localauthorityv1

package
v1.11.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 21, 2024 License: Apache-2.0 Imports: 8 Imported by: 8

Documentation

Index

Constants

This section is empty.

Variables

View Source
var File_spire_api_server_localauthority_v1_localauthority_proto protoreflect.FileDescriptor

Functions

func RegisterLocalAuthorityServer

func RegisterLocalAuthorityServer(s grpc.ServiceRegistrar, srv LocalAuthorityServer)

Types

type ActivateJWTAuthorityRequest

type ActivateJWTAuthorityRequest struct {

	// The authority ID of the local authority JWT authority to activate.
	// This is the JWT Key ID.
	AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"`
	// contains filtered or unexported fields
}

func (*ActivateJWTAuthorityRequest) Descriptor deprecated

func (*ActivateJWTAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use ActivateJWTAuthorityRequest.ProtoReflect.Descriptor instead.

func (*ActivateJWTAuthorityRequest) GetAuthorityId

func (x *ActivateJWTAuthorityRequest) GetAuthorityId() string

func (*ActivateJWTAuthorityRequest) ProtoMessage

func (*ActivateJWTAuthorityRequest) ProtoMessage()

func (*ActivateJWTAuthorityRequest) ProtoReflect

func (*ActivateJWTAuthorityRequest) Reset

func (x *ActivateJWTAuthorityRequest) Reset()

func (*ActivateJWTAuthorityRequest) String

func (x *ActivateJWTAuthorityRequest) String() string

type ActivateJWTAuthorityResponse

type ActivateJWTAuthorityResponse struct {
	ActivatedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=activated_authority,json=activatedAuthority,proto3" json:"activated_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*ActivateJWTAuthorityResponse) Descriptor deprecated

func (*ActivateJWTAuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use ActivateJWTAuthorityResponse.ProtoReflect.Descriptor instead.

func (*ActivateJWTAuthorityResponse) GetActivatedAuthority

func (x *ActivateJWTAuthorityResponse) GetActivatedAuthority() *AuthorityState

func (*ActivateJWTAuthorityResponse) ProtoMessage

func (*ActivateJWTAuthorityResponse) ProtoMessage()

func (*ActivateJWTAuthorityResponse) ProtoReflect

func (*ActivateJWTAuthorityResponse) Reset

func (x *ActivateJWTAuthorityResponse) Reset()

func (*ActivateJWTAuthorityResponse) String

type ActivateX509AuthorityRequest

type ActivateX509AuthorityRequest struct {

	// The authority ID of the local X.509 authority to activate.
	// This is the X.509 Subject Key Identifier (or SKID) of the
	// authority's CA certificate, which is calculated by doing a
	// SHA-1 hash over the ASN.1 encoding of the public key.
	AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"`
	// contains filtered or unexported fields
}

func (*ActivateX509AuthorityRequest) Descriptor deprecated

func (*ActivateX509AuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use ActivateX509AuthorityRequest.ProtoReflect.Descriptor instead.

func (*ActivateX509AuthorityRequest) GetAuthorityId

func (x *ActivateX509AuthorityRequest) GetAuthorityId() string

func (*ActivateX509AuthorityRequest) ProtoMessage

func (*ActivateX509AuthorityRequest) ProtoMessage()

func (*ActivateX509AuthorityRequest) ProtoReflect

func (*ActivateX509AuthorityRequest) Reset

func (x *ActivateX509AuthorityRequest) Reset()

func (*ActivateX509AuthorityRequest) String

type ActivateX509AuthorityResponse

type ActivateX509AuthorityResponse struct {
	ActivatedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=activated_authority,json=activatedAuthority,proto3" json:"activated_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*ActivateX509AuthorityResponse) Descriptor deprecated

func (*ActivateX509AuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use ActivateX509AuthorityResponse.ProtoReflect.Descriptor instead.

func (*ActivateX509AuthorityResponse) GetActivatedAuthority

func (x *ActivateX509AuthorityResponse) GetActivatedAuthority() *AuthorityState

func (*ActivateX509AuthorityResponse) ProtoMessage

func (*ActivateX509AuthorityResponse) ProtoMessage()

func (*ActivateX509AuthorityResponse) ProtoReflect

func (*ActivateX509AuthorityResponse) Reset

func (x *ActivateX509AuthorityResponse) Reset()

func (*ActivateX509AuthorityResponse) String

type AuthorityState

type AuthorityState struct {

	// The authority ID.
	AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"`
	// Expiration timestamp (seconds since Unix epoch).
	ExpiresAt int64 `protobuf:"varint,2,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"`
	// The Subject Key Identifier (or SKID) of the upstream authority,
	// applicable only for X.509 authorities.
	UpstreamAuthoritySubjectKeyId string `` /* 154-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*AuthorityState) Descriptor deprecated

func (*AuthorityState) Descriptor() ([]byte, []int)

Deprecated: Use AuthorityState.ProtoReflect.Descriptor instead.

func (*AuthorityState) GetAuthorityId

func (x *AuthorityState) GetAuthorityId() string

func (*AuthorityState) GetExpiresAt

func (x *AuthorityState) GetExpiresAt() int64

func (*AuthorityState) GetUpstreamAuthoritySubjectKeyId added in v1.11.0

func (x *AuthorityState) GetUpstreamAuthoritySubjectKeyId() string

func (*AuthorityState) ProtoMessage

func (*AuthorityState) ProtoMessage()

func (*AuthorityState) ProtoReflect

func (x *AuthorityState) ProtoReflect() protoreflect.Message

func (*AuthorityState) Reset

func (x *AuthorityState) Reset()

func (*AuthorityState) String

func (x *AuthorityState) String() string

type GetJWTAuthorityStateRequest

type GetJWTAuthorityStateRequest struct {
	// contains filtered or unexported fields
}

func (*GetJWTAuthorityStateRequest) Descriptor deprecated

func (*GetJWTAuthorityStateRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetJWTAuthorityStateRequest.ProtoReflect.Descriptor instead.

func (*GetJWTAuthorityStateRequest) ProtoMessage

func (*GetJWTAuthorityStateRequest) ProtoMessage()

func (*GetJWTAuthorityStateRequest) ProtoReflect

func (*GetJWTAuthorityStateRequest) Reset

func (x *GetJWTAuthorityStateRequest) Reset()

func (*GetJWTAuthorityStateRequest) String

func (x *GetJWTAuthorityStateRequest) String() string

type GetJWTAuthorityStateResponse

type GetJWTAuthorityStateResponse struct {

	// Authority currently being used for signing operations.
	Active *AuthorityState `protobuf:"bytes,1,opt,name=active,proto3" json:"active,omitempty"`
	// Authority added on bundle but is not used yet.
	Prepared *AuthorityState `protobuf:"bytes,2,opt,name=prepared,proto3" json:"prepared,omitempty"`
	// Authority in that was previously used for signing operations,
	// but it is not longer.
	Old *AuthorityState `protobuf:"bytes,3,opt,name=old,proto3" json:"old,omitempty"`
	// contains filtered or unexported fields
}

func (*GetJWTAuthorityStateResponse) Descriptor deprecated

func (*GetJWTAuthorityStateResponse) Descriptor() ([]byte, []int)

Deprecated: Use GetJWTAuthorityStateResponse.ProtoReflect.Descriptor instead.

func (*GetJWTAuthorityStateResponse) GetActive

func (*GetJWTAuthorityStateResponse) GetOld

func (*GetJWTAuthorityStateResponse) GetPrepared

func (x *GetJWTAuthorityStateResponse) GetPrepared() *AuthorityState

func (*GetJWTAuthorityStateResponse) ProtoMessage

func (*GetJWTAuthorityStateResponse) ProtoMessage()

func (*GetJWTAuthorityStateResponse) ProtoReflect

func (*GetJWTAuthorityStateResponse) Reset

func (x *GetJWTAuthorityStateResponse) Reset()

func (*GetJWTAuthorityStateResponse) String

type GetX509AuthorityStateRequest

type GetX509AuthorityStateRequest struct {
	// contains filtered or unexported fields
}

func (*GetX509AuthorityStateRequest) Descriptor deprecated

func (*GetX509AuthorityStateRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetX509AuthorityStateRequest.ProtoReflect.Descriptor instead.

func (*GetX509AuthorityStateRequest) ProtoMessage

func (*GetX509AuthorityStateRequest) ProtoMessage()

func (*GetX509AuthorityStateRequest) ProtoReflect

func (*GetX509AuthorityStateRequest) Reset

func (x *GetX509AuthorityStateRequest) Reset()

func (*GetX509AuthorityStateRequest) String

type GetX509AuthorityStateResponse

type GetX509AuthorityStateResponse struct {

	// Authority currently being used for signing operations.
	Active *AuthorityState `protobuf:"bytes,1,opt,name=active,proto3" json:"active,omitempty"`
	// Authority added on bundle but is not used yet.
	Prepared *AuthorityState `protobuf:"bytes,2,opt,name=prepared,proto3" json:"prepared,omitempty"`
	// Authority in that was previously used for signing operations,
	// but it is not longer.
	Old *AuthorityState `protobuf:"bytes,3,opt,name=old,proto3" json:"old,omitempty"`
	// contains filtered or unexported fields
}

func (*GetX509AuthorityStateResponse) Descriptor deprecated

func (*GetX509AuthorityStateResponse) Descriptor() ([]byte, []int)

Deprecated: Use GetX509AuthorityStateResponse.ProtoReflect.Descriptor instead.

func (*GetX509AuthorityStateResponse) GetActive

func (*GetX509AuthorityStateResponse) GetOld

func (*GetX509AuthorityStateResponse) GetPrepared

func (*GetX509AuthorityStateResponse) ProtoMessage

func (*GetX509AuthorityStateResponse) ProtoMessage()

func (*GetX509AuthorityStateResponse) ProtoReflect

func (*GetX509AuthorityStateResponse) Reset

func (x *GetX509AuthorityStateResponse) Reset()

func (*GetX509AuthorityStateResponse) String

type LocalAuthorityClient

type LocalAuthorityClient interface {
	// GetJWTAuthorityState returns the state of all locally configured
	// JWT authorities.
	GetJWTAuthorityState(ctx context.Context, in *GetJWTAuthorityStateRequest, opts ...grpc.CallOption) (*GetJWTAuthorityStateResponse, error)
	// PrepareJWTAuthority prepares a new JWT authority for use by
	// generating a new key and injecting it into the bundle. This action
	// will propagate the new public key cluster-wide.
	PrepareJWTAuthority(ctx context.Context, in *PrepareJWTAuthorityRequest, opts ...grpc.CallOption) (*PrepareJWTAuthorityResponse, error)
	// ActivateJWTAuthority activates a prepared JWT authority for use,
	// which will cause it to be used for all JWT signing operations
	// serviced by this server going forward. If a new JWT authority has
	// not already been prepared, a FailedPrecondition error will be returned.
	ActivateJWTAuthority(ctx context.Context, in *ActivateJWTAuthorityRequest, opts ...grpc.CallOption) (*ActivateJWTAuthorityResponse, error)
	// TaintJWTAuthority marks the previously active JWT authority as
	// being tainted. SPIRE Agents observing an authority to be tainted
	// will perform proactive rotations of any key material related to
	// the tainted authority. The result of this action will be observed
	// cluster-wide.
	// It can receive the Authority ID of an old JWT authority.
	//
	// If a previously active JWT authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	TaintJWTAuthority(ctx context.Context, in *TaintJWTAuthorityRequest, opts ...grpc.CallOption) (*TaintJWTAuthorityResponse, error)
	// RevokeJWTAuthority revokes the previously active JWT authority by
	// removing it from the bundle and propagating this update throughout
	// the cluster.
	// It can receive the Authority ID of an old JWT authority.
	//
	// If a previously active JWT authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	RevokeJWTAuthority(ctx context.Context, in *RevokeJWTAuthorityRequest, opts ...grpc.CallOption) (*RevokeJWTAuthorityResponse, error)
	// GetX509AuthorityState returns the state of all locally configured
	// X.509 authorities.
	GetX509AuthorityState(ctx context.Context, in *GetX509AuthorityStateRequest, opts ...grpc.CallOption) (*GetX509AuthorityStateResponse, error)
	// PrepareX509Authority prepares a new X.509 authority for use by
	// generating a new key and injecting the resulting CA certificate into
	// the bundle. This action will  propagate the new CA cluster-wide.
	PrepareX509Authority(ctx context.Context, in *PrepareX509AuthorityRequest, opts ...grpc.CallOption) (*PrepareX509AuthorityResponse, error)
	// ActivateX509Authority activates a prepared X.509 authority for use,
	// which will cause it to be used for all X.509 signing operations
	// serviced by this server going forward. If a new X.509 authority has
	// not already been prepared, a FailedPrecondition error will be returned.
	ActivateX509Authority(ctx context.Context, in *ActivateX509AuthorityRequest, opts ...grpc.CallOption) (*ActivateX509AuthorityResponse, error)
	// TaintX509Authority marks the previously active X.509 authority as
	// being tainted. SPIRE Agents observing an authority to be tainted
	// will perform proactive rotations of any key material related to
	// the tainted authority. The result of this action will be observed
	// cluster-wide.
	// The X.509 authority to taint is identified using the provided X.509 Subject Key
	//
	// If an upstream authority is configured then local authorities cannot be tainted,
	// and a FailedPrecondition error will be returned.
	//
	// If a previously active X.509 authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	TaintX509Authority(ctx context.Context, in *TaintX509AuthorityRequest, opts ...grpc.CallOption) (*TaintX509AuthorityResponse, error)
	// TaintX509UpstreamAuthority marks the provided upstream authority as
	// being tainted. SPIRE Agents observing a tainted authority
	// will perform proactive rotations of any key material related to
	// the tainted authority. The result of this action will be observed
	// cluster-wide.
	// It is important to change to a new active upstream authority before tainting the old one,
	// since tainting will force the rotation of any bundle that is using
	// the old upstream authority.
	// The X.509 authority to taint is identified using the provided X.509 Subject Key
	// Identifier (or SKID) of the old X.509 authority.
	//
	// If an X.509 upstream authority is not configured, or the identified upstream
	// X.509 authority is active, a FailedPrecondition error will be returned.
	TaintX509UpstreamAuthority(ctx context.Context, in *TaintX509UpstreamAuthorityRequest, opts ...grpc.CallOption) (*TaintX509UpstreamAuthorityResponse, error)
	// RevokeX509Authority revokes the previously active X.509 authority by
	// removing it from the bundle and propagating this update throughout
	// the cluster.
	// It can receive the public key of an old X.509 authority.
	//
	// If a previously active X.509 authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	RevokeX509Authority(ctx context.Context, in *RevokeX509AuthorityRequest, opts ...grpc.CallOption) (*RevokeX509AuthorityResponse, error)
	// RevokeX509UpstreamAuthority revokes the previously active X.509 upstream authority by
	// removing it from the bundle and propagating this update throughout
	// the cluster.
	// The X.509 authority to revoke is identified using the provided subject key ID of
	// the authority's CA certificate.
	//
	// If a previously active X.509 upstream authority does not exist, a FailedPrecondition
	// error will be returned.
	RevokeX509UpstreamAuthority(ctx context.Context, in *RevokeX509UpstreamAuthorityRequest, opts ...grpc.CallOption) (*RevokeX509UpstreamAuthorityResponse, error)
}

LocalAuthorityClient is the client API for LocalAuthority service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

type LocalAuthorityServer

type LocalAuthorityServer interface {
	// GetJWTAuthorityState returns the state of all locally configured
	// JWT authorities.
	GetJWTAuthorityState(context.Context, *GetJWTAuthorityStateRequest) (*GetJWTAuthorityStateResponse, error)
	// PrepareJWTAuthority prepares a new JWT authority for use by
	// generating a new key and injecting it into the bundle. This action
	// will propagate the new public key cluster-wide.
	PrepareJWTAuthority(context.Context, *PrepareJWTAuthorityRequest) (*PrepareJWTAuthorityResponse, error)
	// ActivateJWTAuthority activates a prepared JWT authority for use,
	// which will cause it to be used for all JWT signing operations
	// serviced by this server going forward. If a new JWT authority has
	// not already been prepared, a FailedPrecondition error will be returned.
	ActivateJWTAuthority(context.Context, *ActivateJWTAuthorityRequest) (*ActivateJWTAuthorityResponse, error)
	// TaintJWTAuthority marks the previously active JWT authority as
	// being tainted. SPIRE Agents observing an authority to be tainted
	// will perform proactive rotations of any key material related to
	// the tainted authority. The result of this action will be observed
	// cluster-wide.
	// It can receive the Authority ID of an old JWT authority.
	//
	// If a previously active JWT authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	TaintJWTAuthority(context.Context, *TaintJWTAuthorityRequest) (*TaintJWTAuthorityResponse, error)
	// RevokeJWTAuthority revokes the previously active JWT authority by
	// removing it from the bundle and propagating this update throughout
	// the cluster.
	// It can receive the Authority ID of an old JWT authority.
	//
	// If a previously active JWT authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	RevokeJWTAuthority(context.Context, *RevokeJWTAuthorityRequest) (*RevokeJWTAuthorityResponse, error)
	// GetX509AuthorityState returns the state of all locally configured
	// X.509 authorities.
	GetX509AuthorityState(context.Context, *GetX509AuthorityStateRequest) (*GetX509AuthorityStateResponse, error)
	// PrepareX509Authority prepares a new X.509 authority for use by
	// generating a new key and injecting the resulting CA certificate into
	// the bundle. This action will  propagate the new CA cluster-wide.
	PrepareX509Authority(context.Context, *PrepareX509AuthorityRequest) (*PrepareX509AuthorityResponse, error)
	// ActivateX509Authority activates a prepared X.509 authority for use,
	// which will cause it to be used for all X.509 signing operations
	// serviced by this server going forward. If a new X.509 authority has
	// not already been prepared, a FailedPrecondition error will be returned.
	ActivateX509Authority(context.Context, *ActivateX509AuthorityRequest) (*ActivateX509AuthorityResponse, error)
	// TaintX509Authority marks the previously active X.509 authority as
	// being tainted. SPIRE Agents observing an authority to be tainted
	// will perform proactive rotations of any key material related to
	// the tainted authority. The result of this action will be observed
	// cluster-wide.
	// The X.509 authority to taint is identified using the provided X.509 Subject Key
	//
	// If an upstream authority is configured then local authorities cannot be tainted,
	// and a FailedPrecondition error will be returned.
	//
	// If a previously active X.509 authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	TaintX509Authority(context.Context, *TaintX509AuthorityRequest) (*TaintX509AuthorityResponse, error)
	// TaintX509UpstreamAuthority marks the provided upstream authority as
	// being tainted. SPIRE Agents observing a tainted authority
	// will perform proactive rotations of any key material related to
	// the tainted authority. The result of this action will be observed
	// cluster-wide.
	// It is important to change to a new active upstream authority before tainting the old one,
	// since tainting will force the rotation of any bundle that is using
	// the old upstream authority.
	// The X.509 authority to taint is identified using the provided X.509 Subject Key
	// Identifier (or SKID) of the old X.509 authority.
	//
	// If an X.509 upstream authority is not configured, or the identified upstream
	// X.509 authority is active, a FailedPrecondition error will be returned.
	TaintX509UpstreamAuthority(context.Context, *TaintX509UpstreamAuthorityRequest) (*TaintX509UpstreamAuthorityResponse, error)
	// RevokeX509Authority revokes the previously active X.509 authority by
	// removing it from the bundle and propagating this update throughout
	// the cluster.
	// It can receive the public key of an old X.509 authority.
	//
	// If a previously active X.509 authority does not exist (e.g. if one
	// has been prepared but not activated yet), a FailedPrecondition
	// error will be returned.
	RevokeX509Authority(context.Context, *RevokeX509AuthorityRequest) (*RevokeX509AuthorityResponse, error)
	// RevokeX509UpstreamAuthority revokes the previously active X.509 upstream authority by
	// removing it from the bundle and propagating this update throughout
	// the cluster.
	// The X.509 authority to revoke is identified using the provided subject key ID of
	// the authority's CA certificate.
	//
	// If a previously active X.509 upstream authority does not exist, a FailedPrecondition
	// error will be returned.
	RevokeX509UpstreamAuthority(context.Context, *RevokeX509UpstreamAuthorityRequest) (*RevokeX509UpstreamAuthorityResponse, error)
	// contains filtered or unexported methods
}

LocalAuthorityServer is the server API for LocalAuthority service. All implementations must embed UnimplementedLocalAuthorityServer for forward compatibility

type PrepareJWTAuthorityRequest

type PrepareJWTAuthorityRequest struct {
	// contains filtered or unexported fields
}

func (*PrepareJWTAuthorityRequest) Descriptor deprecated

func (*PrepareJWTAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use PrepareJWTAuthorityRequest.ProtoReflect.Descriptor instead.

func (*PrepareJWTAuthorityRequest) ProtoMessage

func (*PrepareJWTAuthorityRequest) ProtoMessage()

func (*PrepareJWTAuthorityRequest) ProtoReflect

func (*PrepareJWTAuthorityRequest) Reset

func (x *PrepareJWTAuthorityRequest) Reset()

func (*PrepareJWTAuthorityRequest) String

func (x *PrepareJWTAuthorityRequest) String() string

type PrepareJWTAuthorityResponse

type PrepareJWTAuthorityResponse struct {
	PreparedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=prepared_authority,json=preparedAuthority,proto3" json:"prepared_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*PrepareJWTAuthorityResponse) Descriptor deprecated

func (*PrepareJWTAuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use PrepareJWTAuthorityResponse.ProtoReflect.Descriptor instead.

func (*PrepareJWTAuthorityResponse) GetPreparedAuthority

func (x *PrepareJWTAuthorityResponse) GetPreparedAuthority() *AuthorityState

func (*PrepareJWTAuthorityResponse) ProtoMessage

func (*PrepareJWTAuthorityResponse) ProtoMessage()

func (*PrepareJWTAuthorityResponse) ProtoReflect

func (*PrepareJWTAuthorityResponse) Reset

func (x *PrepareJWTAuthorityResponse) Reset()

func (*PrepareJWTAuthorityResponse) String

func (x *PrepareJWTAuthorityResponse) String() string

type PrepareX509AuthorityRequest

type PrepareX509AuthorityRequest struct {
	// contains filtered or unexported fields
}

func (*PrepareX509AuthorityRequest) Descriptor deprecated

func (*PrepareX509AuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use PrepareX509AuthorityRequest.ProtoReflect.Descriptor instead.

func (*PrepareX509AuthorityRequest) ProtoMessage

func (*PrepareX509AuthorityRequest) ProtoMessage()

func (*PrepareX509AuthorityRequest) ProtoReflect

func (*PrepareX509AuthorityRequest) Reset

func (x *PrepareX509AuthorityRequest) Reset()

func (*PrepareX509AuthorityRequest) String

func (x *PrepareX509AuthorityRequest) String() string

type PrepareX509AuthorityResponse

type PrepareX509AuthorityResponse struct {
	PreparedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=prepared_authority,json=preparedAuthority,proto3" json:"prepared_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*PrepareX509AuthorityResponse) Descriptor deprecated

func (*PrepareX509AuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use PrepareX509AuthorityResponse.ProtoReflect.Descriptor instead.

func (*PrepareX509AuthorityResponse) GetPreparedAuthority

func (x *PrepareX509AuthorityResponse) GetPreparedAuthority() *AuthorityState

func (*PrepareX509AuthorityResponse) ProtoMessage

func (*PrepareX509AuthorityResponse) ProtoMessage()

func (*PrepareX509AuthorityResponse) ProtoReflect

func (*PrepareX509AuthorityResponse) Reset

func (x *PrepareX509AuthorityResponse) Reset()

func (*PrepareX509AuthorityResponse) String

type RevokeJWTAuthorityRequest

type RevokeJWTAuthorityRequest struct {

	// The authority ID of the local authority JWT authority to revoke.
	// This is the JWT Key ID.
	AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"`
	// contains filtered or unexported fields
}

func (*RevokeJWTAuthorityRequest) Descriptor deprecated

func (*RevokeJWTAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use RevokeJWTAuthorityRequest.ProtoReflect.Descriptor instead.

func (*RevokeJWTAuthorityRequest) GetAuthorityId

func (x *RevokeJWTAuthorityRequest) GetAuthorityId() string

func (*RevokeJWTAuthorityRequest) ProtoMessage

func (*RevokeJWTAuthorityRequest) ProtoMessage()

func (*RevokeJWTAuthorityRequest) ProtoReflect

func (*RevokeJWTAuthorityRequest) Reset

func (x *RevokeJWTAuthorityRequest) Reset()

func (*RevokeJWTAuthorityRequest) String

func (x *RevokeJWTAuthorityRequest) String() string

type RevokeJWTAuthorityResponse

type RevokeJWTAuthorityResponse struct {
	RevokedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=revoked_authority,json=revokedAuthority,proto3" json:"revoked_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*RevokeJWTAuthorityResponse) Descriptor deprecated

func (*RevokeJWTAuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use RevokeJWTAuthorityResponse.ProtoReflect.Descriptor instead.

func (*RevokeJWTAuthorityResponse) GetRevokedAuthority

func (x *RevokeJWTAuthorityResponse) GetRevokedAuthority() *AuthorityState

func (*RevokeJWTAuthorityResponse) ProtoMessage

func (*RevokeJWTAuthorityResponse) ProtoMessage()

func (*RevokeJWTAuthorityResponse) ProtoReflect

func (*RevokeJWTAuthorityResponse) Reset

func (x *RevokeJWTAuthorityResponse) Reset()

func (*RevokeJWTAuthorityResponse) String

func (x *RevokeJWTAuthorityResponse) String() string

type RevokeX509AuthorityRequest

type RevokeX509AuthorityRequest struct {

	// The authority ID of the local X.509 authority to revoke.
	// This is the X.509 Subject Key Identifier (or SKID) of the
	// authority's CA certificate, which is calculated by doing a
	// SHA-1 hash over the ASN.1 encoding of the public key.
	AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"`
	// contains filtered or unexported fields
}

func (*RevokeX509AuthorityRequest) Descriptor deprecated

func (*RevokeX509AuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use RevokeX509AuthorityRequest.ProtoReflect.Descriptor instead.

func (*RevokeX509AuthorityRequest) GetAuthorityId

func (x *RevokeX509AuthorityRequest) GetAuthorityId() string

func (*RevokeX509AuthorityRequest) ProtoMessage

func (*RevokeX509AuthorityRequest) ProtoMessage()

func (*RevokeX509AuthorityRequest) ProtoReflect

func (*RevokeX509AuthorityRequest) Reset

func (x *RevokeX509AuthorityRequest) Reset()

func (*RevokeX509AuthorityRequest) String

func (x *RevokeX509AuthorityRequest) String() string

type RevokeX509AuthorityResponse

type RevokeX509AuthorityResponse struct {
	RevokedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=revoked_authority,json=revokedAuthority,proto3" json:"revoked_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*RevokeX509AuthorityResponse) Descriptor deprecated

func (*RevokeX509AuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use RevokeX509AuthorityResponse.ProtoReflect.Descriptor instead.

func (*RevokeX509AuthorityResponse) GetRevokedAuthority

func (x *RevokeX509AuthorityResponse) GetRevokedAuthority() *AuthorityState

func (*RevokeX509AuthorityResponse) ProtoMessage

func (*RevokeX509AuthorityResponse) ProtoMessage()

func (*RevokeX509AuthorityResponse) ProtoReflect

func (*RevokeX509AuthorityResponse) Reset

func (x *RevokeX509AuthorityResponse) Reset()

func (*RevokeX509AuthorityResponse) String

func (x *RevokeX509AuthorityResponse) String() string

type RevokeX509UpstreamAuthorityRequest added in v1.10.2

type RevokeX509UpstreamAuthorityRequest struct {

	// This is the X.509 Subject Key Identifier (or SKID) of the
	// authority's CA certificate of the upstream X.509 authority to revoke.
	SubjectKeyId string `protobuf:"bytes,1,opt,name=subject_key_id,json=subjectKeyId,proto3" json:"subject_key_id,omitempty"`
	// contains filtered or unexported fields
}

func (*RevokeX509UpstreamAuthorityRequest) Descriptor deprecated added in v1.10.2

func (*RevokeX509UpstreamAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use RevokeX509UpstreamAuthorityRequest.ProtoReflect.Descriptor instead.

func (*RevokeX509UpstreamAuthorityRequest) GetSubjectKeyId added in v1.10.2

func (x *RevokeX509UpstreamAuthorityRequest) GetSubjectKeyId() string

func (*RevokeX509UpstreamAuthorityRequest) ProtoMessage added in v1.10.2

func (*RevokeX509UpstreamAuthorityRequest) ProtoMessage()

func (*RevokeX509UpstreamAuthorityRequest) ProtoReflect added in v1.10.2

func (*RevokeX509UpstreamAuthorityRequest) Reset added in v1.10.2

func (*RevokeX509UpstreamAuthorityRequest) String added in v1.10.2

type RevokeX509UpstreamAuthorityResponse added in v1.10.2

type RevokeX509UpstreamAuthorityResponse struct {

	// The Subject Key Identifier (or SKID) of the upstream authority
	// revoked.
	UpstreamAuthoritySubjectKeyId string `` /* 154-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*RevokeX509UpstreamAuthorityResponse) Descriptor deprecated added in v1.10.2

func (*RevokeX509UpstreamAuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use RevokeX509UpstreamAuthorityResponse.ProtoReflect.Descriptor instead.

func (*RevokeX509UpstreamAuthorityResponse) GetUpstreamAuthoritySubjectKeyId added in v1.11.0

func (x *RevokeX509UpstreamAuthorityResponse) GetUpstreamAuthoritySubjectKeyId() string

func (*RevokeX509UpstreamAuthorityResponse) ProtoMessage added in v1.10.2

func (*RevokeX509UpstreamAuthorityResponse) ProtoMessage()

func (*RevokeX509UpstreamAuthorityResponse) ProtoReflect added in v1.10.2

func (*RevokeX509UpstreamAuthorityResponse) Reset added in v1.10.2

func (*RevokeX509UpstreamAuthorityResponse) String added in v1.10.2

type TaintJWTAuthorityRequest

type TaintJWTAuthorityRequest struct {

	// The authority ID of the local authority JWT authority to taint.
	// This is the JWT Key ID.
	AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"`
	// contains filtered or unexported fields
}

func (*TaintJWTAuthorityRequest) Descriptor deprecated

func (*TaintJWTAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use TaintJWTAuthorityRequest.ProtoReflect.Descriptor instead.

func (*TaintJWTAuthorityRequest) GetAuthorityId

func (x *TaintJWTAuthorityRequest) GetAuthorityId() string

func (*TaintJWTAuthorityRequest) ProtoMessage

func (*TaintJWTAuthorityRequest) ProtoMessage()

func (*TaintJWTAuthorityRequest) ProtoReflect

func (x *TaintJWTAuthorityRequest) ProtoReflect() protoreflect.Message

func (*TaintJWTAuthorityRequest) Reset

func (x *TaintJWTAuthorityRequest) Reset()

func (*TaintJWTAuthorityRequest) String

func (x *TaintJWTAuthorityRequest) String() string

type TaintJWTAuthorityResponse

type TaintJWTAuthorityResponse struct {
	TaintedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=tainted_authority,json=taintedAuthority,proto3" json:"tainted_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*TaintJWTAuthorityResponse) Descriptor deprecated

func (*TaintJWTAuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use TaintJWTAuthorityResponse.ProtoReflect.Descriptor instead.

func (*TaintJWTAuthorityResponse) GetTaintedAuthority

func (x *TaintJWTAuthorityResponse) GetTaintedAuthority() *AuthorityState

func (*TaintJWTAuthorityResponse) ProtoMessage

func (*TaintJWTAuthorityResponse) ProtoMessage()

func (*TaintJWTAuthorityResponse) ProtoReflect

func (*TaintJWTAuthorityResponse) Reset

func (x *TaintJWTAuthorityResponse) Reset()

func (*TaintJWTAuthorityResponse) String

func (x *TaintJWTAuthorityResponse) String() string

type TaintX509AuthorityRequest

type TaintX509AuthorityRequest struct {

	// The authority ID of the local X.509 authority to taint.
	// This is the X.509 Subject Key Identifier (or SKID) of the
	// authority's CA certificate, which is calculated by doing a
	// SHA-1 hash over the ASN.1 encoding of the public key.
	AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"`
	// contains filtered or unexported fields
}

func (*TaintX509AuthorityRequest) Descriptor deprecated

func (*TaintX509AuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use TaintX509AuthorityRequest.ProtoReflect.Descriptor instead.

func (*TaintX509AuthorityRequest) GetAuthorityId

func (x *TaintX509AuthorityRequest) GetAuthorityId() string

func (*TaintX509AuthorityRequest) ProtoMessage

func (*TaintX509AuthorityRequest) ProtoMessage()

func (*TaintX509AuthorityRequest) ProtoReflect

func (*TaintX509AuthorityRequest) Reset

func (x *TaintX509AuthorityRequest) Reset()

func (*TaintX509AuthorityRequest) String

func (x *TaintX509AuthorityRequest) String() string

type TaintX509AuthorityResponse

type TaintX509AuthorityResponse struct {
	TaintedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=tainted_authority,json=taintedAuthority,proto3" json:"tainted_authority,omitempty"`
	// contains filtered or unexported fields
}

func (*TaintX509AuthorityResponse) Descriptor deprecated

func (*TaintX509AuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use TaintX509AuthorityResponse.ProtoReflect.Descriptor instead.

func (*TaintX509AuthorityResponse) GetTaintedAuthority

func (x *TaintX509AuthorityResponse) GetTaintedAuthority() *AuthorityState

func (*TaintX509AuthorityResponse) ProtoMessage

func (*TaintX509AuthorityResponse) ProtoMessage()

func (*TaintX509AuthorityResponse) ProtoReflect

func (*TaintX509AuthorityResponse) Reset

func (x *TaintX509AuthorityResponse) Reset()

func (*TaintX509AuthorityResponse) String

func (x *TaintX509AuthorityResponse) String() string

type TaintX509UpstreamAuthorityRequest added in v1.10.2

type TaintX509UpstreamAuthorityRequest struct {

	// This is the X.509 Subject Key Identifier (or SKID) of the
	// authority's CA certificate of the upstream X.509 authority to taint.
	SubjectKeyId string `protobuf:"bytes,1,opt,name=subject_key_id,json=subjectKeyId,proto3" json:"subject_key_id,omitempty"`
	// contains filtered or unexported fields
}

func (*TaintX509UpstreamAuthorityRequest) Descriptor deprecated added in v1.10.2

func (*TaintX509UpstreamAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use TaintX509UpstreamAuthorityRequest.ProtoReflect.Descriptor instead.

func (*TaintX509UpstreamAuthorityRequest) GetSubjectKeyId added in v1.10.2

func (x *TaintX509UpstreamAuthorityRequest) GetSubjectKeyId() string

func (*TaintX509UpstreamAuthorityRequest) ProtoMessage added in v1.10.2

func (*TaintX509UpstreamAuthorityRequest) ProtoMessage()

func (*TaintX509UpstreamAuthorityRequest) ProtoReflect added in v1.10.2

func (*TaintX509UpstreamAuthorityRequest) Reset added in v1.10.2

func (*TaintX509UpstreamAuthorityRequest) String added in v1.10.2

type TaintX509UpstreamAuthorityResponse added in v1.10.2

type TaintX509UpstreamAuthorityResponse struct {

	// The Subject Key Identifier (or SKID) of the upstream authority
	// tainted.
	UpstreamAuthoritySubjectKeyId string `` /* 154-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*TaintX509UpstreamAuthorityResponse) Descriptor deprecated added in v1.10.2

func (*TaintX509UpstreamAuthorityResponse) Descriptor() ([]byte, []int)

Deprecated: Use TaintX509UpstreamAuthorityResponse.ProtoReflect.Descriptor instead.

func (*TaintX509UpstreamAuthorityResponse) GetUpstreamAuthoritySubjectKeyId added in v1.11.0

func (x *TaintX509UpstreamAuthorityResponse) GetUpstreamAuthoritySubjectKeyId() string

func (*TaintX509UpstreamAuthorityResponse) ProtoMessage added in v1.10.2

func (*TaintX509UpstreamAuthorityResponse) ProtoMessage()

func (*TaintX509UpstreamAuthorityResponse) ProtoReflect added in v1.10.2

func (*TaintX509UpstreamAuthorityResponse) Reset added in v1.10.2

func (*TaintX509UpstreamAuthorityResponse) String added in v1.10.2

type UnimplementedLocalAuthorityServer

type UnimplementedLocalAuthorityServer struct {
}

UnimplementedLocalAuthorityServer must be embedded to have forward compatible implementations.

func (UnimplementedLocalAuthorityServer) PrepareJWTAuthority

func (UnimplementedLocalAuthorityServer) RevokeJWTAuthority

func (UnimplementedLocalAuthorityServer) RevokeX509Authority

func (UnimplementedLocalAuthorityServer) RevokeX509UpstreamAuthority added in v1.10.2

func (UnimplementedLocalAuthorityServer) TaintJWTAuthority

func (UnimplementedLocalAuthorityServer) TaintX509Authority

func (UnimplementedLocalAuthorityServer) TaintX509UpstreamAuthority added in v1.10.2

type UnsafeLocalAuthorityServer

type UnsafeLocalAuthorityServer interface {
	// contains filtered or unexported methods
}

UnsafeLocalAuthorityServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to LocalAuthorityServer will result in compilation errors.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL