Documentation
¶
Index ¶
- Variables
- func RegisterDelegatedIdentityServer(s grpc.ServiceRegistrar, srv DelegatedIdentityServer)
- type DelegatedIdentityClient
- type DelegatedIdentityServer
- type DelegatedIdentity_SubscribeToX509BundlesClient
- type DelegatedIdentity_SubscribeToX509BundlesServer
- type DelegatedIdentity_SubscribeToX509SVIDsClient
- type DelegatedIdentity_SubscribeToX509SVIDsServer
- type SubscribeToX509BundlesRequest
- func (*SubscribeToX509BundlesRequest) Descriptor() ([]byte, []int)deprecated
- func (*SubscribeToX509BundlesRequest) ProtoMessage()
- func (x *SubscribeToX509BundlesRequest) ProtoReflect() protoreflect.Message
- func (x *SubscribeToX509BundlesRequest) Reset()
- func (x *SubscribeToX509BundlesRequest) String() string
- type SubscribeToX509BundlesResponse
- func (*SubscribeToX509BundlesResponse) Descriptor() ([]byte, []int)deprecated
- func (x *SubscribeToX509BundlesResponse) GetCaCertificates() map[string][]byte
- func (*SubscribeToX509BundlesResponse) ProtoMessage()
- func (x *SubscribeToX509BundlesResponse) ProtoReflect() protoreflect.Message
- func (x *SubscribeToX509BundlesResponse) Reset()
- func (x *SubscribeToX509BundlesResponse) String() string
- type SubscribeToX509SVIDsRequest
- func (*SubscribeToX509SVIDsRequest) Descriptor() ([]byte, []int)deprecated
- func (x *SubscribeToX509SVIDsRequest) GetSelectors() []*types.Selector
- func (*SubscribeToX509SVIDsRequest) ProtoMessage()
- func (x *SubscribeToX509SVIDsRequest) ProtoReflect() protoreflect.Message
- func (x *SubscribeToX509SVIDsRequest) Reset()
- func (x *SubscribeToX509SVIDsRequest) String() string
- type SubscribeToX509SVIDsResponse
- func (*SubscribeToX509SVIDsResponse) Descriptor() ([]byte, []int)deprecated
- func (x *SubscribeToX509SVIDsResponse) GetFederatesWith() []string
- func (x *SubscribeToX509SVIDsResponse) GetX509Svids() []*X509SVIDWithKey
- func (*SubscribeToX509SVIDsResponse) ProtoMessage()
- func (x *SubscribeToX509SVIDsResponse) ProtoReflect() protoreflect.Message
- func (x *SubscribeToX509SVIDsResponse) Reset()
- func (x *SubscribeToX509SVIDsResponse) String() string
- type UnimplementedDelegatedIdentityServer
- type UnsafeDelegatedIdentityServer
- type X509SVIDWithKey
- func (*X509SVIDWithKey) Descriptor() ([]byte, []int)deprecated
- func (x *X509SVIDWithKey) GetX509Svid() *types.X509SVID
- func (x *X509SVIDWithKey) GetX509SvidKey() []byte
- func (*X509SVIDWithKey) ProtoMessage()
- func (x *X509SVIDWithKey) ProtoReflect() protoreflect.Message
- func (x *X509SVIDWithKey) Reset()
- func (x *X509SVIDWithKey) String() string
Constants ¶
This section is empty.
Variables ¶
var File_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto protoreflect.FileDescriptor
Functions ¶
func RegisterDelegatedIdentityServer ¶
func RegisterDelegatedIdentityServer(s grpc.ServiceRegistrar, srv DelegatedIdentityServer)
Types ¶
type DelegatedIdentityClient ¶
type DelegatedIdentityClient interface { // Subscribe to get X.509-SVIDs for workloads that match the given selectors. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509SVIDs(ctx context.Context, in *SubscribeToX509SVIDsRequest, opts ...grpc.CallOption) (DelegatedIdentity_SubscribeToX509SVIDsClient, error) // Subscribe to get local and all federated bundles. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509Bundles(ctx context.Context, in *SubscribeToX509BundlesRequest, opts ...grpc.CallOption) (DelegatedIdentity_SubscribeToX509BundlesClient, error) }
DelegatedIdentityClient is the client API for DelegatedIdentity service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
func NewDelegatedIdentityClient ¶
func NewDelegatedIdentityClient(cc grpc.ClientConnInterface) DelegatedIdentityClient
type DelegatedIdentityServer ¶
type DelegatedIdentityServer interface { // Subscribe to get X.509-SVIDs for workloads that match the given selectors. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509SVIDs(*SubscribeToX509SVIDsRequest, DelegatedIdentity_SubscribeToX509SVIDsServer) error // Subscribe to get local and all federated bundles. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509Bundles(*SubscribeToX509BundlesRequest, DelegatedIdentity_SubscribeToX509BundlesServer) error // contains filtered or unexported methods }
DelegatedIdentityServer is the server API for DelegatedIdentity service. All implementations must embed UnimplementedDelegatedIdentityServer for forward compatibility
type DelegatedIdentity_SubscribeToX509BundlesClient ¶
type DelegatedIdentity_SubscribeToX509BundlesClient interface { Recv() (*SubscribeToX509BundlesResponse, error) grpc.ClientStream }
type DelegatedIdentity_SubscribeToX509BundlesServer ¶
type DelegatedIdentity_SubscribeToX509BundlesServer interface { Send(*SubscribeToX509BundlesResponse) error grpc.ServerStream }
type DelegatedIdentity_SubscribeToX509SVIDsClient ¶
type DelegatedIdentity_SubscribeToX509SVIDsClient interface { Recv() (*SubscribeToX509SVIDsResponse, error) grpc.ClientStream }
type DelegatedIdentity_SubscribeToX509SVIDsServer ¶
type DelegatedIdentity_SubscribeToX509SVIDsServer interface { Send(*SubscribeToX509SVIDsResponse) error grpc.ServerStream }
type SubscribeToX509BundlesRequest ¶
type SubscribeToX509BundlesRequest struct {
// contains filtered or unexported fields
}
func (*SubscribeToX509BundlesRequest) Descriptor
deprecated
func (*SubscribeToX509BundlesRequest) Descriptor() ([]byte, []int)
Deprecated: Use SubscribeToX509BundlesRequest.ProtoReflect.Descriptor instead.
func (*SubscribeToX509BundlesRequest) ProtoMessage ¶
func (*SubscribeToX509BundlesRequest) ProtoMessage()
func (*SubscribeToX509BundlesRequest) ProtoReflect ¶
func (x *SubscribeToX509BundlesRequest) ProtoReflect() protoreflect.Message
func (*SubscribeToX509BundlesRequest) Reset ¶
func (x *SubscribeToX509BundlesRequest) Reset()
func (*SubscribeToX509BundlesRequest) String ¶
func (x *SubscribeToX509BundlesRequest) String() string
type SubscribeToX509BundlesResponse ¶
type SubscribeToX509BundlesResponse struct { // A map keyed by trust domain name, with ASN.1 DER-encoded // X.509 CA certificates as the values CaCertificates map[string][]byte `` /* 191-byte string literal not displayed */ // contains filtered or unexported fields }
SubscribeToX509BundlesResponse contains all bundles that the agent is tracking, including the local bundle. When an update occurs, or bundles are added or removed, a new response with the full set of bundles is sent.
func (*SubscribeToX509BundlesResponse) Descriptor
deprecated
func (*SubscribeToX509BundlesResponse) Descriptor() ([]byte, []int)
Deprecated: Use SubscribeToX509BundlesResponse.ProtoReflect.Descriptor instead.
func (*SubscribeToX509BundlesResponse) GetCaCertificates ¶
func (x *SubscribeToX509BundlesResponse) GetCaCertificates() map[string][]byte
func (*SubscribeToX509BundlesResponse) ProtoMessage ¶
func (*SubscribeToX509BundlesResponse) ProtoMessage()
func (*SubscribeToX509BundlesResponse) ProtoReflect ¶
func (x *SubscribeToX509BundlesResponse) ProtoReflect() protoreflect.Message
func (*SubscribeToX509BundlesResponse) Reset ¶
func (x *SubscribeToX509BundlesResponse) Reset()
func (*SubscribeToX509BundlesResponse) String ¶
func (x *SubscribeToX509BundlesResponse) String() string
type SubscribeToX509SVIDsRequest ¶
type SubscribeToX509SVIDsRequest struct { // Required. Selectors describing the workload to subscribe to. Selectors []*types.Selector `protobuf:"bytes,1,rep,name=selectors,proto3" json:"selectors,omitempty"` // contains filtered or unexported fields }
SubscribeToX509SVIDsRequest is used by clients to subscribe the set of SVIDs that any given workload is entitled to. Clients subscribe to a workload's SVIDs by providing a set of selectors describing the workload.
func (*SubscribeToX509SVIDsRequest) Descriptor
deprecated
func (*SubscribeToX509SVIDsRequest) Descriptor() ([]byte, []int)
Deprecated: Use SubscribeToX509SVIDsRequest.ProtoReflect.Descriptor instead.
func (*SubscribeToX509SVIDsRequest) GetSelectors ¶
func (x *SubscribeToX509SVIDsRequest) GetSelectors() []*types.Selector
func (*SubscribeToX509SVIDsRequest) ProtoMessage ¶
func (*SubscribeToX509SVIDsRequest) ProtoMessage()
func (*SubscribeToX509SVIDsRequest) ProtoReflect ¶
func (x *SubscribeToX509SVIDsRequest) ProtoReflect() protoreflect.Message
func (*SubscribeToX509SVIDsRequest) Reset ¶
func (x *SubscribeToX509SVIDsRequest) Reset()
func (*SubscribeToX509SVIDsRequest) String ¶
func (x *SubscribeToX509SVIDsRequest) String() string
type SubscribeToX509SVIDsResponse ¶
type SubscribeToX509SVIDsResponse struct { X509Svids []*X509SVIDWithKey `protobuf:"bytes,1,rep,name=x509_svids,json=x509Svids,proto3" json:"x509_svids,omitempty"` // Names of the trust domains that this workload should federates with. FederatesWith []string `protobuf:"bytes,2,rep,name=federates_with,json=federatesWith,proto3" json:"federates_with,omitempty"` // contains filtered or unexported fields }
func (*SubscribeToX509SVIDsResponse) Descriptor
deprecated
func (*SubscribeToX509SVIDsResponse) Descriptor() ([]byte, []int)
Deprecated: Use SubscribeToX509SVIDsResponse.ProtoReflect.Descriptor instead.
func (*SubscribeToX509SVIDsResponse) GetFederatesWith ¶
func (x *SubscribeToX509SVIDsResponse) GetFederatesWith() []string
func (*SubscribeToX509SVIDsResponse) GetX509Svids ¶
func (x *SubscribeToX509SVIDsResponse) GetX509Svids() []*X509SVIDWithKey
func (*SubscribeToX509SVIDsResponse) ProtoMessage ¶
func (*SubscribeToX509SVIDsResponse) ProtoMessage()
func (*SubscribeToX509SVIDsResponse) ProtoReflect ¶
func (x *SubscribeToX509SVIDsResponse) ProtoReflect() protoreflect.Message
func (*SubscribeToX509SVIDsResponse) Reset ¶
func (x *SubscribeToX509SVIDsResponse) Reset()
func (*SubscribeToX509SVIDsResponse) String ¶
func (x *SubscribeToX509SVIDsResponse) String() string
type UnimplementedDelegatedIdentityServer ¶
type UnimplementedDelegatedIdentityServer struct { }
UnimplementedDelegatedIdentityServer must be embedded to have forward compatible implementations.
func (UnimplementedDelegatedIdentityServer) SubscribeToX509Bundles ¶
func (UnimplementedDelegatedIdentityServer) SubscribeToX509Bundles(*SubscribeToX509BundlesRequest, DelegatedIdentity_SubscribeToX509BundlesServer) error
func (UnimplementedDelegatedIdentityServer) SubscribeToX509SVIDs ¶
func (UnimplementedDelegatedIdentityServer) SubscribeToX509SVIDs(*SubscribeToX509SVIDsRequest, DelegatedIdentity_SubscribeToX509SVIDsServer) error
type UnsafeDelegatedIdentityServer ¶
type UnsafeDelegatedIdentityServer interface {
// contains filtered or unexported methods
}
UnsafeDelegatedIdentityServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to DelegatedIdentityServer will result in compilation errors.
type X509SVIDWithKey ¶
type X509SVIDWithKey struct { // The workload X509-SVID. X509Svid *types.X509SVID `protobuf:"bytes,1,opt,name=x509_svid,json=x509Svid,proto3" json:"x509_svid,omitempty"` // Private key (encoding DER PKCS#8). X509SvidKey []byte `protobuf:"bytes,2,opt,name=x509_svid_key,json=x509SvidKey,proto3" json:"x509_svid_key,omitempty"` // contains filtered or unexported fields }
X.509 SPIFFE Verifiable Identity Document with the private key.
func (*X509SVIDWithKey) Descriptor
deprecated
func (*X509SVIDWithKey) Descriptor() ([]byte, []int)
Deprecated: Use X509SVIDWithKey.ProtoReflect.Descriptor instead.
func (*X509SVIDWithKey) GetX509Svid ¶
func (x *X509SVIDWithKey) GetX509Svid() *types.X509SVID
func (*X509SVIDWithKey) GetX509SvidKey ¶
func (x *X509SVIDWithKey) GetX509SvidKey() []byte
func (*X509SVIDWithKey) ProtoMessage ¶
func (*X509SVIDWithKey) ProtoMessage()
func (*X509SVIDWithKey) ProtoReflect ¶
func (x *X509SVIDWithKey) ProtoReflect() protoreflect.Message
func (*X509SVIDWithKey) Reset ¶
func (x *X509SVIDWithKey) Reset()
func (*X509SVIDWithKey) String ¶
func (x *X509SVIDWithKey) String() string