credentialcomposerv1

package
v1.6.3 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Feb 24, 2023 License: Apache-2.0 Imports: 10 Imported by: 3

Documentation

Index

Constants

This section is empty.

Variables

View Source
var CredentialComposer_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "spire.plugin.server.credentialcomposer.v1.CredentialComposer",
	HandlerType: (*CredentialComposerServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "ComposeServerX509CA",
			Handler:    _CredentialComposer_ComposeServerX509CA_Handler,
		},
		{
			MethodName: "ComposeServerX509SVID",
			Handler:    _CredentialComposer_ComposeServerX509SVID_Handler,
		},
		{
			MethodName: "ComposeAgentX509SVID",
			Handler:    _CredentialComposer_ComposeAgentX509SVID_Handler,
		},
		{
			MethodName: "ComposeWorkloadX509SVID",
			Handler:    _CredentialComposer_ComposeWorkloadX509SVID_Handler,
		},
		{
			MethodName: "ComposeWorkloadJWTSVID",
			Handler:    _CredentialComposer_ComposeWorkloadJWTSVID_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "spire/plugin/server/credentialcomposer/v1/credentialcomposer.proto",
}

CredentialComposer_ServiceDesc is the grpc.ServiceDesc for CredentialComposer service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source
var File_spire_plugin_server_credentialcomposer_v1_credentialcomposer_proto protoreflect.FileDescriptor

Functions

func CredentialComposerPluginServer

func CredentialComposerPluginServer(server CredentialComposerServer) pluginsdk.PluginServer

func RegisterCredentialComposerServer

func RegisterCredentialComposerServer(s grpc.ServiceRegistrar, srv CredentialComposerServer)

Types

type AttributeTypeAndValue

type AttributeTypeAndValue struct {

	// The OID of the attribute (e.g. "1.2.3.4").
	Oid string `protobuf:"bytes,1,opt,name=oid,proto3" json:"oid,omitempty"`
	// The value of the attribute. Only UTF-8 strings are currently supported.
	// this field may be encapsulated in a oneof at a later point.
	StringValue string `protobuf:"bytes,2,opt,name=string_value,json=stringValue,proto3" json:"string_value,omitempty"`
	// contains filtered or unexported fields
}

func (*AttributeTypeAndValue) Descriptor deprecated

func (*AttributeTypeAndValue) Descriptor() ([]byte, []int)

Deprecated: Use AttributeTypeAndValue.ProtoReflect.Descriptor instead.

func (*AttributeTypeAndValue) GetOid

func (x *AttributeTypeAndValue) GetOid() string

func (*AttributeTypeAndValue) GetStringValue

func (x *AttributeTypeAndValue) GetStringValue() string

func (*AttributeTypeAndValue) ProtoMessage

func (*AttributeTypeAndValue) ProtoMessage()

func (*AttributeTypeAndValue) ProtoReflect

func (x *AttributeTypeAndValue) ProtoReflect() protoreflect.Message

func (*AttributeTypeAndValue) Reset

func (x *AttributeTypeAndValue) Reset()

func (*AttributeTypeAndValue) String

func (x *AttributeTypeAndValue) String() string

type ComposeAgentX509SVIDRequest

type ComposeAgentX509SVIDRequest struct {

	// The attributes for the agent X509-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be mutated and used to populate the attributes field in the
	// ComposeAgentX509SVIDResponse.
	Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// The SPIFFE ID of the agent.
	SpiffeId string `protobuf:"bytes,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"`
	// PKIX encoded public key of the agent.
	PublicKey []byte `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeAgentX509SVIDRequest) Descriptor deprecated

func (*ComposeAgentX509SVIDRequest) Descriptor() ([]byte, []int)

Deprecated: Use ComposeAgentX509SVIDRequest.ProtoReflect.Descriptor instead.

func (*ComposeAgentX509SVIDRequest) GetAttributes

func (x *ComposeAgentX509SVIDRequest) GetAttributes() *X509SVIDAttributes

func (*ComposeAgentX509SVIDRequest) GetPublicKey

func (x *ComposeAgentX509SVIDRequest) GetPublicKey() []byte

func (*ComposeAgentX509SVIDRequest) GetSpiffeId

func (x *ComposeAgentX509SVIDRequest) GetSpiffeId() string

func (*ComposeAgentX509SVIDRequest) ProtoMessage

func (*ComposeAgentX509SVIDRequest) ProtoMessage()

func (*ComposeAgentX509SVIDRequest) ProtoReflect

func (*ComposeAgentX509SVIDRequest) Reset

func (x *ComposeAgentX509SVIDRequest) Reset()

func (*ComposeAgentX509SVIDRequest) String

func (x *ComposeAgentX509SVIDRequest) String() string

type ComposeAgentX509SVIDResponse

type ComposeAgentX509SVIDResponse struct {

	// The attributes for the agent X509-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be populated with the mutated attributes field in the
	// ComposeAgentX509SVIDRequest. If this field is not included in the
	// response, the original attributes sent in the request will be used.
	Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeAgentX509SVIDResponse) Descriptor deprecated

func (*ComposeAgentX509SVIDResponse) Descriptor() ([]byte, []int)

Deprecated: Use ComposeAgentX509SVIDResponse.ProtoReflect.Descriptor instead.

func (*ComposeAgentX509SVIDResponse) GetAttributes

func (*ComposeAgentX509SVIDResponse) ProtoMessage

func (*ComposeAgentX509SVIDResponse) ProtoMessage()

func (*ComposeAgentX509SVIDResponse) ProtoReflect

func (*ComposeAgentX509SVIDResponse) Reset

func (x *ComposeAgentX509SVIDResponse) Reset()

func (*ComposeAgentX509SVIDResponse) String

type ComposeServerX509CARequest

type ComposeServerX509CARequest struct {

	// The attributes for the server X509 CA. To maintain forward compatibility
	// with future attribute field additions, these attributes SHOULD be
	// mutated and used to populate the attributes field in the
	// ComposeServerX509CAResponse.
	Attributes *X509CAAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeServerX509CARequest) Descriptor deprecated

func (*ComposeServerX509CARequest) Descriptor() ([]byte, []int)

Deprecated: Use ComposeServerX509CARequest.ProtoReflect.Descriptor instead.

func (*ComposeServerX509CARequest) GetAttributes

func (x *ComposeServerX509CARequest) GetAttributes() *X509CAAttributes

func (*ComposeServerX509CARequest) ProtoMessage

func (*ComposeServerX509CARequest) ProtoMessage()

func (*ComposeServerX509CARequest) ProtoReflect

func (*ComposeServerX509CARequest) Reset

func (x *ComposeServerX509CARequest) Reset()

func (*ComposeServerX509CARequest) String

func (x *ComposeServerX509CARequest) String() string

type ComposeServerX509CAResponse

type ComposeServerX509CAResponse struct {

	// The attributes for the server X509 CA. To maintain forward compatibility
	// with future attribute field additions, these attributes SHOULD be
	// populated with the mutated attributes field in the
	// ComposeServerX509CARequest. If this field is not included in the
	// response, the original attributes sent in the request will be used.
	Attributes *X509CAAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeServerX509CAResponse) Descriptor deprecated

func (*ComposeServerX509CAResponse) Descriptor() ([]byte, []int)

Deprecated: Use ComposeServerX509CAResponse.ProtoReflect.Descriptor instead.

func (*ComposeServerX509CAResponse) GetAttributes

func (x *ComposeServerX509CAResponse) GetAttributes() *X509CAAttributes

func (*ComposeServerX509CAResponse) ProtoMessage

func (*ComposeServerX509CAResponse) ProtoMessage()

func (*ComposeServerX509CAResponse) ProtoReflect

func (*ComposeServerX509CAResponse) Reset

func (x *ComposeServerX509CAResponse) Reset()

func (*ComposeServerX509CAResponse) String

func (x *ComposeServerX509CAResponse) String() string

type ComposeServerX509SVIDRequest

type ComposeServerX509SVIDRequest struct {

	// The attributes for the server X509-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be mutated and used to populate the attributes field in the
	// ComposeServerX509SVIDResponse.
	Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeServerX509SVIDRequest) Descriptor deprecated

func (*ComposeServerX509SVIDRequest) Descriptor() ([]byte, []int)

Deprecated: Use ComposeServerX509SVIDRequest.ProtoReflect.Descriptor instead.

func (*ComposeServerX509SVIDRequest) GetAttributes

func (*ComposeServerX509SVIDRequest) ProtoMessage

func (*ComposeServerX509SVIDRequest) ProtoMessage()

func (*ComposeServerX509SVIDRequest) ProtoReflect

func (*ComposeServerX509SVIDRequest) Reset

func (x *ComposeServerX509SVIDRequest) Reset()

func (*ComposeServerX509SVIDRequest) String

type ComposeServerX509SVIDResponse

type ComposeServerX509SVIDResponse struct {

	// The attributes for the server X509-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be populated with the mutated attributes field in the
	// ComposeServerX509SVIDRequest. If this field is not included in the
	// response, the original attributes sent in the request will be used.
	Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeServerX509SVIDResponse) Descriptor deprecated

func (*ComposeServerX509SVIDResponse) Descriptor() ([]byte, []int)

Deprecated: Use ComposeServerX509SVIDResponse.ProtoReflect.Descriptor instead.

func (*ComposeServerX509SVIDResponse) GetAttributes

func (*ComposeServerX509SVIDResponse) ProtoMessage

func (*ComposeServerX509SVIDResponse) ProtoMessage()

func (*ComposeServerX509SVIDResponse) ProtoReflect

func (*ComposeServerX509SVIDResponse) Reset

func (x *ComposeServerX509SVIDResponse) Reset()

func (*ComposeServerX509SVIDResponse) String

type ComposeWorkloadJWTSVIDRequest

type ComposeWorkloadJWTSVIDRequest struct {

	// The attributes for the workload JWT-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be mutated and used to populate the attributes field in the
	// ComposeWorkloadJWTSVIDResponse.
	Attributes *JWTSVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// The SPIFFE ID of the workload.
	SpiffeId string `protobuf:"bytes,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeWorkloadJWTSVIDRequest) Descriptor deprecated

func (*ComposeWorkloadJWTSVIDRequest) Descriptor() ([]byte, []int)

Deprecated: Use ComposeWorkloadJWTSVIDRequest.ProtoReflect.Descriptor instead.

func (*ComposeWorkloadJWTSVIDRequest) GetAttributes

func (*ComposeWorkloadJWTSVIDRequest) GetSpiffeId

func (x *ComposeWorkloadJWTSVIDRequest) GetSpiffeId() string

func (*ComposeWorkloadJWTSVIDRequest) ProtoMessage

func (*ComposeWorkloadJWTSVIDRequest) ProtoMessage()

func (*ComposeWorkloadJWTSVIDRequest) ProtoReflect

func (*ComposeWorkloadJWTSVIDRequest) Reset

func (x *ComposeWorkloadJWTSVIDRequest) Reset()

func (*ComposeWorkloadJWTSVIDRequest) String

type ComposeWorkloadJWTSVIDResponse

type ComposeWorkloadJWTSVIDResponse struct {

	// The attributes for the workload JWT-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be populated with the mutated attributes field in the
	// ComposeWorkloadJWTSVIDRequest. If this field is not included in the
	// response, the original attributes sent in the request will be used.
	Attributes *JWTSVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeWorkloadJWTSVIDResponse) Descriptor deprecated

func (*ComposeWorkloadJWTSVIDResponse) Descriptor() ([]byte, []int)

Deprecated: Use ComposeWorkloadJWTSVIDResponse.ProtoReflect.Descriptor instead.

func (*ComposeWorkloadJWTSVIDResponse) GetAttributes

func (*ComposeWorkloadJWTSVIDResponse) ProtoMessage

func (*ComposeWorkloadJWTSVIDResponse) ProtoMessage()

func (*ComposeWorkloadJWTSVIDResponse) ProtoReflect

func (*ComposeWorkloadJWTSVIDResponse) Reset

func (x *ComposeWorkloadJWTSVIDResponse) Reset()

func (*ComposeWorkloadJWTSVIDResponse) String

type ComposeWorkloadX509SVIDRequest

type ComposeWorkloadX509SVIDRequest struct {

	// The attributes for the workload X509-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be mutated and used to populate the attributes field in the
	// ComposeWorkloadX509SVIDResponse.
	Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// The SPIFFE ID of the workload.
	SpiffeId string `protobuf:"bytes,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"`
	// PKIX encoded public key of the workload.
	PublicKey []byte `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeWorkloadX509SVIDRequest) Descriptor deprecated

func (*ComposeWorkloadX509SVIDRequest) Descriptor() ([]byte, []int)

Deprecated: Use ComposeWorkloadX509SVIDRequest.ProtoReflect.Descriptor instead.

func (*ComposeWorkloadX509SVIDRequest) GetAttributes

func (*ComposeWorkloadX509SVIDRequest) GetPublicKey

func (x *ComposeWorkloadX509SVIDRequest) GetPublicKey() []byte

func (*ComposeWorkloadX509SVIDRequest) GetSpiffeId

func (x *ComposeWorkloadX509SVIDRequest) GetSpiffeId() string

func (*ComposeWorkloadX509SVIDRequest) ProtoMessage

func (*ComposeWorkloadX509SVIDRequest) ProtoMessage()

func (*ComposeWorkloadX509SVIDRequest) ProtoReflect

func (*ComposeWorkloadX509SVIDRequest) Reset

func (x *ComposeWorkloadX509SVIDRequest) Reset()

func (*ComposeWorkloadX509SVIDRequest) String

type ComposeWorkloadX509SVIDResponse

type ComposeWorkloadX509SVIDResponse struct {

	// The attributes for the workload X509-SVID. To maintain forward
	// compatibility with future attribute field additions, these attributes
	// SHOULD be populated with the mutated attributes field in the
	// ComposeWorkloadX509SVIDRequest. If this message is not included in the
	// response, the original attributes sent in the request will be used.
	Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"`
	// contains filtered or unexported fields
}

func (*ComposeWorkloadX509SVIDResponse) Descriptor deprecated

func (*ComposeWorkloadX509SVIDResponse) Descriptor() ([]byte, []int)

Deprecated: Use ComposeWorkloadX509SVIDResponse.ProtoReflect.Descriptor instead.

func (*ComposeWorkloadX509SVIDResponse) GetAttributes

func (*ComposeWorkloadX509SVIDResponse) ProtoMessage

func (*ComposeWorkloadX509SVIDResponse) ProtoMessage()

func (*ComposeWorkloadX509SVIDResponse) ProtoReflect

func (*ComposeWorkloadX509SVIDResponse) Reset

func (*ComposeWorkloadX509SVIDResponse) String

type CredentialComposerClient

type CredentialComposerClient interface {
	// Composes the SPIRE Server X509 CA. The server will supply the default
	// attributes it will apply to the CA. If the plugin returns an empty
	// response or NOT_IMPLEMENTED, the server will apply the default
	// attributes. Otherwise the returned attributes are used. If a CA is
	// produced that does not conform to the SPIFFE X509-SVID specification for
	// signing certificates, it will be rejected.
	ComposeServerX509CA(ctx context.Context, in *ComposeServerX509CARequest, opts ...grpc.CallOption) (*ComposeServerX509CAResponse, error)
	// Composes the SPIRE Server X509-SVID. The server will supply the default
	// attributes it will apply to the server X509-SVID. If the plugin returns
	// an empty response or NOT_IMPLEMENTED, the server will apply the default
	// attributes. Otherwise the returned attributes are used. If an X509-SVID
	// is produced that does not conform to the SPIFFE X509-SVID specification
	// for leaf certificates, it will be rejected. This function cannot be used
	// to modify the SPIFFE ID of the X509-SVID.
	ComposeServerX509SVID(ctx context.Context, in *ComposeServerX509SVIDRequest, opts ...grpc.CallOption) (*ComposeServerX509SVIDResponse, error)
	// Composes the SPIRE Agent X509-SVID. The server will supply the default
	// attributes it will apply to the agent X509-SVID. If the plugin returns
	// an empty response or NOT_IMPLEMENTED, the server will apply the default
	// attributes. Otherwise the returned attributes are used. If an X509-SVID
	// is produced that does not conform to the SPIFFE X509-SVID specification
	// for leaf certificates, it will be rejected. This function cannot be used
	// to modify the SPIFFE ID of the X509-SVID.
	ComposeAgentX509SVID(ctx context.Context, in *ComposeAgentX509SVIDRequest, opts ...grpc.CallOption) (*ComposeAgentX509SVIDResponse, error)
	// Composes workload X509-SVIDs. The server will supply the default
	// attributes it will apply to the workload X509-SVID. If the plugin
	// returns an empty response or NOT_IMPLEMENTED, the server will apply the
	// default attributes. Otherwise the returned attributes are used. If an
	// X509-SVID is produced that does not conform to the SPIFFE X509-SVID
	// specification for leaf certificates, it will be rejected. This function
	// cannot be used to modify the SPIFFE ID of the X509-SVID.
	ComposeWorkloadX509SVID(ctx context.Context, in *ComposeWorkloadX509SVIDRequest, opts ...grpc.CallOption) (*ComposeWorkloadX509SVIDResponse, error)
	// Composes workload JWT-SVIDs. The server will supply the default
	// attributes it will apply to the workload JWT-SVID. If the plugin
	// returns an empty response or NOT_IMPLEMENTED, the server will apply the
	// default attributes. Otherwise the returned attributes are used. If a
	// JWT-SVID is produced that does not conform to the SPIFFE JWT-SVID
	// specification, it will be rejected. This function cannot be used to
	// modify the SPIFFE ID of the JWT-SVID.
	ComposeWorkloadJWTSVID(ctx context.Context, in *ComposeWorkloadJWTSVIDRequest, opts ...grpc.CallOption) (*ComposeWorkloadJWTSVIDResponse, error)
}

CredentialComposerClient is the client API for CredentialComposer service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

type CredentialComposerPluginClient

type CredentialComposerPluginClient struct {
	CredentialComposerClient
}

func (*CredentialComposerPluginClient) GRPCServiceName

func (c *CredentialComposerPluginClient) GRPCServiceName() string

func (*CredentialComposerPluginClient) InitClient

func (c *CredentialComposerPluginClient) InitClient(conn grpc.ClientConnInterface) interface{}

func (*CredentialComposerPluginClient) IsInitialized

func (c *CredentialComposerPluginClient) IsInitialized() bool

func (CredentialComposerPluginClient) Type

type CredentialComposerServer

type CredentialComposerServer interface {
	// Composes the SPIRE Server X509 CA. The server will supply the default
	// attributes it will apply to the CA. If the plugin returns an empty
	// response or NOT_IMPLEMENTED, the server will apply the default
	// attributes. Otherwise the returned attributes are used. If a CA is
	// produced that does not conform to the SPIFFE X509-SVID specification for
	// signing certificates, it will be rejected.
	ComposeServerX509CA(context.Context, *ComposeServerX509CARequest) (*ComposeServerX509CAResponse, error)
	// Composes the SPIRE Server X509-SVID. The server will supply the default
	// attributes it will apply to the server X509-SVID. If the plugin returns
	// an empty response or NOT_IMPLEMENTED, the server will apply the default
	// attributes. Otherwise the returned attributes are used. If an X509-SVID
	// is produced that does not conform to the SPIFFE X509-SVID specification
	// for leaf certificates, it will be rejected. This function cannot be used
	// to modify the SPIFFE ID of the X509-SVID.
	ComposeServerX509SVID(context.Context, *ComposeServerX509SVIDRequest) (*ComposeServerX509SVIDResponse, error)
	// Composes the SPIRE Agent X509-SVID. The server will supply the default
	// attributes it will apply to the agent X509-SVID. If the plugin returns
	// an empty response or NOT_IMPLEMENTED, the server will apply the default
	// attributes. Otherwise the returned attributes are used. If an X509-SVID
	// is produced that does not conform to the SPIFFE X509-SVID specification
	// for leaf certificates, it will be rejected. This function cannot be used
	// to modify the SPIFFE ID of the X509-SVID.
	ComposeAgentX509SVID(context.Context, *ComposeAgentX509SVIDRequest) (*ComposeAgentX509SVIDResponse, error)
	// Composes workload X509-SVIDs. The server will supply the default
	// attributes it will apply to the workload X509-SVID. If the plugin
	// returns an empty response or NOT_IMPLEMENTED, the server will apply the
	// default attributes. Otherwise the returned attributes are used. If an
	// X509-SVID is produced that does not conform to the SPIFFE X509-SVID
	// specification for leaf certificates, it will be rejected. This function
	// cannot be used to modify the SPIFFE ID of the X509-SVID.
	ComposeWorkloadX509SVID(context.Context, *ComposeWorkloadX509SVIDRequest) (*ComposeWorkloadX509SVIDResponse, error)
	// Composes workload JWT-SVIDs. The server will supply the default
	// attributes it will apply to the workload JWT-SVID. If the plugin
	// returns an empty response or NOT_IMPLEMENTED, the server will apply the
	// default attributes. Otherwise the returned attributes are used. If a
	// JWT-SVID is produced that does not conform to the SPIFFE JWT-SVID
	// specification, it will be rejected. This function cannot be used to
	// modify the SPIFFE ID of the JWT-SVID.
	ComposeWorkloadJWTSVID(context.Context, *ComposeWorkloadJWTSVIDRequest) (*ComposeWorkloadJWTSVIDResponse, error)
	// contains filtered or unexported methods
}

CredentialComposerServer is the server API for CredentialComposer service. All implementations must embed UnimplementedCredentialComposerServer for forward compatibility

type DistinguishedName

type DistinguishedName struct {

	// Zero or more country designations.
	Country []string `protobuf:"bytes,1,rep,name=country,proto3" json:"country,omitempty"`
	// Zero or more organization designations.
	Organization []string `protobuf:"bytes,2,rep,name=organization,proto3" json:"organization,omitempty"`
	// Zero or more organizational unit designations.
	OrganizationalUnit []string `protobuf:"bytes,3,rep,name=organizational_unit,json=organizationalUnit,proto3" json:"organizational_unit,omitempty"`
	// Zero or more locality designations.
	Locality []string `protobuf:"bytes,4,rep,name=locality,proto3" json:"locality,omitempty"`
	// Zero or more province designations.
	Province []string `protobuf:"bytes,5,rep,name=province,proto3" json:"province,omitempty"`
	// Zero or more street address designations.
	StreetAddress []string `protobuf:"bytes,6,rep,name=street_address,json=streetAddress,proto3" json:"street_address,omitempty"`
	// Zero or more postal code designations.
	PostalCode []string `protobuf:"bytes,7,rep,name=postal_code,json=postalCode,proto3" json:"postal_code,omitempty"`
	// The serial number designation. The attribute is only set if this field
	// is non-empty.
	SerialNumber string `protobuf:"bytes,8,opt,name=serial_number,json=serialNumber,proto3" json:"serial_number,omitempty"`
	// The common name designation. The attribute is only set if this field is
	// non-empty.
	CommonName string `protobuf:"bytes,9,opt,name=common_name,json=commonName,proto3" json:"common_name,omitempty"`
	// Extra names, determined by oid and value, to be added to the
	// distinguished names. This field is to support names not covered by the
	// DistinguishedName message. It will override values specified in other
	// fields in the DistinguishedName if the attributes overlap.
	ExtraNames []*AttributeTypeAndValue `protobuf:"bytes,10,rep,name=extra_names,json=extraNames,proto3" json:"extra_names,omitempty"`
	// contains filtered or unexported fields
}

func (*DistinguishedName) Descriptor deprecated

func (*DistinguishedName) Descriptor() ([]byte, []int)

Deprecated: Use DistinguishedName.ProtoReflect.Descriptor instead.

func (*DistinguishedName) GetCommonName

func (x *DistinguishedName) GetCommonName() string

func (*DistinguishedName) GetCountry

func (x *DistinguishedName) GetCountry() []string

func (*DistinguishedName) GetExtraNames

func (x *DistinguishedName) GetExtraNames() []*AttributeTypeAndValue

func (*DistinguishedName) GetLocality

func (x *DistinguishedName) GetLocality() []string

func (*DistinguishedName) GetOrganization

func (x *DistinguishedName) GetOrganization() []string

func (*DistinguishedName) GetOrganizationalUnit

func (x *DistinguishedName) GetOrganizationalUnit() []string

func (*DistinguishedName) GetPostalCode

func (x *DistinguishedName) GetPostalCode() []string

func (*DistinguishedName) GetProvince

func (x *DistinguishedName) GetProvince() []string

func (*DistinguishedName) GetSerialNumber

func (x *DistinguishedName) GetSerialNumber() string

func (*DistinguishedName) GetStreetAddress

func (x *DistinguishedName) GetStreetAddress() []string

func (*DistinguishedName) ProtoMessage

func (*DistinguishedName) ProtoMessage()

func (*DistinguishedName) ProtoReflect

func (x *DistinguishedName) ProtoReflect() protoreflect.Message

func (*DistinguishedName) Reset

func (x *DistinguishedName) Reset()

func (*DistinguishedName) String

func (x *DistinguishedName) String() string

type JWTSVIDAttributes

type JWTSVIDAttributes struct {

	// The JWT-SVID claims. Returned attributes must contain all of the
	// claims required by the JWT-SVID specification:
	//
	// https://github.com/spiffe/spiffe/blob/main/standards/JWT-SVID.md
	//
	// The subject claim (i.e. SPIFFE ID) cannot be overriden.
	Claims *structpb.Struct `protobuf:"bytes,1,opt,name=claims,proto3" json:"claims,omitempty"`
	// contains filtered or unexported fields
}

func (*JWTSVIDAttributes) Descriptor deprecated

func (*JWTSVIDAttributes) Descriptor() ([]byte, []int)

Deprecated: Use JWTSVIDAttributes.ProtoReflect.Descriptor instead.

func (*JWTSVIDAttributes) GetClaims

func (x *JWTSVIDAttributes) GetClaims() *structpb.Struct

func (*JWTSVIDAttributes) ProtoMessage

func (*JWTSVIDAttributes) ProtoMessage()

func (*JWTSVIDAttributes) ProtoReflect

func (x *JWTSVIDAttributes) ProtoReflect() protoreflect.Message

func (*JWTSVIDAttributes) Reset

func (x *JWTSVIDAttributes) Reset()

func (*JWTSVIDAttributes) String

func (x *JWTSVIDAttributes) String() string

type UnimplementedCredentialComposerServer

type UnimplementedCredentialComposerServer struct {
}

UnimplementedCredentialComposerServer must be embedded to have forward compatible implementations.

func (UnimplementedCredentialComposerServer) ComposeAgentX509SVID

func (UnimplementedCredentialComposerServer) ComposeServerX509CA

type UnsafeCredentialComposerServer

type UnsafeCredentialComposerServer interface {
	// contains filtered or unexported methods
}

UnsafeCredentialComposerServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to CredentialComposerServer will result in compilation errors.

type X509CAAttributes

type X509CAAttributes struct {

	// The subject of the X509 CA.
	Subject *DistinguishedName `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"`
	// Zero or more policy identifiers (OIDs) to apply to the CA.
	PolicyIdentifiers []string `protobuf:"bytes,2,rep,name=policy_identifiers,json=policyIdentifiers,proto3" json:"policy_identifiers,omitempty"`
	// Zero or more extensions to apply to the X509 CA. These will override
	// any extensions otherwise added by the other fields.
	ExtraExtensions []*X509Extension `protobuf:"bytes,3,rep,name=extra_extensions,json=extraExtensions,proto3" json:"extra_extensions,omitempty"`
	// contains filtered or unexported fields
}

func (*X509CAAttributes) Descriptor deprecated

func (*X509CAAttributes) Descriptor() ([]byte, []int)

Deprecated: Use X509CAAttributes.ProtoReflect.Descriptor instead.

func (*X509CAAttributes) GetExtraExtensions

func (x *X509CAAttributes) GetExtraExtensions() []*X509Extension

func (*X509CAAttributes) GetPolicyIdentifiers

func (x *X509CAAttributes) GetPolicyIdentifiers() []string

func (*X509CAAttributes) GetSubject

func (x *X509CAAttributes) GetSubject() *DistinguishedName

func (*X509CAAttributes) ProtoMessage

func (*X509CAAttributes) ProtoMessage()

func (*X509CAAttributes) ProtoReflect

func (x *X509CAAttributes) ProtoReflect() protoreflect.Message

func (*X509CAAttributes) Reset

func (x *X509CAAttributes) Reset()

func (*X509CAAttributes) String

func (x *X509CAAttributes) String() string

type X509Extension

type X509Extension struct {

	// The OID of the X.509 extension (e.g. "1.2.3.4")
	Oid string `protobuf:"bytes,1,opt,name=oid,proto3" json:"oid,omitempty"`
	// Opaque value of the extension. No validity checking is performed on
	// this value. Plugin implementors must ensure they are providing well
	// formed values for the given extension OID.
	Value []byte `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
	// Whether or not the extension is critical, i.e., must be
	// handled/understood by verifiers or not.
	Critical bool `protobuf:"varint,3,opt,name=critical,proto3" json:"critical,omitempty"`
	// contains filtered or unexported fields
}

func (*X509Extension) Descriptor deprecated

func (*X509Extension) Descriptor() ([]byte, []int)

Deprecated: Use X509Extension.ProtoReflect.Descriptor instead.

func (*X509Extension) GetCritical

func (x *X509Extension) GetCritical() bool

func (*X509Extension) GetOid

func (x *X509Extension) GetOid() string

func (*X509Extension) GetValue

func (x *X509Extension) GetValue() []byte

func (*X509Extension) ProtoMessage

func (*X509Extension) ProtoMessage()

func (*X509Extension) ProtoReflect

func (x *X509Extension) ProtoReflect() protoreflect.Message

func (*X509Extension) Reset

func (x *X509Extension) Reset()

func (*X509Extension) String

func (x *X509Extension) String() string

type X509SVIDAttributes

type X509SVIDAttributes struct {

	// The subject of the X509-SVID.
	Subject *DistinguishedName `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"`
	// Zero or more DNS SANs to apply to the X509-SVID.
	DnsSans []string `protobuf:"bytes,2,rep,name=dns_sans,json=dnsSans,proto3" json:"dns_sans,omitempty"`
	// Zero or more extensions to apply to the X509-SVID . These will override
	// any extensions otherwise added by the other fields. This field cannot
	// be used to change the URI SAN of the X509-SVID (i.e. the SPIFFE ID).
	ExtraExtensions []*X509Extension `protobuf:"bytes,3,rep,name=extra_extensions,json=extraExtensions,proto3" json:"extra_extensions,omitempty"`
	// contains filtered or unexported fields
}

func (*X509SVIDAttributes) Descriptor deprecated

func (*X509SVIDAttributes) Descriptor() ([]byte, []int)

Deprecated: Use X509SVIDAttributes.ProtoReflect.Descriptor instead.

func (*X509SVIDAttributes) GetDnsSans

func (x *X509SVIDAttributes) GetDnsSans() []string

func (*X509SVIDAttributes) GetExtraExtensions

func (x *X509SVIDAttributes) GetExtraExtensions() []*X509Extension

func (*X509SVIDAttributes) GetSubject

func (x *X509SVIDAttributes) GetSubject() *DistinguishedName

func (*X509SVIDAttributes) ProtoMessage

func (*X509SVIDAttributes) ProtoMessage()

func (*X509SVIDAttributes) ProtoReflect

func (x *X509SVIDAttributes) ProtoReflect() protoreflect.Message

func (*X509SVIDAttributes) Reset

func (x *X509SVIDAttributes) Reset()

func (*X509SVIDAttributes) String

func (x *X509SVIDAttributes) String() string

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL