upstreamca

package

v0.10.1 Latest Latest Go to latest Published: Jun 23, 2020 License: Apache-2.0 Imports: 8 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/spiffe/spire

Links

Open Source Insights

Documentation ¶

Index ¶

func RegisterUpstreamCAServer(s *grpc.Server, srv UpstreamCAServer)
type SignedCertificate
type SubmitCSRRequest
type SubmitCSRResponse
type UnimplementedUpstreamCAServer
type UpstreamCAClient
- func NewUpstreamCAClient(cc *grpc.ClientConn) UpstreamCAClient
type UpstreamCAServer

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func RegisterUpstreamCAServer ¶

func RegisterUpstreamCAServer(s *grpc.Server, srv UpstreamCAServer)

Types ¶

type SignedCertificate ¶

type SignedCertificate struct {
	// Contains ASN.1 encoded certificates representing the signed certificate
	// along with any intermediates necessary to chain the certificate back to
	// a certificate present in the upstream_trust_bundle.
	CertChain []byte `protobuf:"bytes,1,opt,name=cert_chain,json=certChain,proto3" json:"cert_chain,omitempty"`
	// The upstream trust bundle.
	Bundle               []byte   `protobuf:"bytes,2,opt,name=bundle,proto3" json:"bundle,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

func (*SignedCertificate) Descriptor ¶

func (*SignedCertificate) Descriptor() ([]byte, []int)

func (*SignedCertificate) GetBundle ¶

func (m *SignedCertificate) GetBundle() []byte

func (*SignedCertificate) GetCertChain ¶

func (m *SignedCertificate) GetCertChain() []byte

func (*SignedCertificate) ProtoMessage ¶

func (*SignedCertificate) ProtoMessage()

func (*SignedCertificate) Reset ¶

func (m *SignedCertificate) Reset()

func (*SignedCertificate) String ¶

func (m *SignedCertificate) String() string

func (*SignedCertificate) XXX_DiscardUnknown ¶

func (m *SignedCertificate) XXX_DiscardUnknown()

func (*SignedCertificate) XXX_Marshal ¶

func (m *SignedCertificate) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*SignedCertificate) XXX_Merge ¶

func (m *SignedCertificate) XXX_Merge(src proto.Message)

func (*SignedCertificate) XXX_Size ¶

func (m *SignedCertificate) XXX_Size() int

func (*SignedCertificate) XXX_Unmarshal ¶

func (m *SignedCertificate) XXX_Unmarshal(b []byte) error

type SubmitCSRRequest ¶

type SubmitCSRRequest struct {
	// Certificate signing request
	Csr []byte `protobuf:"bytes,1,opt,name=csr,proto3" json:"csr,omitempty"`
	// Preferred TTL is the TTL preferred by SPIRE server for signed CA. If
	// zero, the plugin should determine its own TTL value.  Upstream CA
	// plugins are free to ignore this and use their own policies around TTLs.
	PreferredTtl         int32    `protobuf:"varint,2,opt,name=preferred_ttl,json=preferredTtl,proto3" json:"preferred_ttl,omitempty"`
	XXX_NoUnkeyedLiteral struct{} `json:"-"`
	XXX_unrecognized     []byte   `json:"-"`
	XXX_sizecache        int32    `json:"-"`
}

func (*SubmitCSRRequest) Descriptor ¶

func (*SubmitCSRRequest) Descriptor() ([]byte, []int)

func (*SubmitCSRRequest) GetCsr ¶

func (m *SubmitCSRRequest) GetCsr() []byte

func (*SubmitCSRRequest) GetPreferredTtl ¶

func (m *SubmitCSRRequest) GetPreferredTtl() int32

func (*SubmitCSRRequest) ProtoMessage ¶

func (*SubmitCSRRequest) ProtoMessage()

func (*SubmitCSRRequest) Reset ¶

func (m *SubmitCSRRequest) Reset()

func (*SubmitCSRRequest) String ¶

func (m *SubmitCSRRequest) String() string

func (*SubmitCSRRequest) XXX_DiscardUnknown ¶

func (m *SubmitCSRRequest) XXX_DiscardUnknown()

func (*SubmitCSRRequest) XXX_Marshal ¶

func (m *SubmitCSRRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*SubmitCSRRequest) XXX_Merge ¶

func (m *SubmitCSRRequest) XXX_Merge(src proto.Message)

func (*SubmitCSRRequest) XXX_Size ¶

func (m *SubmitCSRRequest) XXX_Size() int

func (*SubmitCSRRequest) XXX_Unmarshal ¶

func (m *SubmitCSRRequest) XXX_Unmarshal(b []byte) error

type SubmitCSRResponse ¶

type SubmitCSRResponse struct {
	// Signed certificate
	SignedCertificate    *SignedCertificate `protobuf:"bytes,3,opt,name=signed_certificate,json=signedCertificate,proto3" json:"signed_certificate,omitempty"`
	XXX_NoUnkeyedLiteral struct{}           `json:"-"`
	XXX_unrecognized     []byte             `json:"-"`
	XXX_sizecache        int32              `json:"-"`
}

func (*SubmitCSRResponse) Descriptor ¶

func (*SubmitCSRResponse) Descriptor() ([]byte, []int)

func (*SubmitCSRResponse) GetSignedCertificate ¶

func (m *SubmitCSRResponse) GetSignedCertificate() *SignedCertificate

func (*SubmitCSRResponse) ProtoMessage ¶

func (*SubmitCSRResponse) ProtoMessage()

func (*SubmitCSRResponse) Reset ¶

func (m *SubmitCSRResponse) Reset()

func (*SubmitCSRResponse) String ¶

func (m *SubmitCSRResponse) String() string

func (*SubmitCSRResponse) XXX_DiscardUnknown ¶

func (m *SubmitCSRResponse) XXX_DiscardUnknown()

func (*SubmitCSRResponse) XXX_Marshal ¶

func (m *SubmitCSRResponse) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*SubmitCSRResponse) XXX_Merge ¶

func (m *SubmitCSRResponse) XXX_Merge(src proto.Message)

func (*SubmitCSRResponse) XXX_Size ¶

func (m *SubmitCSRResponse) XXX_Size() int

func (*SubmitCSRResponse) XXX_Unmarshal ¶

func (m *SubmitCSRResponse) XXX_Unmarshal(b []byte) error

type UnimplementedUpstreamCAServer ¶

type UnimplementedUpstreamCAServer struct {
}

UnimplementedUpstreamCAServer can be embedded to have forward compatible implementations.

func (*UnimplementedUpstreamCAServer) Configure ¶

func (*UnimplementedUpstreamCAServer) Configure(ctx context.Context, req *plugin.ConfigureRequest) (*plugin.ConfigureResponse, error)

func (*UnimplementedUpstreamCAServer) GetPluginInfo ¶

func (*UnimplementedUpstreamCAServer) GetPluginInfo(ctx context.Context, req *plugin.GetPluginInfoRequest) (*plugin.GetPluginInfoResponse, error)

func (*UnimplementedUpstreamCAServer) SubmitCSR ¶

func (*UnimplementedUpstreamCAServer) SubmitCSR(ctx context.Context, req *SubmitCSRRequest) (*SubmitCSRResponse, error)

type UpstreamCAClient ¶

type UpstreamCAClient interface {
	// Responsible for configuration of the plugin.
	Configure(ctx context.Context, in *plugin.ConfigureRequest, opts ...grpc.CallOption) (*plugin.ConfigureResponse, error)
	// Returns the  version and related metadata of the installed plugin. */
	GetPluginInfo(ctx context.Context, in *plugin.GetPluginInfoRequest, opts ...grpc.CallOption) (*plugin.GetPluginInfoResponse, error)
	// Signs a certificate from the request
	SubmitCSR(ctx context.Context, in *SubmitCSRRequest, opts ...grpc.CallOption) (*SubmitCSRResponse, error)
}

UpstreamCAClient is the client API for UpstreamCA service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.

func NewUpstreamCAClient ¶

func NewUpstreamCAClient(cc *grpc.ClientConn) UpstreamCAClient

type UpstreamCAServer ¶

type UpstreamCAServer interface {
	// Responsible for configuration of the plugin.
	Configure(context.Context, *plugin.ConfigureRequest) (*plugin.ConfigureResponse, error)
	// Returns the  version and related metadata of the installed plugin. */
	GetPluginInfo(context.Context, *plugin.GetPluginInfoRequest) (*plugin.GetPluginInfoResponse, error)
	// Signs a certificate from the request
	SubmitCSR(context.Context, *SubmitCSRRequest) (*SubmitCSRResponse, error)
}

UpstreamCAServer is the server API for UpstreamCA service.

Source Files ¶

View all Source files

upstreamca.pb.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL