Documentation ¶
Overview ¶
Package proto contains proto generated code.
Package proto is a reverse proxy.
It translates gRPC into RESTful JSON APIs.
Package proto is a generated GoMock package.
Index ¶
- Variables
- func RegisterHealthServer(s grpc.ServiceRegistrar, srv HealthServer)
- func RegisterSigningHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error
- func RegisterSigningHandlerClient(ctx context.Context, mux *runtime.ServeMux, client SigningClient) error
- func RegisterSigningHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, ...) (err error)
- func RegisterSigningHandlerServer(ctx context.Context, mux *runtime.ServeMux, server SigningServer) error
- func RegisterSigningServer(s grpc.ServiceRegistrar, srv SigningServer)
- type BlobSigningRequest
- func (*BlobSigningRequest) Descriptor() ([]byte, []int)deprecated
- func (x *BlobSigningRequest) GetDigest() string
- func (x *BlobSigningRequest) GetHashAlgorithm() HashAlgo
- func (x *BlobSigningRequest) GetKeyMeta() *KeyMeta
- func (x *BlobSigningRequest) GetPriority() Priority
- func (*BlobSigningRequest) ProtoMessage()
- func (x *BlobSigningRequest) ProtoReflect() protoreflect.Message
- func (x *BlobSigningRequest) Reset()
- func (x *BlobSigningRequest) String() string
- type HashAlgo
- type HealthCheckRequest
- func (*HealthCheckRequest) Descriptor() ([]byte, []int)deprecated
- func (x *HealthCheckRequest) GetService() string
- func (*HealthCheckRequest) ProtoMessage()
- func (x *HealthCheckRequest) ProtoReflect() protoreflect.Message
- func (x *HealthCheckRequest) Reset()
- func (x *HealthCheckRequest) String() string
- type HealthCheckResponse
- func (*HealthCheckResponse) Descriptor() ([]byte, []int)deprecated
- func (x *HealthCheckResponse) GetStatus() HealthCheckResponse_ServingStatus
- func (*HealthCheckResponse) ProtoMessage()
- func (x *HealthCheckResponse) ProtoReflect() protoreflect.Message
- func (x *HealthCheckResponse) Reset()
- func (x *HealthCheckResponse) String() string
- type HealthCheckResponse_ServingStatus
- func (HealthCheckResponse_ServingStatus) Descriptor() protoreflect.EnumDescriptor
- func (x HealthCheckResponse_ServingStatus) Enum() *HealthCheckResponse_ServingStatus
- func (HealthCheckResponse_ServingStatus) EnumDescriptor() ([]byte, []int)deprecated
- func (x HealthCheckResponse_ServingStatus) Number() protoreflect.EnumNumber
- func (x HealthCheckResponse_ServingStatus) String() string
- func (HealthCheckResponse_ServingStatus) Type() protoreflect.EnumType
- type HealthClient
- type HealthServer
- type Health_WatchClient
- type Health_WatchServer
- type KeyMeta
- type KeyMetas
- type MockSigningClient
- func (m *MockSigningClient) EXPECT() *MockSigningClientMockRecorder
- func (m *MockSigningClient) GetBlobAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
- func (m *MockSigningClient) GetBlobSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*PublicKey, error)
- func (m *MockSigningClient) GetHostSSHCertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
- func (m *MockSigningClient) GetHostSSHCertificateSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*SSHKey, error)
- func (m *MockSigningClient) GetUserSSHCertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
- func (m *MockSigningClient) GetUserSSHCertificateSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*SSHKey, error)
- func (m *MockSigningClient) GetX509CACertificate(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*X509Certificate, error)
- func (m *MockSigningClient) GetX509CertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
- func (m *MockSigningClient) PostHostSSHCertificate(ctx context.Context, in *SSHCertificateSigningRequest, opts ...grpc.CallOption) (*SSHKey, error)
- func (m *MockSigningClient) PostSignBlob(ctx context.Context, in *BlobSigningRequest, opts ...grpc.CallOption) (*Signature, error)
- func (m *MockSigningClient) PostUserSSHCertificate(ctx context.Context, in *SSHCertificateSigningRequest, opts ...grpc.CallOption) (*SSHKey, error)
- func (m *MockSigningClient) PostX509Certificate(ctx context.Context, in *X509CertificateSigningRequest, ...) (*X509Certificate, error)
- type MockSigningClientMockRecorder
- func (mr *MockSigningClientMockRecorder) GetBlobAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) GetBlobSigningKey(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) GetHostSSHCertificateAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) GetHostSSHCertificateSigningKey(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) GetUserSSHCertificateAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) GetUserSSHCertificateSigningKey(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) GetX509CACertificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) GetX509CertificateAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) PostHostSSHCertificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) PostSignBlob(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) PostUserSSHCertificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
- func (mr *MockSigningClientMockRecorder) PostX509Certificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
- type MockSigningServer
- func (m *MockSigningServer) EXPECT() *MockSigningServerMockRecorder
- func (m *MockSigningServer) GetBlobAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
- func (m *MockSigningServer) GetBlobSigningKey(arg0 context.Context, arg1 *KeyMeta) (*PublicKey, error)
- func (m *MockSigningServer) GetHostSSHCertificateAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
- func (m *MockSigningServer) GetHostSSHCertificateSigningKey(arg0 context.Context, arg1 *KeyMeta) (*SSHKey, error)
- func (m *MockSigningServer) GetUserSSHCertificateAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
- func (m *MockSigningServer) GetUserSSHCertificateSigningKey(arg0 context.Context, arg1 *KeyMeta) (*SSHKey, error)
- func (m *MockSigningServer) GetX509CACertificate(arg0 context.Context, arg1 *KeyMeta) (*X509Certificate, error)
- func (m *MockSigningServer) GetX509CertificateAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
- func (m *MockSigningServer) PostHostSSHCertificate(arg0 context.Context, arg1 *SSHCertificateSigningRequest) (*SSHKey, error)
- func (m *MockSigningServer) PostSignBlob(arg0 context.Context, arg1 *BlobSigningRequest) (*Signature, error)
- func (m *MockSigningServer) PostUserSSHCertificate(arg0 context.Context, arg1 *SSHCertificateSigningRequest) (*SSHKey, error)
- func (m *MockSigningServer) PostX509Certificate(arg0 context.Context, arg1 *X509CertificateSigningRequest) (*X509Certificate, error)
- type MockSigningServerMockRecorder
- func (mr *MockSigningServerMockRecorder) GetBlobAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) GetBlobSigningKey(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) GetHostSSHCertificateAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) GetHostSSHCertificateSigningKey(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) GetUserSSHCertificateAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) GetUserSSHCertificateSigningKey(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) GetX509CACertificate(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) GetX509CertificateAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) PostHostSSHCertificate(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) PostSignBlob(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) PostUserSSHCertificate(arg0, arg1 interface{}) *gomock.Call
- func (mr *MockSigningServerMockRecorder) PostX509Certificate(arg0, arg1 interface{}) *gomock.Call
- type MockUnsafeSigningServer
- type MockUnsafeSigningServerMockRecorder
- type Priority
- type PublicKey
- type SSHCertificateSigningRequest
- func (*SSHCertificateSigningRequest) Descriptor() ([]byte, []int)deprecated
- func (x *SSHCertificateSigningRequest) GetCriticalOptions() map[string]string
- func (x *SSHCertificateSigningRequest) GetExtensions() map[string]string
- func (x *SSHCertificateSigningRequest) GetKeyId() string
- func (x *SSHCertificateSigningRequest) GetKeyMeta() *KeyMeta
- func (x *SSHCertificateSigningRequest) GetPrincipals() []string
- func (x *SSHCertificateSigningRequest) GetPriority() Priority
- func (x *SSHCertificateSigningRequest) GetPublicKey() string
- func (x *SSHCertificateSigningRequest) GetValidity() uint64
- func (*SSHCertificateSigningRequest) ProtoMessage()
- func (x *SSHCertificateSigningRequest) ProtoReflect() protoreflect.Message
- func (x *SSHCertificateSigningRequest) Reset()
- func (x *SSHCertificateSigningRequest) String() string
- type SSHKey
- type Signature
- type SigningClient
- type SigningServer
- type UnimplementedHealthServer
- type UnimplementedSigningServer
- func (UnimplementedSigningServer) GetBlobAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error)
- func (UnimplementedSigningServer) GetBlobSigningKey(context.Context, *KeyMeta) (*PublicKey, error)
- func (UnimplementedSigningServer) GetHostSSHCertificateAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error)
- func (UnimplementedSigningServer) GetHostSSHCertificateSigningKey(context.Context, *KeyMeta) (*SSHKey, error)
- func (UnimplementedSigningServer) GetUserSSHCertificateAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error)
- func (UnimplementedSigningServer) GetUserSSHCertificateSigningKey(context.Context, *KeyMeta) (*SSHKey, error)
- func (UnimplementedSigningServer) GetX509CACertificate(context.Context, *KeyMeta) (*X509Certificate, error)
- func (UnimplementedSigningServer) GetX509CertificateAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error)
- func (UnimplementedSigningServer) PostHostSSHCertificate(context.Context, *SSHCertificateSigningRequest) (*SSHKey, error)
- func (UnimplementedSigningServer) PostSignBlob(context.Context, *BlobSigningRequest) (*Signature, error)
- func (UnimplementedSigningServer) PostUserSSHCertificate(context.Context, *SSHCertificateSigningRequest) (*SSHKey, error)
- func (UnimplementedSigningServer) PostX509Certificate(context.Context, *X509CertificateSigningRequest) (*X509Certificate, error)
- type UnsafeHealthServer
- type UnsafeSigningServer
- type X509Certificate
- type X509CertificateSigningRequest
- func (*X509CertificateSigningRequest) Descriptor() ([]byte, []int)deprecated
- func (x *X509CertificateSigningRequest) GetCsr() string
- func (x *X509CertificateSigningRequest) GetExtKeyUsage() []int32
- func (x *X509CertificateSigningRequest) GetKeyMeta() *KeyMeta
- func (x *X509CertificateSigningRequest) GetPriority() Priority
- func (x *X509CertificateSigningRequest) GetValidity() uint64
- func (*X509CertificateSigningRequest) ProtoMessage()
- func (x *X509CertificateSigningRequest) ProtoReflect() protoreflect.Message
- func (x *X509CertificateSigningRequest) Reset()
- func (x *X509CertificateSigningRequest) String() string
Constants ¶
This section is empty.
Variables ¶
var ( HealthCheckResponse_ServingStatus_name = map[int32]string{ 0: "UNKNOWN", 1: "SERVING", 2: "NOT_SERVING", 3: "SERVICE_UNKNOWN", } HealthCheckResponse_ServingStatus_value = map[string]int32{ "UNKNOWN": 0, "SERVING": 1, "NOT_SERVING": 2, "SERVICE_UNKNOWN": 3, } )
Enum value maps for HealthCheckResponse_ServingStatus.
var ( HashAlgo_name = map[int32]string{ 0: "Unspecified_Hash", 1: "SHA224", 2: "SHA256", 3: "SHA384", 4: "SHA512", } HashAlgo_value = map[string]int32{ "Unspecified_Hash": 0, "SHA224": 1, "SHA256": 2, "SHA384": 3, "SHA512": 4, } )
Enum value maps for HashAlgo.
var ( Priority_name = map[int32]string{ 0: "Unspecified_priority", 5: "High", 10: "Medium", 15: "Low", } Priority_value = map[string]int32{ "Unspecified_priority": 0, "High": 5, "Medium": 10, "Low": 15, } )
Enum value maps for Priority.
var File_healthcheck_proto protoreflect.FileDescriptor
var File_sign_proto protoreflect.FileDescriptor
var Health_ServiceDesc = grpc.ServiceDesc{ ServiceName: "v3.Health", HandlerType: (*HealthServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "Check", Handler: _Health_Check_Handler, }, }, Streams: []grpc.StreamDesc{ { StreamName: "Watch", Handler: _Health_Watch_Handler, ServerStreams: true, }, }, Metadata: "healthcheck.proto", }
Health_ServiceDesc is the grpc.ServiceDesc for Health service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)
var Signing_ServiceDesc = grpc.ServiceDesc{ ServiceName: "v3.Signing", HandlerType: (*SigningServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "GetX509CertificateAvailableSigningKeys", Handler: _Signing_GetX509CertificateAvailableSigningKeys_Handler, }, { MethodName: "GetX509CACertificate", Handler: _Signing_GetX509CACertificate_Handler, }, { MethodName: "PostX509Certificate", Handler: _Signing_PostX509Certificate_Handler, }, { MethodName: "GetUserSSHCertificateAvailableSigningKeys", Handler: _Signing_GetUserSSHCertificateAvailableSigningKeys_Handler, }, { MethodName: "GetUserSSHCertificateSigningKey", Handler: _Signing_GetUserSSHCertificateSigningKey_Handler, }, { MethodName: "PostUserSSHCertificate", Handler: _Signing_PostUserSSHCertificate_Handler, }, { MethodName: "GetHostSSHCertificateAvailableSigningKeys", Handler: _Signing_GetHostSSHCertificateAvailableSigningKeys_Handler, }, { MethodName: "GetHostSSHCertificateSigningKey", Handler: _Signing_GetHostSSHCertificateSigningKey_Handler, }, { MethodName: "PostHostSSHCertificate", Handler: _Signing_PostHostSSHCertificate_Handler, }, { MethodName: "GetBlobAvailableSigningKeys", Handler: _Signing_GetBlobAvailableSigningKeys_Handler, }, { MethodName: "GetBlobSigningKey", Handler: _Signing_GetBlobSigningKey_Handler, }, { MethodName: "PostSignBlob", Handler: _Signing_PostSignBlob_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "sign.proto", }
Signing_ServiceDesc is the grpc.ServiceDesc for Signing service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)
Functions ¶
func RegisterHealthServer ¶ added in v1.12.0
func RegisterHealthServer(s grpc.ServiceRegistrar, srv HealthServer)
func RegisterSigningHandler ¶
func RegisterSigningHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error
RegisterSigningHandler registers the http handlers for service Signing to "mux". The handlers forward requests to the grpc endpoint over "conn".
func RegisterSigningHandlerClient ¶
func RegisterSigningHandlerClient(ctx context.Context, mux *runtime.ServeMux, client SigningClient) error
RegisterSigningHandlerClient registers the http handlers for service Signing to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "SigningClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "SigningClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "SigningClient" to call the correct interceptors.
func RegisterSigningHandlerFromEndpoint ¶
func RegisterSigningHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)
RegisterSigningHandlerFromEndpoint is same as RegisterSigningHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.
func RegisterSigningHandlerServer ¶
func RegisterSigningHandlerServer(ctx context.Context, mux *runtime.ServeMux, server SigningServer) error
RegisterSigningHandlerServer registers the http handlers for service Signing to "mux". UnaryRPC :call SigningServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterSigningHandlerFromEndpoint instead.
func RegisterSigningServer ¶
func RegisterSigningServer(s grpc.ServiceRegistrar, srv SigningServer)
Types ¶
type BlobSigningRequest ¶
type BlobSigningRequest struct { // Identifies the signing key in the PKCS#11 device used for signing the blob. KeyMeta *KeyMeta `protobuf:"bytes,1,opt,name=key_meta,json=keyMeta,proto3" json:"key_meta,omitempty"` // the hash digest of blob in base64 which will be signed. Digest string `protobuf:"bytes,2,opt,name=digest,proto3" json:"digest,omitempty"` // the algorithm of hash function used to generate the digest // https://golang.org/pkg/crypto/#Hash. HashAlgorithm HashAlgo `protobuf:"varint,3,opt,name=hash_algorithm,json=hashAlgorithm,proto3,enum=v3.HashAlgo" json:"hash_algorithm,omitempty"` // Priority of the request as specified by client. If the server is under heavy load, it may // decide to process higher priority requests before the lower priority requests. // This feature is currently EXPERIMENTAL where priority value is only logged and not used for anything else. // Specific implementation will be based on analysis of client request patterns. Priority Priority `protobuf:"varint,10,opt,name=priority,proto3,enum=v3.Priority" json:"priority,omitempty"` // contains filtered or unexported fields }
func (*BlobSigningRequest) Descriptor
deprecated
func (*BlobSigningRequest) Descriptor() ([]byte, []int)
Deprecated: Use BlobSigningRequest.ProtoReflect.Descriptor instead.
func (*BlobSigningRequest) GetDigest ¶
func (x *BlobSigningRequest) GetDigest() string
func (*BlobSigningRequest) GetHashAlgorithm ¶
func (x *BlobSigningRequest) GetHashAlgorithm() HashAlgo
func (*BlobSigningRequest) GetKeyMeta ¶
func (x *BlobSigningRequest) GetKeyMeta() *KeyMeta
func (*BlobSigningRequest) GetPriority ¶ added in v1.8.0
func (x *BlobSigningRequest) GetPriority() Priority
func (*BlobSigningRequest) ProtoMessage ¶
func (*BlobSigningRequest) ProtoMessage()
func (*BlobSigningRequest) ProtoReflect ¶ added in v1.3.1
func (x *BlobSigningRequest) ProtoReflect() protoreflect.Message
func (*BlobSigningRequest) Reset ¶
func (x *BlobSigningRequest) Reset()
func (*BlobSigningRequest) String ¶
func (x *BlobSigningRequest) String() string
type HashAlgo ¶
type HashAlgo int32
func (HashAlgo) Descriptor ¶ added in v1.3.1
func (HashAlgo) Descriptor() protoreflect.EnumDescriptor
func (HashAlgo) EnumDescriptor
deprecated
func (HashAlgo) Number ¶ added in v1.3.1
func (x HashAlgo) Number() protoreflect.EnumNumber
func (HashAlgo) Type ¶ added in v1.3.1
func (HashAlgo) Type() protoreflect.EnumType
type HealthCheckRequest ¶ added in v1.12.0
type HealthCheckRequest struct { Service string `protobuf:"bytes,1,opt,name=service,proto3" json:"service,omitempty"` // contains filtered or unexported fields }
HealthCheckRequest represents the request. An empty service name can be used if client wants to get server's overall health status.
func (*HealthCheckRequest) Descriptor
deprecated
added in
v1.12.0
func (*HealthCheckRequest) Descriptor() ([]byte, []int)
Deprecated: Use HealthCheckRequest.ProtoReflect.Descriptor instead.
func (*HealthCheckRequest) GetService ¶ added in v1.12.0
func (x *HealthCheckRequest) GetService() string
func (*HealthCheckRequest) ProtoMessage ¶ added in v1.12.0
func (*HealthCheckRequest) ProtoMessage()
func (*HealthCheckRequest) ProtoReflect ¶ added in v1.12.0
func (x *HealthCheckRequest) ProtoReflect() protoreflect.Message
func (*HealthCheckRequest) Reset ¶ added in v1.12.0
func (x *HealthCheckRequest) Reset()
func (*HealthCheckRequest) String ¶ added in v1.12.0
func (x *HealthCheckRequest) String() string
type HealthCheckResponse ¶ added in v1.12.0
type HealthCheckResponse struct { Status HealthCheckResponse_ServingStatus `protobuf:"varint,1,opt,name=status,proto3,enum=v3.HealthCheckResponse_ServingStatus" json:"status,omitempty"` // contains filtered or unexported fields }
HealthCheckResponse represents the response. Server sets the status based on whether the server or a particular service is up and ready to serve traffic.
func (*HealthCheckResponse) Descriptor
deprecated
added in
v1.12.0
func (*HealthCheckResponse) Descriptor() ([]byte, []int)
Deprecated: Use HealthCheckResponse.ProtoReflect.Descriptor instead.
func (*HealthCheckResponse) GetStatus ¶ added in v1.12.0
func (x *HealthCheckResponse) GetStatus() HealthCheckResponse_ServingStatus
func (*HealthCheckResponse) ProtoMessage ¶ added in v1.12.0
func (*HealthCheckResponse) ProtoMessage()
func (*HealthCheckResponse) ProtoReflect ¶ added in v1.12.0
func (x *HealthCheckResponse) ProtoReflect() protoreflect.Message
func (*HealthCheckResponse) Reset ¶ added in v1.12.0
func (x *HealthCheckResponse) Reset()
func (*HealthCheckResponse) String ¶ added in v1.12.0
func (x *HealthCheckResponse) String() string
type HealthCheckResponse_ServingStatus ¶ added in v1.12.0
type HealthCheckResponse_ServingStatus int32
const ( HealthCheckResponse_UNKNOWN HealthCheckResponse_ServingStatus = 0 HealthCheckResponse_SERVING HealthCheckResponse_ServingStatus = 1 HealthCheckResponse_NOT_SERVING HealthCheckResponse_ServingStatus = 2 HealthCheckResponse_SERVICE_UNKNOWN HealthCheckResponse_ServingStatus = 3 // Used only by the Watch method. )
func (HealthCheckResponse_ServingStatus) Descriptor ¶ added in v1.12.0
func (HealthCheckResponse_ServingStatus) Descriptor() protoreflect.EnumDescriptor
func (HealthCheckResponse_ServingStatus) Enum ¶ added in v1.12.0
func (x HealthCheckResponse_ServingStatus) Enum() *HealthCheckResponse_ServingStatus
func (HealthCheckResponse_ServingStatus) EnumDescriptor
deprecated
added in
v1.12.0
func (HealthCheckResponse_ServingStatus) EnumDescriptor() ([]byte, []int)
Deprecated: Use HealthCheckResponse_ServingStatus.Descriptor instead.
func (HealthCheckResponse_ServingStatus) Number ¶ added in v1.12.0
func (x HealthCheckResponse_ServingStatus) Number() protoreflect.EnumNumber
func (HealthCheckResponse_ServingStatus) String ¶ added in v1.12.0
func (x HealthCheckResponse_ServingStatus) String() string
func (HealthCheckResponse_ServingStatus) Type ¶ added in v1.12.0
func (HealthCheckResponse_ServingStatus) Type() protoreflect.EnumType
type HealthClient ¶ added in v1.12.0
type HealthClient interface { // Check implements the health check service for crypki. // Reference - https://github.com/grpc/grpc/blob/7324556353e831c57d30973db33df489c3ed3576/doc/health-checking.md Check(ctx context.Context, in *HealthCheckRequest, opts ...grpc.CallOption) (*HealthCheckResponse, error) Watch(ctx context.Context, in *HealthCheckRequest, opts ...grpc.CallOption) (Health_WatchClient, error) }
HealthClient is the client API for Health service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
func NewHealthClient ¶ added in v1.12.0
func NewHealthClient(cc grpc.ClientConnInterface) HealthClient
type HealthServer ¶ added in v1.12.0
type HealthServer interface { // Check implements the health check service for crypki. // Reference - https://github.com/grpc/grpc/blob/7324556353e831c57d30973db33df489c3ed3576/doc/health-checking.md Check(context.Context, *HealthCheckRequest) (*HealthCheckResponse, error) Watch(*HealthCheckRequest, Health_WatchServer) error // contains filtered or unexported methods }
HealthServer is the server API for Health service. All implementations must embed UnimplementedHealthServer for forward compatibility
type Health_WatchClient ¶ added in v1.12.0
type Health_WatchClient interface { Recv() (*HealthCheckResponse, error) grpc.ClientStream }
type Health_WatchServer ¶ added in v1.12.0
type Health_WatchServer interface { Send(*HealthCheckResponse) error grpc.ServerStream }
type KeyMeta ¶
type KeyMeta struct { // The id of the key that will be used in crypto operations. Identifier string `protobuf:"bytes,1,opt,name=identifier,proto3" json:"identifier,omitempty"` // contains filtered or unexported fields }
KeyMeta identifies the private key used in crypto operations.
func (*KeyMeta) Descriptor
deprecated
func (*KeyMeta) GetIdentifier ¶
func (*KeyMeta) ProtoMessage ¶
func (*KeyMeta) ProtoMessage()
func (*KeyMeta) ProtoReflect ¶ added in v1.3.1
func (x *KeyMeta) ProtoReflect() protoreflect.Message
type KeyMetas ¶
type KeyMetas struct { Keys []*KeyMeta `protobuf:"bytes,1,rep,name=keys,proto3" json:"keys,omitempty"` // contains filtered or unexported fields }
KeyMetas contains a list of KeyMetas.
func (*KeyMetas) Descriptor
deprecated
func (*KeyMetas) ProtoMessage ¶
func (*KeyMetas) ProtoMessage()
func (*KeyMetas) ProtoReflect ¶ added in v1.3.1
func (x *KeyMetas) ProtoReflect() protoreflect.Message
type MockSigningClient ¶ added in v1.11.6
type MockSigningClient struct {
// contains filtered or unexported fields
}
MockSigningClient is a mock of SigningClient interface.
func NewMockSigningClient ¶ added in v1.11.6
func NewMockSigningClient(ctrl *gomock.Controller) *MockSigningClient
NewMockSigningClient creates a new mock instance.
func (*MockSigningClient) EXPECT ¶ added in v1.11.6
func (m *MockSigningClient) EXPECT() *MockSigningClientMockRecorder
EXPECT returns an object that allows the caller to indicate expected use.
func (*MockSigningClient) GetBlobAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningClient) GetBlobAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
GetBlobAvailableSigningKeys mocks base method.
func (*MockSigningClient) GetBlobSigningKey ¶ added in v1.11.6
func (m *MockSigningClient) GetBlobSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*PublicKey, error)
GetBlobSigningKey mocks base method.
func (*MockSigningClient) GetHostSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningClient) GetHostSSHCertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
GetHostSSHCertificateAvailableSigningKeys mocks base method.
func (*MockSigningClient) GetHostSSHCertificateSigningKey ¶ added in v1.11.6
func (m *MockSigningClient) GetHostSSHCertificateSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*SSHKey, error)
GetHostSSHCertificateSigningKey mocks base method.
func (*MockSigningClient) GetUserSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningClient) GetUserSSHCertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
GetUserSSHCertificateAvailableSigningKeys mocks base method.
func (*MockSigningClient) GetUserSSHCertificateSigningKey ¶ added in v1.11.6
func (m *MockSigningClient) GetUserSSHCertificateSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*SSHKey, error)
GetUserSSHCertificateSigningKey mocks base method.
func (*MockSigningClient) GetX509CACertificate ¶ added in v1.11.6
func (m *MockSigningClient) GetX509CACertificate(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*X509Certificate, error)
GetX509CACertificate mocks base method.
func (*MockSigningClient) GetX509CertificateAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningClient) GetX509CertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error)
GetX509CertificateAvailableSigningKeys mocks base method.
func (*MockSigningClient) PostHostSSHCertificate ¶ added in v1.11.6
func (m *MockSigningClient) PostHostSSHCertificate(ctx context.Context, in *SSHCertificateSigningRequest, opts ...grpc.CallOption) (*SSHKey, error)
PostHostSSHCertificate mocks base method.
func (*MockSigningClient) PostSignBlob ¶ added in v1.11.6
func (m *MockSigningClient) PostSignBlob(ctx context.Context, in *BlobSigningRequest, opts ...grpc.CallOption) (*Signature, error)
PostSignBlob mocks base method.
func (*MockSigningClient) PostUserSSHCertificate ¶ added in v1.11.6
func (m *MockSigningClient) PostUserSSHCertificate(ctx context.Context, in *SSHCertificateSigningRequest, opts ...grpc.CallOption) (*SSHKey, error)
PostUserSSHCertificate mocks base method.
func (*MockSigningClient) PostX509Certificate ¶ added in v1.11.6
func (m *MockSigningClient) PostX509Certificate(ctx context.Context, in *X509CertificateSigningRequest, opts ...grpc.CallOption) (*X509Certificate, error)
PostX509Certificate mocks base method.
type MockSigningClientMockRecorder ¶ added in v1.11.6
type MockSigningClientMockRecorder struct {
// contains filtered or unexported fields
}
MockSigningClientMockRecorder is the mock recorder for MockSigningClient.
func (*MockSigningClientMockRecorder) GetBlobAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetBlobAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetBlobAvailableSigningKeys indicates an expected call of GetBlobAvailableSigningKeys.
func (*MockSigningClientMockRecorder) GetBlobSigningKey ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetBlobSigningKey(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetBlobSigningKey indicates an expected call of GetBlobSigningKey.
func (*MockSigningClientMockRecorder) GetHostSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetHostSSHCertificateAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetHostSSHCertificateAvailableSigningKeys indicates an expected call of GetHostSSHCertificateAvailableSigningKeys.
func (*MockSigningClientMockRecorder) GetHostSSHCertificateSigningKey ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetHostSSHCertificateSigningKey(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetHostSSHCertificateSigningKey indicates an expected call of GetHostSSHCertificateSigningKey.
func (*MockSigningClientMockRecorder) GetUserSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetUserSSHCertificateAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetUserSSHCertificateAvailableSigningKeys indicates an expected call of GetUserSSHCertificateAvailableSigningKeys.
func (*MockSigningClientMockRecorder) GetUserSSHCertificateSigningKey ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetUserSSHCertificateSigningKey(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetUserSSHCertificateSigningKey indicates an expected call of GetUserSSHCertificateSigningKey.
func (*MockSigningClientMockRecorder) GetX509CACertificate ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetX509CACertificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetX509CACertificate indicates an expected call of GetX509CACertificate.
func (*MockSigningClientMockRecorder) GetX509CertificateAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) GetX509CertificateAvailableSigningKeys(ctx, in interface{}, opts ...interface{}) *gomock.Call
GetX509CertificateAvailableSigningKeys indicates an expected call of GetX509CertificateAvailableSigningKeys.
func (*MockSigningClientMockRecorder) PostHostSSHCertificate ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) PostHostSSHCertificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
PostHostSSHCertificate indicates an expected call of PostHostSSHCertificate.
func (*MockSigningClientMockRecorder) PostSignBlob ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) PostSignBlob(ctx, in interface{}, opts ...interface{}) *gomock.Call
PostSignBlob indicates an expected call of PostSignBlob.
func (*MockSigningClientMockRecorder) PostUserSSHCertificate ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) PostUserSSHCertificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
PostUserSSHCertificate indicates an expected call of PostUserSSHCertificate.
func (*MockSigningClientMockRecorder) PostX509Certificate ¶ added in v1.11.6
func (mr *MockSigningClientMockRecorder) PostX509Certificate(ctx, in interface{}, opts ...interface{}) *gomock.Call
PostX509Certificate indicates an expected call of PostX509Certificate.
type MockSigningServer ¶ added in v1.11.6
type MockSigningServer struct {
// contains filtered or unexported fields
}
MockSigningServer is a mock of SigningServer interface.
func NewMockSigningServer ¶ added in v1.11.6
func NewMockSigningServer(ctrl *gomock.Controller) *MockSigningServer
NewMockSigningServer creates a new mock instance.
func (*MockSigningServer) EXPECT ¶ added in v1.11.6
func (m *MockSigningServer) EXPECT() *MockSigningServerMockRecorder
EXPECT returns an object that allows the caller to indicate expected use.
func (*MockSigningServer) GetBlobAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningServer) GetBlobAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
GetBlobAvailableSigningKeys mocks base method.
func (*MockSigningServer) GetBlobSigningKey ¶ added in v1.11.6
func (m *MockSigningServer) GetBlobSigningKey(arg0 context.Context, arg1 *KeyMeta) (*PublicKey, error)
GetBlobSigningKey mocks base method.
func (*MockSigningServer) GetHostSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningServer) GetHostSSHCertificateAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
GetHostSSHCertificateAvailableSigningKeys mocks base method.
func (*MockSigningServer) GetHostSSHCertificateSigningKey ¶ added in v1.11.6
func (m *MockSigningServer) GetHostSSHCertificateSigningKey(arg0 context.Context, arg1 *KeyMeta) (*SSHKey, error)
GetHostSSHCertificateSigningKey mocks base method.
func (*MockSigningServer) GetUserSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningServer) GetUserSSHCertificateAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
GetUserSSHCertificateAvailableSigningKeys mocks base method.
func (*MockSigningServer) GetUserSSHCertificateSigningKey ¶ added in v1.11.6
func (m *MockSigningServer) GetUserSSHCertificateSigningKey(arg0 context.Context, arg1 *KeyMeta) (*SSHKey, error)
GetUserSSHCertificateSigningKey mocks base method.
func (*MockSigningServer) GetX509CACertificate ¶ added in v1.11.6
func (m *MockSigningServer) GetX509CACertificate(arg0 context.Context, arg1 *KeyMeta) (*X509Certificate, error)
GetX509CACertificate mocks base method.
func (*MockSigningServer) GetX509CertificateAvailableSigningKeys ¶ added in v1.11.6
func (m *MockSigningServer) GetX509CertificateAvailableSigningKeys(arg0 context.Context, arg1 *emptypb.Empty) (*KeyMetas, error)
GetX509CertificateAvailableSigningKeys mocks base method.
func (*MockSigningServer) PostHostSSHCertificate ¶ added in v1.11.6
func (m *MockSigningServer) PostHostSSHCertificate(arg0 context.Context, arg1 *SSHCertificateSigningRequest) (*SSHKey, error)
PostHostSSHCertificate mocks base method.
func (*MockSigningServer) PostSignBlob ¶ added in v1.11.6
func (m *MockSigningServer) PostSignBlob(arg0 context.Context, arg1 *BlobSigningRequest) (*Signature, error)
PostSignBlob mocks base method.
func (*MockSigningServer) PostUserSSHCertificate ¶ added in v1.11.6
func (m *MockSigningServer) PostUserSSHCertificate(arg0 context.Context, arg1 *SSHCertificateSigningRequest) (*SSHKey, error)
PostUserSSHCertificate mocks base method.
func (*MockSigningServer) PostX509Certificate ¶ added in v1.11.6
func (m *MockSigningServer) PostX509Certificate(arg0 context.Context, arg1 *X509CertificateSigningRequest) (*X509Certificate, error)
PostX509Certificate mocks base method.
type MockSigningServerMockRecorder ¶ added in v1.11.6
type MockSigningServerMockRecorder struct {
// contains filtered or unexported fields
}
MockSigningServerMockRecorder is the mock recorder for MockSigningServer.
func (*MockSigningServerMockRecorder) GetBlobAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetBlobAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
GetBlobAvailableSigningKeys indicates an expected call of GetBlobAvailableSigningKeys.
func (*MockSigningServerMockRecorder) GetBlobSigningKey ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetBlobSigningKey(arg0, arg1 interface{}) *gomock.Call
GetBlobSigningKey indicates an expected call of GetBlobSigningKey.
func (*MockSigningServerMockRecorder) GetHostSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetHostSSHCertificateAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
GetHostSSHCertificateAvailableSigningKeys indicates an expected call of GetHostSSHCertificateAvailableSigningKeys.
func (*MockSigningServerMockRecorder) GetHostSSHCertificateSigningKey ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetHostSSHCertificateSigningKey(arg0, arg1 interface{}) *gomock.Call
GetHostSSHCertificateSigningKey indicates an expected call of GetHostSSHCertificateSigningKey.
func (*MockSigningServerMockRecorder) GetUserSSHCertificateAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetUserSSHCertificateAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
GetUserSSHCertificateAvailableSigningKeys indicates an expected call of GetUserSSHCertificateAvailableSigningKeys.
func (*MockSigningServerMockRecorder) GetUserSSHCertificateSigningKey ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetUserSSHCertificateSigningKey(arg0, arg1 interface{}) *gomock.Call
GetUserSSHCertificateSigningKey indicates an expected call of GetUserSSHCertificateSigningKey.
func (*MockSigningServerMockRecorder) GetX509CACertificate ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetX509CACertificate(arg0, arg1 interface{}) *gomock.Call
GetX509CACertificate indicates an expected call of GetX509CACertificate.
func (*MockSigningServerMockRecorder) GetX509CertificateAvailableSigningKeys ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) GetX509CertificateAvailableSigningKeys(arg0, arg1 interface{}) *gomock.Call
GetX509CertificateAvailableSigningKeys indicates an expected call of GetX509CertificateAvailableSigningKeys.
func (*MockSigningServerMockRecorder) PostHostSSHCertificate ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) PostHostSSHCertificate(arg0, arg1 interface{}) *gomock.Call
PostHostSSHCertificate indicates an expected call of PostHostSSHCertificate.
func (*MockSigningServerMockRecorder) PostSignBlob ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) PostSignBlob(arg0, arg1 interface{}) *gomock.Call
PostSignBlob indicates an expected call of PostSignBlob.
func (*MockSigningServerMockRecorder) PostUserSSHCertificate ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) PostUserSSHCertificate(arg0, arg1 interface{}) *gomock.Call
PostUserSSHCertificate indicates an expected call of PostUserSSHCertificate.
func (*MockSigningServerMockRecorder) PostX509Certificate ¶ added in v1.11.6
func (mr *MockSigningServerMockRecorder) PostX509Certificate(arg0, arg1 interface{}) *gomock.Call
PostX509Certificate indicates an expected call of PostX509Certificate.
type MockUnsafeSigningServer ¶ added in v1.11.6
type MockUnsafeSigningServer struct {
// contains filtered or unexported fields
}
MockUnsafeSigningServer is a mock of UnsafeSigningServer interface.
func NewMockUnsafeSigningServer ¶ added in v1.11.6
func NewMockUnsafeSigningServer(ctrl *gomock.Controller) *MockUnsafeSigningServer
NewMockUnsafeSigningServer creates a new mock instance.
func (*MockUnsafeSigningServer) EXPECT ¶ added in v1.11.6
func (m *MockUnsafeSigningServer) EXPECT() *MockUnsafeSigningServerMockRecorder
EXPECT returns an object that allows the caller to indicate expected use.
type MockUnsafeSigningServerMockRecorder ¶ added in v1.11.6
type MockUnsafeSigningServerMockRecorder struct {
// contains filtered or unexported fields
}
MockUnsafeSigningServerMockRecorder is the mock recorder for MockUnsafeSigningServer.
type Priority ¶ added in v1.8.0
type Priority int32
func (Priority) Descriptor ¶ added in v1.8.0
func (Priority) Descriptor() protoreflect.EnumDescriptor
func (Priority) EnumDescriptor
deprecated
added in
v1.8.0
func (Priority) Number ¶ added in v1.8.0
func (x Priority) Number() protoreflect.EnumNumber
func (Priority) Type ¶ added in v1.8.0
func (Priority) Type() protoreflect.EnumType
type PublicKey ¶
type PublicKey struct { // The encoded string of the public key. Key string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"` // contains filtered or unexported fields }
PublicKey is a encoded string of the public key specified by users.
func (*PublicKey) Descriptor
deprecated
func (*PublicKey) ProtoMessage ¶
func (*PublicKey) ProtoMessage()
func (*PublicKey) ProtoReflect ¶ added in v1.3.1
func (x *PublicKey) ProtoReflect() protoreflect.Message
type SSHCertificateSigningRequest ¶
type SSHCertificateSigningRequest struct { // Identifies the signing key in the HSM used for signing the certificate. KeyMeta *KeyMeta `protobuf:"bytes,1,opt,name=key_meta,json=keyMeta,proto3" json:"key_meta,omitempty"` // List of usernames or hostnames in the Principals field. Principals []string `protobuf:"bytes,2,rep,name=principals,proto3" json:"principals,omitempty"` // SSH public key. PublicKey string `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"` // Validity period of the certificate in seconds. Validity uint64 `protobuf:"varint,4,opt,name=validity,proto3" json:"validity,omitempty"` // Key ID in the certificate. KeyId string `protobuf:"bytes,5,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"` // Critical Options field in the certificate. CriticalOptions map[string]string `` /* 194-byte string literal not displayed */ // Extensions field in the certificate. Extensions map[string]string `` /* 161-byte string literal not displayed */ // Priority of the request as specified by client. If the server is under heavy load, it may // decide to process higher priority requests before the lower priority requests. // This feature is currently EXPERIMENTAL where priority value is only logged and not used for anything else. // Specific implementation will be based on analysis of client request patterns. Priority Priority `protobuf:"varint,10,opt,name=priority,proto3,enum=v3.Priority" json:"priority,omitempty"` // contains filtered or unexported fields }
SSHCertificateSigningRequest specifies the info used for signing an SSH certificate.
func (*SSHCertificateSigningRequest) Descriptor
deprecated
func (*SSHCertificateSigningRequest) Descriptor() ([]byte, []int)
Deprecated: Use SSHCertificateSigningRequest.ProtoReflect.Descriptor instead.
func (*SSHCertificateSigningRequest) GetCriticalOptions ¶
func (x *SSHCertificateSigningRequest) GetCriticalOptions() map[string]string
func (*SSHCertificateSigningRequest) GetExtensions ¶
func (x *SSHCertificateSigningRequest) GetExtensions() map[string]string
func (*SSHCertificateSigningRequest) GetKeyId ¶
func (x *SSHCertificateSigningRequest) GetKeyId() string
func (*SSHCertificateSigningRequest) GetKeyMeta ¶
func (x *SSHCertificateSigningRequest) GetKeyMeta() *KeyMeta
func (*SSHCertificateSigningRequest) GetPrincipals ¶
func (x *SSHCertificateSigningRequest) GetPrincipals() []string
func (*SSHCertificateSigningRequest) GetPriority ¶ added in v1.8.0
func (x *SSHCertificateSigningRequest) GetPriority() Priority
func (*SSHCertificateSigningRequest) GetPublicKey ¶
func (x *SSHCertificateSigningRequest) GetPublicKey() string
func (*SSHCertificateSigningRequest) GetValidity ¶
func (x *SSHCertificateSigningRequest) GetValidity() uint64
func (*SSHCertificateSigningRequest) ProtoMessage ¶
func (*SSHCertificateSigningRequest) ProtoMessage()
func (*SSHCertificateSigningRequest) ProtoReflect ¶ added in v1.3.1
func (x *SSHCertificateSigningRequest) ProtoReflect() protoreflect.Message
func (*SSHCertificateSigningRequest) Reset ¶
func (x *SSHCertificateSigningRequest) Reset()
func (*SSHCertificateSigningRequest) String ¶
func (x *SSHCertificateSigningRequest) String() string
type SSHKey ¶
type SSHKey struct { // The encoded string of the SSH key. Key string `protobuf:"bytes,1,opt,name=key,proto3" json:"key,omitempty"` // contains filtered or unexported fields }
SSHKey specifies an SSH key that can either be an: 1. SSH public key, or 2. SSH user/host certificate
func (*SSHKey) Descriptor
deprecated
func (*SSHKey) ProtoMessage ¶
func (*SSHKey) ProtoMessage()
func (*SSHKey) ProtoReflect ¶ added in v1.3.1
func (x *SSHKey) ProtoReflect() protoreflect.Message
type Signature ¶
type Signature struct { Signature string `protobuf:"bytes,1,opt,name=signature,proto3" json:"signature,omitempty"` // contains filtered or unexported fields }
Signature is a base64 encoded result of signing a blob.
func (*Signature) Descriptor
deprecated
func (*Signature) GetSignature ¶
func (*Signature) ProtoMessage ¶
func (*Signature) ProtoMessage()
func (*Signature) ProtoReflect ¶ added in v1.3.1
func (x *Signature) ProtoReflect() protoreflect.Message
type SigningClient ¶
type SigningClient interface { // GetX509CertificateAvailableSigningKeys returns all available keys that can sign X509 certificates. GetX509CertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error) // GetX509CACertificate returns the CA X509 certificate self-signed by the specified key. GetX509CACertificate(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*X509Certificate, error) // PostX509Certificate signs the given CSR using the specified key and returns a PEM encoded X509 certificate. PostX509Certificate(ctx context.Context, in *X509CertificateSigningRequest, opts ...grpc.CallOption) (*X509Certificate, error) // GetUserSSHCertificateAvailableSigningKeys returns all available keys that can sign user SSH certificates. GetUserSSHCertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error) // GetUserSSHCertificateSigningKey returns the public signing key of the // specified key that signs the user ssh certificate. GetUserSSHCertificateSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*SSHKey, error) // PostUserSSHCertificate signs the SSH user certificate given request fields using the specified key. PostUserSSHCertificate(ctx context.Context, in *SSHCertificateSigningRequest, opts ...grpc.CallOption) (*SSHKey, error) // GetHostSSHCertificateAvailableSigningKeys returns all available keys that can sign host SSH certificates. GetHostSSHCertificateAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error) // GetHostSSHCertificateSigningKey returns the public signing key of the // specified key that signs the host ssh certificate. GetHostSSHCertificateSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*SSHKey, error) // PostHostSSHCertificate signs the SSH host certificate given request fields using the specified key. PostHostSSHCertificate(ctx context.Context, in *SSHCertificateSigningRequest, opts ...grpc.CallOption) (*SSHKey, error) // GetBlobAvailableSigningKeys returns all available keys that can sign GetBlobAvailableSigningKeys(ctx context.Context, in *emptypb.Empty, opts ...grpc.CallOption) (*KeyMetas, error) // GetBlobSigningKey returns the public signing key of the // specified key that signs the user's data. GetBlobSigningKey(ctx context.Context, in *KeyMeta, opts ...grpc.CallOption) (*PublicKey, error) // PostSignBlob signs the digest using the specified key. PostSignBlob(ctx context.Context, in *BlobSigningRequest, opts ...grpc.CallOption) (*Signature, error) }
SigningClient is the client API for Signing service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
func NewSigningClient ¶
func NewSigningClient(cc grpc.ClientConnInterface) SigningClient
type SigningServer ¶
type SigningServer interface { // GetX509CertificateAvailableSigningKeys returns all available keys that can sign X509 certificates. GetX509CertificateAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error) // GetX509CACertificate returns the CA X509 certificate self-signed by the specified key. GetX509CACertificate(context.Context, *KeyMeta) (*X509Certificate, error) // PostX509Certificate signs the given CSR using the specified key and returns a PEM encoded X509 certificate. PostX509Certificate(context.Context, *X509CertificateSigningRequest) (*X509Certificate, error) // GetUserSSHCertificateAvailableSigningKeys returns all available keys that can sign user SSH certificates. GetUserSSHCertificateAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error) // GetUserSSHCertificateSigningKey returns the public signing key of the // specified key that signs the user ssh certificate. GetUserSSHCertificateSigningKey(context.Context, *KeyMeta) (*SSHKey, error) // PostUserSSHCertificate signs the SSH user certificate given request fields using the specified key. PostUserSSHCertificate(context.Context, *SSHCertificateSigningRequest) (*SSHKey, error) // GetHostSSHCertificateAvailableSigningKeys returns all available keys that can sign host SSH certificates. GetHostSSHCertificateAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error) // GetHostSSHCertificateSigningKey returns the public signing key of the // specified key that signs the host ssh certificate. GetHostSSHCertificateSigningKey(context.Context, *KeyMeta) (*SSHKey, error) // PostHostSSHCertificate signs the SSH host certificate given request fields using the specified key. PostHostSSHCertificate(context.Context, *SSHCertificateSigningRequest) (*SSHKey, error) // GetBlobAvailableSigningKeys returns all available keys that can sign GetBlobAvailableSigningKeys(context.Context, *emptypb.Empty) (*KeyMetas, error) // GetBlobSigningKey returns the public signing key of the // specified key that signs the user's data. GetBlobSigningKey(context.Context, *KeyMeta) (*PublicKey, error) // PostSignBlob signs the digest using the specified key. PostSignBlob(context.Context, *BlobSigningRequest) (*Signature, error) // contains filtered or unexported methods }
SigningServer is the server API for Signing service. All implementations must embed UnimplementedSigningServer for forward compatibility
type UnimplementedHealthServer ¶ added in v1.12.0
type UnimplementedHealthServer struct { }
UnimplementedHealthServer must be embedded to have forward compatible implementations.
func (UnimplementedHealthServer) Check ¶ added in v1.12.0
func (UnimplementedHealthServer) Check(context.Context, *HealthCheckRequest) (*HealthCheckResponse, error)
func (UnimplementedHealthServer) Watch ¶ added in v1.12.0
func (UnimplementedHealthServer) Watch(*HealthCheckRequest, Health_WatchServer) error
type UnimplementedSigningServer ¶
type UnimplementedSigningServer struct { }
UnimplementedSigningServer must be embedded to have forward compatible implementations.
func (UnimplementedSigningServer) GetBlobAvailableSigningKeys ¶
func (UnimplementedSigningServer) GetBlobSigningKey ¶
func (UnimplementedSigningServer) GetHostSSHCertificateAvailableSigningKeys ¶
func (UnimplementedSigningServer) GetHostSSHCertificateSigningKey ¶
func (UnimplementedSigningServer) GetUserSSHCertificateAvailableSigningKeys ¶
func (UnimplementedSigningServer) GetUserSSHCertificateSigningKey ¶
func (UnimplementedSigningServer) GetX509CACertificate ¶
func (UnimplementedSigningServer) GetX509CACertificate(context.Context, *KeyMeta) (*X509Certificate, error)
func (UnimplementedSigningServer) GetX509CertificateAvailableSigningKeys ¶
func (UnimplementedSigningServer) PostHostSSHCertificate ¶
func (UnimplementedSigningServer) PostHostSSHCertificate(context.Context, *SSHCertificateSigningRequest) (*SSHKey, error)
func (UnimplementedSigningServer) PostSignBlob ¶
func (UnimplementedSigningServer) PostSignBlob(context.Context, *BlobSigningRequest) (*Signature, error)
func (UnimplementedSigningServer) PostUserSSHCertificate ¶
func (UnimplementedSigningServer) PostUserSSHCertificate(context.Context, *SSHCertificateSigningRequest) (*SSHKey, error)
func (UnimplementedSigningServer) PostX509Certificate ¶
func (UnimplementedSigningServer) PostX509Certificate(context.Context, *X509CertificateSigningRequest) (*X509Certificate, error)
type UnsafeHealthServer ¶ added in v1.12.0
type UnsafeHealthServer interface {
// contains filtered or unexported methods
}
UnsafeHealthServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to HealthServer will result in compilation errors.
type UnsafeSigningServer ¶ added in v1.3.1
type UnsafeSigningServer interface {
// contains filtered or unexported methods
}
UnsafeSigningServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to SigningServer will result in compilation errors.
type X509Certificate ¶
type X509Certificate struct { // The X509 certificate encoded in PEM format. Cert string `protobuf:"bytes,1,opt,name=cert,proto3" json:"cert,omitempty"` // contains filtered or unexported fields }
X509Certificate specifies an X509 certificate.
func (*X509Certificate) Descriptor
deprecated
func (*X509Certificate) Descriptor() ([]byte, []int)
Deprecated: Use X509Certificate.ProtoReflect.Descriptor instead.
func (*X509Certificate) GetCert ¶
func (x *X509Certificate) GetCert() string
func (*X509Certificate) ProtoMessage ¶
func (*X509Certificate) ProtoMessage()
func (*X509Certificate) ProtoReflect ¶ added in v1.3.1
func (x *X509Certificate) ProtoReflect() protoreflect.Message
func (*X509Certificate) Reset ¶
func (x *X509Certificate) Reset()
func (*X509Certificate) String ¶
func (x *X509Certificate) String() string
type X509CertificateSigningRequest ¶
type X509CertificateSigningRequest struct { // Identifies the signing key in the HSM used for signing the certificate. KeyMeta *KeyMeta `protobuf:"bytes,1,opt,name=key_meta,json=keyMeta,proto3" json:"key_meta,omitempty"` // X509 certificate signing request encoded in PEM format. Csr string `protobuf:"bytes,2,opt,name=csr,proto3" json:"csr,omitempty"` // Validity period of the certificate in seconds. Validity uint64 `protobuf:"varint,3,opt,name=validity,proto3" json:"validity,omitempty"` // X509 certificate ExtKeyUsage. // https://godoc.org/crypto/x509#ExtKeyUsage ExtKeyUsage []int32 `protobuf:"varint,4,rep,packed,name=ext_key_usage,json=extKeyUsage,proto3" json:"ext_key_usage,omitempty"` // Priority of the request as specified by client. If the server is under heavy load, it may // decide to process higher priority requests before the lower priority requests. // This feature is currently EXPERIMENTAL where priority value is only logged and not used for anything else. // Specific implementation will be based on analysis of client request patterns. Priority Priority `protobuf:"varint,10,opt,name=priority,proto3,enum=v3.Priority" json:"priority,omitempty"` // contains filtered or unexported fields }
X509CertificateSigningRequest specifies the info used for signing an X509 certificate.
func (*X509CertificateSigningRequest) Descriptor
deprecated
func (*X509CertificateSigningRequest) Descriptor() ([]byte, []int)
Deprecated: Use X509CertificateSigningRequest.ProtoReflect.Descriptor instead.
func (*X509CertificateSigningRequest) GetCsr ¶
func (x *X509CertificateSigningRequest) GetCsr() string
func (*X509CertificateSigningRequest) GetExtKeyUsage ¶
func (x *X509CertificateSigningRequest) GetExtKeyUsage() []int32
func (*X509CertificateSigningRequest) GetKeyMeta ¶
func (x *X509CertificateSigningRequest) GetKeyMeta() *KeyMeta
func (*X509CertificateSigningRequest) GetPriority ¶ added in v1.8.0
func (x *X509CertificateSigningRequest) GetPriority() Priority
func (*X509CertificateSigningRequest) GetValidity ¶
func (x *X509CertificateSigningRequest) GetValidity() uint64
func (*X509CertificateSigningRequest) ProtoMessage ¶
func (*X509CertificateSigningRequest) ProtoMessage()
func (*X509CertificateSigningRequest) ProtoReflect ¶ added in v1.3.1
func (x *X509CertificateSigningRequest) ProtoReflect() protoreflect.Message
func (*X509CertificateSigningRequest) Reset ¶
func (x *X509CertificateSigningRequest) Reset()
func (*X509CertificateSigningRequest) String ¶
func (x *X509CertificateSigningRequest) String() string