x *CachingDisabledReply) String() string

type Certificate added in v0.3.0 

type Certificate struct {
	Asn1Data []byte `protobuf:"bytes,1,opt,name=asn1_data,json=asn1Data,proto3" json:"asn1_data,omitempty"`
	// contains filtered or unexported fields
}

func X509CertificateToProtoCertificate added in v0.3.0 

func X509CertificateToProtoCertificate(cert *x509.Certificate) *Certificate

func (*Certificate) Descriptor deprecated added in v0.3.0 

func (*Certificate) Descriptor() ([]byte, []int)

Deprecated: Use Certificate.ProtoReflect.Descriptor instead.

func (*Certificate) GetAsn1Data added in v0.3.0 

func (x *Certificate) GetAsn1Data() []byte

func (*Certificate) ProtoMessage added in v0.3.0 

func (*Certificate) ProtoMessage()

func (*Certificate) ProtoReflect added in v0.3.0 

func (x *Certificate) ProtoReflect() protoreflect.Message

func (*Certificate) Reset added in v0.3.0 

func (x *Certificate) Reset()

func (*Certificate) String added in v0.3.0 

func (x *Certificate) String() string

type CertificateChain added in v0.3.0 

type CertificateChain struct {
	Certificates []*Certificate `protobuf:"bytes,1,rep,name=certificates,proto3" json:"certificates,omitempty"`
	// contains filtered or unexported fields
}

func CertificateChainToProtoCertificateChain added in v0.3.0 

func CertificateChainToProtoCertificateChain(chain []*x509.Certificate) *CertificateChain

func (*CertificateChain) Descriptor deprecated added in v0.3.0 

func (*CertificateChain) Descriptor() ([]byte, []int)

Deprecated: Use CertificateChain.ProtoReflect.Descriptor instead.

func (*CertificateChain) GetCertificates added in v0.3.0 

func (x *CertificateChain) GetCertificates() []*Certificate

func (*CertificateChain) ProtoMessage added in v0.3.0 

func (*CertificateChain) ProtoMessage()

func (*CertificateChain) ProtoReflect added in v0.3.0 

func (x *CertificateChain) ProtoReflect() protoreflect.Message

func (*CertificateChain) Reset added in v0.3.0 

func (x *CertificateChain) Reset()

func (*CertificateChain) String added in v0.3.0 

func (x *CertificateChain) String() string

type ClusterInfoReply added in v0.8.0 

type ClusterInfoReply struct {
	ClusterName string `protobuf:"bytes,1,opt,name=cluster_name,json=clusterName,proto3" json:"cluster_name,omitempty"`
	ClusterID   string `protobuf:"bytes,2,opt,name=cluster_id,json=clusterId,proto3" json:"cluster_id,omitempty"`
	Err         string `protobuf:"bytes,3,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*ClusterInfoReply) Descriptor deprecated added in v0.8.0 

func (*ClusterInfoReply) Descriptor() ([]byte, []int)

Deprecated: Use ClusterInfoReply.ProtoReflect.Descriptor instead.

func (*ClusterInfoReply) GetClusterID added in v0.8.0 

func (x *ClusterInfoReply) GetClusterID() string

func (*ClusterInfoReply) GetClusterName added in v0.8.0 

func (x *ClusterInfoReply) GetClusterName() string

func (*ClusterInfoReply) GetErr added in v0.8.0 

func (x *ClusterInfoReply) GetErr() string

func (*ClusterInfoReply) ProtoMessage added in v0.8.0 

func (*ClusterInfoReply) ProtoMessage()

func (*ClusterInfoReply) ProtoReflect added in v0.8.0 

func (x *ClusterInfoReply) ProtoReflect() protoreflect.Message

func (*ClusterInfoReply) Reset added in v0.8.0 

func (x *ClusterInfoReply) Reset()

func (*ClusterInfoReply) String added in v0.8.0 

func (x *ClusterInfoReply) String() string

type Connection 

type Connection struct {

	// RemoteAddr is the network address that sent the request.
	RemoteAddr string `protobuf:"bytes,1,opt,name=remote_addr,json=remoteAddr,proto3" json:"remote_addr,omitempty"`
	// RemotePort is the network port that sent the request.
	RemotePort int32 `protobuf:"varint,3,opt,name=remote_port,json=remotePort,proto3" json:"remote_port,omitempty"`
	// ConnectionState is the marshalled tls.ConnectionState from the original
	// request
	ConnectionState *ConnectionState `protobuf:"bytes,2,opt,name=connection_state,json=connectionState,proto3" json:"connection_state,omitempty"`
	// contains filtered or unexported fields
}

func LogicalConnectionToProtoConnection 

func LogicalConnectionToProtoConnection(c *logical.Connection) *Connection

func (*Connection) Descriptor deprecated 

func (*Connection) Descriptor() ([]byte, []int)

Deprecated: Use Connection.ProtoReflect.Descriptor instead.

func (*Connection) GetConnectionState added in v0.3.0 

func (x *Connection) GetConnectionState() *ConnectionState

func (*Connection) GetRemoteAddr 

func (x *Connection) GetRemoteAddr() string

func (*Connection) GetRemotePort added in v0.4.0 

func (x *Connection) GetRemotePort() int32

func (*Connection) ProtoMessage 

func (*Connection) ProtoMessage()

func (*Connection) ProtoReflect added in v0.2.0 

func (x *Connection) ProtoReflect() protoreflect.Message

func (*Connection) Reset 

func (x *Connection) Reset()

func (*Connection) String 

func (x *Connection) String() string

type ConnectionState added in v0.3.0 

type ConnectionState struct {
	Version                     uint32              `protobuf:"varint,1,opt,name=version,proto3" json:"version,omitempty"`
	HandshakeComplete           bool                `protobuf:"varint,2,opt,name=handshake_complete,json=handshakeComplete,proto3" json:"handshake_complete,omitempty"`
	DidResume                   bool                `protobuf:"varint,3,opt,name=did_resume,json=didResume,proto3" json:"did_resume,omitempty"`
	CipherSuite                 uint32              `protobuf:"varint,4,opt,name=cipher_suite,json=cipherSuite,proto3" json:"cipher_suite,omitempty"`
	NegotiatedProtocol          string              `protobuf:"bytes,5,opt,name=negotiated_protocol,json=negotiatedProtocol,proto3" json:"negotiated_protocol,omitempty"`
	NegotiatedProtocolIsMutual  bool                `` /* 144-byte string literal not displayed */
	ServerName                  string              `protobuf:"bytes,7,opt,name=server_name,json=serverName,proto3" json:"server_name,omitempty"`
	PeerCertificates            *CertificateChain   `protobuf:"bytes,8,opt,name=peer_certificates,json=peerCertificates,proto3" json:"peer_certificates,omitempty"`
	VerifiedChains              []*CertificateChain `protobuf:"bytes,9,rep,name=verified_chains,json=verifiedChains,proto3" json:"verified_chains,omitempty"`
	SignedCertificateTimestamps [][]byte            `` /* 145-byte string literal not displayed */
	OcspResponse                []byte              `protobuf:"bytes,11,opt,name=ocsp_response,json=ocspResponse,proto3" json:"ocsp_response,omitempty"`
	TlsUnique                   []byte              `protobuf:"bytes,12,opt,name=tls_unique,json=tlsUnique,proto3" json:"tls_unique,omitempty"`
	// contains filtered or unexported fields
}

func TLSConnectionStateToProtoConnectionState added in v0.3.0 

func TLSConnectionStateToProtoConnectionState(connState *tls.ConnectionState) *ConnectionState

func (*ConnectionState) Descriptor deprecated added in v0.3.0 

func (*ConnectionState) Descriptor() ([]byte, []int)

Deprecated: Use ConnectionState.ProtoReflect.Descriptor instead.

func (*ConnectionState) GetCipherSuite added in v0.3.0 

func (x *ConnectionState) GetCipherSuite() uint32

func (*ConnectionState) GetDidResume added in v0.3.0 

func (x *ConnectionState) GetDidResume() bool

func (*ConnectionState) GetHandshakeComplete added in v0.3.0 

func (x *ConnectionState) GetHandshakeComplete() bool

func (*ConnectionState) GetNegotiatedProtocol added in v0.3.0 

func (x *ConnectionState) GetNegotiatedProtocol() string

func (*ConnectionState) GetNegotiatedProtocolIsMutual added in v0.3.0 

func (x *ConnectionState) GetNegotiatedProtocolIsMutual() bool

func (*ConnectionState) GetOcspResponse added in v0.3.0 

func (x *ConnectionState) GetOcspResponse() []byte

func (*ConnectionState) GetPeerCertificates added in v0.3.0 

func (x *ConnectionState) GetPeerCertificates() *CertificateChain

func (*ConnectionState) GetServerName added in v0.3.0 

func (x *ConnectionState) GetServerName() string

func (*ConnectionState) GetSignedCertificateTimestamps added in v0.3.0 

func (x *ConnectionState) GetSignedCertificateTimestamps() [][]byte

func (*ConnectionState) GetTlsUnique added in v0.3.0 

func (x *ConnectionState) GetTlsUnique() []byte

func (*ConnectionState) GetVerifiedChains added in v0.3.0 

func (x *ConnectionState) GetVerifiedChains() []*CertificateChain

func (*ConnectionState) GetVersion added in v0.3.0 

func (x *ConnectionState) GetVersion() uint32

func (*ConnectionState) ProtoMessage added in v0.3.0 

func (*ConnectionState) ProtoMessage()

func (*ConnectionState) ProtoReflect added in v0.3.0 

func (x *ConnectionState) ProtoReflect() protoreflect.Message

func (*ConnectionState) Reset added in v0.3.0 

func (x *ConnectionState) Reset()

func (*ConnectionState) String added in v0.3.0 

func (x *ConnectionState) String() string

type Empty 

type Empty struct {
	// contains filtered or unexported fields
}

func (*Empty) Descriptor deprecated 

func (*Empty) Descriptor() ([]byte, []int)

Deprecated: Use Empty.ProtoReflect.Descriptor instead.

func (*Empty) ProtoMessage 

func (*Empty) ProtoMessage()

func (*Empty) ProtoReflect added in v0.2.0 

func (x *Empty) ProtoReflect() protoreflect.Message

func (*Empty) Reset 

func (x *Empty) Reset()

func (*Empty) String 

func (x *Empty) String() string

type EntityInfoArgs 

type EntityInfoArgs struct {
	EntityID string `protobuf:"bytes,1,opt,name=entity_id,json=entityId,proto3" json:"entity_id,omitempty"`
	// contains filtered or unexported fields
}

func (*EntityInfoArgs) Descriptor deprecated 

func (*EntityInfoArgs) Descriptor() ([]byte, []int)

Deprecated: Use EntityInfoArgs.ProtoReflect.Descriptor instead.

func (*EntityInfoArgs) GetEntityID 

func (x *EntityInfoArgs) GetEntityID() string

func (*EntityInfoArgs) ProtoMessage 

func (*EntityInfoArgs) ProtoMessage()

func (*EntityInfoArgs) ProtoReflect added in v0.2.0 

func (x *EntityInfoArgs) ProtoReflect() protoreflect.Message

func (*EntityInfoArgs) Reset 

func (x *EntityInfoArgs) Reset()

func (*EntityInfoArgs) String 

func (x *EntityInfoArgs) String() string

type EntityInfoReply 

type EntityInfoReply struct {
	Entity *logical.Entity `protobuf:"bytes,1,opt,name=entity,proto3" json:"entity,omitempty"`
	Err    string          `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*EntityInfoReply) Descriptor deprecated 

func (*EntityInfoReply) Descriptor() ([]byte, []int)

Deprecated: Use EntityInfoReply.ProtoReflect.Descriptor instead.

func (*EntityInfoReply) GetEntity 

func (x *EntityInfoReply) GetEntity() *logical.Entity

func (*EntityInfoReply) GetErr 

func (x *EntityInfoReply) GetErr() string

func (*EntityInfoReply) ProtoMessage 

func (*EntityInfoReply) ProtoMessage()

func (*EntityInfoReply) ProtoReflect added in v0.2.0 

func (x *EntityInfoReply) ProtoReflect() protoreflect.Message

func (*EntityInfoReply) Reset 

func (x *EntityInfoReply) Reset()

func (*EntityInfoReply) String 

func (x *EntityInfoReply) String() string

type EventsClient added in v0.8.0 

type EventsClient interface {
	SendEvent(ctx context.Context, in *SendEventRequest, opts ...grpc.CallOption) (*Empty, error)
}

EventsClient is the client API for Events service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewEventsClient added in v0.8.0 

func NewEventsClient(cc grpc.ClientConnInterface) EventsClient

type EventsServer added in v0.8.0 

type EventsServer interface {
	SendEvent(context.Context, *SendEventRequest) (*Empty, error)
	// contains filtered or unexported methods
}

EventsServer is the server API for Events service. All implementations must embed UnimplementedEventsServer for forward compatibility

type GenerateIdentityTokenRequest added in v0.11.0 

type GenerateIdentityTokenRequest struct {
	Audience string `protobuf:"bytes,1,opt,name=audience,proto3" json:"audience,omitempty"`
	TTL      int64  `protobuf:"varint,2,opt,name=ttl,proto3" json:"ttl,omitempty"`
	// contains filtered or unexported fields
}

func (*GenerateIdentityTokenRequest) Descriptor deprecated added in v0.11.0 

func (*GenerateIdentityTokenRequest) Descriptor() ([]byte, []int)

Deprecated: Use GenerateIdentityTokenRequest.ProtoReflect.Descriptor instead.

func (*GenerateIdentityTokenRequest) GetAudience added in v0.11.0 

func (x *GenerateIdentityTokenRequest) GetAudience() string

func (*GenerateIdentityTokenRequest) GetTTL added in v0.11.0 

func (x *GenerateIdentityTokenRequest) GetTTL() int64

func (*GenerateIdentityTokenRequest) ProtoMessage added in v0.11.0 

func (*GenerateIdentityTokenRequest) ProtoMessage()

func (*GenerateIdentityTokenRequest) ProtoReflect added in v0.11.0 

func (x *GenerateIdentityTokenRequest) ProtoReflect() protoreflect.Message

func (*GenerateIdentityTokenRequest) Reset added in v0.11.0 

func (x *GenerateIdentityTokenRequest) Reset()

func (*GenerateIdentityTokenRequest) String added in v0.11.0 

func (x *GenerateIdentityTokenRequest) String() string

type GenerateIdentityTokenResponse added in v0.11.0 

type GenerateIdentityTokenResponse struct {
	Token string `protobuf:"bytes,1,opt,name=token,proto3" json:"token,omitempty"`
	TTL   int64  `protobuf:"varint,2,opt,name=ttl,proto3" json:"ttl,omitempty"`
	// contains filtered or unexported fields
}

func (*GenerateIdentityTokenResponse) Descriptor deprecated added in v0.11.0 

func (*GenerateIdentityTokenResponse) Descriptor() ([]byte, []int)

Deprecated: Use GenerateIdentityTokenResponse.ProtoReflect.Descriptor instead.

func (*GenerateIdentityTokenResponse) GetTTL added in v0.11.0 

func (x *GenerateIdentityTokenResponse) GetTTL() int64

func (*GenerateIdentityTokenResponse) GetToken added in v0.11.0 

func (x *GenerateIdentityTokenResponse) GetToken() string

func (*GenerateIdentityTokenResponse) ProtoMessage added in v0.11.0 

func (*GenerateIdentityTokenResponse) ProtoMessage()

func (*GenerateIdentityTokenResponse) ProtoReflect added in v0.11.0 

func (x *GenerateIdentityTokenResponse) ProtoReflect() protoreflect.Message

func (*GenerateIdentityTokenResponse) Reset added in v0.11.0 

func (x *GenerateIdentityTokenResponse) Reset()

func (*GenerateIdentityTokenResponse) String added in v0.11.0 

func (x *GenerateIdentityTokenResponse) String() string

type GeneratePasswordFromPolicyReply added in v0.2.0 

type GeneratePasswordFromPolicyReply struct {
	Password string `protobuf:"bytes,1,opt,name=password,proto3" json:"password,omitempty"`
	// contains filtered or unexported fields
}

func (*GeneratePasswordFromPolicyReply) Descriptor deprecated added in v0.2.0 

func (*GeneratePasswordFromPolicyReply) Descriptor() ([]byte, []int)

Deprecated: Use GeneratePasswordFromPolicyReply.ProtoReflect.Descriptor instead.

func (*GeneratePasswordFromPolicyReply) GetPassword added in v0.2.0 

func (x *GeneratePasswordFromPolicyReply) GetPassword() string

func (*GeneratePasswordFromPolicyReply) ProtoMessage added in v0.2.0 

func (*GeneratePasswordFromPolicyReply) ProtoMessage()

func (*GeneratePasswordFromPolicyReply) ProtoReflect added in v0.2.0 

func (x *GeneratePasswordFromPolicyReply) ProtoReflect() protoreflect.Message

func (*GeneratePasswordFromPolicyReply) Reset added in v0.2.0 

func (x *GeneratePasswordFromPolicyReply) Reset()

func (*GeneratePasswordFromPolicyReply) String added in v0.2.0 

func (x *GeneratePasswordFromPolicyReply) String() string

type GeneratePasswordFromPolicyRequest added in v0.2.0 

type GeneratePasswordFromPolicyRequest struct {
	PolicyName string `protobuf:"bytes,1,opt,name=policy_name,json=policyName,proto3" json:"policy_name,omitempty"`
	// contains filtered or unexported fields
}

func (*GeneratePasswordFromPolicyRequest) Descriptor deprecated added in v0.2.0 

func (*GeneratePasswordFromPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use GeneratePasswordFromPolicyRequest.ProtoReflect.Descriptor instead.

func (*GeneratePasswordFromPolicyRequest) GetPolicyName added in v0.2.0 

func (x *GeneratePasswordFromPolicyRequest) GetPolicyName() string

func (*GeneratePasswordFromPolicyRequest) ProtoMessage added in v0.2.0 

func (*GeneratePasswordFromPolicyRequest) ProtoMessage()

func (*GeneratePasswordFromPolicyRequest) ProtoReflect added in v0.2.0 

func (x *GeneratePasswordFromPolicyRequest) ProtoReflect() protoreflect.Message

func (*GeneratePasswordFromPolicyRequest) Reset added in v0.2.0 

func (x *GeneratePasswordFromPolicyRequest) Reset()

func (*GeneratePasswordFromPolicyRequest) String added in v0.2.0 

func (x *GeneratePasswordFromPolicyRequest) String() string

type GroupsForEntityReply added in v0.2.0 

type GroupsForEntityReply struct {
	Groups []*logical.Group `protobuf:"bytes,1,rep,name=groups,proto3" json:"groups,omitempty"`
	Err    string           `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*GroupsForEntityReply) Descriptor deprecated added in v0.2.0 

func (*GroupsForEntityReply) Descriptor() ([]byte, []int)

Deprecated: Use GroupsForEntityReply.ProtoReflect.Descriptor instead.

func (*GroupsForEntityReply) GetErr added in v0.2.0 

func (x *GroupsForEntityReply) GetErr() string

func (*GroupsForEntityReply) GetGroups added in v0.2.0 

func (x *GroupsForEntityReply) GetGroups() []*logical.Group

func (*GroupsForEntityReply) ProtoMessage added in v0.2.0 

func (*GroupsForEntityReply) ProtoMessage()

func (*GroupsForEntityReply) ProtoReflect added in v0.2.0 

func (x *GroupsForEntityReply) ProtoReflect() protoreflect.Message

func (*GroupsForEntityReply) Reset added in v0.2.0 

func (x *GroupsForEntityReply) Reset()

func (*GroupsForEntityReply) String added in v0.2.0 

func (x *GroupsForEntityReply) String() string

type HandleExistenceCheckArgs 

type HandleExistenceCheckArgs struct {
	StorageID uint32   `protobuf:"varint,1,opt,name=storage_id,json=storageId,proto3" json:"storage_id,omitempty"`
	Request   *Request `protobuf:"bytes,2,opt,name=request,proto3" json:"request,omitempty"`
	// contains filtered or unexported fields
}

HandleExistenceCheckArgs is the args for HandleExistenceCheck method.

func (*HandleExistenceCheckArgs) Descriptor deprecated 

func (*HandleExistenceCheckArgs) Descriptor() ([]byte, []int)

Deprecated: Use HandleExistenceCheckArgs.ProtoReflect.Descriptor instead.

func (*HandleExistenceCheckArgs) GetRequest 

func (x *HandleExistenceCheckArgs) GetRequest() *Request

func (*HandleExistenceCheckArgs) GetStorageID 

func (x *HandleExistenceCheckArgs) GetStorageID() uint32

func (*HandleExistenceCheckArgs) ProtoMessage 

func (*HandleExistenceCheckArgs) ProtoMessage()

func (*HandleExistenceCheckArgs) ProtoReflect added in v0.2.0 

func (x *HandleExistenceCheckArgs) ProtoReflect() protoreflect.Message

func (*HandleExistenceCheckArgs) Reset 

func (x *HandleExistenceCheckArgs) Reset()

func (*HandleExistenceCheckArgs) String 

func (x *HandleExistenceCheckArgs) String() string

type HandleExistenceCheckReply 

type HandleExistenceCheckReply struct {
	CheckFound bool        `protobuf:"varint,1,opt,name=check_found,json=checkFound,proto3" json:"check_found,omitempty"`
	Exists     bool        `protobuf:"varint,2,opt,name=exists,proto3" json:"exists,omitempty"`
	Err        *ProtoError `protobuf:"bytes,3,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

HandleExistenceCheckReply is the reply for HandleExistenceCheck method.

func (*HandleExistenceCheckReply) Descriptor deprecated 

func (*HandleExistenceCheckReply) Descriptor() ([]byte, []int)

Deprecated: Use HandleExistenceCheckReply.ProtoReflect.Descriptor instead.

func (*HandleExistenceCheckReply) GetCheckFound 

func (x *HandleExistenceCheckReply) GetCheckFound() bool

func (*HandleExistenceCheckReply) GetErr 

func (x *HandleExistenceCheckReply) GetErr() *ProtoError

func (*HandleExistenceCheckReply) GetExists 

func (x *HandleExistenceCheckReply) GetExists() bool

func (*HandleExistenceCheckReply) ProtoMessage 

func (*HandleExistenceCheckReply) ProtoMessage()

func (*HandleExistenceCheckReply) ProtoReflect added in v0.2.0 

func (x *HandleExistenceCheckReply) ProtoReflect() protoreflect.Message

func (*HandleExistenceCheckReply) Reset 

func (x *HandleExistenceCheckReply) Reset()

func (*HandleExistenceCheckReply) String 

func (x *HandleExistenceCheckReply) String() string

type HandleRequestArgs 

type HandleRequestArgs struct {
	StorageID uint32   `protobuf:"varint,1,opt,name=storage_id,json=storageId,proto3" json:"storage_id,omitempty"`
	Request   *Request `protobuf:"bytes,2,opt,name=request,proto3" json:"request,omitempty"`
	// contains filtered or unexported fields
}

HandleRequestArgs is the args for HandleRequest method.

func (*HandleRequestArgs) Descriptor deprecated 

func (*HandleRequestArgs) Descriptor() ([]byte, []int)

Deprecated: Use HandleRequestArgs.ProtoReflect.Descriptor instead.

func (*HandleRequestArgs) GetRequest 

func (x *HandleRequestArgs) GetRequest() *Request

func (*HandleRequestArgs) GetStorageID 

func (x *HandleRequestArgs) GetStorageID() uint32

func (*HandleRequestArgs) ProtoMessage 

func (*HandleRequestArgs) ProtoMessage()

func (*HandleRequestArgs) ProtoReflect added in v0.2.0 

func (x *HandleRequestArgs) ProtoReflect() protoreflect.Message

func (*HandleRequestArgs) Reset 

func (x *HandleRequestArgs) Reset()

func (*HandleRequestArgs) String 

func (x *HandleRequestArgs) String() string

type HandleRequestReply 

type HandleRequestReply struct {
	Response *Response   `protobuf:"bytes,1,opt,name=response,proto3" json:"response,omitempty"`
	Err      *ProtoError `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

HandleRequestReply is the reply for HandleRequest method.

func (*HandleRequestReply) Descriptor deprecated 

func (*HandleRequestReply) Descriptor() ([]byte, []int)

Deprecated: Use HandleRequestReply.ProtoReflect.Descriptor instead.

func (*HandleRequestReply) GetErr 

func (x *HandleRequestReply) GetErr() *ProtoError

func (*HandleRequestReply) GetResponse 

func (x *HandleRequestReply) GetResponse() *Response

func (*HandleRequestReply) ProtoMessage 

func (*HandleRequestReply) ProtoMessage()

func (*HandleRequestReply) ProtoReflect added in v0.2.0 

func (x *HandleRequestReply) ProtoReflect() protoreflect.Message

func (*HandleRequestReply) Reset 

func (x *HandleRequestReply) Reset()

func (*HandleRequestReply) String 

func (x *HandleRequestReply) String() string
type Header struct {
	Header []string `protobuf:"bytes,1,rep,name=header,proto3" json:"header,omitempty"`
	// contains filtered or unexported fields
}

func (*Header) Descriptor deprecated 

func (*Header) Descriptor() ([]byte, []int)

Deprecated: Use Header.ProtoReflect.Descriptor instead.

func (*Header) GetHeader 

func (x *Header) GetHeader() []string

func (*Header) ProtoMessage 

func (*Header) ProtoMessage()

func (*Header) ProtoReflect added in v0.2.0 

func (x *Header) ProtoReflect() protoreflect.Message

func (*Header) Reset 

func (x *Header) Reset()

func (*Header) String 

func (x *Header) String() string

type InitializeArgs added in v0.1.12 

type InitializeArgs struct {
	// contains filtered or unexported fields
}

InitializeArgs is the args for Initialize method.

func (*InitializeArgs) Descriptor deprecated added in v0.1.12 

func (*InitializeArgs) Descriptor() ([]byte, []int)

Deprecated: Use InitializeArgs.ProtoReflect.Descriptor instead.

func (*InitializeArgs) ProtoMessage added in v0.1.12 

func (*InitializeArgs) ProtoMessage()

func (*InitializeArgs) ProtoReflect added in v0.2.0 

func (x *InitializeArgs) ProtoReflect() protoreflect.Message

func (*InitializeArgs) Reset added in v0.1.12 

func (x *InitializeArgs) Reset()

func (*InitializeArgs) String added in v0.1.12 

func (x *InitializeArgs) String() string

type InitializeReply added in v0.1.12 

type InitializeReply struct {
	Err *ProtoError `protobuf:"bytes,1,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

InitializeReply is the reply for Initialize method.

func (*InitializeReply) Descriptor deprecated added in v0.1.12 

func (*InitializeReply) Descriptor() ([]byte, []int)

Deprecated: Use InitializeReply.ProtoReflect.Descriptor instead.

func (*InitializeReply) GetErr added in v0.1.12 

func (x *InitializeReply) GetErr() *ProtoError

func (*InitializeReply) ProtoMessage added in v0.1.12 

func (*InitializeReply) ProtoMessage()

func (*InitializeReply) ProtoReflect added in v0.2.0 

func (x *InitializeReply) ProtoReflect() protoreflect.Message

func (*InitializeReply) Reset added in v0.1.12 

func (x *InitializeReply) Reset()

func (*InitializeReply) String added in v0.1.12 

func (x *InitializeReply) String() string

type InvalidateKeyArgs 

type InvalidateKeyArgs struct {
	Key string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
	// contains filtered or unexported fields
}

func (*InvalidateKeyArgs) Descriptor deprecated 

func (*InvalidateKeyArgs) Descriptor() ([]byte, []int)

Deprecated: Use InvalidateKeyArgs.ProtoReflect.Descriptor instead.

func (*InvalidateKeyArgs) GetKey 

func (x *InvalidateKeyArgs) GetKey() string

func (*InvalidateKeyArgs) ProtoMessage 

func (*InvalidateKeyArgs) ProtoMessage()

func (*InvalidateKeyArgs) ProtoReflect added in v0.2.0 

func (x *InvalidateKeyArgs) ProtoReflect() protoreflect.Message

func (*InvalidateKeyArgs) Reset 

func (x *InvalidateKeyArgs) Reset()

func (*InvalidateKeyArgs) String 

func (x *InvalidateKeyArgs) String() string

type LeaseOptions 

type LeaseOptions struct {
	TTL       int64                  `protobuf:"varint,1,opt,name=TTL,proto3" json:"TTL,omitempty"`
	Renewable bool                   `protobuf:"varint,2,opt,name=renewable,proto3" json:"renewable,omitempty"`
	Increment int64                  `protobuf:"varint,3,opt,name=increment,proto3" json:"increment,omitempty"`
	IssueTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=issue_time,json=issueTime,proto3" json:"issue_time,omitempty"`
	MaxTTL    int64                  `protobuf:"varint,5,opt,name=MaxTTL,proto3" json:"MaxTTL,omitempty"`
	// contains filtered or unexported fields
}

func LogicalLeaseOptionsToProtoLeaseOptions 

func LogicalLeaseOptionsToProtoLeaseOptions(l logical.LeaseOptions) (*LeaseOptions, error)

func (*LeaseOptions) Descriptor deprecated 

func (*LeaseOptions) Descriptor() ([]byte, []int)

Deprecated: Use LeaseOptions.ProtoReflect.Descriptor instead.

func (*LeaseOptions) GetIncrement 

func (x *LeaseOptions) GetIncrement() int64

func (*LeaseOptions) GetIssueTime 

func (x *LeaseOptions) GetIssueTime() *timestamppb.Timestamp

func (*LeaseOptions) GetMaxTTL 

func (x *LeaseOptions) GetMaxTTL() int64

func (*LeaseOptions) GetRenewable 

func (x *LeaseOptions) GetRenewable() bool

func (*LeaseOptions) GetTTL 

func (x *LeaseOptions) GetTTL() int64

func (*LeaseOptions) ProtoMessage 

func (*LeaseOptions) ProtoMessage()

func (*LeaseOptions) ProtoReflect added in v0.2.0 

func (x *LeaseOptions) ProtoReflect() protoreflect.Message

func (*LeaseOptions) Reset 

func (x *LeaseOptions) Reset()

func (*LeaseOptions) String 

func (x *LeaseOptions) String() string

type LocalMountReply 

type LocalMountReply struct {
	Local bool `protobuf:"varint,1,opt,name=local,proto3" json:"local,omitempty"`
	// contains filtered or unexported fields
}

func (*LocalMountReply) Descriptor deprecated 

func (*LocalMountReply) Descriptor() ([]byte, []int)

Deprecated: Use LocalMountReply.ProtoReflect.Descriptor instead.

func (*LocalMountReply) GetLocal 

func (x *LocalMountReply) GetLocal() bool

func (*LocalMountReply) ProtoMessage 

func (*LocalMountReply) ProtoMessage()

func (*LocalMountReply) ProtoReflect added in v0.2.0 

func (x *LocalMountReply) ProtoReflect() protoreflect.Message

func (*LocalMountReply) Reset 

func (x *LocalMountReply) Reset()

func (*LocalMountReply) String 

func (x *LocalMountReply) String() string

type MlockEnabledReply 

type MlockEnabledReply struct {
	Enabled bool `protobuf:"varint,1,opt,name=enabled,proto3" json:"enabled,omitempty"`
	// contains filtered or unexported fields
}

func (*MlockEnabledReply) Descriptor deprecated 

func (*MlockEnabledReply) Descriptor() ([]byte, []int)

Deprecated: Use MlockEnabledReply.ProtoReflect.Descriptor instead.

func (*MlockEnabledReply) GetEnabled 

func (x *MlockEnabledReply) GetEnabled() bool

func (*MlockEnabledReply) ProtoMessage 

func (*MlockEnabledReply) ProtoMessage()

func (*MlockEnabledReply) ProtoReflect added in v0.2.0 

func (x *MlockEnabledReply) ProtoReflect() protoreflect.Message

func (*MlockEnabledReply) Reset 

func (x *MlockEnabledReply) Reset()

func (*MlockEnabledReply) String 

func (x *MlockEnabledReply) String() string

type Paths 

type Paths struct {

	// Root are the paths that require a root token to access
	Root []string `protobuf:"bytes,1,rep,name=root,proto3" json:"root,omitempty"`
	// Unauthenticated are the paths that can be accessed without any auth.
	Unauthenticated []string `protobuf:"bytes,2,rep,name=unauthenticated,proto3" json:"unauthenticated,omitempty"`
	// LocalStorage are paths (prefixes) that are local to this instance; this
	// indicates that these paths should not be replicated
	LocalStorage []string `protobuf:"bytes,3,rep,name=local_storage,json=localStorage,proto3" json:"local_storage,omitempty"`
	// SealWrapStorage are storage paths that, when using a capable seal,
	// should be seal wrapped with extra encryption. It is exact matching
	// unless it ends with '/' in which case it will be treated as a prefix.
	SealWrapStorage []string `protobuf:"bytes,4,rep,name=seal_wrap_storage,json=sealWrapStorage,proto3" json:"seal_wrap_storage,omitempty"`
	// WriteForwardedStorage are storage paths that, when running on a PR
	// Secondary cluster, cause a GRPC call up to the PR Primary cluster's
	// active node to handle storage.Put(...) and storage.Delete(...) events.
	//
	// See extended note in /sdk/logical/logical.go.
	WriteForwardedStorage []string `` /* 126-byte string literal not displayed */
	// Binary are paths whose request bodies are binary, not JSON
	//
	// See note in /sdk/logical/logical.go.
	Binary []string `protobuf:"bytes,6,rep,name=binary,proto3" json:"binary,omitempty"`
	// Limited paths are storage paths that require special-case request limiting.
	//
	// See note in /sdk/logical/logical.go.
	Limited []string `protobuf:"bytes,7,rep,name=limited,proto3" json:"limited,omitempty"`
	// contains filtered or unexported fields
}

Paths is the structure of special paths that is used for SpecialPaths.

func (*Paths) Descriptor deprecated 

func (*Paths) Descriptor() ([]byte, []int)

Deprecated: Use Paths.ProtoReflect.Descriptor instead.

func (*Paths) GetBinary added in v0.11.0 

func (x *Paths) GetBinary() []string

func (*Paths) GetLimited added in v0.11.0 

func (x *Paths) GetLimited() []string

func (*Paths) GetLocalStorage 

func (x *Paths) GetLocalStorage() []string

func (*Paths) GetRoot 

func (x *Paths) GetRoot() []string

func (*Paths) GetSealWrapStorage 

func (x *Paths) GetSealWrapStorage() []string

func (*Paths) GetUnauthenticated 

func (x *Paths) GetUnauthenticated() []string

func (*Paths) GetWriteForwardedStorage added in v0.8.0 

func (x *Paths) GetWriteForwardedStorage() []string

func (*Paths) ProtoMessage 

func (*Paths) ProtoMessage()

func (*Paths) ProtoReflect added in v0.2.0 

func (x *Paths) ProtoReflect() protoreflect.Message

func (*Paths) Reset 

func (x *Paths) Reset()

func (*Paths) String 

func (x *Paths) String() string

type PluginEnvReply 

type PluginEnvReply struct {
	PluginEnvironment *logical.PluginEnvironment `protobuf:"bytes,1,opt,name=plugin_environment,json=pluginEnvironment,proto3" json:"plugin_environment,omitempty"`
	Err               string                     `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*PluginEnvReply) Descriptor deprecated 

func (*PluginEnvReply) Descriptor() ([]byte, []int)

Deprecated: Use PluginEnvReply.ProtoReflect.Descriptor instead.

func (*PluginEnvReply) GetErr 

func (x *PluginEnvReply) GetErr() string

func (*PluginEnvReply) GetPluginEnvironment 

func (x *PluginEnvReply) GetPluginEnvironment() *logical.PluginEnvironment

func (*PluginEnvReply) ProtoMessage 

func (*PluginEnvReply) ProtoMessage()

func (*PluginEnvReply) ProtoReflect added in v0.2.0 

func (x *PluginEnvReply) ProtoReflect() protoreflect.Message

func (*PluginEnvReply) Reset 

func (x *PluginEnvReply) Reset()

func (*PluginEnvReply) String 

func (x *PluginEnvReply) String() string

type ProtoError 

type ProtoError struct {

	// Error type can be one of:
	// ErrTypeUnknown uint32 = iota
	// ErrTypeUserError
	// ErrTypeInternalError
	// ErrTypeCodedError
	// ErrTypeStatusBadRequest
	// ErrTypeUnsupportedOperation
	// ErrTypeUnsupportedPath
	// ErrTypeInvalidRequest
	// ErrTypePermissionDenied
	// ErrTypeMultiAuthzPending
	// ErrTypeUnrecoverable
	ErrType uint32 `protobuf:"varint,1,opt,name=err_type,json=errType,proto3" json:"err_type,omitempty"`
	ErrMsg  string `protobuf:"bytes,2,opt,name=err_msg,json=errMsg,proto3" json:"err_msg,omitempty"`
	ErrCode int64  `protobuf:"varint,3,opt,name=err_code,json=errCode,proto3" json:"err_code,omitempty"`
	// contains filtered or unexported fields
}

func ErrToProtoErr 

func ErrToProtoErr(e error) *ProtoError

func (*ProtoError) Descriptor deprecated 

func (*ProtoError) Descriptor() ([]byte, []int)

Deprecated: Use ProtoError.ProtoReflect.Descriptor instead.

func (*ProtoError) GetErrCode 

func (x *ProtoError) GetErrCode() int64

func (*ProtoError) GetErrMsg 

func (x *ProtoError) GetErrMsg() string

func (*ProtoError) GetErrType 

func (x *ProtoError) GetErrType() uint32

func (*ProtoError) ProtoMessage 

func (*ProtoError) ProtoMessage()

func (*ProtoError) ProtoReflect added in v0.2.0 

func (x *ProtoError) ProtoReflect() protoreflect.Message

func (*ProtoError) Reset 

func (x *ProtoError) Reset()

func (*ProtoError) String 

func (x *ProtoError) String() string

type ReplicationStateReply 

type ReplicationStateReply struct {
	State int32 `protobuf:"varint,1,opt,name=state,proto3" json:"state,omitempty"`
	// contains filtered or unexported fields
}

func (*ReplicationStateReply) Descriptor deprecated 

func (*ReplicationStateReply) Descriptor() ([]byte, []int)

Deprecated: Use ReplicationStateReply.ProtoReflect.Descriptor instead.

func (*ReplicationStateReply) GetState 

func (x *ReplicationStateReply) GetState() int32

func (*ReplicationStateReply) ProtoMessage 

func (*ReplicationStateReply) ProtoMessage()

func (*ReplicationStateReply) ProtoReflect added in v0.2.0 

func (x *ReplicationStateReply) ProtoReflect() protoreflect.Message

func (*ReplicationStateReply) Reset 

func (x *ReplicationStateReply) Reset()

func (*ReplicationStateReply) String 

func (x *ReplicationStateReply) String() string

type Request 

type Request struct {

	// ID is the uuid associated with each request
	ID string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// If set, the name given to the replication secondary where this request
	// originated
	ReplicationCluster string `protobuf:"bytes,2,opt,name=ReplicationCluster,proto3" json:"ReplicationCluster,omitempty"`
	// Operation is the requested operation type
	Operation string `protobuf:"bytes,3,opt,name=operation,proto3" json:"operation,omitempty"`
	// Path is the part of the request path not consumed by the
	// routing. As an example, if the original request path is "prod/aws/foo"
	// and the AWS logical backend is mounted at "prod/aws/", then the
	// final path is "foo" since the mount prefix is trimmed.
	Path string `protobuf:"bytes,4,opt,name=path,proto3" json:"path,omitempty"`
	// Request data is a JSON object that must have keys with string type.
	Data string `protobuf:"bytes,5,opt,name=data,proto3" json:"data,omitempty"`
	// Secret will be non-nil only for Revoke and Renew operations
	// to represent the secret that was returned prior.
	Secret *Secret `protobuf:"bytes,6,opt,name=secret,proto3" json:"secret,omitempty"`
	// Auth will be non-nil only for Renew operations
	// to represent the auth that was returned prior.
	Auth *Auth `protobuf:"bytes,7,opt,name=auth,proto3" json:"auth,omitempty"`
	// Headers will contain the http headers from the request. This value will
	// be used in the audit broker to ensure we are auditing only the allowed
	// headers.
	Headers map[string]*Header `` /* 155-byte string literal not displayed */
	// ClientToken is provided to the core so that the identity
	// can be verified and ACLs applied. This value is passed
	// through to the logical backends but after being salted and
	// hashed.
	ClientToken string `protobuf:"bytes,9,opt,name=client_token,json=clientToken,proto3" json:"client_token,omitempty"`
	// ClientTokenAccessor is provided to the core so that the it can get
	// logged as part of request audit logging.
	ClientTokenAccessor string `protobuf:"bytes,10,opt,name=client_token_accessor,json=clientTokenAccessor,proto3" json:"client_token_accessor,omitempty"`
	// DisplayName is provided to the logical backend to help associate
	// dynamic secrets with the source entity. This is not a sensitive
	// name, but is useful for operators.
	DisplayName string `protobuf:"bytes,11,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
	// MountPoint is provided so that a logical backend can generate
	// paths relative to itself. The `Path` is effectively the client
	// request path with the MountPoint trimmed off.
	MountPoint string `protobuf:"bytes,12,opt,name=mount_point,json=mountPoint,proto3" json:"mount_point,omitempty"`
	// MountType is provided so that a logical backend can make decisions
	// based on the specific mount type (e.g., if a mount type has different
	// aliases, generating different defaults depending on the alias)
	MountType string `protobuf:"bytes,13,opt,name=mount_type,json=mountType,proto3" json:"mount_type,omitempty"`
	// MountAccessor is provided so that identities returned by the authentication
	// backends can be tied to the mount it belongs to.
	MountAccessor string `protobuf:"bytes,14,opt,name=mount_accessor,json=mountAccessor,proto3" json:"mount_accessor,omitempty"`
	// WrapInfo contains requested response wrapping parameters
	WrapInfo *RequestWrapInfo `protobuf:"bytes,15,opt,name=wrap_info,json=wrapInfo,proto3" json:"wrap_info,omitempty"`
	// ClientTokenRemainingUses represents the allowed number of uses left on the
	// token supplied
	ClientTokenRemainingUses int64 `` /* 139-byte string literal not displayed */
	// EntityID is the identity of the caller extracted out of the token used
	// to make this request
	EntityID string `protobuf:"bytes,17,opt,name=entity_id,json=entityId,proto3" json:"entity_id,omitempty"`
	// PolicyOverride indicates that the requestor wishes to override
	// soft-mandatory Sentinel policies
	PolicyOverride bool `protobuf:"varint,18,opt,name=policy_override,json=policyOverride,proto3" json:"policy_override,omitempty"`
	// Whether the request is unauthenticated, as in, had no client token
	// attached. Useful in some situations where the client token is not made
	// accessible.
	Unauthenticated bool `protobuf:"varint,19,opt,name=unauthenticated,proto3" json:"unauthenticated,omitempty"`
	// Connection will be non-nil only for credential providers to
	// inspect the connection information and potentially use it for
	// authentication/protection.
	Connection *Connection `protobuf:"bytes,20,opt,name=connection,proto3" json:"connection,omitempty"`
	// contains filtered or unexported fields
}

func LogicalRequestToProtoRequest 

func LogicalRequestToProtoRequest(r *logical.Request) (*Request, error)

func (*Request) Descriptor deprecated 

func (*Request) Descriptor() ([]byte, []int)

Deprecated: Use Request.ProtoReflect.Descriptor instead.

func (*Request) GetAuth 

func (x *Request) GetAuth() *Auth

func (*Request) GetClientToken 

func (x *Request) GetClientToken() string

func (*Request) GetClientTokenAccessor 

func (x *Request) GetClientTokenAccessor() string

func (*Request) GetClientTokenRemainingUses 

func (x *Request) GetClientTokenRemainingUses() int64

func (*Request) GetConnection 

func (x *Request) GetConnection() *Connection

func (*Request) GetData 

func (x *Request) GetData() string

func (*Request) GetDisplayName 

func (x *Request) GetDisplayName() string

func (*Request) GetEntityID 

func (x *Request) GetEntityID() string

func (*Request) GetHeaders 

func (x *Request) GetHeaders() map[string]*Header

func (*Request) GetID 

func (x *Request) GetID() string

func (*Request) GetMountAccessor 

func (x *Request) GetMountAccessor() string

func (*Request) GetMountPoint 

func (x *Request) GetMountPoint() string

func (*Request) GetMountType 

func (x *Request) GetMountType() string

func (*Request) GetOperation 

func (x *Request) GetOperation() string

func (*Request) GetPath 

func (x *Request) GetPath() string

func (*Request) GetPolicyOverride 

func (x *Request) GetPolicyOverride() bool

func (*Request) GetReplicationCluster 

func (x *Request) GetReplicationCluster() string

func (*Request) GetSecret 

func (x *Request) GetSecret() *Secret

func (*Request) GetUnauthenticated 

func (x *Request) GetUnauthenticated() bool

func (*Request) GetWrapInfo 

func (x *Request) GetWrapInfo() *RequestWrapInfo

func (*Request) ProtoMessage 

func (*Request) ProtoMessage()

func (*Request) ProtoReflect added in v0.2.0 

func (x *Request) ProtoReflect() protoreflect.Message

func (*Request) Reset 

func (x *Request) Reset()

func (*Request) String 

func (x *Request) String() string

type RequestWrapInfo 

type RequestWrapInfo struct {

	// Setting to non-zero specifies that the response should be wrapped.
	// Specifies the desired TTL of the wrapping token.
	TTL int64 `protobuf:"varint,1,opt,name=TTL,proto3" json:"TTL,omitempty"`
	// The format to use for the wrapped response; if not specified it's a bare
	// token
	Format string `protobuf:"bytes,2,opt,name=format,proto3" json:"format,omitempty"`
	// A flag to conforming backends that data for a given request should be
	// seal wrapped
	SealWrap bool `protobuf:"varint,3,opt,name=seal_wrap,json=sealWrap,proto3" json:"seal_wrap,omitempty"`
	// contains filtered or unexported fields
}

func LogicalRequestWrapInfoToProtoRequestWrapInfo 

func LogicalRequestWrapInfoToProtoRequestWrapInfo(i *logical.RequestWrapInfo) *RequestWrapInfo

func (*RequestWrapInfo) Descriptor deprecated 

func (*RequestWrapInfo) Descriptor() ([]byte, []int)

Deprecated: Use RequestWrapInfo.ProtoReflect.Descriptor instead.

func (*RequestWrapInfo) GetFormat 

func (x *RequestWrapInfo) GetFormat() string

func (*RequestWrapInfo) GetSealWrap 

func (x *RequestWrapInfo) GetSealWrap() bool

func (*RequestWrapInfo) GetTTL 

func (x *RequestWrapInfo) GetTTL() int64

func (*RequestWrapInfo) ProtoMessage 

func (*RequestWrapInfo) ProtoMessage()

func (*RequestWrapInfo) ProtoReflect added in v0.2.0 

func (x *RequestWrapInfo) ProtoReflect() protoreflect.Message

func (*RequestWrapInfo) Reset 

func (x *RequestWrapInfo) Reset()

func (*RequestWrapInfo) String 

func (x *RequestWrapInfo) String() string

type Response 

type Response struct {

	// Secret, if not nil, denotes that this response represents a secret.
	Secret *Secret `protobuf:"bytes,1,opt,name=secret,proto3" json:"secret,omitempty"`
	// Auth, if not nil, contains the authentication information for
	// this response. This is only checked and means something for
	// credential backends.
	Auth *Auth `protobuf:"bytes,2,opt,name=auth,proto3" json:"auth,omitempty"`
	// Response data is a JSON object that must have string keys. For
	// secrets, this data is sent down to the user as-is. To store internal
	// data that you don't want the user to see, store it in
	// Secret.InternalData.
	Data string `protobuf:"bytes,3,opt,name=data,proto3" json:"data,omitempty"`
	// Redirect is an HTTP URL to redirect to for further authentication.
	// This is only valid for credential backends. This will be blanked
	// for any logical backend and ignored.
	Redirect string `protobuf:"bytes,4,opt,name=redirect,proto3" json:"redirect,omitempty"`
	// Warnings allow operations or backends to return warnings in response
	// to user actions without failing the action outright.
	Warnings []string `protobuf:"bytes,5,rep,name=warnings,proto3" json:"warnings,omitempty"`
	// Information for wrapping the response in a cubbyhole
	WrapInfo *ResponseWrapInfo `protobuf:"bytes,6,opt,name=wrap_info,json=wrapInfo,proto3" json:"wrap_info,omitempty"`
	// Headers will contain the http headers from the response. This value will
	// be used in the audit broker to ensure we are auditing only the allowed
	// headers.
	Headers map[string]*Header `` /* 155-byte string literal not displayed */
	// MountType, if non-empty, provides some information about what kind
	// of mount this secret came from.
	MountType string `protobuf:"bytes,8,opt,name=mount_type,json=mountType,proto3" json:"mount_type,omitempty"`
	// contains filtered or unexported fields
}

func LogicalResponseToProtoResponse 

func LogicalResponseToProtoResponse(r *logical.Response) (*Response, error)

func (*Response) Descriptor deprecated 

func (*Response) Descriptor() ([]byte, []int)

Deprecated: Use Response.ProtoReflect.Descriptor instead.

func (*Response) GetAuth 

func (x *Response) GetAuth() *Auth

func (*Response) GetData 

func (x *Response) GetData() string

func (*Response) GetHeaders 

func (x *Response) GetHeaders() map[string]*Header

func (*Response) GetMountType added in v0.10.1 

func (x *Response) GetMountType() string

func (*Response) GetRedirect 

func (x *Response) GetRedirect() string

func (*Response) GetSecret 

func (x *Response) GetSecret() *Secret

func (*Response) GetWarnings 

func (x *Response) GetWarnings() []string

func (*Response) GetWrapInfo 

func (x *Response) GetWrapInfo() *ResponseWrapInfo

func (*Response) ProtoMessage 

func (*Response) ProtoMessage()

func (*Response) ProtoReflect added in v0.2.0 

func (x *Response) ProtoReflect() protoreflect.Message

func (*Response) Reset 

func (x *Response) Reset()

func (*Response) String 

func (x *Response) String() string

type ResponseWrapDataArgs 

type ResponseWrapDataArgs struct {
	Data string `protobuf:"bytes,1,opt,name=data,proto3" json:"data,omitempty"`
	TTL  int64  `protobuf:"varint,2,opt,name=TTL,proto3" json:"TTL,omitempty"`
	JWT  bool   `protobuf:"varint,3,opt,name=JWT,proto3" json:"JWT,omitempty"`
	// contains filtered or unexported fields
}

func (*ResponseWrapDataArgs) Descriptor deprecated 

func (*ResponseWrapDataArgs) Descriptor() ([]byte, []int)

Deprecated: Use ResponseWrapDataArgs.ProtoReflect.Descriptor instead.

func (*ResponseWrapDataArgs) GetData 

func (x *ResponseWrapDataArgs) GetData() string

func (*ResponseWrapDataArgs) GetJWT 

func (x *ResponseWrapDataArgs) GetJWT() bool

func (*ResponseWrapDataArgs) GetTTL 

func (x *ResponseWrapDataArgs) GetTTL() int64

func (*ResponseWrapDataArgs) ProtoMessage 

func (*ResponseWrapDataArgs) ProtoMessage()

func (*ResponseWrapDataArgs) ProtoReflect added in v0.2.0 

func (x *ResponseWrapDataArgs) ProtoReflect() protoreflect.Message

func (*ResponseWrapDataArgs) Reset 

func (x *ResponseWrapDataArgs) Reset()

func (*ResponseWrapDataArgs) String 

func (x *ResponseWrapDataArgs) String() string

type ResponseWrapDataReply 

type ResponseWrapDataReply struct {
	WrapInfo *ResponseWrapInfo `protobuf:"bytes,1,opt,name=wrap_info,json=wrapInfo,proto3" json:"wrap_info,omitempty"`
	Err      string            `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*ResponseWrapDataReply) Descriptor deprecated 

func (*ResponseWrapDataReply) Descriptor() ([]byte, []int)

Deprecated: Use ResponseWrapDataReply.ProtoReflect.Descriptor instead.

func (*ResponseWrapDataReply) GetErr 

func (x *ResponseWrapDataReply) GetErr() string

func (*ResponseWrapDataReply) GetWrapInfo 

func (x *ResponseWrapDataReply) GetWrapInfo() *ResponseWrapInfo

func (*ResponseWrapDataReply) ProtoMessage 

func (*ResponseWrapDataReply) ProtoMessage()

func (*ResponseWrapDataReply) ProtoReflect added in v0.2.0 

func (x *ResponseWrapDataReply) ProtoReflect() protoreflect.Message

func (*ResponseWrapDataReply) Reset 

func (x *ResponseWrapDataReply) Reset()

func (*ResponseWrapDataReply) String 

func (x *ResponseWrapDataReply) String() string

type ResponseWrapInfo 

type ResponseWrapInfo struct {

	// Setting to non-zero specifies that the response should be wrapped.
	// Specifies the desired TTL of the wrapping token.
	TTL int64 `protobuf:"varint,1,opt,name=TTL,proto3" json:"TTL,omitempty"`
	// The token containing the wrapped response
	Token string `protobuf:"bytes,2,opt,name=token,proto3" json:"token,omitempty"`
	// The token accessor for the wrapped response token
	Accessor string `protobuf:"bytes,3,opt,name=accessor,proto3" json:"accessor,omitempty"`
	// The creation time. This can be used with the TTL to figure out an
	// expected expiration.
	CreationTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=creation_time,json=creationTime,proto3" json:"creation_time,omitempty"`
	// If the contained response is the output of a token creation call, the
	// created token's accessor will be accessible here
	WrappedAccessor string `protobuf:"bytes,5,opt,name=wrapped_accessor,json=wrappedAccessor,proto3" json:"wrapped_accessor,omitempty"`
	// WrappedEntityID is the entity identifier of the caller who initiated the
	// wrapping request
	WrappedEntityID string `protobuf:"bytes,6,opt,name=wrapped_entity_id,json=wrappedEntityID,proto3" json:"wrapped_entity_id,omitempty"`
	// The format to use. This doesn't get returned, it's only internal.
	Format string `protobuf:"bytes,7,opt,name=format,proto3" json:"format,omitempty"`
	// CreationPath is the original request path that was used to create
	// the wrapped response.
	CreationPath string `protobuf:"bytes,8,opt,name=creation_path,json=creationPath,proto3" json:"creation_path,omitempty"`
	// Controls seal wrapping behavior downstream for specific use cases
	SealWrap bool `protobuf:"varint,9,opt,name=seal_wrap,json=sealWrap,proto3" json:"seal_wrap,omitempty"`
	// contains filtered or unexported fields
}

func LogicalResponseWrapInfoToProtoResponseWrapInfo 

func LogicalResponseWrapInfoToProtoResponseWrapInfo(i *wrapping.ResponseWrapInfo) (*ResponseWrapInfo, error)

func (*ResponseWrapInfo) Descriptor deprecated 

func (*ResponseWrapInfo) Descriptor() ([]byte, []int)

Deprecated: Use ResponseWrapInfo.ProtoReflect.Descriptor instead.

func (*ResponseWrapInfo) GetAccessor 

func (x *ResponseWrapInfo) GetAccessor() string

func (*ResponseWrapInfo) GetCreationPath 

func (x *ResponseWrapInfo) GetCreationPath() string

func (*ResponseWrapInfo) GetCreationTime 

func (x *ResponseWrapInfo) GetCreationTime() *timestamppb.Timestamp

func (*ResponseWrapInfo) GetFormat 

func (x *ResponseWrapInfo) GetFormat() string

func (*ResponseWrapInfo) GetSealWrap 

func (x *ResponseWrapInfo) GetSealWrap() bool

func (*ResponseWrapInfo) GetTTL 

func (x *ResponseWrapInfo) GetTTL() int64

func (*ResponseWrapInfo) GetToken 

func (x *ResponseWrapInfo) GetToken() string

func (*ResponseWrapInfo) GetWrappedAccessor 

func (x *ResponseWrapInfo) GetWrappedAccessor() string

func (*ResponseWrapInfo) GetWrappedEntityID 

func (x *ResponseWrapInfo) GetWrappedEntityID() string

func (*ResponseWrapInfo) ProtoMessage 

func (*ResponseWrapInfo) ProtoMessage()

func (*ResponseWrapInfo) ProtoReflect added in v0.2.0 

func (x *ResponseWrapInfo) ProtoReflect() protoreflect.Message

func (*ResponseWrapInfo) Reset 

func (x *ResponseWrapInfo) Reset()

func (*ResponseWrapInfo) String 

func (x *ResponseWrapInfo) String() string

type Secret 

type Secret struct {
	LeaseOptions *LeaseOptions `protobuf:"bytes,1,opt,name=lease_options,json=leaseOptions,proto3" json:"lease_options,omitempty"`
	// InternalData is a JSON object that is stored with the secret.
	// This will be sent back during a Renew/Revoke for storing internal data
	// used for those operations.
	InternalData string `protobuf:"bytes,2,opt,name=internal_data,json=internalData,proto3" json:"internal_data,omitempty"`
	// LeaseID is the ID returned to the user to manage this secret.
	// This is generated by Vault core. Any set value will be ignored.
	// For requests, this will always be blank.
	LeaseID string `protobuf:"bytes,3,opt,name=lease_id,json=leaseId,proto3" json:"lease_id,omitempty"`
	// contains filtered or unexported fields
}

func LogicalSecretToProtoSecret 

func LogicalSecretToProtoSecret(s *logical.Secret) (*Secret, error)

func (*Secret) Descriptor deprecated 

func (*Secret) Descriptor() ([]byte, []int)

Deprecated: Use Secret.ProtoReflect.Descriptor instead.

func (*Secret) GetInternalData 

func (x *Secret) GetInternalData() string

func (*Secret) GetLeaseID 

func (x *Secret) GetLeaseID() string

func (*Secret) GetLeaseOptions 

func (x *Secret) GetLeaseOptions() *LeaseOptions

func (*Secret) ProtoMessage 

func (*Secret) ProtoMessage()

func (*Secret) ProtoReflect added in v0.2.0 

func (x *Secret) ProtoReflect() protoreflect.Message

func (*Secret) Reset 

func (x *Secret) Reset()

func (*Secret) String 

func (x *Secret) String() string

type SendEventRequest added in v0.8.0 

type SendEventRequest struct {
	EventType string             `protobuf:"bytes,1,opt,name=event_type,json=eventType,proto3" json:"event_type,omitempty"`
	Event     *logical.EventData `protobuf:"bytes,2,opt,name=event,proto3" json:"event,omitempty"`
	// contains filtered or unexported fields
}

func (*SendEventRequest) Descriptor deprecated added in v0.8.0 

func (*SendEventRequest) Descriptor() ([]byte, []int)

Deprecated: Use SendEventRequest.ProtoReflect.Descriptor instead.

func (*SendEventRequest) GetEvent added in v0.8.0 

func (x *SendEventRequest) GetEvent() *logical.EventData

func (*SendEventRequest) GetEventType added in v0.8.0 

func (x *SendEventRequest) GetEventType() string

func (*SendEventRequest) ProtoMessage added in v0.8.0 

func (*SendEventRequest) ProtoMessage()

func (*SendEventRequest) ProtoReflect added in v0.8.0 

func (x *SendEventRequest) ProtoReflect() protoreflect.Message

func (*SendEventRequest) Reset added in v0.8.0 

func (x *SendEventRequest) Reset()

func (*SendEventRequest) String added in v0.8.0 

func (x *SendEventRequest) String() string

type SetupArgs 

type SetupArgs struct {
	BrokerID    uint32            `protobuf:"varint,1,opt,name=broker_id,json=brokerId,proto3" json:"broker_id,omitempty"`
	Config      map[string]string `` /* 153-byte string literal not displayed */
	BackendUUID string            `protobuf:"bytes,3,opt,name=backendUUID,proto3" json:"backendUUID,omitempty"`
	// contains filtered or unexported fields
}

SetupArgs is the args for Setup method.

func (*SetupArgs) Descriptor deprecated 

func (*SetupArgs) Descriptor() ([]byte, []int)

Deprecated: Use SetupArgs.ProtoReflect.Descriptor instead.

func (*SetupArgs) GetBackendUUID 

func (x *SetupArgs) GetBackendUUID() string

func (*SetupArgs) GetBrokerID 

func (x *SetupArgs) GetBrokerID() uint32

func (*SetupArgs) GetConfig 

func (x *SetupArgs) GetConfig() map[string]string

func (*SetupArgs) ProtoMessage 

func (*SetupArgs) ProtoMessage()

func (*SetupArgs) ProtoReflect added in v0.2.0 

func (x *SetupArgs) ProtoReflect() protoreflect.Message

func (*SetupArgs) Reset 

func (x *SetupArgs) Reset()

func (*SetupArgs) String 

func (x *SetupArgs) String() string

type SetupReply 

type SetupReply struct {
	Err string `protobuf:"bytes,1,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

SetupReply is the reply for Setup method.

func (*SetupReply) Descriptor deprecated 

func (*SetupReply) Descriptor() ([]byte, []int)

Deprecated: Use SetupReply.ProtoReflect.Descriptor instead.

func (*SetupReply) GetErr 

func (x *SetupReply) GetErr() string

func (*SetupReply) ProtoMessage 

func (*SetupReply) ProtoMessage()

func (*SetupReply) ProtoReflect added in v0.2.0 

func (x *SetupReply) ProtoReflect() protoreflect.Message

func (*SetupReply) Reset 

func (x *SetupReply) Reset()

func (*SetupReply) String 

func (x *SetupReply) String() string

type SpecialPathsReply 

type SpecialPathsReply struct {
	Paths *Paths `protobuf:"bytes,1,opt,name=paths,proto3" json:"paths,omitempty"`
	// contains filtered or unexported fields
}

SpecialPathsReply is the reply for SpecialPaths method.

func (*SpecialPathsReply) Descriptor deprecated 

func (*SpecialPathsReply) Descriptor() ([]byte, []int)

Deprecated: Use SpecialPathsReply.ProtoReflect.Descriptor instead.

func (*SpecialPathsReply) GetPaths 

func (x *SpecialPathsReply) GetPaths() *Paths

func (*SpecialPathsReply) ProtoMessage 

func (*SpecialPathsReply) ProtoMessage()

func (*SpecialPathsReply) ProtoReflect added in v0.2.0 

func (x *SpecialPathsReply) ProtoReflect() protoreflect.Message

func (*SpecialPathsReply) Reset 

func (x *SpecialPathsReply) Reset()

func (*SpecialPathsReply) String 

func (x *SpecialPathsReply) String() string

type StorageClient 

type StorageClient interface {
	List(ctx context.Context, in *StorageListArgs, opts ...grpc.CallOption) (*StorageListReply, error)
	Get(ctx context.Context, in *StorageGetArgs, opts ...grpc.CallOption) (*StorageGetReply, error)
	Put(ctx context.Context, in *StoragePutArgs, opts ...grpc.CallOption) (*StoragePutReply, error)
	Delete(ctx context.Context, in *StorageDeleteArgs, opts ...grpc.CallOption) (*StorageDeleteReply, error)
}

StorageClient is the client API for Storage service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

Storage is the way that plugins are able read/write data. Plugins should implement the client for this service.

func NewStorageClient 

func NewStorageClient(cc grpc.ClientConnInterface) StorageClient

type StorageDeleteArgs 

type StorageDeleteArgs struct {
	Key string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
	// contains filtered or unexported fields
}

func (*StorageDeleteArgs) Descriptor deprecated 

func (*StorageDeleteArgs) Descriptor() ([]byte, []int)

Deprecated: Use StorageDeleteArgs.ProtoReflect.Descriptor instead.

func (*StorageDeleteArgs) GetKey 

func (x *StorageDeleteArgs) GetKey() string

func (*StorageDeleteArgs) ProtoMessage 

func (*StorageDeleteArgs) ProtoMessage()

func (*StorageDeleteArgs) ProtoReflect added in v0.2.0 

func (x *StorageDeleteArgs) ProtoReflect() protoreflect.Message

func (*StorageDeleteArgs) Reset 

func (x *StorageDeleteArgs) Reset()

func (*StorageDeleteArgs) String 

func (x *StorageDeleteArgs) String() string

type StorageDeleteReply 

type StorageDeleteReply struct {
	Err string `protobuf:"bytes,1,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*StorageDeleteReply) Descriptor deprecated 

func (*StorageDeleteReply) Descriptor() ([]byte, []int)

Deprecated: Use StorageDeleteReply.ProtoReflect.Descriptor instead.

func (*StorageDeleteReply) GetErr 

func (x *StorageDeleteReply) GetErr() string

func (*StorageDeleteReply) ProtoMessage 

func (*StorageDeleteReply) ProtoMessage()

func (*StorageDeleteReply) ProtoReflect added in v0.2.0 

func (x *StorageDeleteReply) ProtoReflect() protoreflect.Message

func (*StorageDeleteReply) Reset 

func (x *StorageDeleteReply) Reset()

func (*StorageDeleteReply) String 

func (x *StorageDeleteReply) String() string

type StorageEntry 

type StorageEntry struct {
	Key      string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
	Value    []byte `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
	SealWrap bool   `protobuf:"varint,3,opt,name=seal_wrap,json=sealWrap,proto3" json:"seal_wrap,omitempty"`
	// contains filtered or unexported fields
}

func LogicalStorageEntryToProtoStorageEntry 

func LogicalStorageEntryToProtoStorageEntry(e *logical.StorageEntry) *StorageEntry

func (*StorageEntry) Descriptor deprecated 

func (*StorageEntry) Descriptor() ([]byte, []int)

Deprecated: Use StorageEntry.ProtoReflect.Descriptor instead.

func (*StorageEntry) GetKey 

func (x *StorageEntry) GetKey() string

func (*StorageEntry) GetSealWrap 

func (x *StorageEntry) GetSealWrap() bool

func (*StorageEntry) GetValue 

func (x *StorageEntry) GetValue() []byte

func (*StorageEntry) ProtoMessage 

func (*StorageEntry) ProtoMessage()

func (*StorageEntry) ProtoReflect added in v0.2.0 

func (x *StorageEntry) ProtoReflect() protoreflect.Message

func (*StorageEntry) Reset 

func (x *StorageEntry) Reset()

func (*StorageEntry) String 

func (x *StorageEntry) String() string

type StorageGetArgs 

type StorageGetArgs struct {
	Key string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"`
	// contains filtered or unexported fields
}

func (*StorageGetArgs) Descriptor deprecated 

func (*StorageGetArgs) Descriptor() ([]byte, []int)

Deprecated: Use StorageGetArgs.ProtoReflect.Descriptor instead.

func (*StorageGetArgs) GetKey 

func (x *StorageGetArgs) GetKey() string

func (*StorageGetArgs) ProtoMessage 

func (*StorageGetArgs) ProtoMessage()

func (*StorageGetArgs) ProtoReflect added in v0.2.0 

func (x *StorageGetArgs) ProtoReflect() protoreflect.Message

func (*StorageGetArgs) Reset 

func (x *StorageGetArgs) Reset()

func (*StorageGetArgs) String 

func (x *StorageGetArgs) String() string

type StorageGetReply 

type StorageGetReply struct {
	Entry *StorageEntry `protobuf:"bytes,1,opt,name=entry,proto3" json:"entry,omitempty"`
	Err   string        `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*StorageGetReply) Descriptor deprecated 

func (*StorageGetReply) Descriptor() ([]byte, []int)

Deprecated: Use StorageGetReply.ProtoReflect.Descriptor instead.

func (*StorageGetReply) GetEntry 

func (x *StorageGetReply) GetEntry() *StorageEntry

func (*StorageGetReply) GetErr 

func (x *StorageGetReply) GetErr() string

func (*StorageGetReply) ProtoMessage 

func (*StorageGetReply) ProtoMessage()

func (*StorageGetReply) ProtoReflect added in v0.2.0 

func (x *StorageGetReply) ProtoReflect() protoreflect.Message

func (*StorageGetReply) Reset 

func (x *StorageGetReply) Reset()

func (*StorageGetReply) String 

func (x *StorageGetReply) String() string

type StorageListArgs 

type StorageListArgs struct {
	Prefix string `protobuf:"bytes,1,opt,name=prefix,proto3" json:"prefix,omitempty"`
	// contains filtered or unexported fields
}

func (*StorageListArgs) Descriptor deprecated 

func (*StorageListArgs) Descriptor() ([]byte, []int)

Deprecated: Use StorageListArgs.ProtoReflect.Descriptor instead.

func (*StorageListArgs) GetPrefix 

func (x *StorageListArgs) GetPrefix() string

func (*StorageListArgs) ProtoMessage 

func (*StorageListArgs) ProtoMessage()

func (*StorageListArgs) ProtoReflect added in v0.2.0 

func (x *StorageListArgs) ProtoReflect() protoreflect.Message

func (*StorageListArgs) Reset 

func (x *StorageListArgs) Reset()

func (*StorageListArgs) String 

func (x *StorageListArgs) String() string

type StorageListReply 

type StorageListReply struct {
	Keys []string `protobuf:"bytes,1,rep,name=keys,proto3" json:"keys,omitempty"`
	Err  string   `protobuf:"bytes,2,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*StorageListReply) Descriptor deprecated 

func (*StorageListReply) Descriptor() ([]byte, []int)

Deprecated: Use StorageListReply.ProtoReflect.Descriptor instead.

func (*StorageListReply) GetErr 

func (x *StorageListReply) GetErr() string

func (*StorageListReply) GetKeys 

func (x *StorageListReply) GetKeys() []string

func (*StorageListReply) ProtoMessage 

func (*StorageListReply) ProtoMessage()

func (*StorageListReply) ProtoReflect added in v0.2.0 

func (x *StorageListReply) ProtoReflect() protoreflect.Message

func (*StorageListReply) Reset 

func (x *StorageListReply) Reset()

func (*StorageListReply) String 

func (x *StorageListReply) String() string

type StoragePutArgs 

type StoragePutArgs struct {
	Entry *StorageEntry `protobuf:"bytes,1,opt,name=entry,proto3" json:"entry,omitempty"`
	// contains filtered or unexported fields
}

func (*StoragePutArgs) Descriptor deprecated 

func (*StoragePutArgs) Descriptor() ([]byte, []int)

Deprecated: Use StoragePutArgs.ProtoReflect.Descriptor instead.

func (*StoragePutArgs) GetEntry 

func (x *StoragePutArgs) GetEntry() *StorageEntry

func (*StoragePutArgs) ProtoMessage 

func (*StoragePutArgs) ProtoMessage()

func (*StoragePutArgs) ProtoReflect added in v0.2.0 

func (x *StoragePutArgs) ProtoReflect() protoreflect.Message

func (*StoragePutArgs) Reset 

func (x *StoragePutArgs) Reset()

func (*StoragePutArgs) String 

func (x *StoragePutArgs) String() string

type StoragePutReply 

type StoragePutReply struct {
	Err string `protobuf:"bytes,1,opt,name=err,proto3" json:"err,omitempty"`
	// contains filtered or unexported fields
}

func (*StoragePutReply) Descriptor deprecated 

func (*StoragePutReply) Descriptor() ([]byte, []int)

Deprecated: Use StoragePutReply.ProtoReflect.Descriptor instead.

func (*StoragePutReply) GetErr 

func (x *StoragePutReply) GetErr() string

func (*StoragePutReply) ProtoMessage 

func (*StoragePutReply) ProtoMessage()

func (*StoragePutReply) ProtoReflect added in v0.2.0 

func (x *StoragePutReply) ProtoReflect() protoreflect.Message

func (*StoragePutReply) Reset 

func (x *StoragePutReply) Reset()

func (*StoragePutReply) String 

func (x *StoragePutReply) String() string

type StorageServer 

type StorageServer interface {
	List(context.Context, *StorageListArgs) (*StorageListReply, error)
	Get(context.Context, *StorageGetArgs) (*StorageGetReply, error)
	Put(context.Context, *StoragePutArgs) (*StoragePutReply, error)
	Delete(context.Context, *StorageDeleteArgs) (*StorageDeleteReply, error)
	// contains filtered or unexported methods
}

StorageServer is the server API for Storage service. All implementations must embed UnimplementedStorageServer for forward compatibility

Storage is the way that plugins are able read/write data. Plugins should implement the client for this service.

type SystemViewClient 

type SystemViewClient interface {
	// DefaultLeaseTTL returns the default lease TTL set in Vault configuration
	DefaultLeaseTTL(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*TTLReply, error)
	// MaxLeaseTTL returns the max lease TTL set in Vault configuration; backend
	// authors should take care not to issue credentials that last longer than
	// this value, as Vault will revoke them
	MaxLeaseTTL(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*TTLReply, error)
	// Tainted, returns true if the mount is tainted. A mount is tainted if it is in the
	// process of being unmounted. This should only be used in special
	// circumstances; a primary use-case is as a guard in revocation functions.
	// If revocation of a backend's leases fails it can keep the unmounting
	// process from being successful. If the reason for this failure is not
	// relevant when the mount is tainted (for instance, saving a CRL to disk
	// when the stored CRL will be removed during the unmounting process
	// anyways), we can ignore the errors to allow unmounting to complete.
	Tainted(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*TaintedReply, error)
	// CachingDisabled returns true if caching is disabled. If true, no caches
	// should be used, despite known slowdowns.
	CachingDisabled(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*CachingDisabledReply, error)
	// ReplicationState indicates the state of cluster replication
	ReplicationState(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*ReplicationStateReply, error)
	// ResponseWrapData wraps the given data in a cubbyhole and returns the
	// token used to unwrap.
	ResponseWrapData(ctx context.Context, in *ResponseWrapDataArgs, opts ...grpc.CallOption) (*ResponseWrapDataReply, error)
	// MlockEnabled returns the configuration setting for enabling mlock on
	// plugins.
	MlockEnabled(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*MlockEnabledReply, error)
	// LocalMount, when run from a system view attached to a request, indicates
	// whether the request is affecting a local mount or not
	LocalMount(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*LocalMountReply, error)
	// EntityInfo returns the basic entity information for the given entity id
	EntityInfo(ctx context.Context, in *EntityInfoArgs, opts ...grpc.CallOption) (*EntityInfoReply, error)
	// PluginEnv returns Vault environment information used by plugins
	PluginEnv(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*PluginEnvReply, error)
	// GroupsForEntity returns the group membership information for the given
	// entity id
	GroupsForEntity(ctx context.Context, in *EntityInfoArgs, opts ...grpc.CallOption) (*GroupsForEntityReply, error)
	// GeneratePasswordFromPolicy generates a password from an existing password policy
	GeneratePasswordFromPolicy(ctx context.Context, in *GeneratePasswordFromPolicyRequest, opts ...grpc.CallOption) (*GeneratePasswordFromPolicyReply, error)
	// ClusterInfo returns the ClusterID information; may be reused if ClusterName is also exposed.
	ClusterInfo(ctx context.Context, in *Empty, opts ...grpc.CallOption) (*ClusterInfoReply, error)
	// GenerateIdentityToken returns an identity token for the requesting plugin.
	GenerateIdentityToken(ctx context.Context, in *GenerateIdentityTokenRequest, opts ...grpc.CallOption) (*GenerateIdentityTokenResponse, error)
}

SystemViewClient is the client API for SystemView service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

SystemView exposes system configuration information in a safe way for plugins to consume. Plugins should implement the client for this service.

func NewSystemViewClient 

func NewSystemViewClient(cc grpc.ClientConnInterface) SystemViewClient

type SystemViewServer 

type SystemViewServer interface {
	// DefaultLeaseTTL returns the default lease TTL set in Vault configuration
	DefaultLeaseTTL(context.Context, *Empty) (*TTLReply, error)
	// MaxLeaseTTL returns the max lease TTL set in Vault configuration; backend
	// authors should take care not to issue credentials that last longer than
	// this value, as Vault will revoke them
	MaxLeaseTTL(context.Context, *Empty) (*TTLReply, error)
	// Tainted, returns true if the mount is tainted. A mount is tainted if it is in the
	// process of being unmounted. This should only be used in special
	// circumstances; a primary use-case is as a guard in revocation functions.
	// If revocation of a backend's leases fails it can keep the unmounting
	// process from being successful. If the reason for this failure is not
	// relevant when the mount is tainted (for instance, saving a CRL to disk
	// when the stored CRL will be removed during the unmounting process
	// anyways), we can ignore the errors to allow unmounting to complete.
	Tainted(context.Context, *Empty) (*TaintedReply, error)
	// CachingDisabled returns true if caching is disabled. If true, no caches
	// should be used, despite known slowdowns.
	CachingDisabled(context.Context, *Empty) (*CachingDisabledReply, error)
	// ReplicationState indicates the state of cluster replication
	ReplicationState(context.Context, *Empty) (*ReplicationStateReply, error)
	// ResponseWrapData wraps the given data in a cubbyhole and returns the
	// token used to unwrap.
	ResponseWrapData(context.Context, *ResponseWrapDataArgs) (*ResponseWrapDataReply, error)
	// MlockEnabled returns the configuration setting for enabling mlock on
	// plugins.
	MlockEnabled(context.Context, *Empty) (*MlockEnabledReply, error)
	// LocalMount, when run from a system view attached to a request, indicates
	// whether the request is affecting a local mount or not
	LocalMount(context.Context, *Empty) (*LocalMountReply, error)
	// EntityInfo returns the basic entity information for the given entity id
	EntityInfo(context.Context, *EntityInfoArgs) (*EntityInfoReply, error)
	// PluginEnv returns Vault environment information used by plugins
	PluginEnv(context.Context, *Empty) (*PluginEnvReply, error)
	// GroupsForEntity returns the group membership information for the given
	// entity id
	GroupsForEntity(context.Context, *EntityInfoArgs) (*GroupsForEntityReply, error)
	// GeneratePasswordFromPolicy generates a password from an existing password policy
	GeneratePasswordFromPolicy(context.Context, *GeneratePasswordFromPolicyRequest) (*GeneratePasswordFromPolicyReply, error)
	// ClusterInfo returns the ClusterID information; may be reused if ClusterName is also exposed.
	ClusterInfo(context.Context, *Empty) (*ClusterInfoReply, error)
	// GenerateIdentityToken returns an identity token for the requesting plugin.
	GenerateIdentityToken(context.Context, *GenerateIdentityTokenRequest) (*GenerateIdentityTokenResponse, error)
	// contains filtered or unexported methods
}

SystemViewServer is the server API for SystemView service. All implementations must embed UnimplementedSystemViewServer for forward compatibility

SystemView exposes system configuration information in a safe way for plugins to consume. Plugins should implement the client for this service.

type TTLReply 

type TTLReply struct {
	TTL int64 `protobuf:"varint,1,opt,name=TTL,proto3" json:"TTL,omitempty"`
	// contains filtered or unexported fields
}

func (*TTLReply) Descriptor deprecated 

func (*TTLReply) Descriptor() ([]byte, []int)

Deprecated: Use TTLReply.ProtoReflect.Descriptor instead.

func (*TTLReply) GetTTL 

func (x *TTLReply) GetTTL() int64

func (*TTLReply) ProtoMessage 

func (*TTLReply) ProtoMessage()

func (*TTLReply) ProtoReflect added in v0.2.0 

func (x *TTLReply) ProtoReflect() protoreflect.Message

func (*TTLReply) Reset 

func (x *TTLReply) Reset()

func (*TTLReply) String 

func (x *TTLReply) String() string

type TaintedReply 

type TaintedReply struct {
	Tainted bool `protobuf:"varint,1,opt,name=tainted,proto3" json:"tainted,omitempty"`
	// contains filtered or unexported fields
}

func (*TaintedReply) Descriptor deprecated 

func (*TaintedReply) Descriptor() ([]byte, []int)

Deprecated: Use TaintedReply.ProtoReflect.Descriptor instead.

func (*TaintedReply) GetTainted 

func (x *TaintedReply) GetTainted() bool

func (*TaintedReply) ProtoMessage 

func (*TaintedReply) ProtoMessage()

func (*TaintedReply) ProtoReflect added in v0.2.0 

func (x *TaintedReply) ProtoReflect() protoreflect.Message

func (*TaintedReply) Reset 

func (x *TaintedReply) Reset()

func (*TaintedReply) String 

func (x *TaintedReply) String() string

type TokenEntry 

type TokenEntry struct {
	ID                 string            `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	Accessor           string            `protobuf:"bytes,2,opt,name=accessor,proto3" json:"accessor,omitempty"`
	Parent             string            `protobuf:"bytes,3,opt,name=parent,proto3" json:"parent,omitempty"`
	Policies           []string          `protobuf:"bytes,4,rep,name=policies,proto3" json:"policies,omitempty"`
	Path               string            `protobuf:"bytes,5,opt,name=path,proto3" json:"path,omitempty"`
	Meta               map[string]string `` /* 149-byte string literal not displayed */
	DisplayName        string            `protobuf:"bytes,7,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
	NumUses            int64             `protobuf:"varint,8,opt,name=num_uses,json=numUses,proto3" json:"num_uses,omitempty"`
	CreationTime       int64             `protobuf:"varint,9,opt,name=creation_time,json=creationTime,proto3" json:"creation_time,omitempty"`
	TTL                int64             `protobuf:"varint,10,opt,name=ttl,proto3" json:"ttl,omitempty"`
	ExplicitMaxTTL     int64             `protobuf:"varint,11,opt,name=explicit_max_ttl,json=explicitMaxTtl,proto3" json:"explicit_max_ttl,omitempty"`
	Role               string            `protobuf:"bytes,12,opt,name=role,proto3" json:"role,omitempty"`
	Period             int64             `protobuf:"varint,13,opt,name=period,proto3" json:"period,omitempty"`
	EntityID           string            `protobuf:"bytes,14,opt,name=entity_id,json=entityId,proto3" json:"entity_id,omitempty"`
	BoundCIDRs         []string          `protobuf:"bytes,15,rep,name=bound_cidrs,json=boundCidrs,proto3" json:"bound_cidrs,omitempty"`
	NamespaceID        string            `protobuf:"bytes,16,opt,name=namespace_id,json=namespaceID,proto3" json:"namespace_id,omitempty"`
	CubbyholeID        string            `protobuf:"bytes,17,opt,name=cubbyhole_id,json=cubbyholeId,proto3" json:"cubbyhole_id,omitempty"`
	Type               uint32            `protobuf:"varint,18,opt,name=type,proto3" json:"type,omitempty"`
	InternalMeta       map[string]string `` /* 186-byte string literal not displayed */
	InlinePolicy       string            `protobuf:"bytes,20,opt,name=inline_policy,json=inlinePolicy,proto3" json:"inline_policy,omitempty"`
	NoIdentityPolicies bool              `protobuf:"varint,21,opt,name=no_identity_policies,json=noIdentityPolicies,proto3" json:"no_identity_policies,omitempty"`
	ExternalID         string            `protobuf:"bytes,22,opt,name=external_id,json=externalId,proto3" json:"external_id,omitempty"`
	// contains filtered or unexported fields
}

func LogicalTokenEntryToProtoTokenEntry 

func LogicalTokenEntryToProtoTokenEntry(t *logical.TokenEntry) *TokenEntry

func (*TokenEntry) Descriptor deprecated 

func (*TokenEntry) Descriptor() ([]byte, []int)

Deprecated: Use TokenEntry.ProtoReflect.Descriptor instead.

func (*TokenEntry) GetAccessor 

func (x *TokenEntry) GetAccessor() string

func (*TokenEntry) GetBoundCIDRs 

func (x *TokenEntry) GetBoundCIDRs() []string

func (*TokenEntry) GetCreationTime 

func (x *TokenEntry) GetCreationTime() int64

func (*TokenEntry) GetCubbyholeID 

func (x *TokenEntry) GetCubbyholeID() string

func (*TokenEntry) GetDisplayName 

func (x *TokenEntry) GetDisplayName() string

func (*TokenEntry) GetEntityID 

func (x *TokenEntry) GetEntityID() string

func (*TokenEntry) GetExplicitMaxTTL 

func (x *TokenEntry) GetExplicitMaxTTL() int64

func (*TokenEntry) GetExternalID added in v0.8.0 

func (x *TokenEntry) GetExternalID() string

func (*TokenEntry) GetID 

func (x *TokenEntry) GetID() string

func (*TokenEntry) GetInlinePolicy added in v0.3.0 

func (x *TokenEntry) GetInlinePolicy() string

func (*TokenEntry) GetInternalMeta added in v0.3.0 

func (x *TokenEntry) GetInternalMeta() map[string]string

func (*TokenEntry) GetMeta 

func (x *TokenEntry) GetMeta() map[string]string

func (*TokenEntry) GetNamespaceID 

func (x *TokenEntry) GetNamespaceID() string

func (*TokenEntry) GetNoIdentityPolicies added in v0.3.0 

func (x *TokenEntry) GetNoIdentityPolicies() bool

func (*TokenEntry) GetNumUses 

func (x *TokenEntry) GetNumUses() int64

func (*TokenEntry) GetParent 

func (x *TokenEntry) GetParent() string

func (*TokenEntry) GetPath 

func (x *TokenEntry) GetPath() string

func (*TokenEntry) GetPeriod 

func (x *TokenEntry) GetPeriod() int64

func (*TokenEntry) GetPolicies 

func (x *TokenEntry) GetPolicies() []string

func (*TokenEntry) GetRole 

func (x *TokenEntry) GetRole() string

func (*TokenEntry) GetTTL 

func (x *TokenEntry) GetTTL() int64

func (*TokenEntry) GetType 

func (x *TokenEntry) GetType() uint32

func (*TokenEntry) ProtoMessage 

func (*TokenEntry) ProtoMessage()

func (*TokenEntry) ProtoReflect added in v0.2.0 

func (x *TokenEntry) ProtoReflect() protoreflect.Message

func (*TokenEntry) Reset 

func (x *TokenEntry) Reset()

func (*TokenEntry) String 

func (x *TokenEntry) String() string

type TypeReply 

type TypeReply struct {
	Type uint32 `protobuf:"varint,1,opt,name=type,proto3" json:"type,omitempty"`
	// contains filtered or unexported fields
}

TypeReply is the reply for the Type method.

func (*TypeReply) Descriptor deprecated 

func (*TypeReply) Descriptor() ([]byte, []int)

Deprecated: Use TypeReply.ProtoReflect.Descriptor instead.

func (*TypeReply) GetType 

func (x *TypeReply) GetType() uint32

func (*TypeReply) ProtoMessage 

func (*TypeReply) ProtoMessage()

func (*TypeReply) ProtoReflect added in v0.2.0 

func (x *TypeReply) ProtoReflect() protoreflect.Message

func (*TypeReply) Reset 

func (x *TypeReply) Reset()

func (*TypeReply) String 

func (x *TypeReply) String() string

type UnimplementedBackendServer 

type UnimplementedBackendServer struct {
}

UnimplementedBackendServer must be embedded to have forward compatible implementations.

func (UnimplementedBackendServer) Cleanup 

func (UnimplementedBackendServer) Cleanup(context.Context, *Empty) (*Empty, error)

func (UnimplementedBackendServer) HandleExistenceCheck 

func (UnimplementedBackendServer) HandleExistenceCheck(context.Context, *HandleExistenceCheckArgs) (*HandleExistenceCheckReply, error)

func (UnimplementedBackendServer) HandleRequest 

func (UnimplementedBackendServer) HandleRequest(context.Context, *HandleRequestArgs) (*HandleRequestReply, error)

func (UnimplementedBackendServer) Initialize added in v0.1.12 

func (UnimplementedBackendServer) Initialize(context.Context, *InitializeArgs) (*InitializeReply, error)

func (UnimplementedBackendServer) InvalidateKey 

func (UnimplementedBackendServer) InvalidateKey(context.Context, *InvalidateKeyArgs) (*Empty, error)

func (UnimplementedBackendServer) Setup 

func (UnimplementedBackendServer) Setup(context.Context, *SetupArgs) (*SetupReply, error)

func (UnimplementedBackendServer) SpecialPaths 

func (UnimplementedBackendServer) SpecialPaths(context.Context, *Empty) (*SpecialPathsReply, error)

func (UnimplementedBackendServer) Type 

func (UnimplementedBackendServer) Type(context.Context, *Empty) (*TypeReply, error)

type UnimplementedEventsServer added in v0.8.0 

type UnimplementedEventsServer struct {
}

UnimplementedEventsServer must be embedded to have forward compatible implementations.

func (UnimplementedEventsServer) SendEvent added in v0.8.0 

func (UnimplementedEventsServer) SendEvent(context.Context, *SendEventRequest) (*Empty, error)

type UnimplementedStorageServer 

type UnimplementedStorageServer struct {
}

UnimplementedStorageServer must be embedded to have forward compatible implementations.

func (UnimplementedStorageServer) Delete 

func (UnimplementedStorageServer) Delete(context.Context, *StorageDeleteArgs) (*StorageDeleteReply, error)

func (UnimplementedStorageServer) Get 

func (UnimplementedStorageServer) Get(context.Context, *StorageGetArgs) (*StorageGetReply, error)

func (UnimplementedStorageServer) List 

func (UnimplementedStorageServer) List(context.Context, *StorageListArgs) (*StorageListReply, error)

func (UnimplementedStorageServer) Put 

func (UnimplementedStorageServer) Put(context.Context, *StoragePutArgs) (*StoragePutReply, error)

type UnimplementedSystemViewServer 

type UnimplementedSystemViewServer struct {
}

UnimplementedSystemViewServer must be embedded to have forward compatible implementations.

func (UnimplementedSystemViewServer) CachingDisabled 

func (UnimplementedSystemViewServer) CachingDisabled(context.Context, *Empty) (*CachingDisabledReply, error)

func (UnimplementedSystemViewServer) ClusterInfo added in v0.8.0 

func (UnimplementedSystemViewServer) ClusterInfo(context.Context, *Empty) (*ClusterInfoReply, error)

func (UnimplementedSystemViewServer) DefaultLeaseTTL 

func (UnimplementedSystemViewServer) DefaultLeaseTTL(context.Context, *Empty) (*TTLReply, error)

func (UnimplementedSystemViewServer) EntityInfo 

func (UnimplementedSystemViewServer) EntityInfo(context.Context, *EntityInfoArgs) (*EntityInfoReply, error)

func (UnimplementedSystemViewServer) GenerateIdentityToken added in v0.11.0 

func (UnimplementedSystemViewServer) GenerateIdentityToken(context.Context, *GenerateIdentityTokenRequest) (*GenerateIdentityTokenResponse, error)

func (UnimplementedSystemViewServer) GeneratePasswordFromPolicy added in v0.2.0 

func (UnimplementedSystemViewServer) GeneratePasswordFromPolicy(context.Context, *GeneratePasswordFromPolicyRequest) (*GeneratePasswordFromPolicyReply, error)

func (UnimplementedSystemViewServer) GroupsForEntity added in v0.2.0 

func (UnimplementedSystemViewServer) GroupsForEntity(context.Context, *EntityInfoArgs) (*GroupsForEntityReply, error)

func (UnimplementedSystemViewServer) LocalMount 

func (UnimplementedSystemViewServer) LocalMount(context.Context, *Empty) (*LocalMountReply, error)

func (UnimplementedSystemViewServer) MaxLeaseTTL 

func (UnimplementedSystemViewServer) MaxLeaseTTL(context.Context, *Empty) (*TTLReply, error)

func (UnimplementedSystemViewServer) MlockEnabled 

func (UnimplementedSystemViewServer) MlockEnabled(context.Context, *Empty) (*MlockEnabledReply, error)

func (UnimplementedSystemViewServer) PluginEnv 

func (UnimplementedSystemViewServer) PluginEnv(context.Context, *Empty) (*PluginEnvReply, error)

func (UnimplementedSystemViewServer) ReplicationState 

func (UnimplementedSystemViewServer) ReplicationState(context.Context, *Empty) (*ReplicationStateReply, error)

func (UnimplementedSystemViewServer) ResponseWrapData 

func (UnimplementedSystemViewServer) ResponseWrapData(context.Context, *ResponseWrapDataArgs) (*ResponseWrapDataReply, error)

func (UnimplementedSystemViewServer) Tainted 

func (UnimplementedSystemViewServer) Tainted(context.Context, *Empty) (*TaintedReply, error)

type UnsafeBackendServer added in v0.3.0 

type UnsafeBackendServer interface {
	// contains filtered or unexported methods
}

UnsafeBackendServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to BackendServer will result in compilation errors.

type UnsafeEventsServer added in v0.8.0 

type UnsafeEventsServer interface {
	// contains filtered or unexported methods
}

UnsafeEventsServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to EventsServer will result in compilation errors.

type UnsafeStorageServer added in v0.3.0 

type UnsafeStorageServer interface {
	// contains filtered or unexported methods
}

UnsafeStorageServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to StorageServer will result in compilation errors.

type UnsafeSystemViewServer added in v0.3.0 

type UnsafeSystemViewServer interface {
	// contains filtered or unexported methods
}

UnsafeSystemViewServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to SystemViewServer will result in compilation errors.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.