common

package
v1.5.6 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Apr 5, 2023 License: Apache-2.0 Imports: 4 Imported by: 12

Documentation

Index

Constants

This section is empty.

Variables

View Source
var File_spire_common_common_proto protoreflect.FileDescriptor

Functions

This section is empty.

Types

type AttestationData

type AttestationData struct {

	// * Type of attestation to perform.
	Type string `protobuf:"bytes,1,opt,name=type,proto3" json:"type,omitempty"`
	// * The attestation data.
	Data []byte `protobuf:"bytes,2,opt,name=data,proto3" json:"data,omitempty"`
	// contains filtered or unexported fields
}

* A type which contains attestation data for specific platform.

func (*AttestationData) Descriptor deprecated

func (*AttestationData) Descriptor() ([]byte, []int)

Deprecated: Use AttestationData.ProtoReflect.Descriptor instead.

func (*AttestationData) GetData

func (x *AttestationData) GetData() []byte

func (*AttestationData) GetType

func (x *AttestationData) GetType() string

func (*AttestationData) ProtoMessage

func (*AttestationData) ProtoMessage()

func (*AttestationData) ProtoReflect

func (x *AttestationData) ProtoReflect() protoreflect.Message

func (*AttestationData) Reset

func (x *AttestationData) Reset()

func (*AttestationData) String

func (x *AttestationData) String() string

type AttestedNode

type AttestedNode struct {

	// Node SPIFFE ID
	SpiffeId string `protobuf:"bytes,1,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"`
	// Attestation data type
	AttestationDataType string `protobuf:"bytes,2,opt,name=attestation_data_type,json=attestationDataType,proto3" json:"attestation_data_type,omitempty"`
	// Node certificate serial number
	CertSerialNumber string `protobuf:"bytes,3,opt,name=cert_serial_number,json=certSerialNumber,proto3" json:"cert_serial_number,omitempty"`
	// Node certificate not_after (seconds since unix epoch)
	CertNotAfter int64 `protobuf:"varint,4,opt,name=cert_not_after,json=certNotAfter,proto3" json:"cert_not_after,omitempty"`
	// Node certificate serial number
	NewCertSerialNumber string `protobuf:"bytes,5,opt,name=new_cert_serial_number,json=newCertSerialNumber,proto3" json:"new_cert_serial_number,omitempty"`
	// Node certificate not_after (seconds since unix epoch)
	NewCertNotAfter int64 `protobuf:"varint,6,opt,name=new_cert_not_after,json=newCertNotAfter,proto3" json:"new_cert_not_after,omitempty"`
	// Node selectors
	Selectors []*Selector `protobuf:"bytes,7,rep,name=selectors,proto3" json:"selectors,omitempty"`
	// CanReattest field (can the attestation safely be deleted and recreated automatically)
	CanReattest bool `protobuf:"varint,8,opt,name=can_reattest,json=canReattest,proto3" json:"can_reattest,omitempty"`
	// contains filtered or unexported fields
}

Represents an attested SPIRE agent

func (*AttestedNode) Descriptor deprecated

func (*AttestedNode) Descriptor() ([]byte, []int)

Deprecated: Use AttestedNode.ProtoReflect.Descriptor instead.

func (*AttestedNode) GetAttestationDataType

func (x *AttestedNode) GetAttestationDataType() string

func (*AttestedNode) GetCanReattest added in v1.3.0

func (x *AttestedNode) GetCanReattest() bool

func (*AttestedNode) GetCertNotAfter

func (x *AttestedNode) GetCertNotAfter() int64

func (*AttestedNode) GetCertSerialNumber

func (x *AttestedNode) GetCertSerialNumber() string

func (*AttestedNode) GetNewCertNotAfter

func (x *AttestedNode) GetNewCertNotAfter() int64

func (*AttestedNode) GetNewCertSerialNumber

func (x *AttestedNode) GetNewCertSerialNumber() string

func (*AttestedNode) GetSelectors

func (x *AttestedNode) GetSelectors() []*Selector

func (*AttestedNode) GetSpiffeId

func (x *AttestedNode) GetSpiffeId() string

func (*AttestedNode) ProtoMessage

func (*AttestedNode) ProtoMessage()

func (*AttestedNode) ProtoReflect

func (x *AttestedNode) ProtoReflect() protoreflect.Message

func (*AttestedNode) Reset

func (x *AttestedNode) Reset()

func (*AttestedNode) String

func (x *AttestedNode) String() string

type AttestedNodeMask

type AttestedNodeMask struct {
	AttestationDataType bool `protobuf:"varint,1,opt,name=attestation_data_type,json=attestationDataType,proto3" json:"attestation_data_type,omitempty"`
	CertSerialNumber    bool `protobuf:"varint,2,opt,name=cert_serial_number,json=certSerialNumber,proto3" json:"cert_serial_number,omitempty"`
	CertNotAfter        bool `protobuf:"varint,3,opt,name=cert_not_after,json=certNotAfter,proto3" json:"cert_not_after,omitempty"`
	NewCertSerialNumber bool `protobuf:"varint,4,opt,name=new_cert_serial_number,json=newCertSerialNumber,proto3" json:"new_cert_serial_number,omitempty"`
	NewCertNotAfter     bool `protobuf:"varint,5,opt,name=new_cert_not_after,json=newCertNotAfter,proto3" json:"new_cert_not_after,omitempty"`
	CanReattest         bool `protobuf:"varint,6,opt,name=can_reattest,json=canReattest,proto3" json:"can_reattest,omitempty"`
	// contains filtered or unexported fields
}

func (*AttestedNodeMask) Descriptor deprecated

func (*AttestedNodeMask) Descriptor() ([]byte, []int)

Deprecated: Use AttestedNodeMask.ProtoReflect.Descriptor instead.

func (*AttestedNodeMask) GetAttestationDataType

func (x *AttestedNodeMask) GetAttestationDataType() bool

func (*AttestedNodeMask) GetCanReattest added in v1.3.0

func (x *AttestedNodeMask) GetCanReattest() bool

func (*AttestedNodeMask) GetCertNotAfter

func (x *AttestedNodeMask) GetCertNotAfter() bool

func (*AttestedNodeMask) GetCertSerialNumber

func (x *AttestedNodeMask) GetCertSerialNumber() bool

func (*AttestedNodeMask) GetNewCertNotAfter

func (x *AttestedNodeMask) GetNewCertNotAfter() bool

func (*AttestedNodeMask) GetNewCertSerialNumber

func (x *AttestedNodeMask) GetNewCertSerialNumber() bool

func (*AttestedNodeMask) ProtoMessage

func (*AttestedNodeMask) ProtoMessage()

func (*AttestedNodeMask) ProtoReflect

func (x *AttestedNodeMask) ProtoReflect() protoreflect.Message

func (*AttestedNodeMask) Reset

func (x *AttestedNodeMask) Reset()

func (*AttestedNodeMask) String

func (x *AttestedNodeMask) String() string

type Bundle

type Bundle struct {

	// * the SPIFFE ID of the trust domain the bundle belongs to
	TrustDomainId string `protobuf:"bytes,1,opt,name=trust_domain_id,json=trustDomainId,proto3" json:"trust_domain_id,omitempty"`
	// * list of root CA certificates
	RootCas []*Certificate `protobuf:"bytes,2,rep,name=root_cas,json=rootCas,proto3" json:"root_cas,omitempty"`
	// * list of JWT signing keys
	JwtSigningKeys []*PublicKey `protobuf:"bytes,3,rep,name=jwt_signing_keys,json=jwtSigningKeys,proto3" json:"jwt_signing_keys,omitempty"`
	// * refresh hint is a hint, in seconds, on how often a bundle consumer
	// should poll for bundle updates
	RefreshHint int64 `protobuf:"varint,4,opt,name=refresh_hint,json=refreshHint,proto3" json:"refresh_hint,omitempty"`
	// contains filtered or unexported fields
}

func (*Bundle) Descriptor deprecated

func (*Bundle) Descriptor() ([]byte, []int)

Deprecated: Use Bundle.ProtoReflect.Descriptor instead.

func (*Bundle) GetJwtSigningKeys

func (x *Bundle) GetJwtSigningKeys() []*PublicKey

func (*Bundle) GetRefreshHint

func (x *Bundle) GetRefreshHint() int64

func (*Bundle) GetRootCas

func (x *Bundle) GetRootCas() []*Certificate

func (*Bundle) GetTrustDomainId

func (x *Bundle) GetTrustDomainId() string

func (*Bundle) ProtoMessage

func (*Bundle) ProtoMessage()

func (*Bundle) ProtoReflect

func (x *Bundle) ProtoReflect() protoreflect.Message

func (*Bundle) Reset

func (x *Bundle) Reset()

func (*Bundle) String

func (x *Bundle) String() string

type BundleMask

type BundleMask struct {
	RootCas        bool `protobuf:"varint,1,opt,name=root_cas,json=rootCas,proto3" json:"root_cas,omitempty"`
	JwtSigningKeys bool `protobuf:"varint,2,opt,name=jwt_signing_keys,json=jwtSigningKeys,proto3" json:"jwt_signing_keys,omitempty"`
	RefreshHint    bool `protobuf:"varint,3,opt,name=refresh_hint,json=refreshHint,proto3" json:"refresh_hint,omitempty"`
	// contains filtered or unexported fields
}

func (*BundleMask) Descriptor deprecated

func (*BundleMask) Descriptor() ([]byte, []int)

Deprecated: Use BundleMask.ProtoReflect.Descriptor instead.

func (*BundleMask) GetJwtSigningKeys

func (x *BundleMask) GetJwtSigningKeys() bool

func (*BundleMask) GetRefreshHint

func (x *BundleMask) GetRefreshHint() bool

func (*BundleMask) GetRootCas

func (x *BundleMask) GetRootCas() bool

func (*BundleMask) ProtoMessage

func (*BundleMask) ProtoMessage()

func (*BundleMask) ProtoReflect

func (x *BundleMask) ProtoReflect() protoreflect.Message

func (*BundleMask) Reset

func (x *BundleMask) Reset()

func (*BundleMask) String

func (x *BundleMask) String() string

type Certificate

type Certificate struct {
	DerBytes []byte `protobuf:"bytes,1,opt,name=der_bytes,json=derBytes,proto3" json:"der_bytes,omitempty"`
	// contains filtered or unexported fields
}

* Certificate represents a ASN.1/DER encoded X509 certificate

func (*Certificate) Descriptor deprecated

func (*Certificate) Descriptor() ([]byte, []int)

Deprecated: Use Certificate.ProtoReflect.Descriptor instead.

func (*Certificate) GetDerBytes

func (x *Certificate) GetDerBytes() []byte

func (*Certificate) ProtoMessage

func (*Certificate) ProtoMessage()

func (*Certificate) ProtoReflect

func (x *Certificate) ProtoReflect() protoreflect.Message

func (*Certificate) Reset

func (x *Certificate) Reset()

func (*Certificate) String

func (x *Certificate) String() string

type Empty

type Empty struct {
	// contains filtered or unexported fields
}

* Represents an empty message

func (*Empty) Descriptor deprecated

func (*Empty) Descriptor() ([]byte, []int)

Deprecated: Use Empty.ProtoReflect.Descriptor instead.

func (*Empty) ProtoMessage

func (*Empty) ProtoMessage()

func (*Empty) ProtoReflect

func (x *Empty) ProtoReflect() protoreflect.Message

func (*Empty) Reset

func (x *Empty) Reset()

func (*Empty) String

func (x *Empty) String() string

type PublicKey

type PublicKey struct {

	// * PKIX encoded key data
	PkixBytes []byte `protobuf:"bytes,1,opt,name=pkix_bytes,json=pkixBytes,proto3" json:"pkix_bytes,omitempty"`
	// * key identifier
	Kid string `protobuf:"bytes,2,opt,name=kid,proto3" json:"kid,omitempty"`
	// * not after (seconds since unix epoch, 0 means "never expires")
	NotAfter int64 `protobuf:"varint,3,opt,name=not_after,json=notAfter,proto3" json:"not_after,omitempty"`
	// contains filtered or unexported fields
}

* PublicKey represents a PKIX encoded public key

func (*PublicKey) Descriptor deprecated

func (*PublicKey) Descriptor() ([]byte, []int)

Deprecated: Use PublicKey.ProtoReflect.Descriptor instead.

func (*PublicKey) GetKid

func (x *PublicKey) GetKid() string

func (*PublicKey) GetNotAfter

func (x *PublicKey) GetNotAfter() int64

func (*PublicKey) GetPkixBytes

func (x *PublicKey) GetPkixBytes() []byte

func (*PublicKey) ProtoMessage

func (*PublicKey) ProtoMessage()

func (*PublicKey) ProtoReflect

func (x *PublicKey) ProtoReflect() protoreflect.Message

func (*PublicKey) Reset

func (x *PublicKey) Reset()

func (*PublicKey) String

func (x *PublicKey) String() string

type RegistrationEntries

type RegistrationEntries struct {

	// * A list of RegistrationEntry.
	Entries []*RegistrationEntry `protobuf:"bytes,1,rep,name=entries,proto3" json:"entries,omitempty"`
	// contains filtered or unexported fields
}

* A list of registration entries.

func (*RegistrationEntries) Descriptor deprecated

func (*RegistrationEntries) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationEntries.ProtoReflect.Descriptor instead.

func (*RegistrationEntries) GetEntries

func (x *RegistrationEntries) GetEntries() []*RegistrationEntry

func (*RegistrationEntries) ProtoMessage

func (*RegistrationEntries) ProtoMessage()

func (*RegistrationEntries) ProtoReflect

func (x *RegistrationEntries) ProtoReflect() protoreflect.Message

func (*RegistrationEntries) Reset

func (x *RegistrationEntries) Reset()

func (*RegistrationEntries) String

func (x *RegistrationEntries) String() string

type RegistrationEntry

type RegistrationEntry struct {

	// * A list of selectors.
	Selectors []*Selector `protobuf:"bytes,1,rep,name=selectors,proto3" json:"selectors,omitempty"`
	// * The SPIFFE ID of an entity that is authorized to attest the validity
	// of a selector
	ParentId string `protobuf:"bytes,2,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"`
	// * The SPIFFE ID is a structured string used to identify a resource or
	// caller. It is defined as a URI comprising a “trust domain” and an
	// associated path.
	SpiffeId string `protobuf:"bytes,3,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"`
	// * Time to live for X509-SVIDs generated from this entry. Was previously called 'ttl'.
	X509SvidTtl int32 `protobuf:"varint,4,opt,name=x509_svid_ttl,json=x509SvidTtl,proto3" json:"x509_svid_ttl,omitempty"`
	// * A list of federated trust domain SPIFFE IDs.
	FederatesWith []string `protobuf:"bytes,5,rep,name=federates_with,json=federatesWith,proto3" json:"federates_with,omitempty"`
	// * Entry ID
	EntryId string `protobuf:"bytes,6,opt,name=entry_id,json=entryId,proto3" json:"entry_id,omitempty"`
	// * Whether or not the workload is an admin workload. Admin workloads
	// can use their SVID's to authenticate with the Server APIs, for
	// example.
	Admin bool `protobuf:"varint,7,opt,name=admin,proto3" json:"admin,omitempty"`
	// * To enable signing CA CSR in upstream spire server
	Downstream bool `protobuf:"varint,8,opt,name=downstream,proto3" json:"downstream,omitempty"`
	// * Expiration of this entry, in seconds from epoch
	EntryExpiry int64 `protobuf:"varint,9,opt,name=entryExpiry,proto3" json:"entryExpiry,omitempty"`
	// * DNS entries
	DnsNames []string `protobuf:"bytes,10,rep,name=dns_names,json=dnsNames,proto3" json:"dns_names,omitempty"`
	// * Revision number is bumped every time the entry is updated
	RevisionNumber int64 `protobuf:"varint,11,opt,name=revision_number,json=revisionNumber,proto3" json:"revision_number,omitempty"`
	// * Determines if the issued SVID must be stored through an SVIDStore plugin
	StoreSvid bool `protobuf:"varint,12,opt,name=store_svid,json=storeSvid,proto3" json:"store_svid,omitempty"`
	// * Time to live for JWT-SVIDs generated from this entry, if set will override ttl field.
	JwtSvidTtl int32 `protobuf:"varint,13,opt,name=jwt_svid_ttl,json=jwtSvidTtl,proto3" json:"jwt_svid_ttl,omitempty"`
	// contains filtered or unexported fields
}

* This is a curated record that the Server uses to set up and manage the various registered nodes and workloads that are controlled by it.

func (*RegistrationEntry) Descriptor deprecated

func (*RegistrationEntry) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationEntry.ProtoReflect.Descriptor instead.

func (*RegistrationEntry) GetAdmin

func (x *RegistrationEntry) GetAdmin() bool

func (*RegistrationEntry) GetDnsNames

func (x *RegistrationEntry) GetDnsNames() []string

func (*RegistrationEntry) GetDownstream

func (x *RegistrationEntry) GetDownstream() bool

func (*RegistrationEntry) GetEntryExpiry

func (x *RegistrationEntry) GetEntryExpiry() int64

func (*RegistrationEntry) GetEntryId

func (x *RegistrationEntry) GetEntryId() string

func (*RegistrationEntry) GetFederatesWith

func (x *RegistrationEntry) GetFederatesWith() []string

func (*RegistrationEntry) GetJwtSvidTtl added in v1.5.0

func (x *RegistrationEntry) GetJwtSvidTtl() int32

func (*RegistrationEntry) GetParentId

func (x *RegistrationEntry) GetParentId() string

func (*RegistrationEntry) GetRevisionNumber

func (x *RegistrationEntry) GetRevisionNumber() int64

func (*RegistrationEntry) GetSelectors

func (x *RegistrationEntry) GetSelectors() []*Selector

func (*RegistrationEntry) GetSpiffeId

func (x *RegistrationEntry) GetSpiffeId() string

func (*RegistrationEntry) GetStoreSvid added in v1.1.0

func (x *RegistrationEntry) GetStoreSvid() bool

func (*RegistrationEntry) GetX509SvidTtl added in v1.5.0

func (x *RegistrationEntry) GetX509SvidTtl() int32

func (*RegistrationEntry) ProtoMessage

func (*RegistrationEntry) ProtoMessage()

func (*RegistrationEntry) ProtoReflect

func (x *RegistrationEntry) ProtoReflect() protoreflect.Message

func (*RegistrationEntry) Reset

func (x *RegistrationEntry) Reset()

func (*RegistrationEntry) String

func (x *RegistrationEntry) String() string

type RegistrationEntryMask

type RegistrationEntryMask struct {
	Selectors     bool `protobuf:"varint,1,opt,name=selectors,proto3" json:"selectors,omitempty"`
	ParentId      bool `protobuf:"varint,2,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"`
	SpiffeId      bool `protobuf:"varint,3,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"`
	X509SvidTtl   bool `protobuf:"varint,4,opt,name=x509_svid_ttl,json=x509SvidTtl,proto3" json:"x509_svid_ttl,omitempty"`
	FederatesWith bool `protobuf:"varint,5,opt,name=federates_with,json=federatesWith,proto3" json:"federates_with,omitempty"`
	EntryId       bool `protobuf:"varint,6,opt,name=entry_id,json=entryId,proto3" json:"entry_id,omitempty"`
	Admin         bool `protobuf:"varint,7,opt,name=admin,proto3" json:"admin,omitempty"`
	Downstream    bool `protobuf:"varint,8,opt,name=downstream,proto3" json:"downstream,omitempty"`
	EntryExpiry   bool `protobuf:"varint,9,opt,name=entryExpiry,proto3" json:"entryExpiry,omitempty"`
	DnsNames      bool `protobuf:"varint,10,opt,name=dns_names,json=dnsNames,proto3" json:"dns_names,omitempty"`
	StoreSvid     bool `protobuf:"varint,11,opt,name=store_svid,json=storeSvid,proto3" json:"store_svid,omitempty"`
	JwtSvidTtl    bool `protobuf:"varint,12,opt,name=jwt_svid_ttl,json=jwtSvidTtl,proto3" json:"jwt_svid_ttl,omitempty"`
	// contains filtered or unexported fields
}

* The RegistrationEntryMask is used to update only selected fields of the RegistrationEntry

func (*RegistrationEntryMask) Descriptor deprecated

func (*RegistrationEntryMask) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationEntryMask.ProtoReflect.Descriptor instead.

func (*RegistrationEntryMask) GetAdmin

func (x *RegistrationEntryMask) GetAdmin() bool

func (*RegistrationEntryMask) GetDnsNames

func (x *RegistrationEntryMask) GetDnsNames() bool

func (*RegistrationEntryMask) GetDownstream

func (x *RegistrationEntryMask) GetDownstream() bool

func (*RegistrationEntryMask) GetEntryExpiry

func (x *RegistrationEntryMask) GetEntryExpiry() bool

func (*RegistrationEntryMask) GetEntryId

func (x *RegistrationEntryMask) GetEntryId() bool

func (*RegistrationEntryMask) GetFederatesWith

func (x *RegistrationEntryMask) GetFederatesWith() bool

func (*RegistrationEntryMask) GetJwtSvidTtl added in v1.5.0

func (x *RegistrationEntryMask) GetJwtSvidTtl() bool

func (*RegistrationEntryMask) GetParentId

func (x *RegistrationEntryMask) GetParentId() bool

func (*RegistrationEntryMask) GetSelectors

func (x *RegistrationEntryMask) GetSelectors() bool

func (*RegistrationEntryMask) GetSpiffeId

func (x *RegistrationEntryMask) GetSpiffeId() bool

func (*RegistrationEntryMask) GetStoreSvid added in v1.1.0

func (x *RegistrationEntryMask) GetStoreSvid() bool

func (*RegistrationEntryMask) GetX509SvidTtl added in v1.5.0

func (x *RegistrationEntryMask) GetX509SvidTtl() bool

func (*RegistrationEntryMask) ProtoMessage

func (*RegistrationEntryMask) ProtoMessage()

func (*RegistrationEntryMask) ProtoReflect

func (x *RegistrationEntryMask) ProtoReflect() protoreflect.Message

func (*RegistrationEntryMask) Reset

func (x *RegistrationEntryMask) Reset()

func (*RegistrationEntryMask) String

func (x *RegistrationEntryMask) String() string

type Selector

type Selector struct {

	// * A selector type represents the type of attestation used in attesting
	// the entity (Eg: AWS, K8).
	Type string `protobuf:"bytes,1,opt,name=type,proto3" json:"type,omitempty"`
	// * The value to be attested.
	Value string `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
	// contains filtered or unexported fields
}

* A type which describes the conditions under which a registration entry is matched.

func (*Selector) Descriptor deprecated

func (*Selector) Descriptor() ([]byte, []int)

Deprecated: Use Selector.ProtoReflect.Descriptor instead.

func (*Selector) GetType

func (x *Selector) GetType() string

func (*Selector) GetValue

func (x *Selector) GetValue() string

func (*Selector) ProtoMessage

func (*Selector) ProtoMessage()

func (*Selector) ProtoReflect

func (x *Selector) ProtoReflect() protoreflect.Message

func (*Selector) Reset

func (x *Selector) Reset()

func (*Selector) String

func (x *Selector) String() string

type Selectors

type Selectors struct {

	// * A list of Selector.
	Entries []*Selector `protobuf:"bytes,1,rep,name=entries,proto3" json:"entries,omitempty"`
	// contains filtered or unexported fields
}

* Represents a type with a list of Selector.

func (*Selectors) Descriptor deprecated

func (*Selectors) Descriptor() ([]byte, []int)

Deprecated: Use Selectors.ProtoReflect.Descriptor instead.

func (*Selectors) GetEntries

func (x *Selectors) GetEntries() []*Selector

func (*Selectors) ProtoMessage

func (*Selectors) ProtoMessage()

func (*Selectors) ProtoReflect

func (x *Selectors) ProtoReflect() protoreflect.Message

func (*Selectors) Reset

func (x *Selectors) Reset()

func (*Selectors) String

func (x *Selectors) String() string

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL