Documentation ¶
Index ¶
- Variables
- func CredentialComposerPluginServer(server CredentialComposerServer) pluginsdk.PluginServer
- func RegisterCredentialComposerServer(s grpc.ServiceRegistrar, srv CredentialComposerServer)
- type AttributeTypeAndValue
- func (*AttributeTypeAndValue) Descriptor() ([]byte, []int)deprecated
- func (x *AttributeTypeAndValue) GetOid() string
- func (x *AttributeTypeAndValue) GetStringValue() string
- func (*AttributeTypeAndValue) ProtoMessage()
- func (x *AttributeTypeAndValue) ProtoReflect() protoreflect.Message
- func (x *AttributeTypeAndValue) Reset()
- func (x *AttributeTypeAndValue) String() string
- type ComposeAgentX509SVIDRequest
- func (*ComposeAgentX509SVIDRequest) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeAgentX509SVIDRequest) GetAttributes() *X509SVIDAttributes
- func (x *ComposeAgentX509SVIDRequest) GetPublicKey() []byte
- func (x *ComposeAgentX509SVIDRequest) GetSpiffeId() string
- func (*ComposeAgentX509SVIDRequest) ProtoMessage()
- func (x *ComposeAgentX509SVIDRequest) ProtoReflect() protoreflect.Message
- func (x *ComposeAgentX509SVIDRequest) Reset()
- func (x *ComposeAgentX509SVIDRequest) String() string
- type ComposeAgentX509SVIDResponse
- func (*ComposeAgentX509SVIDResponse) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeAgentX509SVIDResponse) GetAttributes() *X509SVIDAttributes
- func (*ComposeAgentX509SVIDResponse) ProtoMessage()
- func (x *ComposeAgentX509SVIDResponse) ProtoReflect() protoreflect.Message
- func (x *ComposeAgentX509SVIDResponse) Reset()
- func (x *ComposeAgentX509SVIDResponse) String() string
- type ComposeServerX509CARequest
- func (*ComposeServerX509CARequest) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeServerX509CARequest) GetAttributes() *X509CAAttributes
- func (*ComposeServerX509CARequest) ProtoMessage()
- func (x *ComposeServerX509CARequest) ProtoReflect() protoreflect.Message
- func (x *ComposeServerX509CARequest) Reset()
- func (x *ComposeServerX509CARequest) String() string
- type ComposeServerX509CAResponse
- func (*ComposeServerX509CAResponse) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeServerX509CAResponse) GetAttributes() *X509CAAttributes
- func (*ComposeServerX509CAResponse) ProtoMessage()
- func (x *ComposeServerX509CAResponse) ProtoReflect() protoreflect.Message
- func (x *ComposeServerX509CAResponse) Reset()
- func (x *ComposeServerX509CAResponse) String() string
- type ComposeServerX509SVIDRequest
- func (*ComposeServerX509SVIDRequest) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeServerX509SVIDRequest) GetAttributes() *X509SVIDAttributes
- func (*ComposeServerX509SVIDRequest) ProtoMessage()
- func (x *ComposeServerX509SVIDRequest) ProtoReflect() protoreflect.Message
- func (x *ComposeServerX509SVIDRequest) Reset()
- func (x *ComposeServerX509SVIDRequest) String() string
- type ComposeServerX509SVIDResponse
- func (*ComposeServerX509SVIDResponse) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeServerX509SVIDResponse) GetAttributes() *X509SVIDAttributes
- func (*ComposeServerX509SVIDResponse) ProtoMessage()
- func (x *ComposeServerX509SVIDResponse) ProtoReflect() protoreflect.Message
- func (x *ComposeServerX509SVIDResponse) Reset()
- func (x *ComposeServerX509SVIDResponse) String() string
- type ComposeWorkloadJWTSVIDRequest
- func (*ComposeWorkloadJWTSVIDRequest) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeWorkloadJWTSVIDRequest) GetAttributes() *JWTSVIDAttributes
- func (x *ComposeWorkloadJWTSVIDRequest) GetSpiffeId() string
- func (*ComposeWorkloadJWTSVIDRequest) ProtoMessage()
- func (x *ComposeWorkloadJWTSVIDRequest) ProtoReflect() protoreflect.Message
- func (x *ComposeWorkloadJWTSVIDRequest) Reset()
- func (x *ComposeWorkloadJWTSVIDRequest) String() string
- type ComposeWorkloadJWTSVIDResponse
- func (*ComposeWorkloadJWTSVIDResponse) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeWorkloadJWTSVIDResponse) GetAttributes() *JWTSVIDAttributes
- func (*ComposeWorkloadJWTSVIDResponse) ProtoMessage()
- func (x *ComposeWorkloadJWTSVIDResponse) ProtoReflect() protoreflect.Message
- func (x *ComposeWorkloadJWTSVIDResponse) Reset()
- func (x *ComposeWorkloadJWTSVIDResponse) String() string
- type ComposeWorkloadX509SVIDRequest
- func (*ComposeWorkloadX509SVIDRequest) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeWorkloadX509SVIDRequest) GetAttributes() *X509SVIDAttributes
- func (x *ComposeWorkloadX509SVIDRequest) GetPublicKey() []byte
- func (x *ComposeWorkloadX509SVIDRequest) GetSpiffeId() string
- func (*ComposeWorkloadX509SVIDRequest) ProtoMessage()
- func (x *ComposeWorkloadX509SVIDRequest) ProtoReflect() protoreflect.Message
- func (x *ComposeWorkloadX509SVIDRequest) Reset()
- func (x *ComposeWorkloadX509SVIDRequest) String() string
- type ComposeWorkloadX509SVIDResponse
- func (*ComposeWorkloadX509SVIDResponse) Descriptor() ([]byte, []int)deprecated
- func (x *ComposeWorkloadX509SVIDResponse) GetAttributes() *X509SVIDAttributes
- func (*ComposeWorkloadX509SVIDResponse) ProtoMessage()
- func (x *ComposeWorkloadX509SVIDResponse) ProtoReflect() protoreflect.Message
- func (x *ComposeWorkloadX509SVIDResponse) Reset()
- func (x *ComposeWorkloadX509SVIDResponse) String() string
- type CredentialComposerClient
- type CredentialComposerPluginClient
- type CredentialComposerServer
- type DistinguishedName
- func (*DistinguishedName) Descriptor() ([]byte, []int)deprecated
- func (x *DistinguishedName) GetCommonName() string
- func (x *DistinguishedName) GetCountry() []string
- func (x *DistinguishedName) GetExtraNames() []*AttributeTypeAndValue
- func (x *DistinguishedName) GetLocality() []string
- func (x *DistinguishedName) GetOrganization() []string
- func (x *DistinguishedName) GetOrganizationalUnit() []string
- func (x *DistinguishedName) GetPostalCode() []string
- func (x *DistinguishedName) GetProvince() []string
- func (x *DistinguishedName) GetSerialNumber() string
- func (x *DistinguishedName) GetStreetAddress() []string
- func (*DistinguishedName) ProtoMessage()
- func (x *DistinguishedName) ProtoReflect() protoreflect.Message
- func (x *DistinguishedName) Reset()
- func (x *DistinguishedName) String() string
- type JWTSVIDAttributes
- func (*JWTSVIDAttributes) Descriptor() ([]byte, []int)deprecated
- func (x *JWTSVIDAttributes) GetClaims() *structpb.Struct
- func (*JWTSVIDAttributes) ProtoMessage()
- func (x *JWTSVIDAttributes) ProtoReflect() protoreflect.Message
- func (x *JWTSVIDAttributes) Reset()
- func (x *JWTSVIDAttributes) String() string
- type UnimplementedCredentialComposerServer
- func (UnimplementedCredentialComposerServer) ComposeAgentX509SVID(context.Context, *ComposeAgentX509SVIDRequest) (*ComposeAgentX509SVIDResponse, error)
- func (UnimplementedCredentialComposerServer) ComposeServerX509CA(context.Context, *ComposeServerX509CARequest) (*ComposeServerX509CAResponse, error)
- func (UnimplementedCredentialComposerServer) ComposeServerX509SVID(context.Context, *ComposeServerX509SVIDRequest) (*ComposeServerX509SVIDResponse, error)
- func (UnimplementedCredentialComposerServer) ComposeWorkloadJWTSVID(context.Context, *ComposeWorkloadJWTSVIDRequest) (*ComposeWorkloadJWTSVIDResponse, error)
- func (UnimplementedCredentialComposerServer) ComposeWorkloadX509SVID(context.Context, *ComposeWorkloadX509SVIDRequest) (*ComposeWorkloadX509SVIDResponse, error)
- type UnsafeCredentialComposerServer
- type X509CAAttributes
- func (*X509CAAttributes) Descriptor() ([]byte, []int)deprecated
- func (x *X509CAAttributes) GetExtraExtensions() []*X509Extension
- func (x *X509CAAttributes) GetPolicyIdentifiers() []string
- func (x *X509CAAttributes) GetSubject() *DistinguishedName
- func (*X509CAAttributes) ProtoMessage()
- func (x *X509CAAttributes) ProtoReflect() protoreflect.Message
- func (x *X509CAAttributes) Reset()
- func (x *X509CAAttributes) String() string
- type X509Extension
- func (*X509Extension) Descriptor() ([]byte, []int)deprecated
- func (x *X509Extension) GetCritical() bool
- func (x *X509Extension) GetOid() string
- func (x *X509Extension) GetValue() []byte
- func (*X509Extension) ProtoMessage()
- func (x *X509Extension) ProtoReflect() protoreflect.Message
- func (x *X509Extension) Reset()
- func (x *X509Extension) String() string
- type X509SVIDAttributes
- func (*X509SVIDAttributes) Descriptor() ([]byte, []int)deprecated
- func (x *X509SVIDAttributes) GetDnsSans() []string
- func (x *X509SVIDAttributes) GetExtraExtensions() []*X509Extension
- func (x *X509SVIDAttributes) GetSubject() *DistinguishedName
- func (*X509SVIDAttributes) ProtoMessage()
- func (x *X509SVIDAttributes) ProtoReflect() protoreflect.Message
- func (x *X509SVIDAttributes) Reset()
- func (x *X509SVIDAttributes) String() string
Constants ¶
This section is empty.
Variables ¶
var CredentialComposer_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.plugin.server.credentialcomposer.v1.CredentialComposer", HandlerType: (*CredentialComposerServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "ComposeServerX509CA", Handler: _CredentialComposer_ComposeServerX509CA_Handler, }, { MethodName: "ComposeServerX509SVID", Handler: _CredentialComposer_ComposeServerX509SVID_Handler, }, { MethodName: "ComposeAgentX509SVID", Handler: _CredentialComposer_ComposeAgentX509SVID_Handler, }, { MethodName: "ComposeWorkloadX509SVID", Handler: _CredentialComposer_ComposeWorkloadX509SVID_Handler, }, { MethodName: "ComposeWorkloadJWTSVID", Handler: _CredentialComposer_ComposeWorkloadJWTSVID_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/plugin/server/credentialcomposer/v1/credentialcomposer.proto", }
CredentialComposer_ServiceDesc is the grpc.ServiceDesc for CredentialComposer service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)
var File_spire_plugin_server_credentialcomposer_v1_credentialcomposer_proto protoreflect.FileDescriptor
Functions ¶
func CredentialComposerPluginServer ¶
func CredentialComposerPluginServer(server CredentialComposerServer) pluginsdk.PluginServer
func RegisterCredentialComposerServer ¶
func RegisterCredentialComposerServer(s grpc.ServiceRegistrar, srv CredentialComposerServer)
Types ¶
type AttributeTypeAndValue ¶
type AttributeTypeAndValue struct { // The OID of the attribute (e.g. "1.2.3.4"). Oid string `protobuf:"bytes,1,opt,name=oid,proto3" json:"oid,omitempty"` // The value of the attribute. Only UTF-8 strings are currently supported. // this field may be encapsulated in a oneof at a later point. StringValue string `protobuf:"bytes,2,opt,name=string_value,json=stringValue,proto3" json:"string_value,omitempty"` // contains filtered or unexported fields }
func (*AttributeTypeAndValue) Descriptor
deprecated
func (*AttributeTypeAndValue) Descriptor() ([]byte, []int)
Deprecated: Use AttributeTypeAndValue.ProtoReflect.Descriptor instead.
func (*AttributeTypeAndValue) GetOid ¶
func (x *AttributeTypeAndValue) GetOid() string
func (*AttributeTypeAndValue) GetStringValue ¶
func (x *AttributeTypeAndValue) GetStringValue() string
func (*AttributeTypeAndValue) ProtoMessage ¶
func (*AttributeTypeAndValue) ProtoMessage()
func (*AttributeTypeAndValue) ProtoReflect ¶
func (x *AttributeTypeAndValue) ProtoReflect() protoreflect.Message
func (*AttributeTypeAndValue) Reset ¶
func (x *AttributeTypeAndValue) Reset()
func (*AttributeTypeAndValue) String ¶
func (x *AttributeTypeAndValue) String() string
type ComposeAgentX509SVIDRequest ¶
type ComposeAgentX509SVIDRequest struct { // The attributes for the agent X509-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be mutated and used to populate the attributes field in the // ComposeAgentX509SVIDResponse. Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // The SPIFFE ID of the agent. SpiffeId string `protobuf:"bytes,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"` // PKIX encoded public key of the agent. PublicKey []byte `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"` // contains filtered or unexported fields }
func (*ComposeAgentX509SVIDRequest) Descriptor
deprecated
func (*ComposeAgentX509SVIDRequest) Descriptor() ([]byte, []int)
Deprecated: Use ComposeAgentX509SVIDRequest.ProtoReflect.Descriptor instead.
func (*ComposeAgentX509SVIDRequest) GetAttributes ¶
func (x *ComposeAgentX509SVIDRequest) GetAttributes() *X509SVIDAttributes
func (*ComposeAgentX509SVIDRequest) GetPublicKey ¶
func (x *ComposeAgentX509SVIDRequest) GetPublicKey() []byte
func (*ComposeAgentX509SVIDRequest) GetSpiffeId ¶
func (x *ComposeAgentX509SVIDRequest) GetSpiffeId() string
func (*ComposeAgentX509SVIDRequest) ProtoMessage ¶
func (*ComposeAgentX509SVIDRequest) ProtoMessage()
func (*ComposeAgentX509SVIDRequest) ProtoReflect ¶
func (x *ComposeAgentX509SVIDRequest) ProtoReflect() protoreflect.Message
func (*ComposeAgentX509SVIDRequest) Reset ¶
func (x *ComposeAgentX509SVIDRequest) Reset()
func (*ComposeAgentX509SVIDRequest) String ¶
func (x *ComposeAgentX509SVIDRequest) String() string
type ComposeAgentX509SVIDResponse ¶
type ComposeAgentX509SVIDResponse struct { // The attributes for the agent X509-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be populated with the mutated attributes field in the // ComposeAgentX509SVIDRequest. If this field is not included in the // response, the original attributes sent in the request will be used. Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // contains filtered or unexported fields }
func (*ComposeAgentX509SVIDResponse) Descriptor
deprecated
func (*ComposeAgentX509SVIDResponse) Descriptor() ([]byte, []int)
Deprecated: Use ComposeAgentX509SVIDResponse.ProtoReflect.Descriptor instead.
func (*ComposeAgentX509SVIDResponse) GetAttributes ¶
func (x *ComposeAgentX509SVIDResponse) GetAttributes() *X509SVIDAttributes
func (*ComposeAgentX509SVIDResponse) ProtoMessage ¶
func (*ComposeAgentX509SVIDResponse) ProtoMessage()
func (*ComposeAgentX509SVIDResponse) ProtoReflect ¶
func (x *ComposeAgentX509SVIDResponse) ProtoReflect() protoreflect.Message
func (*ComposeAgentX509SVIDResponse) Reset ¶
func (x *ComposeAgentX509SVIDResponse) Reset()
func (*ComposeAgentX509SVIDResponse) String ¶
func (x *ComposeAgentX509SVIDResponse) String() string
type ComposeServerX509CARequest ¶
type ComposeServerX509CARequest struct { // The attributes for the server X509 CA. To maintain forward compatibility // with future attribute field additions, these attributes SHOULD be // mutated and used to populate the attributes field in the // ComposeServerX509CAResponse. Attributes *X509CAAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // contains filtered or unexported fields }
func (*ComposeServerX509CARequest) Descriptor
deprecated
func (*ComposeServerX509CARequest) Descriptor() ([]byte, []int)
Deprecated: Use ComposeServerX509CARequest.ProtoReflect.Descriptor instead.
func (*ComposeServerX509CARequest) GetAttributes ¶
func (x *ComposeServerX509CARequest) GetAttributes() *X509CAAttributes
func (*ComposeServerX509CARequest) ProtoMessage ¶
func (*ComposeServerX509CARequest) ProtoMessage()
func (*ComposeServerX509CARequest) ProtoReflect ¶
func (x *ComposeServerX509CARequest) ProtoReflect() protoreflect.Message
func (*ComposeServerX509CARequest) Reset ¶
func (x *ComposeServerX509CARequest) Reset()
func (*ComposeServerX509CARequest) String ¶
func (x *ComposeServerX509CARequest) String() string
type ComposeServerX509CAResponse ¶
type ComposeServerX509CAResponse struct { // The attributes for the server X509 CA. To maintain forward compatibility // with future attribute field additions, these attributes SHOULD be // populated with the mutated attributes field in the // ComposeServerX509CARequest. If this field is not included in the // response, the original attributes sent in the request will be used. Attributes *X509CAAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // contains filtered or unexported fields }
func (*ComposeServerX509CAResponse) Descriptor
deprecated
func (*ComposeServerX509CAResponse) Descriptor() ([]byte, []int)
Deprecated: Use ComposeServerX509CAResponse.ProtoReflect.Descriptor instead.
func (*ComposeServerX509CAResponse) GetAttributes ¶
func (x *ComposeServerX509CAResponse) GetAttributes() *X509CAAttributes
func (*ComposeServerX509CAResponse) ProtoMessage ¶
func (*ComposeServerX509CAResponse) ProtoMessage()
func (*ComposeServerX509CAResponse) ProtoReflect ¶
func (x *ComposeServerX509CAResponse) ProtoReflect() protoreflect.Message
func (*ComposeServerX509CAResponse) Reset ¶
func (x *ComposeServerX509CAResponse) Reset()
func (*ComposeServerX509CAResponse) String ¶
func (x *ComposeServerX509CAResponse) String() string
type ComposeServerX509SVIDRequest ¶
type ComposeServerX509SVIDRequest struct { // The attributes for the server X509-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be mutated and used to populate the attributes field in the // ComposeServerX509SVIDResponse. Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // contains filtered or unexported fields }
func (*ComposeServerX509SVIDRequest) Descriptor
deprecated
func (*ComposeServerX509SVIDRequest) Descriptor() ([]byte, []int)
Deprecated: Use ComposeServerX509SVIDRequest.ProtoReflect.Descriptor instead.
func (*ComposeServerX509SVIDRequest) GetAttributes ¶
func (x *ComposeServerX509SVIDRequest) GetAttributes() *X509SVIDAttributes
func (*ComposeServerX509SVIDRequest) ProtoMessage ¶
func (*ComposeServerX509SVIDRequest) ProtoMessage()
func (*ComposeServerX509SVIDRequest) ProtoReflect ¶
func (x *ComposeServerX509SVIDRequest) ProtoReflect() protoreflect.Message
func (*ComposeServerX509SVIDRequest) Reset ¶
func (x *ComposeServerX509SVIDRequest) Reset()
func (*ComposeServerX509SVIDRequest) String ¶
func (x *ComposeServerX509SVIDRequest) String() string
type ComposeServerX509SVIDResponse ¶
type ComposeServerX509SVIDResponse struct { // The attributes for the server X509-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be populated with the mutated attributes field in the // ComposeServerX509SVIDRequest. If this field is not included in the // response, the original attributes sent in the request will be used. Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // contains filtered or unexported fields }
func (*ComposeServerX509SVIDResponse) Descriptor
deprecated
func (*ComposeServerX509SVIDResponse) Descriptor() ([]byte, []int)
Deprecated: Use ComposeServerX509SVIDResponse.ProtoReflect.Descriptor instead.
func (*ComposeServerX509SVIDResponse) GetAttributes ¶
func (x *ComposeServerX509SVIDResponse) GetAttributes() *X509SVIDAttributes
func (*ComposeServerX509SVIDResponse) ProtoMessage ¶
func (*ComposeServerX509SVIDResponse) ProtoMessage()
func (*ComposeServerX509SVIDResponse) ProtoReflect ¶
func (x *ComposeServerX509SVIDResponse) ProtoReflect() protoreflect.Message
func (*ComposeServerX509SVIDResponse) Reset ¶
func (x *ComposeServerX509SVIDResponse) Reset()
func (*ComposeServerX509SVIDResponse) String ¶
func (x *ComposeServerX509SVIDResponse) String() string
type ComposeWorkloadJWTSVIDRequest ¶
type ComposeWorkloadJWTSVIDRequest struct { // The attributes for the workload JWT-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be mutated and used to populate the attributes field in the // ComposeWorkloadJWTSVIDResponse. Attributes *JWTSVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // The SPIFFE ID of the workload. SpiffeId string `protobuf:"bytes,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"` // contains filtered or unexported fields }
func (*ComposeWorkloadJWTSVIDRequest) Descriptor
deprecated
func (*ComposeWorkloadJWTSVIDRequest) Descriptor() ([]byte, []int)
Deprecated: Use ComposeWorkloadJWTSVIDRequest.ProtoReflect.Descriptor instead.
func (*ComposeWorkloadJWTSVIDRequest) GetAttributes ¶
func (x *ComposeWorkloadJWTSVIDRequest) GetAttributes() *JWTSVIDAttributes
func (*ComposeWorkloadJWTSVIDRequest) GetSpiffeId ¶
func (x *ComposeWorkloadJWTSVIDRequest) GetSpiffeId() string
func (*ComposeWorkloadJWTSVIDRequest) ProtoMessage ¶
func (*ComposeWorkloadJWTSVIDRequest) ProtoMessage()
func (*ComposeWorkloadJWTSVIDRequest) ProtoReflect ¶
func (x *ComposeWorkloadJWTSVIDRequest) ProtoReflect() protoreflect.Message
func (*ComposeWorkloadJWTSVIDRequest) Reset ¶
func (x *ComposeWorkloadJWTSVIDRequest) Reset()
func (*ComposeWorkloadJWTSVIDRequest) String ¶
func (x *ComposeWorkloadJWTSVIDRequest) String() string
type ComposeWorkloadJWTSVIDResponse ¶
type ComposeWorkloadJWTSVIDResponse struct { // The attributes for the workload JWT-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be populated with the mutated attributes field in the // ComposeWorkloadJWTSVIDRequest. If this field is not included in the // response, the original attributes sent in the request will be used. Attributes *JWTSVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // contains filtered or unexported fields }
func (*ComposeWorkloadJWTSVIDResponse) Descriptor
deprecated
func (*ComposeWorkloadJWTSVIDResponse) Descriptor() ([]byte, []int)
Deprecated: Use ComposeWorkloadJWTSVIDResponse.ProtoReflect.Descriptor instead.
func (*ComposeWorkloadJWTSVIDResponse) GetAttributes ¶
func (x *ComposeWorkloadJWTSVIDResponse) GetAttributes() *JWTSVIDAttributes
func (*ComposeWorkloadJWTSVIDResponse) ProtoMessage ¶
func (*ComposeWorkloadJWTSVIDResponse) ProtoMessage()
func (*ComposeWorkloadJWTSVIDResponse) ProtoReflect ¶
func (x *ComposeWorkloadJWTSVIDResponse) ProtoReflect() protoreflect.Message
func (*ComposeWorkloadJWTSVIDResponse) Reset ¶
func (x *ComposeWorkloadJWTSVIDResponse) Reset()
func (*ComposeWorkloadJWTSVIDResponse) String ¶
func (x *ComposeWorkloadJWTSVIDResponse) String() string
type ComposeWorkloadX509SVIDRequest ¶
type ComposeWorkloadX509SVIDRequest struct { // The attributes for the workload X509-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be mutated and used to populate the attributes field in the // ComposeWorkloadX509SVIDResponse. Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // The SPIFFE ID of the workload. SpiffeId string `protobuf:"bytes,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"` // PKIX encoded public key of the workload. PublicKey []byte `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"` // contains filtered or unexported fields }
func (*ComposeWorkloadX509SVIDRequest) Descriptor
deprecated
func (*ComposeWorkloadX509SVIDRequest) Descriptor() ([]byte, []int)
Deprecated: Use ComposeWorkloadX509SVIDRequest.ProtoReflect.Descriptor instead.
func (*ComposeWorkloadX509SVIDRequest) GetAttributes ¶
func (x *ComposeWorkloadX509SVIDRequest) GetAttributes() *X509SVIDAttributes
func (*ComposeWorkloadX509SVIDRequest) GetPublicKey ¶
func (x *ComposeWorkloadX509SVIDRequest) GetPublicKey() []byte
func (*ComposeWorkloadX509SVIDRequest) GetSpiffeId ¶
func (x *ComposeWorkloadX509SVIDRequest) GetSpiffeId() string
func (*ComposeWorkloadX509SVIDRequest) ProtoMessage ¶
func (*ComposeWorkloadX509SVIDRequest) ProtoMessage()
func (*ComposeWorkloadX509SVIDRequest) ProtoReflect ¶
func (x *ComposeWorkloadX509SVIDRequest) ProtoReflect() protoreflect.Message
func (*ComposeWorkloadX509SVIDRequest) Reset ¶
func (x *ComposeWorkloadX509SVIDRequest) Reset()
func (*ComposeWorkloadX509SVIDRequest) String ¶
func (x *ComposeWorkloadX509SVIDRequest) String() string
type ComposeWorkloadX509SVIDResponse ¶
type ComposeWorkloadX509SVIDResponse struct { // The attributes for the workload X509-SVID. To maintain forward // compatibility with future attribute field additions, these attributes // SHOULD be populated with the mutated attributes field in the // ComposeWorkloadX509SVIDRequest. If this message is not included in the // response, the original attributes sent in the request will be used. Attributes *X509SVIDAttributes `protobuf:"bytes,1,opt,name=attributes,proto3" json:"attributes,omitempty"` // contains filtered or unexported fields }
func (*ComposeWorkloadX509SVIDResponse) Descriptor
deprecated
func (*ComposeWorkloadX509SVIDResponse) Descriptor() ([]byte, []int)
Deprecated: Use ComposeWorkloadX509SVIDResponse.ProtoReflect.Descriptor instead.
func (*ComposeWorkloadX509SVIDResponse) GetAttributes ¶
func (x *ComposeWorkloadX509SVIDResponse) GetAttributes() *X509SVIDAttributes
func (*ComposeWorkloadX509SVIDResponse) ProtoMessage ¶
func (*ComposeWorkloadX509SVIDResponse) ProtoMessage()
func (*ComposeWorkloadX509SVIDResponse) ProtoReflect ¶
func (x *ComposeWorkloadX509SVIDResponse) ProtoReflect() protoreflect.Message
func (*ComposeWorkloadX509SVIDResponse) Reset ¶
func (x *ComposeWorkloadX509SVIDResponse) Reset()
func (*ComposeWorkloadX509SVIDResponse) String ¶
func (x *ComposeWorkloadX509SVIDResponse) String() string
type CredentialComposerClient ¶
type CredentialComposerClient interface { // Composes the SPIRE Server X509 CA. The server will supply the default // attributes it will apply to the CA. If the plugin returns an empty // response or NOT_IMPLEMENTED, the server will apply the default // attributes. Otherwise the returned attributes are used. If a CA is // produced that does not conform to the SPIFFE X509-SVID specification for // signing certificates, it will be rejected. ComposeServerX509CA(ctx context.Context, in *ComposeServerX509CARequest, opts ...grpc.CallOption) (*ComposeServerX509CAResponse, error) // Composes the SPIRE Server X509-SVID. The server will supply the default // attributes it will apply to the server X509-SVID. If the plugin returns // an empty response or NOT_IMPLEMENTED, the server will apply the default // attributes. Otherwise the returned attributes are used. If an X509-SVID // is produced that does not conform to the SPIFFE X509-SVID specification // for leaf certificates, it will be rejected. This function cannot be used // to modify the SPIFFE ID of the X509-SVID. ComposeServerX509SVID(ctx context.Context, in *ComposeServerX509SVIDRequest, opts ...grpc.CallOption) (*ComposeServerX509SVIDResponse, error) // Composes the SPIRE Agent X509-SVID. The server will supply the default // attributes it will apply to the agent X509-SVID. If the plugin returns // an empty response or NOT_IMPLEMENTED, the server will apply the default // attributes. Otherwise the returned attributes are used. If an X509-SVID // is produced that does not conform to the SPIFFE X509-SVID specification // for leaf certificates, it will be rejected. This function cannot be used // to modify the SPIFFE ID of the X509-SVID. ComposeAgentX509SVID(ctx context.Context, in *ComposeAgentX509SVIDRequest, opts ...grpc.CallOption) (*ComposeAgentX509SVIDResponse, error) // Composes workload X509-SVIDs. The server will supply the default // attributes it will apply to the workload X509-SVID. If the plugin // returns an empty response or NOT_IMPLEMENTED, the server will apply the // default attributes. Otherwise the returned attributes are used. If an // X509-SVID is produced that does not conform to the SPIFFE X509-SVID // specification for leaf certificates, it will be rejected. This function // cannot be used to modify the SPIFFE ID of the X509-SVID. ComposeWorkloadX509SVID(ctx context.Context, in *ComposeWorkloadX509SVIDRequest, opts ...grpc.CallOption) (*ComposeWorkloadX509SVIDResponse, error) // Composes workload JWT-SVIDs. The server will supply the default // attributes it will apply to the workload JWT-SVID. If the plugin // returns an empty response or NOT_IMPLEMENTED, the server will apply the // default attributes. Otherwise the returned attributes are used. If a // JWT-SVID is produced that does not conform to the SPIFFE JWT-SVID // specification, it will be rejected. This function cannot be used to // modify the SPIFFE ID of the JWT-SVID. ComposeWorkloadJWTSVID(ctx context.Context, in *ComposeWorkloadJWTSVIDRequest, opts ...grpc.CallOption) (*ComposeWorkloadJWTSVIDResponse, error) }
CredentialComposerClient is the client API for CredentialComposer service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
func NewCredentialComposerClient ¶
func NewCredentialComposerClient(cc grpc.ClientConnInterface) CredentialComposerClient
type CredentialComposerPluginClient ¶
type CredentialComposerPluginClient struct {
CredentialComposerClient
}
func (*CredentialComposerPluginClient) GRPCServiceName ¶
func (c *CredentialComposerPluginClient) GRPCServiceName() string
func (*CredentialComposerPluginClient) InitClient ¶
func (c *CredentialComposerPluginClient) InitClient(conn grpc.ClientConnInterface) interface{}
func (*CredentialComposerPluginClient) IsInitialized ¶
func (c *CredentialComposerPluginClient) IsInitialized() bool
func (CredentialComposerPluginClient) Type ¶
func (s CredentialComposerPluginClient) Type() string
type CredentialComposerServer ¶
type CredentialComposerServer interface { // Composes the SPIRE Server X509 CA. The server will supply the default // attributes it will apply to the CA. If the plugin returns an empty // response or NOT_IMPLEMENTED, the server will apply the default // attributes. Otherwise the returned attributes are used. If a CA is // produced that does not conform to the SPIFFE X509-SVID specification for // signing certificates, it will be rejected. ComposeServerX509CA(context.Context, *ComposeServerX509CARequest) (*ComposeServerX509CAResponse, error) // Composes the SPIRE Server X509-SVID. The server will supply the default // attributes it will apply to the server X509-SVID. If the plugin returns // an empty response or NOT_IMPLEMENTED, the server will apply the default // attributes. Otherwise the returned attributes are used. If an X509-SVID // is produced that does not conform to the SPIFFE X509-SVID specification // for leaf certificates, it will be rejected. This function cannot be used // to modify the SPIFFE ID of the X509-SVID. ComposeServerX509SVID(context.Context, *ComposeServerX509SVIDRequest) (*ComposeServerX509SVIDResponse, error) // Composes the SPIRE Agent X509-SVID. The server will supply the default // attributes it will apply to the agent X509-SVID. If the plugin returns // an empty response or NOT_IMPLEMENTED, the server will apply the default // attributes. Otherwise the returned attributes are used. If an X509-SVID // is produced that does not conform to the SPIFFE X509-SVID specification // for leaf certificates, it will be rejected. This function cannot be used // to modify the SPIFFE ID of the X509-SVID. ComposeAgentX509SVID(context.Context, *ComposeAgentX509SVIDRequest) (*ComposeAgentX509SVIDResponse, error) // Composes workload X509-SVIDs. The server will supply the default // attributes it will apply to the workload X509-SVID. If the plugin // returns an empty response or NOT_IMPLEMENTED, the server will apply the // default attributes. Otherwise the returned attributes are used. If an // X509-SVID is produced that does not conform to the SPIFFE X509-SVID // specification for leaf certificates, it will be rejected. This function // cannot be used to modify the SPIFFE ID of the X509-SVID. ComposeWorkloadX509SVID(context.Context, *ComposeWorkloadX509SVIDRequest) (*ComposeWorkloadX509SVIDResponse, error) // Composes workload JWT-SVIDs. The server will supply the default // attributes it will apply to the workload JWT-SVID. If the plugin // returns an empty response or NOT_IMPLEMENTED, the server will apply the // default attributes. Otherwise the returned attributes are used. If a // JWT-SVID is produced that does not conform to the SPIFFE JWT-SVID // specification, it will be rejected. This function cannot be used to // modify the SPIFFE ID of the JWT-SVID. ComposeWorkloadJWTSVID(context.Context, *ComposeWorkloadJWTSVIDRequest) (*ComposeWorkloadJWTSVIDResponse, error) // contains filtered or unexported methods }
CredentialComposerServer is the server API for CredentialComposer service. All implementations must embed UnimplementedCredentialComposerServer for forward compatibility
type DistinguishedName ¶
type DistinguishedName struct { // Zero or more country designations. Country []string `protobuf:"bytes,1,rep,name=country,proto3" json:"country,omitempty"` // Zero or more organization designations. Organization []string `protobuf:"bytes,2,rep,name=organization,proto3" json:"organization,omitempty"` // Zero or more organizational unit designations. OrganizationalUnit []string `protobuf:"bytes,3,rep,name=organizational_unit,json=organizationalUnit,proto3" json:"organizational_unit,omitempty"` // Zero or more locality designations. Locality []string `protobuf:"bytes,4,rep,name=locality,proto3" json:"locality,omitempty"` // Zero or more province designations. Province []string `protobuf:"bytes,5,rep,name=province,proto3" json:"province,omitempty"` // Zero or more street address designations. StreetAddress []string `protobuf:"bytes,6,rep,name=street_address,json=streetAddress,proto3" json:"street_address,omitempty"` // Zero or more postal code designations. PostalCode []string `protobuf:"bytes,7,rep,name=postal_code,json=postalCode,proto3" json:"postal_code,omitempty"` // The serial number designation. The attribute is only set if this field // is non-empty. SerialNumber string `protobuf:"bytes,8,opt,name=serial_number,json=serialNumber,proto3" json:"serial_number,omitempty"` // The common name designation. The attribute is only set if this field is // non-empty. CommonName string `protobuf:"bytes,9,opt,name=common_name,json=commonName,proto3" json:"common_name,omitempty"` // Extra names, determined by oid and value, to be added to the // distinguished names. This field is to support names not covered by the // DistinguishedName message. It will override values specified in other // fields in the DistinguishedName if the attributes overlap. ExtraNames []*AttributeTypeAndValue `protobuf:"bytes,10,rep,name=extra_names,json=extraNames,proto3" json:"extra_names,omitempty"` // contains filtered or unexported fields }
func (*DistinguishedName) Descriptor
deprecated
func (*DistinguishedName) Descriptor() ([]byte, []int)
Deprecated: Use DistinguishedName.ProtoReflect.Descriptor instead.
func (*DistinguishedName) GetCommonName ¶
func (x *DistinguishedName) GetCommonName() string
func (*DistinguishedName) GetCountry ¶
func (x *DistinguishedName) GetCountry() []string
func (*DistinguishedName) GetExtraNames ¶
func (x *DistinguishedName) GetExtraNames() []*AttributeTypeAndValue
func (*DistinguishedName) GetLocality ¶
func (x *DistinguishedName) GetLocality() []string
func (*DistinguishedName) GetOrganization ¶
func (x *DistinguishedName) GetOrganization() []string
func (*DistinguishedName) GetOrganizationalUnit ¶
func (x *DistinguishedName) GetOrganizationalUnit() []string
func (*DistinguishedName) GetPostalCode ¶
func (x *DistinguishedName) GetPostalCode() []string
func (*DistinguishedName) GetProvince ¶
func (x *DistinguishedName) GetProvince() []string
func (*DistinguishedName) GetSerialNumber ¶
func (x *DistinguishedName) GetSerialNumber() string
func (*DistinguishedName) GetStreetAddress ¶
func (x *DistinguishedName) GetStreetAddress() []string
func (*DistinguishedName) ProtoMessage ¶
func (*DistinguishedName) ProtoMessage()
func (*DistinguishedName) ProtoReflect ¶
func (x *DistinguishedName) ProtoReflect() protoreflect.Message
func (*DistinguishedName) Reset ¶
func (x *DistinguishedName) Reset()
func (*DistinguishedName) String ¶
func (x *DistinguishedName) String() string
type JWTSVIDAttributes ¶
type JWTSVIDAttributes struct { // The JWT-SVID claims. Returned attributes must contain all of the // claims required by the JWT-SVID specification: // // https://github.com/spiffe/spiffe/blob/main/standards/JWT-SVID.md // // The subject claim (i.e. SPIFFE ID) cannot be overriden. Claims *structpb.Struct `protobuf:"bytes,1,opt,name=claims,proto3" json:"claims,omitempty"` // contains filtered or unexported fields }
func (*JWTSVIDAttributes) Descriptor
deprecated
func (*JWTSVIDAttributes) Descriptor() ([]byte, []int)
Deprecated: Use JWTSVIDAttributes.ProtoReflect.Descriptor instead.
func (*JWTSVIDAttributes) GetClaims ¶
func (x *JWTSVIDAttributes) GetClaims() *structpb.Struct
func (*JWTSVIDAttributes) ProtoMessage ¶
func (*JWTSVIDAttributes) ProtoMessage()
func (*JWTSVIDAttributes) ProtoReflect ¶
func (x *JWTSVIDAttributes) ProtoReflect() protoreflect.Message
func (*JWTSVIDAttributes) Reset ¶
func (x *JWTSVIDAttributes) Reset()
func (*JWTSVIDAttributes) String ¶
func (x *JWTSVIDAttributes) String() string
type UnimplementedCredentialComposerServer ¶
type UnimplementedCredentialComposerServer struct { }
UnimplementedCredentialComposerServer must be embedded to have forward compatible implementations.
func (UnimplementedCredentialComposerServer) ComposeAgentX509SVID ¶
func (UnimplementedCredentialComposerServer) ComposeAgentX509SVID(context.Context, *ComposeAgentX509SVIDRequest) (*ComposeAgentX509SVIDResponse, error)
func (UnimplementedCredentialComposerServer) ComposeServerX509CA ¶
func (UnimplementedCredentialComposerServer) ComposeServerX509CA(context.Context, *ComposeServerX509CARequest) (*ComposeServerX509CAResponse, error)
func (UnimplementedCredentialComposerServer) ComposeServerX509SVID ¶
func (UnimplementedCredentialComposerServer) ComposeServerX509SVID(context.Context, *ComposeServerX509SVIDRequest) (*ComposeServerX509SVIDResponse, error)
func (UnimplementedCredentialComposerServer) ComposeWorkloadJWTSVID ¶
func (UnimplementedCredentialComposerServer) ComposeWorkloadJWTSVID(context.Context, *ComposeWorkloadJWTSVIDRequest) (*ComposeWorkloadJWTSVIDResponse, error)
func (UnimplementedCredentialComposerServer) ComposeWorkloadX509SVID ¶
func (UnimplementedCredentialComposerServer) ComposeWorkloadX509SVID(context.Context, *ComposeWorkloadX509SVIDRequest) (*ComposeWorkloadX509SVIDResponse, error)
type UnsafeCredentialComposerServer ¶
type UnsafeCredentialComposerServer interface {
// contains filtered or unexported methods
}
UnsafeCredentialComposerServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to CredentialComposerServer will result in compilation errors.
type X509CAAttributes ¶
type X509CAAttributes struct { // The subject of the X509 CA. Subject *DistinguishedName `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"` // Zero or more policy identifiers (OIDs) to apply to the CA. PolicyIdentifiers []string `protobuf:"bytes,2,rep,name=policy_identifiers,json=policyIdentifiers,proto3" json:"policy_identifiers,omitempty"` // Zero or more extensions to apply to the X509 CA. These will override // any extensions otherwise added by the other fields. ExtraExtensions []*X509Extension `protobuf:"bytes,3,rep,name=extra_extensions,json=extraExtensions,proto3" json:"extra_extensions,omitempty"` // contains filtered or unexported fields }
func (*X509CAAttributes) Descriptor
deprecated
func (*X509CAAttributes) Descriptor() ([]byte, []int)
Deprecated: Use X509CAAttributes.ProtoReflect.Descriptor instead.
func (*X509CAAttributes) GetExtraExtensions ¶
func (x *X509CAAttributes) GetExtraExtensions() []*X509Extension
func (*X509CAAttributes) GetPolicyIdentifiers ¶
func (x *X509CAAttributes) GetPolicyIdentifiers() []string
func (*X509CAAttributes) GetSubject ¶
func (x *X509CAAttributes) GetSubject() *DistinguishedName
func (*X509CAAttributes) ProtoMessage ¶
func (*X509CAAttributes) ProtoMessage()
func (*X509CAAttributes) ProtoReflect ¶
func (x *X509CAAttributes) ProtoReflect() protoreflect.Message
func (*X509CAAttributes) Reset ¶
func (x *X509CAAttributes) Reset()
func (*X509CAAttributes) String ¶
func (x *X509CAAttributes) String() string
type X509Extension ¶
type X509Extension struct { // The OID of the X.509 extension (e.g. "1.2.3.4") Oid string `protobuf:"bytes,1,opt,name=oid,proto3" json:"oid,omitempty"` // Opaque value of the extension. No validity checking is performed on // this value. Plugin implementors must ensure they are providing well // formed values for the given extension OID. Value []byte `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"` // Whether or not the extension is critical, i.e., must be // handled/understood by verifiers or not. Critical bool `protobuf:"varint,3,opt,name=critical,proto3" json:"critical,omitempty"` // contains filtered or unexported fields }
func (*X509Extension) Descriptor
deprecated
func (*X509Extension) Descriptor() ([]byte, []int)
Deprecated: Use X509Extension.ProtoReflect.Descriptor instead.
func (*X509Extension) GetCritical ¶
func (x *X509Extension) GetCritical() bool
func (*X509Extension) GetOid ¶
func (x *X509Extension) GetOid() string
func (*X509Extension) GetValue ¶
func (x *X509Extension) GetValue() []byte
func (*X509Extension) ProtoMessage ¶
func (*X509Extension) ProtoMessage()
func (*X509Extension) ProtoReflect ¶
func (x *X509Extension) ProtoReflect() protoreflect.Message
func (*X509Extension) Reset ¶
func (x *X509Extension) Reset()
func (*X509Extension) String ¶
func (x *X509Extension) String() string
type X509SVIDAttributes ¶
type X509SVIDAttributes struct { // The subject of the X509-SVID. Subject *DistinguishedName `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"` // Zero or more DNS SANs to apply to the X509-SVID. DnsSans []string `protobuf:"bytes,2,rep,name=dns_sans,json=dnsSans,proto3" json:"dns_sans,omitempty"` // Zero or more extensions to apply to the X509-SVID . These will override // any extensions otherwise added by the other fields. This field cannot // be used to change the URI SAN of the X509-SVID (i.e. the SPIFFE ID). ExtraExtensions []*X509Extension `protobuf:"bytes,3,rep,name=extra_extensions,json=extraExtensions,proto3" json:"extra_extensions,omitempty"` // contains filtered or unexported fields }
func (*X509SVIDAttributes) Descriptor
deprecated
func (*X509SVIDAttributes) Descriptor() ([]byte, []int)
Deprecated: Use X509SVIDAttributes.ProtoReflect.Descriptor instead.
func (*X509SVIDAttributes) GetDnsSans ¶
func (x *X509SVIDAttributes) GetDnsSans() []string
func (*X509SVIDAttributes) GetExtraExtensions ¶
func (x *X509SVIDAttributes) GetExtraExtensions() []*X509Extension
func (*X509SVIDAttributes) GetSubject ¶
func (x *X509SVIDAttributes) GetSubject() *DistinguishedName
func (*X509SVIDAttributes) ProtoMessage ¶
func (*X509SVIDAttributes) ProtoMessage()
func (*X509SVIDAttributes) ProtoReflect ¶
func (x *X509SVIDAttributes) ProtoReflect() protoreflect.Message
func (*X509SVIDAttributes) Reset ¶
func (x *X509SVIDAttributes) Reset()
func (*X509SVIDAttributes) String ¶
func (x *X509SVIDAttributes) String() string