networksecurity

package
v0.0.0-...-796eee8 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 15, 2024 License: Apache-2.0 Imports: 12 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source
var (
	AuthorizationPolicy_Action_name = map[int32]string{
		0: "ACTION_UNSPECIFIED",
		1: "ALLOW",
		2: "DENY",
	}
	AuthorizationPolicy_Action_value = map[string]int32{
		"ACTION_UNSPECIFIED": 0,
		"ALLOW":              1,
		"DENY":               2,
	}
)

Enum value maps for AuthorizationPolicy_Action.

View Source
var File_google_cloud_networksecurity_v1_authorization_policy_proto protoreflect.FileDescriptor
View Source
var File_google_cloud_networksecurity_v1_client_tls_policy_proto protoreflect.FileDescriptor
View Source
var File_google_cloud_networksecurity_v1_common_proto protoreflect.FileDescriptor
View Source
var File_google_cloud_networksecurity_v1_network_security_proto protoreflect.FileDescriptor
View Source
var File_google_cloud_networksecurity_v1_server_tls_policy_proto protoreflect.FileDescriptor
View Source
var File_google_cloud_networksecurity_v1_tls_proto protoreflect.FileDescriptor

Functions

func RegisterNetworkSecurityServer

func RegisterNetworkSecurityServer(s *grpc.Server, srv NetworkSecurityServer)

Types

type AuthorizationPolicy

type AuthorizationPolicy struct {

	// Required. Name of the AuthorizationPolicy resource. It matches pattern
	// `projects/{project}/locations/{location}/authorizationPolicies/<authorization_policy>`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Optional. Free-text description of the resource.
	Description string `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
	// Output only. The timestamp when the resource was created.
	CreateTime *timestamppb.Timestamp `protobuf:"bytes,3,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
	// Output only. The timestamp when the resource was updated.
	UpdateTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
	// Optional. Set of label tags associated with the AuthorizationPolicy resource.
	Labels map[string]string `` /* 153-byte string literal not displayed */
	// Required. The action to take when a rule match is found. Possible values
	// are "ALLOW" or "DENY".
	Action AuthorizationPolicy_Action `` /* 130-byte string literal not displayed */
	// Optional. List of rules to match. Note that at least one of the rules must match in
	// order for the action specified in the 'action' field to be taken. A rule is
	// a match if there is a matching source and destination. If left blank, the
	// action specified in the `action` field will be applied on every request.
	Rules []*AuthorizationPolicy_Rule `protobuf:"bytes,7,rep,name=rules,proto3" json:"rules,omitempty"`
	// contains filtered or unexported fields
}

AuthorizationPolicy is a resource that specifies how a server should authorize incoming connections. This resource in itself does not change the configuration unless it's attached to a target https proxy or endpoint config selector resource.

func (*AuthorizationPolicy) Descriptor deprecated

func (*AuthorizationPolicy) Descriptor() ([]byte, []int)

Deprecated: Use AuthorizationPolicy.ProtoReflect.Descriptor instead.

func (*AuthorizationPolicy) GetAction

func (*AuthorizationPolicy) GetCreateTime

func (x *AuthorizationPolicy) GetCreateTime() *timestamppb.Timestamp

func (*AuthorizationPolicy) GetDescription

func (x *AuthorizationPolicy) GetDescription() string

func (*AuthorizationPolicy) GetLabels

func (x *AuthorizationPolicy) GetLabels() map[string]string

func (*AuthorizationPolicy) GetName

func (x *AuthorizationPolicy) GetName() string

func (*AuthorizationPolicy) GetRules

func (*AuthorizationPolicy) GetUpdateTime

func (x *AuthorizationPolicy) GetUpdateTime() *timestamppb.Timestamp

func (*AuthorizationPolicy) ProtoMessage

func (*AuthorizationPolicy) ProtoMessage()

func (*AuthorizationPolicy) ProtoReflect

func (x *AuthorizationPolicy) ProtoReflect() protoreflect.Message

func (*AuthorizationPolicy) Reset

func (x *AuthorizationPolicy) Reset()

func (*AuthorizationPolicy) String

func (x *AuthorizationPolicy) String() string

type AuthorizationPolicy_Action

type AuthorizationPolicy_Action int32

Possible values that define what action to take.

const (
	// Default value.
	AuthorizationPolicy_ACTION_UNSPECIFIED AuthorizationPolicy_Action = 0
	// Grant access.
	AuthorizationPolicy_ALLOW AuthorizationPolicy_Action = 1
	// Deny access.
	// Deny rules should be avoided unless they are used to provide a default
	// "deny all" fallback.
	AuthorizationPolicy_DENY AuthorizationPolicy_Action = 2
)

func (AuthorizationPolicy_Action) Descriptor

func (AuthorizationPolicy_Action) Enum

func (AuthorizationPolicy_Action) EnumDescriptor deprecated

func (AuthorizationPolicy_Action) EnumDescriptor() ([]byte, []int)

Deprecated: Use AuthorizationPolicy_Action.Descriptor instead.

func (AuthorizationPolicy_Action) Number

func (AuthorizationPolicy_Action) String

func (AuthorizationPolicy_Action) Type

type AuthorizationPolicy_Rule

type AuthorizationPolicy_Rule struct {

	// Optional. List of attributes for the traffic source. All of the sources must match.
	// A source is a match if both principals and ip_blocks match. If not set,
	// the action specified in the 'action' field will be applied without any
	// rule checks for the source.
	Sources []*AuthorizationPolicy_Rule_Source `protobuf:"bytes,1,rep,name=sources,proto3" json:"sources,omitempty"`
	// Optional. List of attributes for the traffic destination. All of the destinations
	// must match. A destination is a match if a request matches all the
	// specified hosts, ports, methods and headers. If not set, the
	// action specified in the 'action' field will be applied without any rule
	// checks for the destination.
	Destinations []*AuthorizationPolicy_Rule_Destination `protobuf:"bytes,2,rep,name=destinations,proto3" json:"destinations,omitempty"`
	// contains filtered or unexported fields
}

Specification of rules.

func (*AuthorizationPolicy_Rule) Descriptor deprecated

func (*AuthorizationPolicy_Rule) Descriptor() ([]byte, []int)

Deprecated: Use AuthorizationPolicy_Rule.ProtoReflect.Descriptor instead.

func (*AuthorizationPolicy_Rule) GetDestinations

func (*AuthorizationPolicy_Rule) GetSources

func (*AuthorizationPolicy_Rule) ProtoMessage

func (*AuthorizationPolicy_Rule) ProtoMessage()

func (*AuthorizationPolicy_Rule) ProtoReflect

func (x *AuthorizationPolicy_Rule) ProtoReflect() protoreflect.Message

func (*AuthorizationPolicy_Rule) Reset

func (x *AuthorizationPolicy_Rule) Reset()

func (*AuthorizationPolicy_Rule) String

func (x *AuthorizationPolicy_Rule) String() string

type AuthorizationPolicy_Rule_Destination

type AuthorizationPolicy_Rule_Destination struct {

	// Required. List of host names to match. Matched against the ":authority" header in
	// http requests. At least one host should match. Each host can be an
	// exact match, or a prefix match (example "mydomain.*") or a suffix
	// match (example "*.myorg.com") or a presence (any) match "*".
	Hosts []string `protobuf:"bytes,1,rep,name=hosts,proto3" json:"hosts,omitempty"`
	// Required. List of destination ports to match. At least one port should match.
	Ports []uint32 `protobuf:"varint,2,rep,packed,name=ports,proto3" json:"ports,omitempty"`
	// Optional. A list of HTTP methods to match. At least one method should
	// match. Should not be set for gRPC services.
	Methods []string `protobuf:"bytes,4,rep,name=methods,proto3" json:"methods,omitempty"`
	// Optional. Match against key:value pair in http header. Provides a flexible match
	// based on HTTP headers, for potentially advanced use cases. At least one
	// header should match. Avoid using header matches to make authorization
	// decisions unless there is a strong guarantee that requests arrive
	// through a trusted client or proxy.
	HttpHeaderMatch *AuthorizationPolicy_Rule_Destination_HttpHeaderMatch `protobuf:"bytes,5,opt,name=http_header_match,json=httpHeaderMatch,proto3" json:"http_header_match,omitempty"`
	// contains filtered or unexported fields
}

Specification of traffic destination attributes.

func (*AuthorizationPolicy_Rule_Destination) Descriptor deprecated

func (*AuthorizationPolicy_Rule_Destination) Descriptor() ([]byte, []int)

Deprecated: Use AuthorizationPolicy_Rule_Destination.ProtoReflect.Descriptor instead.

func (*AuthorizationPolicy_Rule_Destination) GetHosts

func (*AuthorizationPolicy_Rule_Destination) GetHttpHeaderMatch

func (*AuthorizationPolicy_Rule_Destination) GetMethods

func (x *AuthorizationPolicy_Rule_Destination) GetMethods() []string

func (*AuthorizationPolicy_Rule_Destination) GetPorts

func (*AuthorizationPolicy_Rule_Destination) ProtoMessage

func (*AuthorizationPolicy_Rule_Destination) ProtoMessage()

func (*AuthorizationPolicy_Rule_Destination) ProtoReflect

func (*AuthorizationPolicy_Rule_Destination) Reset

func (*AuthorizationPolicy_Rule_Destination) String

type AuthorizationPolicy_Rule_Destination_HttpHeaderMatch

type AuthorizationPolicy_Rule_Destination_HttpHeaderMatch struct {

	// Types that are assignable to Type:
	//	*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch_RegexMatch
	Type isAuthorizationPolicy_Rule_Destination_HttpHeaderMatch_Type `protobuf_oneof:"type"`
	// Required. The name of the HTTP header to match. For matching
	// against the HTTP request's authority, use a headerMatch
	// with the header name ":authority". For matching a
	// request's method, use the headerName ":method".
	HeaderName string `protobuf:"bytes,1,opt,name=header_name,json=headerName,proto3" json:"header_name,omitempty"`
	// contains filtered or unexported fields
}

Specification of HTTP header match attributes.

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) Descriptor deprecated

Deprecated: Use AuthorizationPolicy_Rule_Destination_HttpHeaderMatch.ProtoReflect.Descriptor instead.

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) GetHeaderName

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) GetRegexMatch

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) GetType

func (m *AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) GetType() isAuthorizationPolicy_Rule_Destination_HttpHeaderMatch_Type

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) ProtoMessage

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) ProtoReflect

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) Reset

func (*AuthorizationPolicy_Rule_Destination_HttpHeaderMatch) String

type AuthorizationPolicy_Rule_Destination_HttpHeaderMatch_RegexMatch

type AuthorizationPolicy_Rule_Destination_HttpHeaderMatch_RegexMatch struct {
	// Required. The value of the header must match the regular expression
	// specified in regexMatch. For regular expression grammar,
	// please see: en.cppreference.com/w/cpp/regex/ecmascript
	// For matching against a port specified in the HTTP
	// request, use a headerMatch with headerName set to Host
	// and a regular expression that satisfies the RFC2616 Host
	// header's port specifier.
	RegexMatch string `protobuf:"bytes,2,opt,name=regex_match,json=regexMatch,proto3,oneof"`
}

type AuthorizationPolicy_Rule_Source

type AuthorizationPolicy_Rule_Source struct {

	// Optional. List of peer identities to match for authorization. At least one
	// principal should match. Each peer can be an exact match, or a prefix
	// match (example, "namespace/*") or a suffix match (example,
	// "*/service-account") or a presence match "*". Authorization based on
	// the principal name without certificate validation (configured by
	// ServerTlsPolicy resource) is considered insecure.
	Principals []string `protobuf:"bytes,1,rep,name=principals,proto3" json:"principals,omitempty"`
	// Optional. List of CIDR ranges to match based on source IP address. At least one
	// IP block should match. Single IP (e.g., "1.2.3.4") and CIDR (e.g.,
	// "1.2.3.0/24") are supported. Authorization based on source IP alone
	// should be avoided. The IP addresses of any load balancers or proxies
	// should be considered untrusted.
	IpBlocks []string `protobuf:"bytes,2,rep,name=ip_blocks,json=ipBlocks,proto3" json:"ip_blocks,omitempty"`
	// contains filtered or unexported fields
}

Specification of traffic source attributes.

func (*AuthorizationPolicy_Rule_Source) Descriptor deprecated

func (*AuthorizationPolicy_Rule_Source) Descriptor() ([]byte, []int)

Deprecated: Use AuthorizationPolicy_Rule_Source.ProtoReflect.Descriptor instead.

func (*AuthorizationPolicy_Rule_Source) GetIpBlocks

func (x *AuthorizationPolicy_Rule_Source) GetIpBlocks() []string

func (*AuthorizationPolicy_Rule_Source) GetPrincipals

func (x *AuthorizationPolicy_Rule_Source) GetPrincipals() []string

func (*AuthorizationPolicy_Rule_Source) ProtoMessage

func (*AuthorizationPolicy_Rule_Source) ProtoMessage()

func (*AuthorizationPolicy_Rule_Source) ProtoReflect

func (*AuthorizationPolicy_Rule_Source) Reset

func (*AuthorizationPolicy_Rule_Source) String

type CertificateProvider

type CertificateProvider struct {

	// The type of certificate provider which provides the certificates and
	// private keys.
	//
	// Types that are assignable to Type:
	//	*CertificateProvider_GrpcEndpoint
	//	*CertificateProvider_CertificateProviderInstance
	Type isCertificateProvider_Type `protobuf_oneof:"type"`
	// contains filtered or unexported fields
}

Specification of certificate provider. Defines the mechanism to obtain the certificate and private key for peer to peer authentication.

func (*CertificateProvider) Descriptor deprecated

func (*CertificateProvider) Descriptor() ([]byte, []int)

Deprecated: Use CertificateProvider.ProtoReflect.Descriptor instead.

func (*CertificateProvider) GetCertificateProviderInstance

func (x *CertificateProvider) GetCertificateProviderInstance() *CertificateProviderInstance

func (*CertificateProvider) GetGrpcEndpoint

func (x *CertificateProvider) GetGrpcEndpoint() *GrpcEndpoint

func (*CertificateProvider) GetType

func (m *CertificateProvider) GetType() isCertificateProvider_Type

func (*CertificateProvider) ProtoMessage

func (*CertificateProvider) ProtoMessage()

func (*CertificateProvider) ProtoReflect

func (x *CertificateProvider) ProtoReflect() protoreflect.Message

func (*CertificateProvider) Reset

func (x *CertificateProvider) Reset()

func (*CertificateProvider) String

func (x *CertificateProvider) String() string

type CertificateProviderInstance

type CertificateProviderInstance struct {

	// Required. Plugin instance name, used to locate and load CertificateProvider instance
	// configuration. Set to "google_cloud_private_spiffe" to use Certificate
	// Authority Service certificate provider instance.
	PluginInstance string `protobuf:"bytes,1,opt,name=plugin_instance,json=pluginInstance,proto3" json:"plugin_instance,omitempty"`
	// contains filtered or unexported fields
}

Specification of a TLS certificate provider instance. Workloads may have one or more CertificateProvider instances (plugins) and one of them is enabled and configured by specifying this message. Workloads use the values from this message to locate and load the CertificateProvider instance configuration.

func (*CertificateProviderInstance) Descriptor deprecated

func (*CertificateProviderInstance) Descriptor() ([]byte, []int)

Deprecated: Use CertificateProviderInstance.ProtoReflect.Descriptor instead.

func (*CertificateProviderInstance) GetPluginInstance

func (x *CertificateProviderInstance) GetPluginInstance() string

func (*CertificateProviderInstance) ProtoMessage

func (*CertificateProviderInstance) ProtoMessage()

func (*CertificateProviderInstance) ProtoReflect

func (*CertificateProviderInstance) Reset

func (x *CertificateProviderInstance) Reset()

func (*CertificateProviderInstance) String

func (x *CertificateProviderInstance) String() string

type CertificateProvider_CertificateProviderInstance

type CertificateProvider_CertificateProviderInstance struct {
	// The certificate provider instance specification that will be passed to
	// the data plane, which will be used to load necessary credential
	// information.
	CertificateProviderInstance *CertificateProviderInstance `protobuf:"bytes,3,opt,name=certificate_provider_instance,json=certificateProviderInstance,proto3,oneof"`
}

type CertificateProvider_GrpcEndpoint

type CertificateProvider_GrpcEndpoint struct {
	// gRPC specific configuration to access the gRPC server to
	// obtain the cert and private key.
	GrpcEndpoint *GrpcEndpoint `protobuf:"bytes,2,opt,name=grpc_endpoint,json=grpcEndpoint,proto3,oneof"`
}

type ClientTlsPolicy

type ClientTlsPolicy struct {

	// Required. Name of the ClientTlsPolicy resource. It matches the pattern
	// `projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}`
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Optional. Free-text description of the resource.
	Description string `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
	// Output only. The timestamp when the resource was created.
	CreateTime *timestamppb.Timestamp `protobuf:"bytes,3,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
	// Output only. The timestamp when the resource was updated.
	UpdateTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
	// Optional. Set of label tags associated with the resource.
	Labels map[string]string `` /* 153-byte string literal not displayed */
	// Optional. Server Name Indication string to present to the server during TLS
	// handshake. E.g: "secure.example.com".
	Sni string `protobuf:"bytes,6,opt,name=sni,proto3" json:"sni,omitempty"`
	// Optional. Defines a mechanism to provision client identity (public and private keys)
	// for peer to peer authentication. The presence of this dictates mTLS.
	ClientCertificate *CertificateProvider `protobuf:"bytes,7,opt,name=client_certificate,json=clientCertificate,proto3" json:"client_certificate,omitempty"`
	// Optional. Defines the mechanism to obtain the Certificate Authority certificate to
	// validate the server certificate. If empty, client does not validate the
	// server certificate.
	ServerValidationCa []*ValidationCA `protobuf:"bytes,8,rep,name=server_validation_ca,json=serverValidationCa,proto3" json:"server_validation_ca,omitempty"`
	// contains filtered or unexported fields
}

ClientTlsPolicy is a resource that specifies how a client should authenticate connections to backends of a service. This resource itself does not affect configuration unless it is attached to a backend service resource.

func (*ClientTlsPolicy) Descriptor deprecated

func (*ClientTlsPolicy) Descriptor() ([]byte, []int)

Deprecated: Use ClientTlsPolicy.ProtoReflect.Descriptor instead.

func (*ClientTlsPolicy) GetClientCertificate

func (x *ClientTlsPolicy) GetClientCertificate() *CertificateProvider

func (*ClientTlsPolicy) GetCreateTime

func (x *ClientTlsPolicy) GetCreateTime() *timestamppb.Timestamp

func (*ClientTlsPolicy) GetDescription

func (x *ClientTlsPolicy) GetDescription() string

func (*ClientTlsPolicy) GetLabels

func (x *ClientTlsPolicy) GetLabels() map[string]string

func (*ClientTlsPolicy) GetName

func (x *ClientTlsPolicy) GetName() string

func (*ClientTlsPolicy) GetServerValidationCa

func (x *ClientTlsPolicy) GetServerValidationCa() []*ValidationCA

func (*ClientTlsPolicy) GetSni

func (x *ClientTlsPolicy) GetSni() string

func (*ClientTlsPolicy) GetUpdateTime

func (x *ClientTlsPolicy) GetUpdateTime() *timestamppb.Timestamp

func (*ClientTlsPolicy) ProtoMessage

func (*ClientTlsPolicy) ProtoMessage()

func (*ClientTlsPolicy) ProtoReflect

func (x *ClientTlsPolicy) ProtoReflect() protoreflect.Message

func (*ClientTlsPolicy) Reset

func (x *ClientTlsPolicy) Reset()

func (*ClientTlsPolicy) String

func (x *ClientTlsPolicy) String() string

type CreateAuthorizationPolicyRequest

type CreateAuthorizationPolicyRequest struct {

	// Required. The parent resource of the AuthorizationPolicy. Must be in the
	// format `projects/{project}/locations/{location}`.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Required. Short name of the AuthorizationPolicy resource to be created.
	// This value should be 1-63 characters long, containing only
	// letters, numbers, hyphens, and underscores, and should not start
	// with a number. E.g. "authz_policy".
	AuthorizationPolicyId string `` /* 126-byte string literal not displayed */
	// Required. AuthorizationPolicy resource to be created.
	AuthorizationPolicy *AuthorizationPolicy `protobuf:"bytes,3,opt,name=authorization_policy,json=authorizationPolicy,proto3" json:"authorization_policy,omitempty"`
	// contains filtered or unexported fields
}

Request used by the CreateAuthorizationPolicy method.

func (*CreateAuthorizationPolicyRequest) Descriptor deprecated

func (*CreateAuthorizationPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateAuthorizationPolicyRequest.ProtoReflect.Descriptor instead.

func (*CreateAuthorizationPolicyRequest) GetAuthorizationPolicy

func (x *CreateAuthorizationPolicyRequest) GetAuthorizationPolicy() *AuthorizationPolicy

func (*CreateAuthorizationPolicyRequest) GetAuthorizationPolicyId

func (x *CreateAuthorizationPolicyRequest) GetAuthorizationPolicyId() string

func (*CreateAuthorizationPolicyRequest) GetParent

func (*CreateAuthorizationPolicyRequest) ProtoMessage

func (*CreateAuthorizationPolicyRequest) ProtoMessage()

func (*CreateAuthorizationPolicyRequest) ProtoReflect

func (*CreateAuthorizationPolicyRequest) Reset

func (*CreateAuthorizationPolicyRequest) String

type CreateClientTlsPolicyRequest

type CreateClientTlsPolicyRequest struct {

	// Required. The parent resource of the ClientTlsPolicy. Must be in
	// the format `projects/*/locations/{location}`.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Required. Short name of the ClientTlsPolicy resource to be created. This value should
	// be 1-63 characters long, containing only letters, numbers, hyphens, and
	// underscores, and should not start with a number. E.g. "client_mtls_policy".
	ClientTlsPolicyId string `protobuf:"bytes,2,opt,name=client_tls_policy_id,json=clientTlsPolicyId,proto3" json:"client_tls_policy_id,omitempty"`
	// Required. ClientTlsPolicy resource to be created.
	ClientTlsPolicy *ClientTlsPolicy `protobuf:"bytes,3,opt,name=client_tls_policy,json=clientTlsPolicy,proto3" json:"client_tls_policy,omitempty"`
	// contains filtered or unexported fields
}

Request used by the CreateClientTlsPolicy method.

func (*CreateClientTlsPolicyRequest) Descriptor deprecated

func (*CreateClientTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateClientTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*CreateClientTlsPolicyRequest) GetClientTlsPolicy

func (x *CreateClientTlsPolicyRequest) GetClientTlsPolicy() *ClientTlsPolicy

func (*CreateClientTlsPolicyRequest) GetClientTlsPolicyId

func (x *CreateClientTlsPolicyRequest) GetClientTlsPolicyId() string

func (*CreateClientTlsPolicyRequest) GetParent

func (x *CreateClientTlsPolicyRequest) GetParent() string

func (*CreateClientTlsPolicyRequest) ProtoMessage

func (*CreateClientTlsPolicyRequest) ProtoMessage()

func (*CreateClientTlsPolicyRequest) ProtoReflect

func (*CreateClientTlsPolicyRequest) Reset

func (x *CreateClientTlsPolicyRequest) Reset()

func (*CreateClientTlsPolicyRequest) String

type CreateServerTlsPolicyRequest

type CreateServerTlsPolicyRequest struct {

	// Required. The parent resource of the ServerTlsPolicy. Must be in
	// the format `projects/*/locations/{location}`.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Required. Short name of the ServerTlsPolicy resource to be created. This value should
	// be 1-63 characters long, containing only letters, numbers, hyphens, and
	// underscores, and should not start with a number. E.g. "server_mtls_policy".
	ServerTlsPolicyId string `protobuf:"bytes,2,opt,name=server_tls_policy_id,json=serverTlsPolicyId,proto3" json:"server_tls_policy_id,omitempty"`
	// Required. ServerTlsPolicy resource to be created.
	ServerTlsPolicy *ServerTlsPolicy `protobuf:"bytes,3,opt,name=server_tls_policy,json=serverTlsPolicy,proto3" json:"server_tls_policy,omitempty"`
	// contains filtered or unexported fields
}

Request used by the CreateServerTlsPolicy method.

func (*CreateServerTlsPolicyRequest) Descriptor deprecated

func (*CreateServerTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateServerTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*CreateServerTlsPolicyRequest) GetParent

func (x *CreateServerTlsPolicyRequest) GetParent() string

func (*CreateServerTlsPolicyRequest) GetServerTlsPolicy

func (x *CreateServerTlsPolicyRequest) GetServerTlsPolicy() *ServerTlsPolicy

func (*CreateServerTlsPolicyRequest) GetServerTlsPolicyId

func (x *CreateServerTlsPolicyRequest) GetServerTlsPolicyId() string

func (*CreateServerTlsPolicyRequest) ProtoMessage

func (*CreateServerTlsPolicyRequest) ProtoMessage()

func (*CreateServerTlsPolicyRequest) ProtoReflect

func (*CreateServerTlsPolicyRequest) Reset

func (x *CreateServerTlsPolicyRequest) Reset()

func (*CreateServerTlsPolicyRequest) String

type DeleteAuthorizationPolicyRequest

type DeleteAuthorizationPolicyRequest struct {

	// Required. A name of the AuthorizationPolicy to delete. Must be in the format
	// `projects/{project}/locations/{location}/authorizationPolicies/*`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

Request used by the DeleteAuthorizationPolicy method.

func (*DeleteAuthorizationPolicyRequest) Descriptor deprecated

func (*DeleteAuthorizationPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteAuthorizationPolicyRequest.ProtoReflect.Descriptor instead.

func (*DeleteAuthorizationPolicyRequest) GetName

func (*DeleteAuthorizationPolicyRequest) ProtoMessage

func (*DeleteAuthorizationPolicyRequest) ProtoMessage()

func (*DeleteAuthorizationPolicyRequest) ProtoReflect

func (*DeleteAuthorizationPolicyRequest) Reset

func (*DeleteAuthorizationPolicyRequest) String

type DeleteClientTlsPolicyRequest

type DeleteClientTlsPolicyRequest struct {

	// Required. A name of the ClientTlsPolicy to delete. Must be in
	// the format `projects/*/locations/{location}/clientTlsPolicies/*`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

Request used by the DeleteClientTlsPolicy method.

func (*DeleteClientTlsPolicyRequest) Descriptor deprecated

func (*DeleteClientTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteClientTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*DeleteClientTlsPolicyRequest) GetName

func (x *DeleteClientTlsPolicyRequest) GetName() string

func (*DeleteClientTlsPolicyRequest) ProtoMessage

func (*DeleteClientTlsPolicyRequest) ProtoMessage()

func (*DeleteClientTlsPolicyRequest) ProtoReflect

func (*DeleteClientTlsPolicyRequest) Reset

func (x *DeleteClientTlsPolicyRequest) Reset()

func (*DeleteClientTlsPolicyRequest) String

type DeleteServerTlsPolicyRequest

type DeleteServerTlsPolicyRequest struct {

	// Required. A name of the ServerTlsPolicy to delete. Must be in
	// the format `projects/*/locations/{location}/serverTlsPolicies/*`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

Request used by the DeleteServerTlsPolicy method.

func (*DeleteServerTlsPolicyRequest) Descriptor deprecated

func (*DeleteServerTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteServerTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*DeleteServerTlsPolicyRequest) GetName

func (x *DeleteServerTlsPolicyRequest) GetName() string

func (*DeleteServerTlsPolicyRequest) ProtoMessage

func (*DeleteServerTlsPolicyRequest) ProtoMessage()

func (*DeleteServerTlsPolicyRequest) ProtoReflect

func (*DeleteServerTlsPolicyRequest) Reset

func (x *DeleteServerTlsPolicyRequest) Reset()

func (*DeleteServerTlsPolicyRequest) String

type GetAuthorizationPolicyRequest

type GetAuthorizationPolicyRequest struct {

	// Required. A name of the AuthorizationPolicy to get. Must be in the format
	// `projects/{project}/locations/{location}/authorizationPolicies/*`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

Request used by the GetAuthorizationPolicy method.

func (*GetAuthorizationPolicyRequest) Descriptor deprecated

func (*GetAuthorizationPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetAuthorizationPolicyRequest.ProtoReflect.Descriptor instead.

func (*GetAuthorizationPolicyRequest) GetName

func (*GetAuthorizationPolicyRequest) ProtoMessage

func (*GetAuthorizationPolicyRequest) ProtoMessage()

func (*GetAuthorizationPolicyRequest) ProtoReflect

func (*GetAuthorizationPolicyRequest) Reset

func (x *GetAuthorizationPolicyRequest) Reset()

func (*GetAuthorizationPolicyRequest) String

type GetClientTlsPolicyRequest

type GetClientTlsPolicyRequest struct {

	// Required. A name of the ClientTlsPolicy to get. Must be in the format
	// `projects/*/locations/{location}/clientTlsPolicies/*`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

Request used by the GetClientTlsPolicy method.

func (*GetClientTlsPolicyRequest) Descriptor deprecated

func (*GetClientTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetClientTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*GetClientTlsPolicyRequest) GetName

func (x *GetClientTlsPolicyRequest) GetName() string

func (*GetClientTlsPolicyRequest) ProtoMessage

func (*GetClientTlsPolicyRequest) ProtoMessage()

func (*GetClientTlsPolicyRequest) ProtoReflect

func (*GetClientTlsPolicyRequest) Reset

func (x *GetClientTlsPolicyRequest) Reset()

func (*GetClientTlsPolicyRequest) String

func (x *GetClientTlsPolicyRequest) String() string

type GetServerTlsPolicyRequest

type GetServerTlsPolicyRequest struct {

	// Required. A name of the ServerTlsPolicy to get. Must be in the format
	// `projects/*/locations/{location}/serverTlsPolicies/*`.
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

Request used by the GetServerTlsPolicy method.

func (*GetServerTlsPolicyRequest) Descriptor deprecated

func (*GetServerTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetServerTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*GetServerTlsPolicyRequest) GetName

func (x *GetServerTlsPolicyRequest) GetName() string

func (*GetServerTlsPolicyRequest) ProtoMessage

func (*GetServerTlsPolicyRequest) ProtoMessage()

func (*GetServerTlsPolicyRequest) ProtoReflect

func (*GetServerTlsPolicyRequest) Reset

func (x *GetServerTlsPolicyRequest) Reset()

func (*GetServerTlsPolicyRequest) String

func (x *GetServerTlsPolicyRequest) String() string

type GrpcEndpoint

type GrpcEndpoint struct {

	// Required. The target URI of the gRPC endpoint. Only UDS path is supported, and
	// should start with "unix:".
	TargetUri string `protobuf:"bytes,1,opt,name=target_uri,json=targetUri,proto3" json:"target_uri,omitempty"`
	// contains filtered or unexported fields
}

Specification of the GRPC Endpoint.

func (*GrpcEndpoint) Descriptor deprecated

func (*GrpcEndpoint) Descriptor() ([]byte, []int)

Deprecated: Use GrpcEndpoint.ProtoReflect.Descriptor instead.

func (*GrpcEndpoint) GetTargetUri

func (x *GrpcEndpoint) GetTargetUri() string

func (*GrpcEndpoint) ProtoMessage

func (*GrpcEndpoint) ProtoMessage()

func (*GrpcEndpoint) ProtoReflect

func (x *GrpcEndpoint) ProtoReflect() protoreflect.Message

func (*GrpcEndpoint) Reset

func (x *GrpcEndpoint) Reset()

func (*GrpcEndpoint) String

func (x *GrpcEndpoint) String() string

type ListAuthorizationPoliciesRequest

type ListAuthorizationPoliciesRequest struct {

	// Required. The project and location from which the AuthorizationPolicies
	// should be listed, specified in the format
	// `projects/{project}/locations/{location}`.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Maximum number of AuthorizationPolicies to return per call.
	PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
	// The value returned by the last
	// `ListAuthorizationPoliciesResponse` Indicates that this is a
	// continuation of a prior `ListAuthorizationPolicies` call, and
	// that the system should return the next page of data.
	PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// contains filtered or unexported fields
}

Request used with the ListAuthorizationPolicies method.

func (*ListAuthorizationPoliciesRequest) Descriptor deprecated

func (*ListAuthorizationPoliciesRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListAuthorizationPoliciesRequest.ProtoReflect.Descriptor instead.

func (*ListAuthorizationPoliciesRequest) GetPageSize

func (x *ListAuthorizationPoliciesRequest) GetPageSize() int32

func (*ListAuthorizationPoliciesRequest) GetPageToken

func (x *ListAuthorizationPoliciesRequest) GetPageToken() string

func (*ListAuthorizationPoliciesRequest) GetParent

func (*ListAuthorizationPoliciesRequest) ProtoMessage

func (*ListAuthorizationPoliciesRequest) ProtoMessage()

func (*ListAuthorizationPoliciesRequest) ProtoReflect

func (*ListAuthorizationPoliciesRequest) Reset

func (*ListAuthorizationPoliciesRequest) String

type ListAuthorizationPoliciesResponse

type ListAuthorizationPoliciesResponse struct {

	// List of AuthorizationPolicies resources.
	AuthorizationPolicies []*AuthorizationPolicy `protobuf:"bytes,1,rep,name=authorization_policies,json=authorizationPolicies,proto3" json:"authorization_policies,omitempty"`
	// If there might be more results than those appearing in this response, then
	// `next_page_token` is included. To get the next set of results, call this
	// method again using the value of `next_page_token` as `page_token`.
	NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

Response returned by the ListAuthorizationPolicies method.

func (*ListAuthorizationPoliciesResponse) Descriptor deprecated

func (*ListAuthorizationPoliciesResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListAuthorizationPoliciesResponse.ProtoReflect.Descriptor instead.

func (*ListAuthorizationPoliciesResponse) GetAuthorizationPolicies

func (x *ListAuthorizationPoliciesResponse) GetAuthorizationPolicies() []*AuthorizationPolicy

func (*ListAuthorizationPoliciesResponse) GetNextPageToken

func (x *ListAuthorizationPoliciesResponse) GetNextPageToken() string

func (*ListAuthorizationPoliciesResponse) ProtoMessage

func (*ListAuthorizationPoliciesResponse) ProtoMessage()

func (*ListAuthorizationPoliciesResponse) ProtoReflect

func (*ListAuthorizationPoliciesResponse) Reset

func (*ListAuthorizationPoliciesResponse) String

type ListClientTlsPoliciesRequest

type ListClientTlsPoliciesRequest struct {

	// Required. The project and location from which the ClientTlsPolicies should
	// be listed, specified in the format `projects/*/locations/{location}`.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Maximum number of ClientTlsPolicies to return per call.
	PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
	// The value returned by the last `ListClientTlsPoliciesResponse`
	// Indicates that this is a continuation of a prior
	// `ListClientTlsPolicies` call, and that the system
	// should return the next page of data.
	PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// contains filtered or unexported fields
}

Request used by the ListClientTlsPolicies method.

func (*ListClientTlsPoliciesRequest) Descriptor deprecated

func (*ListClientTlsPoliciesRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListClientTlsPoliciesRequest.ProtoReflect.Descriptor instead.

func (*ListClientTlsPoliciesRequest) GetPageSize

func (x *ListClientTlsPoliciesRequest) GetPageSize() int32

func (*ListClientTlsPoliciesRequest) GetPageToken

func (x *ListClientTlsPoliciesRequest) GetPageToken() string

func (*ListClientTlsPoliciesRequest) GetParent

func (x *ListClientTlsPoliciesRequest) GetParent() string

func (*ListClientTlsPoliciesRequest) ProtoMessage

func (*ListClientTlsPoliciesRequest) ProtoMessage()

func (*ListClientTlsPoliciesRequest) ProtoReflect

func (*ListClientTlsPoliciesRequest) Reset

func (x *ListClientTlsPoliciesRequest) Reset()

func (*ListClientTlsPoliciesRequest) String

type ListClientTlsPoliciesResponse

type ListClientTlsPoliciesResponse struct {

	// List of ClientTlsPolicy resources.
	ClientTlsPolicies []*ClientTlsPolicy `protobuf:"bytes,1,rep,name=client_tls_policies,json=clientTlsPolicies,proto3" json:"client_tls_policies,omitempty"`
	// If there might be more results than those appearing in this response, then
	// `next_page_token` is included. To get the next set of results, call this
	// method again using the value of `next_page_token` as `page_token`.
	NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

Response returned by the ListClientTlsPolicies method.

func (*ListClientTlsPoliciesResponse) Descriptor deprecated

func (*ListClientTlsPoliciesResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListClientTlsPoliciesResponse.ProtoReflect.Descriptor instead.

func (*ListClientTlsPoliciesResponse) GetClientTlsPolicies

func (x *ListClientTlsPoliciesResponse) GetClientTlsPolicies() []*ClientTlsPolicy

func (*ListClientTlsPoliciesResponse) GetNextPageToken

func (x *ListClientTlsPoliciesResponse) GetNextPageToken() string

func (*ListClientTlsPoliciesResponse) ProtoMessage

func (*ListClientTlsPoliciesResponse) ProtoMessage()

func (*ListClientTlsPoliciesResponse) ProtoReflect

func (*ListClientTlsPoliciesResponse) Reset

func (x *ListClientTlsPoliciesResponse) Reset()

func (*ListClientTlsPoliciesResponse) String

type ListServerTlsPoliciesRequest

type ListServerTlsPoliciesRequest struct {

	// Required. The project and location from which the ServerTlsPolicies should
	// be listed, specified in the format `projects/*/locations/{location}`.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Maximum number of ServerTlsPolicies to return per call.
	PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
	// The value returned by the last `ListServerTlsPoliciesResponse`
	// Indicates that this is a continuation of a prior
	// `ListServerTlsPolicies` call, and that the system
	// should return the next page of data.
	PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
	// contains filtered or unexported fields
}

Request used by the ListServerTlsPolicies method.

func (*ListServerTlsPoliciesRequest) Descriptor deprecated

func (*ListServerTlsPoliciesRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListServerTlsPoliciesRequest.ProtoReflect.Descriptor instead.

func (*ListServerTlsPoliciesRequest) GetPageSize

func (x *ListServerTlsPoliciesRequest) GetPageSize() int32

func (*ListServerTlsPoliciesRequest) GetPageToken

func (x *ListServerTlsPoliciesRequest) GetPageToken() string

func (*ListServerTlsPoliciesRequest) GetParent

func (x *ListServerTlsPoliciesRequest) GetParent() string

func (*ListServerTlsPoliciesRequest) ProtoMessage

func (*ListServerTlsPoliciesRequest) ProtoMessage()

func (*ListServerTlsPoliciesRequest) ProtoReflect

func (*ListServerTlsPoliciesRequest) Reset

func (x *ListServerTlsPoliciesRequest) Reset()

func (*ListServerTlsPoliciesRequest) String

type ListServerTlsPoliciesResponse

type ListServerTlsPoliciesResponse struct {

	// List of ServerTlsPolicy resources.
	ServerTlsPolicies []*ServerTlsPolicy `protobuf:"bytes,1,rep,name=server_tls_policies,json=serverTlsPolicies,proto3" json:"server_tls_policies,omitempty"`
	// If there might be more results than those appearing in this response, then
	// `next_page_token` is included. To get the next set of results, call this
	// method again using the value of `next_page_token` as `page_token`.
	NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
	// contains filtered or unexported fields
}

Response returned by the ListServerTlsPolicies method.

func (*ListServerTlsPoliciesResponse) Descriptor deprecated

func (*ListServerTlsPoliciesResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListServerTlsPoliciesResponse.ProtoReflect.Descriptor instead.

func (*ListServerTlsPoliciesResponse) GetNextPageToken

func (x *ListServerTlsPoliciesResponse) GetNextPageToken() string

func (*ListServerTlsPoliciesResponse) GetServerTlsPolicies

func (x *ListServerTlsPoliciesResponse) GetServerTlsPolicies() []*ServerTlsPolicy

func (*ListServerTlsPoliciesResponse) ProtoMessage

func (*ListServerTlsPoliciesResponse) ProtoMessage()

func (*ListServerTlsPoliciesResponse) ProtoReflect

func (*ListServerTlsPoliciesResponse) Reset

func (x *ListServerTlsPoliciesResponse) Reset()

func (*ListServerTlsPoliciesResponse) String

type NetworkSecurityClient

type NetworkSecurityClient interface {
	// Lists AuthorizationPolicies in a given project and location.
	ListAuthorizationPolicies(ctx context.Context, in *ListAuthorizationPoliciesRequest, opts ...grpc.CallOption) (*ListAuthorizationPoliciesResponse, error)
	// Gets details of a single AuthorizationPolicy.
	GetAuthorizationPolicy(ctx context.Context, in *GetAuthorizationPolicyRequest, opts ...grpc.CallOption) (*AuthorizationPolicy, error)
	// Creates a new AuthorizationPolicy in a given project and location.
	CreateAuthorizationPolicy(ctx context.Context, in *CreateAuthorizationPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Updates the parameters of a single AuthorizationPolicy.
	UpdateAuthorizationPolicy(ctx context.Context, in *UpdateAuthorizationPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Deletes a single AuthorizationPolicy.
	DeleteAuthorizationPolicy(ctx context.Context, in *DeleteAuthorizationPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Lists ServerTlsPolicies in a given project and location.
	ListServerTlsPolicies(ctx context.Context, in *ListServerTlsPoliciesRequest, opts ...grpc.CallOption) (*ListServerTlsPoliciesResponse, error)
	// Gets details of a single ServerTlsPolicy.
	GetServerTlsPolicy(ctx context.Context, in *GetServerTlsPolicyRequest, opts ...grpc.CallOption) (*ServerTlsPolicy, error)
	// Creates a new ServerTlsPolicy in a given project and location.
	CreateServerTlsPolicy(ctx context.Context, in *CreateServerTlsPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Updates the parameters of a single ServerTlsPolicy.
	UpdateServerTlsPolicy(ctx context.Context, in *UpdateServerTlsPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Deletes a single ServerTlsPolicy.
	DeleteServerTlsPolicy(ctx context.Context, in *DeleteServerTlsPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Lists ClientTlsPolicies in a given project and location.
	ListClientTlsPolicies(ctx context.Context, in *ListClientTlsPoliciesRequest, opts ...grpc.CallOption) (*ListClientTlsPoliciesResponse, error)
	// Gets details of a single ClientTlsPolicy.
	GetClientTlsPolicy(ctx context.Context, in *GetClientTlsPolicyRequest, opts ...grpc.CallOption) (*ClientTlsPolicy, error)
	// Creates a new ClientTlsPolicy in a given project and location.
	CreateClientTlsPolicy(ctx context.Context, in *CreateClientTlsPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Updates the parameters of a single ClientTlsPolicy.
	UpdateClientTlsPolicy(ctx context.Context, in *UpdateClientTlsPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
	// Deletes a single ClientTlsPolicy.
	DeleteClientTlsPolicy(ctx context.Context, in *DeleteClientTlsPolicyRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
}

NetworkSecurityClient is the client API for NetworkSecurity service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.

type NetworkSecurityServer

type NetworkSecurityServer interface {
	// Lists AuthorizationPolicies in a given project and location.
	ListAuthorizationPolicies(context.Context, *ListAuthorizationPoliciesRequest) (*ListAuthorizationPoliciesResponse, error)
	// Gets details of a single AuthorizationPolicy.
	GetAuthorizationPolicy(context.Context, *GetAuthorizationPolicyRequest) (*AuthorizationPolicy, error)
	// Creates a new AuthorizationPolicy in a given project and location.
	CreateAuthorizationPolicy(context.Context, *CreateAuthorizationPolicyRequest) (*longrunning.Operation, error)
	// Updates the parameters of a single AuthorizationPolicy.
	UpdateAuthorizationPolicy(context.Context, *UpdateAuthorizationPolicyRequest) (*longrunning.Operation, error)
	// Deletes a single AuthorizationPolicy.
	DeleteAuthorizationPolicy(context.Context, *DeleteAuthorizationPolicyRequest) (*longrunning.Operation, error)
	// Lists ServerTlsPolicies in a given project and location.
	ListServerTlsPolicies(context.Context, *ListServerTlsPoliciesRequest) (*ListServerTlsPoliciesResponse, error)
	// Gets details of a single ServerTlsPolicy.
	GetServerTlsPolicy(context.Context, *GetServerTlsPolicyRequest) (*ServerTlsPolicy, error)
	// Creates a new ServerTlsPolicy in a given project and location.
	CreateServerTlsPolicy(context.Context, *CreateServerTlsPolicyRequest) (*longrunning.Operation, error)
	// Updates the parameters of a single ServerTlsPolicy.
	UpdateServerTlsPolicy(context.Context, *UpdateServerTlsPolicyRequest) (*longrunning.Operation, error)
	// Deletes a single ServerTlsPolicy.
	DeleteServerTlsPolicy(context.Context, *DeleteServerTlsPolicyRequest) (*longrunning.Operation, error)
	// Lists ClientTlsPolicies in a given project and location.
	ListClientTlsPolicies(context.Context, *ListClientTlsPoliciesRequest) (*ListClientTlsPoliciesResponse, error)
	// Gets details of a single ClientTlsPolicy.
	GetClientTlsPolicy(context.Context, *GetClientTlsPolicyRequest) (*ClientTlsPolicy, error)
	// Creates a new ClientTlsPolicy in a given project and location.
	CreateClientTlsPolicy(context.Context, *CreateClientTlsPolicyRequest) (*longrunning.Operation, error)
	// Updates the parameters of a single ClientTlsPolicy.
	UpdateClientTlsPolicy(context.Context, *UpdateClientTlsPolicyRequest) (*longrunning.Operation, error)
	// Deletes a single ClientTlsPolicy.
	DeleteClientTlsPolicy(context.Context, *DeleteClientTlsPolicyRequest) (*longrunning.Operation, error)
}

NetworkSecurityServer is the server API for NetworkSecurity service.

type OperationMetadata

type OperationMetadata struct {

	// Output only. The time the operation was created.
	CreateTime *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
	// Output only. The time the operation finished running.
	EndTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=end_time,json=endTime,proto3" json:"end_time,omitempty"`
	// Output only. Server-defined resource path for the target of the operation.
	Target string `protobuf:"bytes,3,opt,name=target,proto3" json:"target,omitempty"`
	// Output only. Name of the verb executed by the operation.
	Verb string `protobuf:"bytes,4,opt,name=verb,proto3" json:"verb,omitempty"`
	// Output only. Human-readable status of the operation, if any.
	StatusMessage string `protobuf:"bytes,5,opt,name=status_message,json=statusMessage,proto3" json:"status_message,omitempty"`
	// Output only. Identifies whether the user has requested cancellation
	// of the operation. Operations that have successfully been cancelled
	// have [Operation.error][] value with a [google.rpc.Status.code][google.rpc.Status.code] of 1,
	// corresponding to `Code.CANCELLED`.
	RequestedCancellation bool `protobuf:"varint,6,opt,name=requested_cancellation,json=requestedCancellation,proto3" json:"requested_cancellation,omitempty"`
	// Output only. API version used to start the operation.
	ApiVersion string `protobuf:"bytes,7,opt,name=api_version,json=apiVersion,proto3" json:"api_version,omitempty"`
	// contains filtered or unexported fields
}

Represents the metadata of the long-running operation.

func (*OperationMetadata) Descriptor deprecated

func (*OperationMetadata) Descriptor() ([]byte, []int)

Deprecated: Use OperationMetadata.ProtoReflect.Descriptor instead.

func (*OperationMetadata) GetApiVersion

func (x *OperationMetadata) GetApiVersion() string

func (*OperationMetadata) GetCreateTime

func (x *OperationMetadata) GetCreateTime() *timestamppb.Timestamp

func (*OperationMetadata) GetEndTime

func (x *OperationMetadata) GetEndTime() *timestamppb.Timestamp

func (*OperationMetadata) GetRequestedCancellation

func (x *OperationMetadata) GetRequestedCancellation() bool

func (*OperationMetadata) GetStatusMessage

func (x *OperationMetadata) GetStatusMessage() string

func (*OperationMetadata) GetTarget

func (x *OperationMetadata) GetTarget() string

func (*OperationMetadata) GetVerb

func (x *OperationMetadata) GetVerb() string

func (*OperationMetadata) ProtoMessage

func (*OperationMetadata) ProtoMessage()

func (*OperationMetadata) ProtoReflect

func (x *OperationMetadata) ProtoReflect() protoreflect.Message

func (*OperationMetadata) Reset

func (x *OperationMetadata) Reset()

func (*OperationMetadata) String

func (x *OperationMetadata) String() string

type ServerTlsPolicy

type ServerTlsPolicy struct {

	// Required. Name of the ServerTlsPolicy resource. It matches the pattern
	// `projects/*/locations/{location}/serverTlsPolicies/{server_tls_policy}`
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
	// Free-text description of the resource.
	Description string `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
	// Output only. The timestamp when the resource was created.
	CreateTime *timestamppb.Timestamp `protobuf:"bytes,3,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
	// Output only. The timestamp when the resource was updated.
	UpdateTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
	// Set of label tags associated with the resource.
	Labels map[string]string `` /* 153-byte string literal not displayed */
	//
	// Determines if server allows plaintext connections. If set to true, server
	// allows plain text connections. By default, it is set to false. This setting
	// is not exclusive of other encryption modes. For example, if `allow_open`
	// and `mtls_policy` are set, server allows both plain text and mTLS
	// connections. See documentation of other encryption modes to confirm
	// compatibility.
	//
	// Consider using it if you wish to upgrade in place your deployment to TLS
	// while having mixed TLS and non-TLS traffic reaching port :80.
	AllowOpen bool `protobuf:"varint,6,opt,name=allow_open,json=allowOpen,proto3" json:"allow_open,omitempty"`
	//
	// Defines a mechanism to provision server identity (public and private keys).
	// Cannot be combined with `allow_open` as a permissive mode that allows both
	// plain text and TLS is not supported.
	ServerCertificate *CertificateProvider `protobuf:"bytes,7,opt,name=server_certificate,json=serverCertificate,proto3" json:"server_certificate,omitempty"`
	//
	// Defines a mechanism to provision peer validation certificates for peer to
	// peer authentication (Mutual TLS - mTLS). If not specified, client
	// certificate will not be requested. The connection is treated as TLS and not
	// mTLS. If `allow_open` and `mtls_policy` are set, server allows both plain
	// text and mTLS connections.
	MtlsPolicy *ServerTlsPolicy_MTLSPolicy `protobuf:"bytes,8,opt,name=mtls_policy,json=mtlsPolicy,proto3" json:"mtls_policy,omitempty"`
	// contains filtered or unexported fields
}

ServerTlsPolicy is a resource that specifies how a server should authenticate incoming requests. This resource itself does not affect configuration unless it is attached to a target https proxy or endpoint config selector resource.

func (*ServerTlsPolicy) Descriptor deprecated

func (*ServerTlsPolicy) Descriptor() ([]byte, []int)

Deprecated: Use ServerTlsPolicy.ProtoReflect.Descriptor instead.

func (*ServerTlsPolicy) GetAllowOpen

func (x *ServerTlsPolicy) GetAllowOpen() bool

func (*ServerTlsPolicy) GetCreateTime

func (x *ServerTlsPolicy) GetCreateTime() *timestamppb.Timestamp

func (*ServerTlsPolicy) GetDescription

func (x *ServerTlsPolicy) GetDescription() string

func (*ServerTlsPolicy) GetLabels

func (x *ServerTlsPolicy) GetLabels() map[string]string

func (*ServerTlsPolicy) GetMtlsPolicy

func (x *ServerTlsPolicy) GetMtlsPolicy() *ServerTlsPolicy_MTLSPolicy

func (*ServerTlsPolicy) GetName

func (x *ServerTlsPolicy) GetName() string

func (*ServerTlsPolicy) GetServerCertificate

func (x *ServerTlsPolicy) GetServerCertificate() *CertificateProvider

func (*ServerTlsPolicy) GetUpdateTime

func (x *ServerTlsPolicy) GetUpdateTime() *timestamppb.Timestamp

func (*ServerTlsPolicy) ProtoMessage

func (*ServerTlsPolicy) ProtoMessage()

func (*ServerTlsPolicy) ProtoReflect

func (x *ServerTlsPolicy) ProtoReflect() protoreflect.Message

func (*ServerTlsPolicy) Reset

func (x *ServerTlsPolicy) Reset()

func (*ServerTlsPolicy) String

func (x *ServerTlsPolicy) String() string

type ServerTlsPolicy_MTLSPolicy

type ServerTlsPolicy_MTLSPolicy struct {

	//
	// Defines the mechanism to obtain the Certificate Authority certificate to
	// validate the client certificate.
	ClientValidationCa []*ValidationCA `protobuf:"bytes,1,rep,name=client_validation_ca,json=clientValidationCa,proto3" json:"client_validation_ca,omitempty"`
	// contains filtered or unexported fields
}

Specification of the MTLSPolicy.

func (*ServerTlsPolicy_MTLSPolicy) Descriptor deprecated

func (*ServerTlsPolicy_MTLSPolicy) Descriptor() ([]byte, []int)

Deprecated: Use ServerTlsPolicy_MTLSPolicy.ProtoReflect.Descriptor instead.

func (*ServerTlsPolicy_MTLSPolicy) GetClientValidationCa

func (x *ServerTlsPolicy_MTLSPolicy) GetClientValidationCa() []*ValidationCA

func (*ServerTlsPolicy_MTLSPolicy) ProtoMessage

func (*ServerTlsPolicy_MTLSPolicy) ProtoMessage()

func (*ServerTlsPolicy_MTLSPolicy) ProtoReflect

func (*ServerTlsPolicy_MTLSPolicy) Reset

func (x *ServerTlsPolicy_MTLSPolicy) Reset()

func (*ServerTlsPolicy_MTLSPolicy) String

func (x *ServerTlsPolicy_MTLSPolicy) String() string

type UnimplementedNetworkSecurityServer

type UnimplementedNetworkSecurityServer struct {
}

UnimplementedNetworkSecurityServer can be embedded to have forward compatible implementations.

func (*UnimplementedNetworkSecurityServer) CreateAuthorizationPolicy

func (*UnimplementedNetworkSecurityServer) CreateClientTlsPolicy

func (*UnimplementedNetworkSecurityServer) CreateServerTlsPolicy

func (*UnimplementedNetworkSecurityServer) DeleteAuthorizationPolicy

func (*UnimplementedNetworkSecurityServer) DeleteClientTlsPolicy

func (*UnimplementedNetworkSecurityServer) DeleteServerTlsPolicy

func (*UnimplementedNetworkSecurityServer) GetAuthorizationPolicy

func (*UnimplementedNetworkSecurityServer) GetClientTlsPolicy

func (*UnimplementedNetworkSecurityServer) GetServerTlsPolicy

func (*UnimplementedNetworkSecurityServer) ListClientTlsPolicies

func (*UnimplementedNetworkSecurityServer) ListServerTlsPolicies

func (*UnimplementedNetworkSecurityServer) UpdateAuthorizationPolicy

func (*UnimplementedNetworkSecurityServer) UpdateClientTlsPolicy

func (*UnimplementedNetworkSecurityServer) UpdateServerTlsPolicy

type UpdateAuthorizationPolicyRequest

type UpdateAuthorizationPolicyRequest struct {

	// Optional. Field mask is used to specify the fields to be overwritten in the
	// AuthorizationPolicy resource by the update.
	// The fields specified in the update_mask are relative to the resource, not
	// the full request. A field will be overwritten if it is in the mask. If the
	// user does not provide a mask then all fields will be overwritten.
	UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,1,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
	// Required. Updated AuthorizationPolicy resource.
	AuthorizationPolicy *AuthorizationPolicy `protobuf:"bytes,2,opt,name=authorization_policy,json=authorizationPolicy,proto3" json:"authorization_policy,omitempty"`
	// contains filtered or unexported fields
}

Request used by the UpdateAuthorizationPolicy method.

func (*UpdateAuthorizationPolicyRequest) Descriptor deprecated

func (*UpdateAuthorizationPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdateAuthorizationPolicyRequest.ProtoReflect.Descriptor instead.

func (*UpdateAuthorizationPolicyRequest) GetAuthorizationPolicy

func (x *UpdateAuthorizationPolicyRequest) GetAuthorizationPolicy() *AuthorizationPolicy

func (*UpdateAuthorizationPolicyRequest) GetUpdateMask

func (*UpdateAuthorizationPolicyRequest) ProtoMessage

func (*UpdateAuthorizationPolicyRequest) ProtoMessage()

func (*UpdateAuthorizationPolicyRequest) ProtoReflect

func (*UpdateAuthorizationPolicyRequest) Reset

func (*UpdateAuthorizationPolicyRequest) String

type UpdateClientTlsPolicyRequest

type UpdateClientTlsPolicyRequest struct {

	// Optional. Field mask is used to specify the fields to be overwritten in the
	// ClientTlsPolicy resource by the update.  The fields
	// specified in the update_mask are relative to the resource, not
	// the full request. A field will be overwritten if it is in the
	// mask. If the user does not provide a mask then all fields will be
	// overwritten.
	UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,1,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
	// Required. Updated ClientTlsPolicy resource.
	ClientTlsPolicy *ClientTlsPolicy `protobuf:"bytes,2,opt,name=client_tls_policy,json=clientTlsPolicy,proto3" json:"client_tls_policy,omitempty"`
	// contains filtered or unexported fields
}

Request used by UpdateClientTlsPolicy method.

func (*UpdateClientTlsPolicyRequest) Descriptor deprecated

func (*UpdateClientTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdateClientTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*UpdateClientTlsPolicyRequest) GetClientTlsPolicy

func (x *UpdateClientTlsPolicyRequest) GetClientTlsPolicy() *ClientTlsPolicy

func (*UpdateClientTlsPolicyRequest) GetUpdateMask

func (*UpdateClientTlsPolicyRequest) ProtoMessage

func (*UpdateClientTlsPolicyRequest) ProtoMessage()

func (*UpdateClientTlsPolicyRequest) ProtoReflect

func (*UpdateClientTlsPolicyRequest) Reset

func (x *UpdateClientTlsPolicyRequest) Reset()

func (*UpdateClientTlsPolicyRequest) String

type UpdateServerTlsPolicyRequest

type UpdateServerTlsPolicyRequest struct {

	// Optional. Field mask is used to specify the fields to be overwritten in the
	// ServerTlsPolicy resource by the update.  The fields
	// specified in the update_mask are relative to the resource, not
	// the full request. A field will be overwritten if it is in the
	// mask. If the user does not provide a mask then all fields will be
	// overwritten.
	UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,1,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
	// Required. Updated ServerTlsPolicy resource.
	ServerTlsPolicy *ServerTlsPolicy `protobuf:"bytes,2,opt,name=server_tls_policy,json=serverTlsPolicy,proto3" json:"server_tls_policy,omitempty"`
	// contains filtered or unexported fields
}

Request used by UpdateServerTlsPolicy method.

func (*UpdateServerTlsPolicyRequest) Descriptor deprecated

func (*UpdateServerTlsPolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdateServerTlsPolicyRequest.ProtoReflect.Descriptor instead.

func (*UpdateServerTlsPolicyRequest) GetServerTlsPolicy

func (x *UpdateServerTlsPolicyRequest) GetServerTlsPolicy() *ServerTlsPolicy

func (*UpdateServerTlsPolicyRequest) GetUpdateMask

func (*UpdateServerTlsPolicyRequest) ProtoMessage

func (*UpdateServerTlsPolicyRequest) ProtoMessage()

func (*UpdateServerTlsPolicyRequest) ProtoReflect

func (*UpdateServerTlsPolicyRequest) Reset

func (x *UpdateServerTlsPolicyRequest) Reset()

func (*UpdateServerTlsPolicyRequest) String

type ValidationCA

type ValidationCA struct {

	// The type of certificate provider which provides the CA certificate.
	//
	// Types that are assignable to Type:
	//	*ValidationCA_GrpcEndpoint
	//	*ValidationCA_CertificateProviderInstance
	Type isValidationCA_Type `protobuf_oneof:"type"`
	// contains filtered or unexported fields
}

Specification of ValidationCA. Defines the mechanism to obtain the Certificate Authority certificate to validate the peer certificate.

func (*ValidationCA) Descriptor deprecated

func (*ValidationCA) Descriptor() ([]byte, []int)

Deprecated: Use ValidationCA.ProtoReflect.Descriptor instead.

func (*ValidationCA) GetCertificateProviderInstance

func (x *ValidationCA) GetCertificateProviderInstance() *CertificateProviderInstance

func (*ValidationCA) GetGrpcEndpoint

func (x *ValidationCA) GetGrpcEndpoint() *GrpcEndpoint

func (*ValidationCA) GetType

func (m *ValidationCA) GetType() isValidationCA_Type

func (*ValidationCA) ProtoMessage

func (*ValidationCA) ProtoMessage()

func (*ValidationCA) ProtoReflect

func (x *ValidationCA) ProtoReflect() protoreflect.Message

func (*ValidationCA) Reset

func (x *ValidationCA) Reset()

func (*ValidationCA) String

func (x *ValidationCA) String() string

type ValidationCA_CertificateProviderInstance

type ValidationCA_CertificateProviderInstance struct {
	// The certificate provider instance specification that will be passed to
	// the data plane, which will be used to load necessary credential
	// information.
	CertificateProviderInstance *CertificateProviderInstance `protobuf:"bytes,3,opt,name=certificate_provider_instance,json=certificateProviderInstance,proto3,oneof"`
}

type ValidationCA_GrpcEndpoint

type ValidationCA_GrpcEndpoint struct {
	// gRPC specific configuration to access the gRPC server to
	// obtain the CA certificate.
	GrpcEndpoint *GrpcEndpoint `protobuf:"bytes,2,opt,name=grpc_endpoint,json=grpcEndpoint,proto3,oneof"`
}

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL