v1

package
v0.1.19 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 15, 2024 License: Apache-2.0 Imports: 29 Imported by: 2

Documentation

Overview

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 contains the v1 GRPC client and server definitions for implementing IAM interactions for the Console.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Package v1 is a reverse proxy.

It translates gRPC into RESTful JSON APIs.

Index

Constants

View Source 
const (
	GroupAccountAssociations_Create_FullMethodName = "/chainguard.platform.iam.GroupAccountAssociations/Create"
	GroupAccountAssociations_Update_FullMethodName = "/chainguard.platform.iam.GroupAccountAssociations/Update"
	GroupAccountAssociations_List_FullMethodName   = "/chainguard.platform.iam.GroupAccountAssociations/List"
	GroupAccountAssociations_Delete_FullMethodName = "/chainguard.platform.iam.GroupAccountAssociations/Delete"
	GroupAccountAssociations_Check_FullMethodName  = "/chainguard.platform.iam.GroupAccountAssociations/Check"
)
View Source 
const (
	Groups_Create_FullMethodName = "/chainguard.platform.iam.Groups/Create"
	Groups_Update_FullMethodName = "/chainguard.platform.iam.Groups/Update"
	Groups_List_FullMethodName   = "/chainguard.platform.iam.Groups/List"
	Groups_Delete_FullMethodName = "/chainguard.platform.iam.Groups/Delete"
)
View Source 
const (
	GroupInvites_Create_FullMethodName          = "/chainguard.platform.iam.GroupInvites/Create"
	GroupInvites_CreateWithGroup_FullMethodName = "/chainguard.platform.iam.GroupInvites/CreateWithGroup"
	GroupInvites_List_FullMethodName            = "/chainguard.platform.iam.GroupInvites/List"
	GroupInvites_Delete_FullMethodName          = "/chainguard.platform.iam.GroupInvites/Delete"
)
View Source 
const (
	Identities_Create_FullMethodName = "/chainguard.platform.iam.Identities/Create"
	Identities_Update_FullMethodName = "/chainguard.platform.iam.Identities/Update"
	Identities_List_FullMethodName   = "/chainguard.platform.iam.Identities/List"
	Identities_Lookup_FullMethodName = "/chainguard.platform.iam.Identities/Lookup"
	Identities_Delete_FullMethodName = "/chainguard.platform.iam.Identities/Delete"
)
View Source 
const (
	IdentityProviders_Create_FullMethodName = "/chainguard.platform.iam.IdentityProviders/Create"
	IdentityProviders_Update_FullMethodName = "/chainguard.platform.iam.IdentityProviders/Update"
	IdentityProviders_List_FullMethodName   = "/chainguard.platform.iam.IdentityProviders/List"
	IdentityProviders_Delete_FullMethodName = "/chainguard.platform.iam.IdentityProviders/Delete"
)
View Source 
const (
	Policies_Create_FullMethodName          = "/chainguard.platform.iam.Policies/Create"
	Policies_List_FullMethodName            = "/chainguard.platform.iam.Policies/List"
	Policies_Delete_FullMethodName          = "/chainguard.platform.iam.Policies/Delete"
	Policies_Update_FullMethodName          = "/chainguard.platform.iam.Policies/Update"
	Policies_ListVersions_FullMethodName    = "/chainguard.platform.iam.Policies/ListVersions"
	Policies_ActivateVersion_FullMethodName = "/chainguard.platform.iam.Policies/ActivateVersion"
)
View Source 
const (
	Roles_Create_FullMethodName = "/chainguard.platform.iam.Roles/Create"
	Roles_Update_FullMethodName = "/chainguard.platform.iam.Roles/Update"
	Roles_List_FullMethodName   = "/chainguard.platform.iam.Roles/List"
	Roles_Delete_FullMethodName = "/chainguard.platform.iam.Roles/Delete"
)
View Source 
const (
	RoleBindings_Create_FullMethodName = "/chainguard.platform.iam.RoleBindings/Create"
	RoleBindings_Update_FullMethodName = "/chainguard.platform.iam.RoleBindings/Update"
	RoleBindings_List_FullMethodName   = "/chainguard.platform.iam.RoleBindings/List"
	RoleBindings_Delete_FullMethodName = "/chainguard.platform.iam.RoleBindings/Delete"
)
View Source 
const (
	SigstoreService_Create_FullMethodName = "/chainguard.platform.iam.SigstoreService/Create"
	SigstoreService_List_FullMethodName   = "/chainguard.platform.iam.SigstoreService/List"
	SigstoreService_Delete_FullMethodName = "/chainguard.platform.iam.SigstoreService/Delete"
	SigstoreService_Update_FullMethodName = "/chainguard.platform.iam.SigstoreService/Update"
)

Variables

View Source 
var (
	AccountAssociationsStatus_State_name = map[int32]string{
		0: "UNKNOWN",
		1: "Ready",
		2: "NotReady",
	}
	AccountAssociationsStatus_State_value = map[string]int32{
		"UNKNOWN":  0,
		"Ready":    1,
		"NotReady": 2,
	}
)

Enum value maps for AccountAssociationsStatus_State.

View Source 
var (
	AccountAssociationsCheckRequest_AccountType_name = map[int32]string{
		0: "UNKNOWN",
		1: "GOOGLE",
		2: "AMAZON",
	}
	AccountAssociationsCheckRequest_AccountType_value = map[string]int32{
		"UNKNOWN": 0,
		"GOOGLE":  1,
		"AMAZON":  2,
	}
)

Enum value maps for AccountAssociationsCheckRequest_AccountType.

View Source 
var (
	ServicePrincipal_name = map[int32]string{
		0: "UNKNOWN",
		1: "COSIGNED",
		2: "INGESTER",
		3: "CATALOG_SYNCER",
	}
	ServicePrincipal_value = map[string]int32{
		"UNKNOWN":        0,
		"COSIGNED":       1,
		"INGESTER":       2,
		"CATALOG_SYNCER": 3,
	}
)

Enum value maps for ServicePrincipal.

View Source 
var File_account_associations_platform_proto protoreflect.FileDescriptor
View Source 
var File_group_invites_platform_proto protoreflect.FileDescriptor
View Source 
var File_group_platform_proto protoreflect.FileDescriptor
View Source 
var File_identity_platform_proto protoreflect.FileDescriptor
View Source 
var File_identity_providers_platform_proto protoreflect.FileDescriptor
View Source 
var File_policies_platform_proto protoreflect.FileDescriptor
View Source 
var File_role_binding_platform_proto protoreflect.FileDescriptor
View Source 
var File_role_platform_proto protoreflect.FileDescriptor
View Source 
var File_sigstore_platform_proto protoreflect.FileDescriptor
View Source 
var GroupAccountAssociations_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.GroupAccountAssociations",
	HandlerType: (*GroupAccountAssociationsServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _GroupAccountAssociations_Create_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _GroupAccountAssociations_Update_Handler,
		},
		{
			MethodName: "List",
			Handler:    _GroupAccountAssociations_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _GroupAccountAssociations_Delete_Handler,
		},
		{
			MethodName: "Check",
			Handler:    _GroupAccountAssociations_Check_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "account_associations.platform.proto",
}

GroupAccountAssociations_ServiceDesc is the grpc.ServiceDesc for GroupAccountAssociations service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var GroupInvites_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.GroupInvites",
	HandlerType: (*GroupInvitesServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _GroupInvites_Create_Handler,
		},
		{
			MethodName: "CreateWithGroup",
			Handler:    _GroupInvites_CreateWithGroup_Handler,
		},
		{
			MethodName: "List",
			Handler:    _GroupInvites_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _GroupInvites_Delete_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "group_invites.platform.proto",
}

GroupInvites_ServiceDesc is the grpc.ServiceDesc for GroupInvites service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var Groups_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.Groups",
	HandlerType: (*GroupsServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _Groups_Create_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _Groups_Update_Handler,
		},
		{
			MethodName: "List",
			Handler:    _Groups_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _Groups_Delete_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "group.platform.proto",
}

Groups_ServiceDesc is the grpc.ServiceDesc for Groups service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var Identities_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.Identities",
	HandlerType: (*IdentitiesServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _Identities_Create_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _Identities_Update_Handler,
		},
		{
			MethodName: "List",
			Handler:    _Identities_List_Handler,
		},
		{
			MethodName: "Lookup",
			Handler:    _Identities_Lookup_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _Identities_Delete_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "identity.platform.proto",
}

Identities_ServiceDesc is the grpc.ServiceDesc for Identities service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var IdentityProviders_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.IdentityProviders",
	HandlerType: (*IdentityProvidersServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _IdentityProviders_Create_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _IdentityProviders_Update_Handler,
		},
		{
			MethodName: "List",
			Handler:    _IdentityProviders_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _IdentityProviders_Delete_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "identity_providers.platform.proto",
}

IdentityProviders_ServiceDesc is the grpc.ServiceDesc for IdentityProviders service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var Policies_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.Policies",
	HandlerType: (*PoliciesServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _Policies_Create_Handler,
		},
		{
			MethodName: "List",
			Handler:    _Policies_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _Policies_Delete_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _Policies_Update_Handler,
		},
		{
			MethodName: "ListVersions",
			Handler:    _Policies_ListVersions_Handler,
		},
		{
			MethodName: "ActivateVersion",
			Handler:    _Policies_ActivateVersion_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "policies.platform.proto",
}

Policies_ServiceDesc is the grpc.ServiceDesc for Policies service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var RoleBindings_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.RoleBindings",
	HandlerType: (*RoleBindingsServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _RoleBindings_Create_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _RoleBindings_Update_Handler,
		},
		{
			MethodName: "List",
			Handler:    _RoleBindings_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _RoleBindings_Delete_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "role_binding.platform.proto",
}

RoleBindings_ServiceDesc is the grpc.ServiceDesc for RoleBindings service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var Roles_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.Roles",
	HandlerType: (*RolesServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _Roles_Create_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _Roles_Update_Handler,
		},
		{
			MethodName: "List",
			Handler:    _Roles_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _Roles_Delete_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "role.platform.proto",
}

Roles_ServiceDesc is the grpc.ServiceDesc for Roles service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var SigstoreService_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "chainguard.platform.iam.SigstoreService",
	HandlerType: (*SigstoreServiceServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Create",
			Handler:    _SigstoreService_Create_Handler,
		},
		{
			MethodName: "List",
			Handler:    _SigstoreService_List_Handler,
		},
		{
			MethodName: "Delete",
			Handler:    _SigstoreService_Delete_Handler,
		},
		{
			MethodName: "Update",
			Handler:    _SigstoreService_Update_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "sigstore.platform.proto",
}

SigstoreService_ServiceDesc is the grpc.ServiceDesc for SigstoreService service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

Functions

func RegisterGroupAccountAssociationsHandler 

func RegisterGroupAccountAssociationsHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterGroupAccountAssociationsHandler registers the http handlers for service GroupAccountAssociations to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterGroupAccountAssociationsHandlerClient 

func RegisterGroupAccountAssociationsHandlerClient(ctx context.Context, mux *runtime.ServeMux, client GroupAccountAssociationsClient) error

RegisterGroupAccountAssociationsHandlerClient registers the http handlers for service GroupAccountAssociations to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "GroupAccountAssociationsClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "GroupAccountAssociationsClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "GroupAccountAssociationsClient" to call the correct interceptors.

func RegisterGroupAccountAssociationsHandlerFromEndpoint 

func RegisterGroupAccountAssociationsHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterGroupAccountAssociationsHandlerFromEndpoint is same as RegisterGroupAccountAssociationsHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterGroupAccountAssociationsHandlerServer 

func RegisterGroupAccountAssociationsHandlerServer(ctx context.Context, mux *runtime.ServeMux, server GroupAccountAssociationsServer) error

RegisterGroupAccountAssociationsHandlerServer registers the http handlers for service GroupAccountAssociations to "mux". UnaryRPC :call GroupAccountAssociationsServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterGroupAccountAssociationsHandlerFromEndpoint instead.

func RegisterGroupAccountAssociationsServer 

func RegisterGroupAccountAssociationsServer(s grpc.ServiceRegistrar, srv GroupAccountAssociationsServer)

func RegisterGroupInvitesHandler 

func RegisterGroupInvitesHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterGroupInvitesHandler registers the http handlers for service GroupInvites to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterGroupInvitesHandlerClient 

func RegisterGroupInvitesHandlerClient(ctx context.Context, mux *runtime.ServeMux, client GroupInvitesClient) error

RegisterGroupInvitesHandlerClient registers the http handlers for service GroupInvites to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "GroupInvitesClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "GroupInvitesClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "GroupInvitesClient" to call the correct interceptors.

func RegisterGroupInvitesHandlerFromEndpoint 

func RegisterGroupInvitesHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterGroupInvitesHandlerFromEndpoint is same as RegisterGroupInvitesHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterGroupInvitesHandlerServer 

func RegisterGroupInvitesHandlerServer(ctx context.Context, mux *runtime.ServeMux, server GroupInvitesServer) error

RegisterGroupInvitesHandlerServer registers the http handlers for service GroupInvites to "mux". UnaryRPC :call GroupInvitesServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterGroupInvitesHandlerFromEndpoint instead.

func RegisterGroupInvitesServer 

func RegisterGroupInvitesServer(s grpc.ServiceRegistrar, srv GroupInvitesServer)

func RegisterGroupsHandler 

func RegisterGroupsHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterGroupsHandler registers the http handlers for service Groups to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterGroupsHandlerClient 

func RegisterGroupsHandlerClient(ctx context.Context, mux *runtime.ServeMux, client GroupsClient) error

RegisterGroupsHandlerClient registers the http handlers for service Groups to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "GroupsClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "GroupsClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "GroupsClient" to call the correct interceptors.

func RegisterGroupsHandlerFromEndpoint 

func RegisterGroupsHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterGroupsHandlerFromEndpoint is same as RegisterGroupsHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterGroupsHandlerServer 

func RegisterGroupsHandlerServer(ctx context.Context, mux *runtime.ServeMux, server GroupsServer) error

RegisterGroupsHandlerServer registers the http handlers for service Groups to "mux". UnaryRPC :call GroupsServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterGroupsHandlerFromEndpoint instead.

func RegisterGroupsServer 

func RegisterGroupsServer(s grpc.ServiceRegistrar, srv GroupsServer)

func RegisterIdentitiesHandler 

func RegisterIdentitiesHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterIdentitiesHandler registers the http handlers for service Identities to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterIdentitiesHandlerClient 

func RegisterIdentitiesHandlerClient(ctx context.Context, mux *runtime.ServeMux, client IdentitiesClient) error

RegisterIdentitiesHandlerClient registers the http handlers for service Identities to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "IdentitiesClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "IdentitiesClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "IdentitiesClient" to call the correct interceptors.

func RegisterIdentitiesHandlerFromEndpoint 

func RegisterIdentitiesHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterIdentitiesHandlerFromEndpoint is same as RegisterIdentitiesHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterIdentitiesHandlerServer 

func RegisterIdentitiesHandlerServer(ctx context.Context, mux *runtime.ServeMux, server IdentitiesServer) error

RegisterIdentitiesHandlerServer registers the http handlers for service Identities to "mux". UnaryRPC :call IdentitiesServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterIdentitiesHandlerFromEndpoint instead.

func RegisterIdentitiesServer 

func RegisterIdentitiesServer(s grpc.ServiceRegistrar, srv IdentitiesServer)

func RegisterIdentityProvidersHandler 

func RegisterIdentityProvidersHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterIdentityProvidersHandler registers the http handlers for service IdentityProviders to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterIdentityProvidersHandlerClient 

func RegisterIdentityProvidersHandlerClient(ctx context.Context, mux *runtime.ServeMux, client IdentityProvidersClient) error

RegisterIdentityProvidersHandlerClient registers the http handlers for service IdentityProviders to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "IdentityProvidersClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "IdentityProvidersClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "IdentityProvidersClient" to call the correct interceptors.

func RegisterIdentityProvidersHandlerFromEndpoint 

func RegisterIdentityProvidersHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterIdentityProvidersHandlerFromEndpoint is same as RegisterIdentityProvidersHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterIdentityProvidersHandlerServer 

func RegisterIdentityProvidersHandlerServer(ctx context.Context, mux *runtime.ServeMux, server IdentityProvidersServer) error

RegisterIdentityProvidersHandlerServer registers the http handlers for service IdentityProviders to "mux". UnaryRPC :call IdentityProvidersServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterIdentityProvidersHandlerFromEndpoint instead.

func RegisterIdentityProvidersServer 

func RegisterIdentityProvidersServer(s grpc.ServiceRegistrar, srv IdentityProvidersServer)

func RegisterPoliciesHandler 

func RegisterPoliciesHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterPoliciesHandler registers the http handlers for service Policies to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterPoliciesHandlerClient 

func RegisterPoliciesHandlerClient(ctx context.Context, mux *runtime.ServeMux, client PoliciesClient) error

RegisterPoliciesHandlerClient registers the http handlers for service Policies to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "PoliciesClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "PoliciesClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "PoliciesClient" to call the correct interceptors.

func RegisterPoliciesHandlerFromEndpoint 

func RegisterPoliciesHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterPoliciesHandlerFromEndpoint is same as RegisterPoliciesHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterPoliciesHandlerServer 

func RegisterPoliciesHandlerServer(ctx context.Context, mux *runtime.ServeMux, server PoliciesServer) error

RegisterPoliciesHandlerServer registers the http handlers for service Policies to "mux". UnaryRPC :call PoliciesServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterPoliciesHandlerFromEndpoint instead.

func RegisterPoliciesServer 

func RegisterPoliciesServer(s grpc.ServiceRegistrar, srv PoliciesServer)

func RegisterRoleBindingsHandler 

func RegisterRoleBindingsHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterRoleBindingsHandler registers the http handlers for service RoleBindings to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterRoleBindingsHandlerClient 

func RegisterRoleBindingsHandlerClient(ctx context.Context, mux *runtime.ServeMux, client RoleBindingsClient) error

RegisterRoleBindingsHandlerClient registers the http handlers for service RoleBindings to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "RoleBindingsClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "RoleBindingsClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "RoleBindingsClient" to call the correct interceptors.

func RegisterRoleBindingsHandlerFromEndpoint 

func RegisterRoleBindingsHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterRoleBindingsHandlerFromEndpoint is same as RegisterRoleBindingsHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterRoleBindingsHandlerServer 

func RegisterRoleBindingsHandlerServer(ctx context.Context, mux *runtime.ServeMux, server RoleBindingsServer) error

RegisterRoleBindingsHandlerServer registers the http handlers for service RoleBindings to "mux". UnaryRPC :call RoleBindingsServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterRoleBindingsHandlerFromEndpoint instead.

func RegisterRoleBindingsServer 

func RegisterRoleBindingsServer(s grpc.ServiceRegistrar, srv RoleBindingsServer)

func RegisterRolesHandler 

func RegisterRolesHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterRolesHandler registers the http handlers for service Roles to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterRolesHandlerClient 

func RegisterRolesHandlerClient(ctx context.Context, mux *runtime.ServeMux, client RolesClient) error

RegisterRolesHandlerClient registers the http handlers for service Roles to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "RolesClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "RolesClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "RolesClient" to call the correct interceptors.

func RegisterRolesHandlerFromEndpoint 

func RegisterRolesHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterRolesHandlerFromEndpoint is same as RegisterRolesHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterRolesHandlerServer 

func RegisterRolesHandlerServer(ctx context.Context, mux *runtime.ServeMux, server RolesServer) error

RegisterRolesHandlerServer registers the http handlers for service Roles to "mux". UnaryRPC :call RolesServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterRolesHandlerFromEndpoint instead.

func RegisterRolesServer 

func RegisterRolesServer(s grpc.ServiceRegistrar, srv RolesServer)

func RegisterSigstoreServiceHandler 

func RegisterSigstoreServiceHandler(ctx context.Context, mux *runtime.ServeMux, conn *grpc.ClientConn) error

RegisterSigstoreServiceHandler registers the http handlers for service SigstoreService to "mux". The handlers forward requests to the grpc endpoint over "conn".

func RegisterSigstoreServiceHandlerClient 

func RegisterSigstoreServiceHandlerClient(ctx context.Context, mux *runtime.ServeMux, client SigstoreServiceClient) error

RegisterSigstoreServiceHandlerClient registers the http handlers for service SigstoreService to "mux". The handlers forward requests to the grpc endpoint over the given implementation of "SigstoreServiceClient". Note: the gRPC framework executes interceptors within the gRPC handler. If the passed in "SigstoreServiceClient" doesn't go through the normal gRPC flow (creating a gRPC client etc.) then it will be up to the passed in "SigstoreServiceClient" to call the correct interceptors.

func RegisterSigstoreServiceHandlerFromEndpoint 

func RegisterSigstoreServiceHandlerFromEndpoint(ctx context.Context, mux *runtime.ServeMux, endpoint string, opts []grpc.DialOption) (err error)

RegisterSigstoreServiceHandlerFromEndpoint is same as RegisterSigstoreServiceHandler but automatically dials to "endpoint" and closes the connection when "ctx" gets done.

func RegisterSigstoreServiceHandlerServer 

func RegisterSigstoreServiceHandlerServer(ctx context.Context, mux *runtime.ServeMux, server SigstoreServiceServer) error

RegisterSigstoreServiceHandlerServer registers the http handlers for service SigstoreService to "mux". UnaryRPC :call SigstoreServiceServer directly. StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. Note that using this registration option will cause many gRPC library features to stop working. Consider using RegisterSigstoreServiceHandlerFromEndpoint instead.

func RegisterSigstoreServiceServer 

func RegisterSigstoreServiceServer(s grpc.ServiceRegistrar, srv SigstoreServiceServer)

Types

type AccountAssociations 

type AccountAssociations struct {

	// group is the group with which this account information is associated.
	Group string `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
	// amazon holds information associating an Amazon account with the group.
	Amazon *AccountAssociations_Amazon `protobuf:"bytes,2,opt,name=amazon,proto3" json:"amazon,omitempty"`
	// google holds information associating a Google project with the group.
	Google *AccountAssociations_Google `protobuf:"bytes,3,opt,name=google,proto3" json:"google,omitempty"`
	// github holds information associating a GitHub installation with the group.
	// Note: this AccountAssociation type is EXPERIMENTAL.
	Github     *AccountAssociations_GitHubInstallation `protobuf:"bytes,6,opt,name=github,proto3" json:"github,omitempty"`
	Chainguard *AccountAssociations_Chainguard         `protobuf:"bytes,7,opt,name=chainguard,proto3" json:"chainguard,omitempty"`
	// name of the association.
	Name string `protobuf:"bytes,4,opt,name=name,proto3" json:"name,omitempty"`
	// a short description of this association.
	Description string `protobuf:"bytes,5,opt,name=description,proto3" json:"description,omitempty"`
	// contains filtered or unexported fields
}

func (*AccountAssociations) CloudEventsExtension 

func (x *AccountAssociations) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*AccountAssociations) CloudEventsSubject 

func (x *AccountAssociations) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*AccountAssociations) Descriptor deprecated 

func (*AccountAssociations) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociations.ProtoReflect.Descriptor instead.

func (*AccountAssociations) GetAmazon 

func (x *AccountAssociations) GetAmazon() *AccountAssociations_Amazon

func (*AccountAssociations) GetChainguard 

func (x *AccountAssociations) GetChainguard() *AccountAssociations_Chainguard

func (*AccountAssociations) GetDescription 

func (x *AccountAssociations) GetDescription() string

func (*AccountAssociations) GetGithub 

func (x *AccountAssociations) GetGithub() *AccountAssociations_GitHubInstallation

func (*AccountAssociations) GetGoogle 

func (x *AccountAssociations) GetGoogle() *AccountAssociations_Google

func (*AccountAssociations) GetGroup 

func (x *AccountAssociations) GetGroup() string

func (*AccountAssociations) GetName 

func (x *AccountAssociations) GetName() string

func (*AccountAssociations) ProtoMessage 

func (*AccountAssociations) ProtoMessage()

func (*AccountAssociations) ProtoReflect 

func (x *AccountAssociations) ProtoReflect() protoreflect.Message

func (*AccountAssociations) Reset 

func (x *AccountAssociations) Reset()

func (*AccountAssociations) String 

func (x *AccountAssociations) String() string

type AccountAssociationsCheckRequest 

type AccountAssociationsCheckRequest struct {

	// group is the exact UIDP of the group whose associations we want to check
	Group       string                                      `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
	AccountType AccountAssociationsCheckRequest_AccountType `` /* 168-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*AccountAssociationsCheckRequest) Descriptor deprecated 

func (*AccountAssociationsCheckRequest) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociationsCheckRequest.ProtoReflect.Descriptor instead.

func (*AccountAssociationsCheckRequest) GetAccountType 

func (x *AccountAssociationsCheckRequest) GetAccountType() AccountAssociationsCheckRequest_AccountType

func (*AccountAssociationsCheckRequest) GetGroup 

func (x *AccountAssociationsCheckRequest) GetGroup() string

func (*AccountAssociationsCheckRequest) ProtoMessage 

func (*AccountAssociationsCheckRequest) ProtoMessage()

func (*AccountAssociationsCheckRequest) ProtoReflect 

func (x *AccountAssociationsCheckRequest) ProtoReflect() protoreflect.Message

func (*AccountAssociationsCheckRequest) Reset 

func (x *AccountAssociationsCheckRequest) Reset()

func (*AccountAssociationsCheckRequest) String 

func (x *AccountAssociationsCheckRequest) String() string

type AccountAssociationsCheckRequest_AccountType 

type AccountAssociationsCheckRequest_AccountType int32
const (
	AccountAssociationsCheckRequest_UNKNOWN AccountAssociationsCheckRequest_AccountType = 0
	AccountAssociationsCheckRequest_GOOGLE  AccountAssociationsCheckRequest_AccountType = 1
	AccountAssociationsCheckRequest_AMAZON  AccountAssociationsCheckRequest_AccountType = 2
)

func (AccountAssociationsCheckRequest_AccountType) Descriptor 

func (AccountAssociationsCheckRequest_AccountType) Descriptor() protoreflect.EnumDescriptor

func (AccountAssociationsCheckRequest_AccountType) Enum 

func (x AccountAssociationsCheckRequest_AccountType) Enum() *AccountAssociationsCheckRequest_AccountType

func (AccountAssociationsCheckRequest_AccountType) EnumDescriptor deprecated 

func (AccountAssociationsCheckRequest_AccountType) EnumDescriptor() ([]byte, []int)

Deprecated: Use AccountAssociationsCheckRequest_AccountType.Descriptor instead.

func (AccountAssociationsCheckRequest_AccountType) Number 

func (x AccountAssociationsCheckRequest_AccountType) Number() protoreflect.EnumNumber

func (AccountAssociationsCheckRequest_AccountType) String 

func (x AccountAssociationsCheckRequest_AccountType) String() string

func (AccountAssociationsCheckRequest_AccountType) Type 

func (AccountAssociationsCheckRequest_AccountType) Type() protoreflect.EnumType

type AccountAssociationsFilter 

type AccountAssociationsFilter struct {

	// group is the exact UIDP of the group whose associations we want to list.
	Group string `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
	// name is the exact name of the association.
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

func (*AccountAssociationsFilter) Descriptor deprecated 

func (*AccountAssociationsFilter) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociationsFilter.ProtoReflect.Descriptor instead.

func (*AccountAssociationsFilter) GetGroup 

func (x *AccountAssociationsFilter) GetGroup() string

func (*AccountAssociationsFilter) GetName 

func (x *AccountAssociationsFilter) GetName() string

func (*AccountAssociationsFilter) ProtoMessage 

func (*AccountAssociationsFilter) ProtoMessage()

func (*AccountAssociationsFilter) ProtoReflect 

func (x *AccountAssociationsFilter) ProtoReflect() protoreflect.Message

func (*AccountAssociationsFilter) Reset 

func (x *AccountAssociationsFilter) Reset()

func (*AccountAssociationsFilter) String 

func (x *AccountAssociationsFilter) String() string

type AccountAssociationsList 

type AccountAssociationsList struct {
	Items []*AccountAssociations `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*AccountAssociationsList) Descriptor deprecated 

func (*AccountAssociationsList) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociationsList.ProtoReflect.Descriptor instead.

func (*AccountAssociationsList) GetItems 

func (x *AccountAssociationsList) GetItems() []*AccountAssociations

func (*AccountAssociationsList) ProtoMessage 

func (*AccountAssociationsList) ProtoMessage()

func (*AccountAssociationsList) ProtoReflect 

func (x *AccountAssociationsList) ProtoReflect() protoreflect.Message

func (*AccountAssociationsList) Reset 

func (x *AccountAssociationsList) Reset()

func (*AccountAssociationsList) String 

func (x *AccountAssociationsList) String() string

type AccountAssociationsStatus 

type AccountAssociationsStatus struct {
	Ready   AccountAssociationsStatus_State `protobuf:"varint,1,opt,name=ready,proto3,enum=chainguard.platform.iam.AccountAssociationsStatus_State" json:"ready,omitempty"`
	Reason  string                          `protobuf:"bytes,2,opt,name=reason,proto3" json:"reason,omitempty"`
	Message string                          `protobuf:"bytes,3,opt,name=message,proto3" json:"message,omitempty"`
	// contains filtered or unexported fields
}

func (*AccountAssociationsStatus) Descriptor deprecated 

func (*AccountAssociationsStatus) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociationsStatus.ProtoReflect.Descriptor instead.

func (*AccountAssociationsStatus) GetMessage 

func (x *AccountAssociationsStatus) GetMessage() string

func (*AccountAssociationsStatus) GetReady 

func (x *AccountAssociationsStatus) GetReady() AccountAssociationsStatus_State

func (*AccountAssociationsStatus) GetReason 

func (x *AccountAssociationsStatus) GetReason() string

func (*AccountAssociationsStatus) ProtoMessage 

func (*AccountAssociationsStatus) ProtoMessage()

func (*AccountAssociationsStatus) ProtoReflect 

func (x *AccountAssociationsStatus) ProtoReflect() protoreflect.Message

func (*AccountAssociationsStatus) Reset 

func (x *AccountAssociationsStatus) Reset()

func (*AccountAssociationsStatus) String 

func (x *AccountAssociationsStatus) String() string

type AccountAssociationsStatus_State 

type AccountAssociationsStatus_State int32
const (
	AccountAssociationsStatus_UNKNOWN  AccountAssociationsStatus_State = 0
	AccountAssociationsStatus_Ready    AccountAssociationsStatus_State = 1
	AccountAssociationsStatus_NotReady AccountAssociationsStatus_State = 2
)

func (AccountAssociationsStatus_State) Descriptor 

func (AccountAssociationsStatus_State) Descriptor() protoreflect.EnumDescriptor

func (AccountAssociationsStatus_State) Enum 

func (x AccountAssociationsStatus_State) Enum() *AccountAssociationsStatus_State

func (AccountAssociationsStatus_State) EnumDescriptor deprecated 

func (AccountAssociationsStatus_State) EnumDescriptor() ([]byte, []int)

Deprecated: Use AccountAssociationsStatus_State.Descriptor instead.

func (AccountAssociationsStatus_State) Number 

func (x AccountAssociationsStatus_State) Number() protoreflect.EnumNumber

func (AccountAssociationsStatus_State) String 

func (x AccountAssociationsStatus_State) String() string

func (AccountAssociationsStatus_State) Type 

func (AccountAssociationsStatus_State) Type() protoreflect.EnumType

type AccountAssociations_Amazon 

type AccountAssociations_Amazon struct {
	Account string `protobuf:"bytes,1,opt,name=account,proto3" json:"account,omitempty"`
	// contains filtered or unexported fields
}

func (*AccountAssociations_Amazon) Descriptor deprecated 

func (*AccountAssociations_Amazon) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociations_Amazon.ProtoReflect.Descriptor instead.

func (*AccountAssociations_Amazon) GetAccount 

func (x *AccountAssociations_Amazon) GetAccount() string

func (*AccountAssociations_Amazon) ProtoMessage 

func (*AccountAssociations_Amazon) ProtoMessage()

func (*AccountAssociations_Amazon) ProtoReflect 

func (x *AccountAssociations_Amazon) ProtoReflect() protoreflect.Message

func (*AccountAssociations_Amazon) Reset 

func (x *AccountAssociations_Amazon) Reset()

func (*AccountAssociations_Amazon) String 

func (x *AccountAssociations_Amazon) String() string

type AccountAssociations_Chainguard 

type AccountAssociations_Chainguard struct {

	// service_bindings map from the Chainguard service principal to the
	// UIDP of the identity that service should assume. Constraints:
	// - The identity must live directly under "group",
	// - The identity must be a service_principal,
	// - The service_principal of the identity must match the key of this map.
	// Note that the key space of this must match the ServicePrincipal enum,
	// but the enum type itself cannot be used here because of:
	// https://groups.google.com/g/protobuf/c/ikeldBe60eI
	ServiceBindings map[string]string `` /* 194-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*AccountAssociations_Chainguard) Descriptor deprecated 

func (*AccountAssociations_Chainguard) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociations_Chainguard.ProtoReflect.Descriptor instead.

func (*AccountAssociations_Chainguard) GetServiceBindings 

func (x *AccountAssociations_Chainguard) GetServiceBindings() map[string]string

func (*AccountAssociations_Chainguard) ProtoMessage 

func (*AccountAssociations_Chainguard) ProtoMessage()

func (*AccountAssociations_Chainguard) ProtoReflect 

func (x *AccountAssociations_Chainguard) ProtoReflect() protoreflect.Message

func (*AccountAssociations_Chainguard) Reset 

func (x *AccountAssociations_Chainguard) Reset()

func (*AccountAssociations_Chainguard) String 

func (x *AccountAssociations_Chainguard) String() string

type AccountAssociations_GitHubInstallation 

type AccountAssociations_GitHubInstallation struct {

	// GitHub hostname app is associated with. Output only.
	Host string `protobuf:"bytes,1,opt,name=host,proto3" json:"host,omitempty"`
	// GitHub App ID. Output only.
	AppId int64 `protobuf:"varint,2,opt,name=app_id,json=appId,proto3" json:"app_id,omitempty"`
	// GitHub App Installation ID. Takes precedence over name.
	InstallationId int64 `protobuf:"varint,3,opt,name=installation_id,json=installationId,proto3" json:"installation_id,omitempty"`
	// GitHub user/org name the installation is installed on.
	Name string `protobuf:"bytes,4,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

func (*AccountAssociations_GitHubInstallation) Descriptor deprecated 

func (*AccountAssociations_GitHubInstallation) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociations_GitHubInstallation.ProtoReflect.Descriptor instead.

func (*AccountAssociations_GitHubInstallation) GetAppId 

func (x *AccountAssociations_GitHubInstallation) GetAppId() int64

func (*AccountAssociations_GitHubInstallation) GetHost 

func (x *AccountAssociations_GitHubInstallation) GetHost() string

func (*AccountAssociations_GitHubInstallation) GetInstallationId 

func (x *AccountAssociations_GitHubInstallation) GetInstallationId() int64

func (*AccountAssociations_GitHubInstallation) GetName 

func (x *AccountAssociations_GitHubInstallation) GetName() string

func (*AccountAssociations_GitHubInstallation) ProtoMessage 

func (*AccountAssociations_GitHubInstallation) ProtoMessage()

func (*AccountAssociations_GitHubInstallation) ProtoReflect 

func (x *AccountAssociations_GitHubInstallation) ProtoReflect() protoreflect.Message

func (*AccountAssociations_GitHubInstallation) Reset 

func (x *AccountAssociations_GitHubInstallation) Reset()

func (*AccountAssociations_GitHubInstallation) String 

func (x *AccountAssociations_GitHubInstallation) String() string

type AccountAssociations_Google 

type AccountAssociations_Google struct {
	ProjectId     string `protobuf:"bytes,1,opt,name=project_id,json=projectId,proto3" json:"project_id,omitempty"`
	ProjectNumber string `protobuf:"bytes,2,opt,name=project_number,json=projectNumber,proto3" json:"project_number,omitempty"`
	// contains filtered or unexported fields
}

func (*AccountAssociations_Google) Descriptor deprecated 

func (*AccountAssociations_Google) Descriptor() ([]byte, []int)

Deprecated: Use AccountAssociations_Google.ProtoReflect.Descriptor instead.

func (*AccountAssociations_Google) GetProjectId 

func (x *AccountAssociations_Google) GetProjectId() string

func (*AccountAssociations_Google) GetProjectNumber 

func (x *AccountAssociations_Google) GetProjectNumber() string

func (*AccountAssociations_Google) ProtoMessage 

func (*AccountAssociations_Google) ProtoMessage()

func (*AccountAssociations_Google) ProtoReflect 

func (x *AccountAssociations_Google) ProtoReflect() protoreflect.Message

func (*AccountAssociations_Google) Reset 

func (x *AccountAssociations_Google) Reset()

func (*AccountAssociations_Google) String 

func (x *AccountAssociations_Google) String() string

type ActivateVersionRequest 

type ActivateVersionRequest struct {

	// version_id is the identifier of the policy version to enforce.
	VersionId string `protobuf:"bytes,1,opt,name=version_id,json=versionId,proto3" json:"version_id,omitempty"`
	// contains filtered or unexported fields
}

func (*ActivateVersionRequest) Descriptor deprecated 

func (*ActivateVersionRequest) Descriptor() ([]byte, []int)

Deprecated: Use ActivateVersionRequest.ProtoReflect.Descriptor instead.

func (*ActivateVersionRequest) GetVersionId 

func (x *ActivateVersionRequest) GetVersionId() string

func (*ActivateVersionRequest) ProtoMessage 

func (*ActivateVersionRequest) ProtoMessage()

func (*ActivateVersionRequest) ProtoReflect 

func (x *ActivateVersionRequest) ProtoReflect() protoreflect.Message

func (*ActivateVersionRequest) Reset 

func (x *ActivateVersionRequest) Reset()

func (*ActivateVersionRequest) String 

func (x *ActivateVersionRequest) String() string

type CertificateAuthority 

type CertificateAuthority struct {

	// Types that are assignable to Ca:
	//
	//	*CertificateAuthority_KmsCa
	//	*CertificateAuthority_GoogleCa
	Ca isCertificateAuthority_Ca `protobuf_oneof:"ca"`
	// contains filtered or unexported fields
}

func (*CertificateAuthority) Descriptor deprecated 

func (*CertificateAuthority) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority.ProtoReflect.Descriptor instead.

func (*CertificateAuthority) GetCa 

func (m *CertificateAuthority) GetCa() isCertificateAuthority_Ca

func (*CertificateAuthority) GetGoogleCa 

func (x *CertificateAuthority) GetGoogleCa() *GoogleCA

func (*CertificateAuthority) GetKmsCa 

func (x *CertificateAuthority) GetKmsCa() *KMSCA

func (*CertificateAuthority) ProtoMessage 

func (*CertificateAuthority) ProtoMessage()

func (*CertificateAuthority) ProtoReflect 

func (x *CertificateAuthority) ProtoReflect() protoreflect.Message

func (*CertificateAuthority) Reset 

func (x *CertificateAuthority) Reset()

func (*CertificateAuthority) String 

func (x *CertificateAuthority) String() string

type CertificateAuthority_GoogleCa 

type CertificateAuthority_GoogleCa struct {
	// google_ca is the Google Certificate Authority service
	GoogleCa *GoogleCA `protobuf:"bytes,2,opt,name=google_ca,json=googleCa,proto3,oneof"`
}

type CertificateAuthority_KmsCa 

type CertificateAuthority_KmsCa struct {
	// kmsca is a KMS-based CA that requires a root cert and KMS signing key
	KmsCa *KMSCA `protobuf:"bytes,1,opt,name=kms_ca,json=kmsCa,proto3,oneof"`
}

type Clients 

type Clients interface {
	Groups() GroupsClient
	GroupInvites() GroupInvitesClient
	Roles() RolesClient
	RoleBindings() RoleBindingsClient

	Identities() IdentitiesClient
	DeprecatedIdentities() events.IdentitiesClient
	IdentityProviders() IdentityProvidersClient

	AccountAssociations() GroupAccountAssociationsClient

	Subscriptions() events.SubscriptionsClient

	Policies() PoliciesClient

	Sigstore() SigstoreServiceClient

	Close() error
}

func NewClients 

func NewClients(ctx context.Context, iamURL string, token string) (Clients, error)

func NewClientsFromConnection 

func NewClientsFromConnection(conn *grpc.ClientConn) Clients

type CreateGroupRequest 

type CreateGroupRequest struct {

	// parent, The Group UIDP path under which the new Group resides.
	// This is effectively the iam_scope for Create requests, but because
	// we also allow users to create new "root" groups, we check the scoping
	// manually. Parent is allowed to be a prefix of a UIDP of a Group within
	// scope, or the name of a Group in scope.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// Group to create.
	Group *Group `protobuf:"bytes,2,opt,name=group,proto3" json:"group,omitempty"`
	// contains filtered or unexported fields
}

func (*CreateGroupRequest) Descriptor deprecated 

func (*CreateGroupRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateGroupRequest.ProtoReflect.Descriptor instead.

func (*CreateGroupRequest) GetGroup 

func (x *CreateGroupRequest) GetGroup() *Group

func (*CreateGroupRequest) GetParent 

func (x *CreateGroupRequest) GetParent() string

func (*CreateGroupRequest) ProtoMessage 

func (*CreateGroupRequest) ProtoMessage()

func (*CreateGroupRequest) ProtoReflect 

func (x *CreateGroupRequest) ProtoReflect() protoreflect.Message

func (*CreateGroupRequest) Reset 

func (x *CreateGroupRequest) Reset()

func (*CreateGroupRequest) String 

func (x *CreateGroupRequest) String() string

type CreateIdentityProviderRequest 

type CreateIdentityProviderRequest struct {

	// parent_id is the exact UIDP of the IAM group to nest this identity provider under
	ParentId         string            `protobuf:"bytes,1,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"`
	IdentityProvider *IdentityProvider `protobuf:"bytes,2,opt,name=identity_provider,json=identityProvider,proto3" json:"identity_provider,omitempty"`
	// contains filtered or unexported fields
}

func (*CreateIdentityProviderRequest) Descriptor deprecated 

func (*CreateIdentityProviderRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateIdentityProviderRequest.ProtoReflect.Descriptor instead.

func (*CreateIdentityProviderRequest) GetIdentityProvider 

func (x *CreateIdentityProviderRequest) GetIdentityProvider() *IdentityProvider

func (*CreateIdentityProviderRequest) GetParentId 

func (x *CreateIdentityProviderRequest) GetParentId() string

func (*CreateIdentityProviderRequest) ProtoMessage 

func (*CreateIdentityProviderRequest) ProtoMessage()

func (*CreateIdentityProviderRequest) ProtoReflect 

func (x *CreateIdentityProviderRequest) ProtoReflect() protoreflect.Message

func (*CreateIdentityProviderRequest) Reset 

func (x *CreateIdentityProviderRequest) Reset()

func (*CreateIdentityProviderRequest) String 

func (x *CreateIdentityProviderRequest) String() string

type CreateIdentityRequest 

type CreateIdentityRequest struct {

	// parent_id, The Group UIDP path under which the new Identity resides.
	ParentId string `protobuf:"bytes,1,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"`
	// Identity to create.
	Identity *Identity `protobuf:"bytes,2,opt,name=identity,proto3" json:"identity,omitempty"`
	// contains filtered or unexported fields
}

func (*CreateIdentityRequest) Descriptor deprecated 

func (*CreateIdentityRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateIdentityRequest.ProtoReflect.Descriptor instead.

func (*CreateIdentityRequest) GetIdentity 

func (x *CreateIdentityRequest) GetIdentity() *Identity

func (*CreateIdentityRequest) GetParentId 

func (x *CreateIdentityRequest) GetParentId() string

func (*CreateIdentityRequest) ProtoMessage 

func (*CreateIdentityRequest) ProtoMessage()

func (*CreateIdentityRequest) ProtoReflect 

func (x *CreateIdentityRequest) ProtoReflect() protoreflect.Message

func (*CreateIdentityRequest) Reset 

func (x *CreateIdentityRequest) Reset()

func (*CreateIdentityRequest) String 

func (x *CreateIdentityRequest) String() string

type CreatePolicyRequest 

type CreatePolicyRequest struct {

	// parent_id, The Group UIDP path under which the new policy is associated.
	ParentId string `protobuf:"bytes,1,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"`
	// Policy is the policy to create;
	Policy *Policy `protobuf:"bytes,2,opt,name=policy,proto3" json:"policy,omitempty"`
	// contains filtered or unexported fields
}

func (*CreatePolicyRequest) Descriptor deprecated 

func (*CreatePolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreatePolicyRequest.ProtoReflect.Descriptor instead.

func (*CreatePolicyRequest) GetParentId 

func (x *CreatePolicyRequest) GetParentId() string

func (*CreatePolicyRequest) GetPolicy 

func (x *CreatePolicyRequest) GetPolicy() *Policy

func (*CreatePolicyRequest) ProtoMessage 

func (*CreatePolicyRequest) ProtoMessage()

func (*CreatePolicyRequest) ProtoReflect 

func (x *CreatePolicyRequest) ProtoReflect() protoreflect.Message

func (*CreatePolicyRequest) Reset 

func (x *CreatePolicyRequest) Reset()

func (*CreatePolicyRequest) String 

func (x *CreatePolicyRequest) String() string

type CreateRoleBindingRequest 

type CreateRoleBindingRequest struct {

	// parent, The Group UIDP path under which the new RoleBinding resides.
	Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
	// RoleBinding to create.
	RoleBinding *RoleBinding `protobuf:"bytes,2,opt,name=role_binding,json=roleBinding,proto3" json:"role_binding,omitempty"`
	// contains filtered or unexported fields
}

func (*CreateRoleBindingRequest) Descriptor deprecated 

func (*CreateRoleBindingRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateRoleBindingRequest.ProtoReflect.Descriptor instead.

func (*CreateRoleBindingRequest) GetParent 

func (x *CreateRoleBindingRequest) GetParent() string

func (*CreateRoleBindingRequest) GetRoleBinding 

func (x *CreateRoleBindingRequest) GetRoleBinding() *RoleBinding

func (*CreateRoleBindingRequest) ProtoMessage 

func (*CreateRoleBindingRequest) ProtoMessage()

func (*CreateRoleBindingRequest) ProtoReflect 

func (x *CreateRoleBindingRequest) ProtoReflect() protoreflect.Message

func (*CreateRoleBindingRequest) Reset 

func (x *CreateRoleBindingRequest) Reset()

func (*CreateRoleBindingRequest) String 

func (x *CreateRoleBindingRequest) String() string

type CreateRoleRequest 

type CreateRoleRequest struct {

	// parent_id, The Group UIDP path under which the new Role resides.
	ParentId string `protobuf:"bytes,1,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"`
	// Role to create.
	Role *Role `protobuf:"bytes,2,opt,name=role,proto3" json:"role,omitempty"`
	// contains filtered or unexported fields
}

func (*CreateRoleRequest) Descriptor deprecated 

func (*CreateRoleRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateRoleRequest.ProtoReflect.Descriptor instead.

func (*CreateRoleRequest) GetParentId 

func (x *CreateRoleRequest) GetParentId() string

func (*CreateRoleRequest) GetRole 

func (x *CreateRoleRequest) GetRole() *Role

func (*CreateRoleRequest) ProtoMessage 

func (*CreateRoleRequest) ProtoMessage()

func (*CreateRoleRequest) ProtoReflect 

func (x *CreateRoleRequest) ProtoReflect() protoreflect.Message

func (*CreateRoleRequest) Reset 

func (x *CreateRoleRequest) Reset()

func (*CreateRoleRequest) String 

func (x *CreateRoleRequest) String() string

type CreateSigstoreRequest 

type CreateSigstoreRequest struct {

	// parent_id, The Group UIDP path under which the new sigstore instance is associated.
	ParentId string `protobuf:"bytes,1,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"`
	// Sigstore is the sigstore instance to create;
	Sigstore *Sigstore `protobuf:"bytes,2,opt,name=sigstore,proto3" json:"sigstore,omitempty"`
	// contains filtered or unexported fields
}

func (*CreateSigstoreRequest) Descriptor deprecated 

func (*CreateSigstoreRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateSigstoreRequest.ProtoReflect.Descriptor instead.

func (*CreateSigstoreRequest) GetParentId 

func (x *CreateSigstoreRequest) GetParentId() string

func (*CreateSigstoreRequest) GetSigstore 

func (x *CreateSigstoreRequest) GetSigstore() *Sigstore

func (*CreateSigstoreRequest) ProtoMessage 

func (*CreateSigstoreRequest) ProtoMessage()

func (*CreateSigstoreRequest) ProtoReflect 

func (x *CreateSigstoreRequest) ProtoReflect() protoreflect.Message

func (*CreateSigstoreRequest) Reset 

func (x *CreateSigstoreRequest) Reset()

func (*CreateSigstoreRequest) String 

func (x *CreateSigstoreRequest) String() string

type DeleteAccountAssociationsRequest 

type DeleteAccountAssociationsRequest struct {

	// group is the exact UIDP of the group whose associations we want to delete.
	Group string `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteAccountAssociationsRequest) CloudEventsExtension 

func (x *DeleteAccountAssociationsRequest) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*DeleteAccountAssociationsRequest) CloudEventsRedact 

func (x *DeleteAccountAssociationsRequest) CloudEventsRedact() interface{}

CloudEventsRedact implements chainguard.dev/sdk/events/Redactable.Redact.

func (*DeleteAccountAssociationsRequest) CloudEventsSubject 

func (x *DeleteAccountAssociationsRequest) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*DeleteAccountAssociationsRequest) Descriptor deprecated 

func (*DeleteAccountAssociationsRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteAccountAssociationsRequest.ProtoReflect.Descriptor instead.

func (*DeleteAccountAssociationsRequest) GetGroup 

func (x *DeleteAccountAssociationsRequest) GetGroup() string

func (*DeleteAccountAssociationsRequest) ProtoMessage 

func (*DeleteAccountAssociationsRequest) ProtoMessage()

func (*DeleteAccountAssociationsRequest) ProtoReflect 

func (x *DeleteAccountAssociationsRequest) ProtoReflect() protoreflect.Message

func (*DeleteAccountAssociationsRequest) Reset 

func (x *DeleteAccountAssociationsRequest) Reset()

func (*DeleteAccountAssociationsRequest) String 

func (x *DeleteAccountAssociationsRequest) String() string

type DeleteGroupInviteRequest 

type DeleteGroupInviteRequest struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteGroupInviteRequest) CloudEventsExtension 

func (x *DeleteGroupInviteRequest) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*DeleteGroupInviteRequest) CloudEventsSubject 

func (x *DeleteGroupInviteRequest) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*DeleteGroupInviteRequest) Descriptor deprecated 

func (*DeleteGroupInviteRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteGroupInviteRequest.ProtoReflect.Descriptor instead.

func (*DeleteGroupInviteRequest) GetId 

func (x *DeleteGroupInviteRequest) GetId() string

func (*DeleteGroupInviteRequest) ProtoMessage 

func (*DeleteGroupInviteRequest) ProtoMessage()

func (*DeleteGroupInviteRequest) ProtoReflect 

func (x *DeleteGroupInviteRequest) ProtoReflect() protoreflect.Message

func (*DeleteGroupInviteRequest) Reset 

func (x *DeleteGroupInviteRequest) Reset()

func (*DeleteGroupInviteRequest) String 

func (x *DeleteGroupInviteRequest) String() string

type DeleteGroupRequest 

type DeleteGroupRequest struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteGroupRequest) CloudEventsExtension 

func (x *DeleteGroupRequest) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*DeleteGroupRequest) CloudEventsSubject 

func (x *DeleteGroupRequest) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*DeleteGroupRequest) Descriptor deprecated 

func (*DeleteGroupRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteGroupRequest.ProtoReflect.Descriptor instead.

func (*DeleteGroupRequest) GetId 

func (x *DeleteGroupRequest) GetId() string

func (*DeleteGroupRequest) ProtoMessage 

func (*DeleteGroupRequest) ProtoMessage()

func (*DeleteGroupRequest) ProtoReflect 

func (x *DeleteGroupRequest) ProtoReflect() protoreflect.Message

func (*DeleteGroupRequest) Reset 

func (x *DeleteGroupRequest) Reset()

func (*DeleteGroupRequest) String 

func (x *DeleteGroupRequest) String() string

type DeleteIdentityProviderRequest 

type DeleteIdentityProviderRequest struct {

	// id is the exact UIDP of the IdP
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteIdentityProviderRequest) CloudEventsExtension 

func (x *DeleteIdentityProviderRequest) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*DeleteIdentityProviderRequest) CloudEventsSubject 

func (x *DeleteIdentityProviderRequest) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*DeleteIdentityProviderRequest) Descriptor deprecated 

func (*DeleteIdentityProviderRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteIdentityProviderRequest.ProtoReflect.Descriptor instead.

func (*DeleteIdentityProviderRequest) GetId 

func (x *DeleteIdentityProviderRequest) GetId() string

func (*DeleteIdentityProviderRequest) ProtoMessage 

func (*DeleteIdentityProviderRequest) ProtoMessage()

func (*DeleteIdentityProviderRequest) ProtoReflect 

func (x *DeleteIdentityProviderRequest) ProtoReflect() protoreflect.Message

func (*DeleteIdentityProviderRequest) Reset 

func (x *DeleteIdentityProviderRequest) Reset()

func (*DeleteIdentityProviderRequest) String 

func (x *DeleteIdentityProviderRequest) String() string

type DeleteIdentityRequest 

type DeleteIdentityRequest struct {

	// ID, UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteIdentityRequest) CloudEventsExtension 

func (x *DeleteIdentityRequest) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*DeleteIdentityRequest) CloudEventsSubject 

func (x *DeleteIdentityRequest) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*DeleteIdentityRequest) Descriptor deprecated 

func (*DeleteIdentityRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteIdentityRequest.ProtoReflect.Descriptor instead.

func (*DeleteIdentityRequest) GetId 

func (x *DeleteIdentityRequest) GetId() string

func (*DeleteIdentityRequest) ProtoMessage 

func (*DeleteIdentityRequest) ProtoMessage()

func (*DeleteIdentityRequest) ProtoReflect 

func (x *DeleteIdentityRequest) ProtoReflect() protoreflect.Message

func (*DeleteIdentityRequest) Reset 

func (x *DeleteIdentityRequest) Reset()

func (*DeleteIdentityRequest) String 

func (x *DeleteIdentityRequest) String() string

type DeletePolicyRequest 

type DeletePolicyRequest struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeletePolicyRequest) CloudEventsExtension 

func (x *DeletePolicyRequest) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*DeletePolicyRequest) CloudEventsRedact 

func (x *DeletePolicyRequest) CloudEventsRedact() interface{}

CloudEventsRedact implements chainguard.dev/sdk/events/Redactable.Redact.

func (*DeletePolicyRequest) CloudEventsSubject 

func (x *DeletePolicyRequest) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*DeletePolicyRequest) Descriptor deprecated 

func (*DeletePolicyRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeletePolicyRequest.ProtoReflect.Descriptor instead.

func (*DeletePolicyRequest) GetId 

func (x *DeletePolicyRequest) GetId() string

func (*DeletePolicyRequest) ProtoMessage 

func (*DeletePolicyRequest) ProtoMessage()

func (*DeletePolicyRequest) ProtoReflect 

func (x *DeletePolicyRequest) ProtoReflect() protoreflect.Message

func (*DeletePolicyRequest) Reset 

func (x *DeletePolicyRequest) Reset()

func (*DeletePolicyRequest) String 

func (x *DeletePolicyRequest) String() string

type DeleteRoleBindingRequest 

type DeleteRoleBindingRequest struct {

	// id is the exact UID of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteRoleBindingRequest) CloudEventsExtension 

func (x *DeleteRoleBindingRequest) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*DeleteRoleBindingRequest) CloudEventsSubject 

func (x *DeleteRoleBindingRequest) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*DeleteRoleBindingRequest) Descriptor deprecated 

func (*DeleteRoleBindingRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteRoleBindingRequest.ProtoReflect.Descriptor instead.

func (*DeleteRoleBindingRequest) GetId 

func (x *DeleteRoleBindingRequest) GetId() string

func (*DeleteRoleBindingRequest) ProtoMessage 

func (*DeleteRoleBindingRequest) ProtoMessage()

func (*DeleteRoleBindingRequest) ProtoReflect 

func (x *DeleteRoleBindingRequest) ProtoReflect() protoreflect.Message

func (*DeleteRoleBindingRequest) Reset 

func (x *DeleteRoleBindingRequest) Reset()

func (*DeleteRoleBindingRequest) String 

func (x *DeleteRoleBindingRequest) String() string

type DeleteRoleRequest 

type DeleteRoleRequest struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteRoleRequest) Descriptor deprecated 

func (*DeleteRoleRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteRoleRequest.ProtoReflect.Descriptor instead.

func (*DeleteRoleRequest) GetId 

func (x *DeleteRoleRequest) GetId() string

func (*DeleteRoleRequest) ProtoMessage 

func (*DeleteRoleRequest) ProtoMessage()

func (*DeleteRoleRequest) ProtoReflect 

func (x *DeleteRoleRequest) ProtoReflect() protoreflect.Message

func (*DeleteRoleRequest) Reset 

func (x *DeleteRoleRequest) Reset()

func (*DeleteRoleRequest) String 

func (x *DeleteRoleRequest) String() string

type DeleteSigstoreRequest 

type DeleteSigstoreRequest struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*DeleteSigstoreRequest) Descriptor deprecated 

func (*DeleteSigstoreRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeleteSigstoreRequest.ProtoReflect.Descriptor instead.

func (*DeleteSigstoreRequest) GetId 

func (x *DeleteSigstoreRequest) GetId() string

func (*DeleteSigstoreRequest) ProtoMessage 

func (*DeleteSigstoreRequest) ProtoMessage()

func (*DeleteSigstoreRequest) ProtoReflect 

func (x *DeleteSigstoreRequest) ProtoReflect() protoreflect.Message

func (*DeleteSigstoreRequest) Reset 

func (x *DeleteSigstoreRequest) Reset()

func (*DeleteSigstoreRequest) String 

func (x *DeleteSigstoreRequest) String() string

type GoogleCA 

type GoogleCA struct {

	// ref is a unique reference to the Google CA service in the format
	// projects/<project>/locations/<location>/<name>
	Ref string `protobuf:"bytes,1,opt,name=ref,proto3" json:"ref,omitempty"`
	// contains filtered or unexported fields
}

func (*GoogleCA) Descriptor deprecated 

func (*GoogleCA) Descriptor() ([]byte, []int)

Deprecated: Use GoogleCA.ProtoReflect.Descriptor instead.

func (*GoogleCA) GetRef 

func (x *GoogleCA) GetRef() string

func (*GoogleCA) ProtoMessage 

func (*GoogleCA) ProtoMessage()

func (*GoogleCA) ProtoReflect 

func (x *GoogleCA) ProtoReflect() protoreflect.Message

func (*GoogleCA) Reset 

func (x *GoogleCA) Reset()

func (*GoogleCA) String 

func (x *GoogleCA) String() string

type Group 

type Group struct {

	// id, The group UIDP under which this group resides.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// name, human readable name of group.
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// description, human readable of group.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// resource_limits indicate the maximum number of resources allowed for this group by type.
	ResourceLimits map[string]int32 `` /* 192-byte string literal not displayed */
	// verified means we've verified the owners of this organization. Restrictions include:
	// - Only organizations (root groups) can be verified
	// - Property can only be set by manually by Chainguardians
	// - If verified is set, the organizations name field must be globally unique
	// - If verified is set the organizations name should be a domain name
	Verified bool `protobuf:"varint,5,opt,name=verified,proto3" json:"verified,omitempty"`
	// contains filtered or unexported fields
}

func (*Group) CloudEventsExtension 

func (x *Group) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*Group) CloudEventsSubject 

func (x *Group) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*Group) Descriptor deprecated 

func (*Group) Descriptor() ([]byte, []int)

Deprecated: Use Group.ProtoReflect.Descriptor instead.

func (*Group) GetDescription 

func (x *Group) GetDescription() string

func (*Group) GetId 

func (x *Group) GetId() string

func (*Group) GetName 

func (x *Group) GetName() string

func (*Group) GetResourceLimits 

func (x *Group) GetResourceLimits() map[string]int32

func (*Group) GetVerified 

func (x *Group) GetVerified() bool

func (*Group) ProtoMessage 

func (*Group) ProtoMessage()

func (*Group) ProtoReflect 

func (x *Group) ProtoReflect() protoreflect.Message

func (*Group) Reset 

func (x *Group) Reset()

func (*Group) String 

func (x *Group) String() string

type GroupAccountAssociationsClient 

type GroupAccountAssociationsClient interface {
	Create(ctx context.Context, in *AccountAssociations, opts ...grpc.CallOption) (*AccountAssociations, error)
	Update(ctx context.Context, in *AccountAssociations, opts ...grpc.CallOption) (*AccountAssociations, error)
	List(ctx context.Context, in *AccountAssociationsFilter, opts ...grpc.CallOption) (*AccountAssociationsList, error)
	Delete(ctx context.Context, in *DeleteAccountAssociationsRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
	Check(ctx context.Context, in *AccountAssociationsCheckRequest, opts ...grpc.CallOption) (*AccountAssociationsStatus, error)
}

GroupAccountAssociationsClient is the client API for GroupAccountAssociations service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewGroupAccountAssociationsClient 

func NewGroupAccountAssociationsClient(cc grpc.ClientConnInterface) GroupAccountAssociationsClient

type GroupAccountAssociationsServer 

type GroupAccountAssociationsServer interface {
	Create(context.Context, *AccountAssociations) (*AccountAssociations, error)
	Update(context.Context, *AccountAssociations) (*AccountAssociations, error)
	List(context.Context, *AccountAssociationsFilter) (*AccountAssociationsList, error)
	Delete(context.Context, *DeleteAccountAssociationsRequest) (*emptypb.Empty, error)
	Check(context.Context, *AccountAssociationsCheckRequest) (*AccountAssociationsStatus, error)
	// contains filtered or unexported methods
}

GroupAccountAssociationsServer is the server API for GroupAccountAssociations service. All implementations must embed UnimplementedGroupAccountAssociationsServer for forward compatibility

type GroupFilter 

type GroupFilter struct {

	// id is the exact UID of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// uidp filters records based on their position in the group hierarchy.
	Uidp *v1.UIDPFilter `protobuf:"bytes,2,opt,name=uidp,proto3" json:"uidp,omitempty"`
	// name is the exact name of the record.
	Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

func (*GroupFilter) Descriptor deprecated 

func (*GroupFilter) Descriptor() ([]byte, []int)

Deprecated: Use GroupFilter.ProtoReflect.Descriptor instead.

func (*GroupFilter) GetId 

func (x *GroupFilter) GetId() string

func (*GroupFilter) GetName 

func (x *GroupFilter) GetName() string

func (*GroupFilter) GetUidp 

func (x *GroupFilter) GetUidp() *v1.UIDPFilter

func (*GroupFilter) ProtoMessage 

func (*GroupFilter) ProtoMessage()

func (*GroupFilter) ProtoReflect 

func (x *GroupFilter) ProtoReflect() protoreflect.Message

func (*GroupFilter) Reset 

func (x *GroupFilter) Reset()

func (*GroupFilter) String 

func (x *GroupFilter) String() string

type GroupInvite 

type GroupInvite struct {

	// id, The group UIDP under which this invite resides.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// expiration, timestamp this invite becomes no longer valid.
	Expiration *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=expiration,proto3" json:"expiration,omitempty"`
	// key_id is used to identify the verification key for this code.
	KeyId string `protobuf:"bytes,3,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
	// role is the role the invited identity will be role-bound to the group with.
	Role *Role `protobuf:"bytes,4,opt,name=role,proto3" json:"role,omitempty"`
	// code is the json-encoded authentication code.
	Code string `protobuf:"bytes,5,opt,name=code,proto3" json:"code,omitempty"`
	// contains filtered or unexported fields
}

func (*GroupInvite) CloudEventsExtension 

func (x *GroupInvite) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*GroupInvite) CloudEventsRedact 

func (x *GroupInvite) CloudEventsRedact() interface{}

CloudEventsRedact implements chainguard.dev/sdk/events/Redactable.CloudEventsRedact.

func (*GroupInvite) CloudEventsSubject 

func (x *GroupInvite) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*GroupInvite) Descriptor deprecated 

func (*GroupInvite) Descriptor() ([]byte, []int)

Deprecated: Use GroupInvite.ProtoReflect.Descriptor instead.

func (*GroupInvite) GetCode 

func (x *GroupInvite) GetCode() string

func (*GroupInvite) GetExpiration 

func (x *GroupInvite) GetExpiration() *timestamppb.Timestamp

func (*GroupInvite) GetId 

func (x *GroupInvite) GetId() string

func (*GroupInvite) GetKeyId 

func (x *GroupInvite) GetKeyId() string

func (*GroupInvite) GetRole 

func (x *GroupInvite) GetRole() *Role

func (*GroupInvite) ProtoMessage 

func (*GroupInvite) ProtoMessage()

func (*GroupInvite) ProtoReflect 

func (x *GroupInvite) ProtoReflect() protoreflect.Message

func (*GroupInvite) Reset 

func (x *GroupInvite) Reset()

func (*GroupInvite) String 

func (x *GroupInvite) String() string

type GroupInviteFilter 

type GroupInviteFilter struct {

	// group is used to identify the group this record is rooted under.
	Group string `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
	// id is the exact UID of the record.
	Id string `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"`
	// key_id is the identify the verification key for this code.
	KeyId string `protobuf:"bytes,3,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
	// contains filtered or unexported fields
}

func (*GroupInviteFilter) Descriptor deprecated 

func (*GroupInviteFilter) Descriptor() ([]byte, []int)

Deprecated: Use GroupInviteFilter.ProtoReflect.Descriptor instead.

func (*GroupInviteFilter) GetGroup 

func (x *GroupInviteFilter) GetGroup() string

func (*GroupInviteFilter) GetId 

func (x *GroupInviteFilter) GetId() string

func (*GroupInviteFilter) GetKeyId 

func (x *GroupInviteFilter) GetKeyId() string

func (*GroupInviteFilter) ProtoMessage 

func (*GroupInviteFilter) ProtoMessage()

func (*GroupInviteFilter) ProtoReflect 

func (x *GroupInviteFilter) ProtoReflect() protoreflect.Message

func (*GroupInviteFilter) Reset 

func (x *GroupInviteFilter) Reset()

func (*GroupInviteFilter) String 

func (x *GroupInviteFilter) String() string

type GroupInviteList 

type GroupInviteList struct {
	Items []*StoredGroupInvite `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*GroupInviteList) Descriptor deprecated 

func (*GroupInviteList) Descriptor() ([]byte, []int)

Deprecated: Use GroupInviteList.ProtoReflect.Descriptor instead.

func (*GroupInviteList) GetItems 

func (x *GroupInviteList) GetItems() []*StoredGroupInvite

func (*GroupInviteList) ProtoMessage 

func (*GroupInviteList) ProtoMessage()

func (*GroupInviteList) ProtoReflect 

func (x *GroupInviteList) ProtoReflect() protoreflect.Message

func (*GroupInviteList) Reset 

func (x *GroupInviteList) Reset()

func (*GroupInviteList) String 

func (x *GroupInviteList) String() string

type GroupInviteRequest 

type GroupInviteRequest struct {

	// group, The Group UIDP path under which the new group Invite targets.
	Group string `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
	// expiration, timestamp this invite becomes no longer valid.
	Ttl *durationpb.Duration `protobuf:"bytes,2,opt,name=ttl,proto3" json:"ttl,omitempty"`
	// role is the Role UIDP the invited identity will be role-bound to the group with.
	Role string `protobuf:"bytes,3,opt,name=role,proto3" json:"role,omitempty"`
	// email is the exact email address that may accept this invite code, if specified.
	Email string `protobuf:"bytes,4,opt,name=email,proto3" json:"email,omitempty"`
	// contains filtered or unexported fields
}

func (*GroupInviteRequest) Descriptor deprecated 

func (*GroupInviteRequest) Descriptor() ([]byte, []int)

Deprecated: Use GroupInviteRequest.ProtoReflect.Descriptor instead.

func (*GroupInviteRequest) GetEmail 

func (x *GroupInviteRequest) GetEmail() string

func (*GroupInviteRequest) GetGroup 

func (x *GroupInviteRequest) GetGroup() string

func (*GroupInviteRequest) GetRole 

func (x *GroupInviteRequest) GetRole() string

func (*GroupInviteRequest) GetTtl 

func (x *GroupInviteRequest) GetTtl() *durationpb.Duration

func (*GroupInviteRequest) ProtoMessage 

func (*GroupInviteRequest) ProtoMessage()

func (*GroupInviteRequest) ProtoReflect 

func (x *GroupInviteRequest) ProtoReflect() protoreflect.Message

func (*GroupInviteRequest) Reset 

func (x *GroupInviteRequest) Reset()

func (*GroupInviteRequest) String 

func (x *GroupInviteRequest) String() string

type GroupInvitesClient 

type GroupInvitesClient interface {
	Create(ctx context.Context, in *GroupInviteRequest, opts ...grpc.CallOption) (*GroupInvite, error)
	// CreateWithGroup is an internal API for creating a new root group
	// where the caller is NOT added as an Owner, but an invite code to
	// become the owner of the group is returned.  This is not intended
	// for external consumption, and will not be supported.
	// Do not use this!
	CreateWithGroup(ctx context.Context, in *GroupInviteRequest, opts ...grpc.CallOption) (*GroupInvite, error)
	List(ctx context.Context, in *GroupInviteFilter, opts ...grpc.CallOption) (*GroupInviteList, error)
	Delete(ctx context.Context, in *DeleteGroupInviteRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
}

GroupInvitesClient is the client API for GroupInvites service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewGroupInvitesClient 

func NewGroupInvitesClient(cc grpc.ClientConnInterface) GroupInvitesClient

type GroupInvitesServer 

type GroupInvitesServer interface {
	Create(context.Context, *GroupInviteRequest) (*GroupInvite, error)
	// CreateWithGroup is an internal API for creating a new root group
	// where the caller is NOT added as an Owner, but an invite code to
	// become the owner of the group is returned.  This is not intended
	// for external consumption, and will not be supported.
	// Do not use this!
	CreateWithGroup(context.Context, *GroupInviteRequest) (*GroupInvite, error)
	List(context.Context, *GroupInviteFilter) (*GroupInviteList, error)
	Delete(context.Context, *DeleteGroupInviteRequest) (*emptypb.Empty, error)
	// contains filtered or unexported methods
}

GroupInvitesServer is the server API for GroupInvites service. All implementations must embed UnimplementedGroupInvitesServer for forward compatibility

type GroupList 

type GroupList struct {
	Items []*Group `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*GroupList) Descriptor deprecated 

func (*GroupList) Descriptor() ([]byte, []int)

Deprecated: Use GroupList.ProtoReflect.Descriptor instead.

func (*GroupList) GetItems 

func (x *GroupList) GetItems() []*Group

func (*GroupList) ProtoMessage 

func (*GroupList) ProtoMessage()

func (*GroupList) ProtoReflect 

func (x *GroupList) ProtoReflect() protoreflect.Message

func (*GroupList) Reset 

func (x *GroupList) Reset()

func (*GroupList) String 

func (x *GroupList) String() string

type GroupsClient 

type GroupsClient interface {
	Create(ctx context.Context, in *CreateGroupRequest, opts ...grpc.CallOption) (*Group, error)
	Update(ctx context.Context, in *Group, opts ...grpc.CallOption) (*Group, error)
	List(ctx context.Context, in *GroupFilter, opts ...grpc.CallOption) (*GroupList, error)
	Delete(ctx context.Context, in *DeleteGroupRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
}

GroupsClient is the client API for Groups service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewGroupsClient 

func NewGroupsClient(cc grpc.ClientConnInterface) GroupsClient

type GroupsServer 

type GroupsServer interface {
	Create(context.Context, *CreateGroupRequest) (*Group, error)
	Update(context.Context, *Group) (*Group, error)
	List(context.Context, *GroupFilter) (*GroupList, error)
	Delete(context.Context, *DeleteGroupRequest) (*emptypb.Empty, error)
	// contains filtered or unexported methods
}

GroupsServer is the server API for Groups service. All implementations must embed UnimplementedGroupsServer for forward compatibility

type IdentitiesClient 

type IdentitiesClient interface {
	Create(ctx context.Context, in *CreateIdentityRequest, opts ...grpc.CallOption) (*Identity, error)
	Update(ctx context.Context, in *Identity, opts ...grpc.CallOption) (*Identity, error)
	List(ctx context.Context, in *IdentityFilter, opts ...grpc.CallOption) (*IdentityList, error)
	Lookup(ctx context.Context, in *LookupRequest, opts ...grpc.CallOption) (*Identity, error)
	Delete(ctx context.Context, in *DeleteIdentityRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
}

IdentitiesClient is the client API for Identities service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewIdentitiesClient 

func NewIdentitiesClient(cc grpc.ClientConnInterface) IdentitiesClient

type IdentitiesServer 

type IdentitiesServer interface {
	Create(context.Context, *CreateIdentityRequest) (*Identity, error)
	Update(context.Context, *Identity) (*Identity, error)
	List(context.Context, *IdentityFilter) (*IdentityList, error)
	Lookup(context.Context, *LookupRequest) (*Identity, error)
	Delete(context.Context, *DeleteIdentityRequest) (*emptypb.Empty, error)
	// contains filtered or unexported methods
}

IdentitiesServer is the server API for Identities service. All implementations must embed UnimplementedIdentitiesServer for forward compatibility

type Identity 

type Identity struct {

	// id is unique identifier of this specific identity.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// name, human readable name of identity.
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// description, human readable of identity.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// created_at is the timestamp for when the identity was created.
	CreatedAt *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"`
	// updated_at is the timestamp for when the identity was last updated.
	UpdatedAt *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=updated_at,json=updatedAt,proto3" json:"updated_at,omitempty"`
	// relationship is used to describe how this identity relates to
	// identities coming from 3rd party Identity Providers (IdPs)
	//
	// Types that are assignable to Relationship:
	//
	//	*Identity_ClaimMatch_
	//	*Identity_Static
	//	*Identity_ServicePrincipal
	//	*Identity_AwsIdentity
	Relationship isIdentity_Relationship `protobuf_oneof:"relationship"`
	// contains filtered or unexported fields
}

func (*Identity) CloudEventsExtension 

func (x *Identity) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*Identity) CloudEventsSubject 

func (x *Identity) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*Identity) Descriptor deprecated 

func (*Identity) Descriptor() ([]byte, []int)

Deprecated: Use Identity.ProtoReflect.Descriptor instead.

func (*Identity) GetAwsIdentity 

func (x *Identity) GetAwsIdentity() *Identity_AWSIdentity

func (*Identity) GetClaimMatch 

func (x *Identity) GetClaimMatch() *Identity_ClaimMatch

func (*Identity) GetCreatedAt added in v0.1.2 

func (x *Identity) GetCreatedAt() *timestamppb.Timestamp

func (*Identity) GetDescription 

func (x *Identity) GetDescription() string

func (*Identity) GetId 

func (x *Identity) GetId() string

func (*Identity) GetName 

func (x *Identity) GetName() string

func (*Identity) GetRelationship 

func (m *Identity) GetRelationship() isIdentity_Relationship

func (*Identity) GetServicePrincipal 

func (x *Identity) GetServicePrincipal() ServicePrincipal

func (*Identity) GetStatic 

func (x *Identity) GetStatic() *Identity_StaticKeys

func (*Identity) GetUpdatedAt added in v0.1.2 

func (x *Identity) GetUpdatedAt() *timestamppb.Timestamp

func (*Identity) ProtoMessage 

func (*Identity) ProtoMessage()

func (*Identity) ProtoReflect 

func (x *Identity) ProtoReflect() protoreflect.Message

func (*Identity) Reset 

func (x *Identity) Reset()

func (*Identity) String 

func (x *Identity) String() string

type IdentityFilter 

type IdentityFilter struct {

	// uidp filters records based on their position in the group hierarchy.
	Uidp *v1.UIDPFilter `protobuf:"bytes,1,opt,name=uidp,proto3" json:"uidp,omitempty"`
	// id is unique identifier to look up.
	Id string `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"`
	// contains filtered or unexported fields
}

func (*IdentityFilter) Descriptor deprecated 

func (*IdentityFilter) Descriptor() ([]byte, []int)

Deprecated: Use IdentityFilter.ProtoReflect.Descriptor instead.

func (*IdentityFilter) GetId 

func (x *IdentityFilter) GetId() string

func (*IdentityFilter) GetUidp 

func (x *IdentityFilter) GetUidp() *v1.UIDPFilter

func (*IdentityFilter) ProtoMessage 

func (*IdentityFilter) ProtoMessage()

func (*IdentityFilter) ProtoReflect 

func (x *IdentityFilter) ProtoReflect() protoreflect.Message

func (*IdentityFilter) Reset 

func (x *IdentityFilter) Reset()

func (*IdentityFilter) String 

func (x *IdentityFilter) String() string

type IdentityList 

type IdentityList struct {
	Items []*Identity `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*IdentityList) Descriptor deprecated 

func (*IdentityList) Descriptor() ([]byte, []int)

Deprecated: Use IdentityList.ProtoReflect.Descriptor instead.

func (*IdentityList) GetItems 

func (x *IdentityList) GetItems() []*Identity

func (*IdentityList) ProtoMessage 

func (*IdentityList) ProtoMessage()

func (*IdentityList) ProtoReflect 

func (x *IdentityList) ProtoReflect() protoreflect.Message

func (*IdentityList) Reset 

func (x *IdentityList) Reset()

func (*IdentityList) String 

func (x *IdentityList) String() string

type IdentityProvider 

type IdentityProvider struct {

	// id is unique identifier of this specific identity provider
	Id          string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	Name        string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// default_role is the UIDP of an optional default role
	// to grant users of this identity provider.
	DefaultRole string `protobuf:"bytes,4,opt,name=default_role,json=defaultRole,proto3" json:"default_role,omitempty"`
	// Types that are assignable to Configuration:
	//
	//	*IdentityProvider_Oidc
	Configuration isIdentityProvider_Configuration `protobuf_oneof:"configuration"`
	// contains filtered or unexported fields
}

func (*IdentityProvider) CloudEventsExtension 

func (x *IdentityProvider) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*IdentityProvider) CloudEventsSubject 

func (x *IdentityProvider) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*IdentityProvider) Descriptor deprecated 

func (*IdentityProvider) Descriptor() ([]byte, []int)

Deprecated: Use IdentityProvider.ProtoReflect.Descriptor instead.

func (*IdentityProvider) GetConfiguration 

func (m *IdentityProvider) GetConfiguration() isIdentityProvider_Configuration

func (*IdentityProvider) GetDefaultRole 

func (x *IdentityProvider) GetDefaultRole() string

func (*IdentityProvider) GetDescription 

func (x *IdentityProvider) GetDescription() string

func (*IdentityProvider) GetId 

func (x *IdentityProvider) GetId() string

func (*IdentityProvider) GetName 

func (x *IdentityProvider) GetName() string

func (*IdentityProvider) GetOidc 

func (x *IdentityProvider) GetOidc() *IdentityProvider_OIDC

func (*IdentityProvider) ProtoMessage 

func (*IdentityProvider) ProtoMessage()

func (*IdentityProvider) ProtoReflect 

func (x *IdentityProvider) ProtoReflect() protoreflect.Message

func (*IdentityProvider) Reset 

func (x *IdentityProvider) Reset()

func (*IdentityProvider) String 

func (x *IdentityProvider) String() string

type IdentityProviderFilter 

type IdentityProviderFilter struct {

	// Exact match on identity provider UIDP
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// Exact match on identity provider name
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// uidp filers records based on their position in the group hierarchy.
	Uidp *v1.UIDPFilter `protobuf:"bytes,3,opt,name=uidp,proto3" json:"uidp,omitempty"`
	// contains filtered or unexported fields
}

func (*IdentityProviderFilter) Descriptor deprecated 

func (*IdentityProviderFilter) Descriptor() ([]byte, []int)

Deprecated: Use IdentityProviderFilter.ProtoReflect.Descriptor instead.

func (*IdentityProviderFilter) GetId 

func (x *IdentityProviderFilter) GetId() string

func (*IdentityProviderFilter) GetName 

func (x *IdentityProviderFilter) GetName() string

func (*IdentityProviderFilter) GetUidp 

func (x *IdentityProviderFilter) GetUidp() *v1.UIDPFilter

func (*IdentityProviderFilter) ProtoMessage 

func (*IdentityProviderFilter) ProtoMessage()

func (*IdentityProviderFilter) ProtoReflect 

func (x *IdentityProviderFilter) ProtoReflect() protoreflect.Message

func (*IdentityProviderFilter) Reset 

func (x *IdentityProviderFilter) Reset()

func (*IdentityProviderFilter) String 

func (x *IdentityProviderFilter) String() string

type IdentityProviderList 

type IdentityProviderList struct {
	Items []*IdentityProvider `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*IdentityProviderList) Descriptor deprecated 

func (*IdentityProviderList) Descriptor() ([]byte, []int)

Deprecated: Use IdentityProviderList.ProtoReflect.Descriptor instead.

func (*IdentityProviderList) GetItems 

func (x *IdentityProviderList) GetItems() []*IdentityProvider

func (*IdentityProviderList) ProtoMessage 

func (*IdentityProviderList) ProtoMessage()

func (*IdentityProviderList) ProtoReflect 

func (x *IdentityProviderList) ProtoReflect() protoreflect.Message

func (*IdentityProviderList) Reset 

func (x *IdentityProviderList) Reset()

func (*IdentityProviderList) String 

func (x *IdentityProviderList) String() string

type IdentityProvider_OIDC 

type IdentityProvider_OIDC struct {

	// Issuer URL (e.g https://accounts.google.com)
	Issuer       string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	ClientId     string `protobuf:"bytes,2,opt,name=client_id,json=clientId,proto3" json:"client_id,omitempty"`
	ClientSecret string `protobuf:"bytes,3,opt,name=client_secret,json=clientSecret,proto3" json:"client_secret,omitempty"`
	// Additional scopes to request for ID tokens
	AdditionalScopes []string `protobuf:"bytes,4,rep,name=additional_scopes,json=additionalScopes,proto3" json:"additional_scopes,omitempty"`
	// contains filtered or unexported fields
}

func (*IdentityProvider_OIDC) Descriptor deprecated 

func (*IdentityProvider_OIDC) Descriptor() ([]byte, []int)

Deprecated: Use IdentityProvider_OIDC.ProtoReflect.Descriptor instead.

func (*IdentityProvider_OIDC) GetAdditionalScopes 

func (x *IdentityProvider_OIDC) GetAdditionalScopes() []string

func (*IdentityProvider_OIDC) GetClientId 

func (x *IdentityProvider_OIDC) GetClientId() string

func (*IdentityProvider_OIDC) GetClientSecret 

func (x *IdentityProvider_OIDC) GetClientSecret() string

func (*IdentityProvider_OIDC) GetIssuer 

func (x *IdentityProvider_OIDC) GetIssuer() string

func (*IdentityProvider_OIDC) ProtoMessage 

func (*IdentityProvider_OIDC) ProtoMessage()

func (*IdentityProvider_OIDC) ProtoReflect 

func (x *IdentityProvider_OIDC) ProtoReflect() protoreflect.Message

func (*IdentityProvider_OIDC) Reset 

func (x *IdentityProvider_OIDC) Reset()

func (*IdentityProvider_OIDC) String 

func (x *IdentityProvider_OIDC) String() string

type IdentityProvider_Oidc 

type IdentityProvider_Oidc struct {
	Oidc *IdentityProvider_OIDC `protobuf:"bytes,20,opt,name=oidc,proto3,oneof"`
}

type IdentityProvidersClient 

type IdentityProvidersClient interface {
	Create(ctx context.Context, in *CreateIdentityProviderRequest, opts ...grpc.CallOption) (*IdentityProvider, error)
	Update(ctx context.Context, in *IdentityProvider, opts ...grpc.CallOption) (*IdentityProvider, error)
	List(ctx context.Context, in *IdentityProviderFilter, opts ...grpc.CallOption) (*IdentityProviderList, error)
	Delete(ctx context.Context, in *DeleteIdentityProviderRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
}

IdentityProvidersClient is the client API for IdentityProviders service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewIdentityProvidersClient 

func NewIdentityProvidersClient(cc grpc.ClientConnInterface) IdentityProvidersClient

type IdentityProvidersServer 

type IdentityProvidersServer interface {
	Create(context.Context, *CreateIdentityProviderRequest) (*IdentityProvider, error)
	Update(context.Context, *IdentityProvider) (*IdentityProvider, error)
	List(context.Context, *IdentityProviderFilter) (*IdentityProviderList, error)
	Delete(context.Context, *DeleteIdentityProviderRequest) (*emptypb.Empty, error)
	// contains filtered or unexported methods
}

IdentityProvidersServer is the server API for IdentityProviders service. All implementations must embed UnimplementedIdentityProvidersServer for forward compatibility

type Identity_AWSIdentity 

type Identity_AWSIdentity struct {

	// Required, matches the `Account` field in the GetCallerID AWS IAM
	// response
	AwsAccount string `protobuf:"bytes,1,opt,name=aws_account,json=awsAccount,proto3" json:"aws_account,omitempty"`
	// Required, matches the `Arn` field in the GetCallerID AWS IAM response
	//
	// Types that are assignable to AwsArn:
	//
	//	*Identity_AWSIdentity_Arn
	//	*Identity_AWSIdentity_ArnPattern
	AwsArn isIdentity_AWSIdentity_AwsArn `protobuf_oneof:"aws_arn"`
	// Required, matches the `UserId` field of th GetCallerID AWS IAM response
	//
	// Types that are assignable to AwsUserId:
	//
	//	*Identity_AWSIdentity_UserId
	//	*Identity_AWSIdentity_UserIdPattern
	AwsUserId isIdentity_AWSIdentity_AwsUserId `protobuf_oneof:"aws_user_id"`
	// contains filtered or unexported fields
}

func (*Identity_AWSIdentity) Descriptor deprecated 

func (*Identity_AWSIdentity) Descriptor() ([]byte, []int)

Deprecated: Use Identity_AWSIdentity.ProtoReflect.Descriptor instead.

func (*Identity_AWSIdentity) GetArn 

func (x *Identity_AWSIdentity) GetArn() string

func (*Identity_AWSIdentity) GetArnPattern 

func (x *Identity_AWSIdentity) GetArnPattern() string

func (*Identity_AWSIdentity) GetAwsAccount 

func (x *Identity_AWSIdentity) GetAwsAccount() string

func (*Identity_AWSIdentity) GetAwsArn 

func (m *Identity_AWSIdentity) GetAwsArn() isIdentity_AWSIdentity_AwsArn

func (*Identity_AWSIdentity) GetAwsUserId 

func (m *Identity_AWSIdentity) GetAwsUserId() isIdentity_AWSIdentity_AwsUserId

func (*Identity_AWSIdentity) GetUserId 

func (x *Identity_AWSIdentity) GetUserId() string

func (*Identity_AWSIdentity) GetUserIdPattern 

func (x *Identity_AWSIdentity) GetUserIdPattern() string

func (*Identity_AWSIdentity) ProtoMessage 

func (*Identity_AWSIdentity) ProtoMessage()

func (*Identity_AWSIdentity) ProtoReflect 

func (x *Identity_AWSIdentity) ProtoReflect() protoreflect.Message

func (*Identity_AWSIdentity) Reset 

func (x *Identity_AWSIdentity) Reset()

func (*Identity_AWSIdentity) String 

func (x *Identity_AWSIdentity) String() string

type Identity_AWSIdentity_Arn 

type Identity_AWSIdentity_Arn struct {
	// Exact match to Arn of AWS Identity
	Arn string `protobuf:"bytes,3,opt,name=arn,proto3,oneof"`
}

type Identity_AWSIdentity_ArnPattern 

type Identity_AWSIdentity_ArnPattern struct {
	// Regular expression for matching Arn
	ArnPattern string `protobuf:"bytes,4,opt,name=arn_pattern,json=arnPattern,proto3,oneof"`
}

type Identity_AWSIdentity_UserId 

type Identity_AWSIdentity_UserId struct {
	// Exacty match of the UserID field
	UserId string `protobuf:"bytes,5,opt,name=user_id,json=userId,proto3,oneof"`
}

type Identity_AWSIdentity_UserIdPattern 

type Identity_AWSIdentity_UserIdPattern struct {
	// Regular expression for UserId field
	UserIdPattern string `protobuf:"bytes,6,opt,name=user_id_pattern,json=userIdPattern,proto3,oneof"`
}

type Identity_AwsIdentity 

type Identity_AwsIdentity struct {
	// aws_identity matches AWS IAM users and roles to an identity
	AwsIdentity *Identity_AWSIdentity `protobuf:"bytes,13,opt,name=aws_identity,json=awsIdentity,proto3,oneof"`
}

type Identity_ClaimMatch 

type Identity_ClaimMatch struct {

	// Required, matches the `iss` claim.
	//
	// Types that are assignable to Iss:
	//
	//	*Identity_ClaimMatch_Issuer
	//	*Identity_ClaimMatch_IssuerPattern
	Iss isIdentity_ClaimMatch_Iss `protobuf_oneof:"iss"`
	// Required, matches the `sub` claim.
	//
	// Types that are assignable to Sub:
	//
	//	*Identity_ClaimMatch_Subject
	//	*Identity_ClaimMatch_SubjectPattern
	Sub isIdentity_ClaimMatch_Sub `protobuf_oneof:"sub"`
	// Optional, matches the `aud` claim.
	// When unspecified, this defaults to the hostname of the SaaS
	// environment's issuer.
	//
	// Types that are assignable to Aud:
	//
	//	*Identity_ClaimMatch_Audience
	//	*Identity_ClaimMatch_AudiencePattern
	Aud isIdentity_ClaimMatch_Aud `protobuf_oneof:"aud"`
	// claims is a mapping from the name of a custom claim
	// to a literal matching that claim's value.
	Claims map[string]string `` /* 153-byte string literal not displayed */
	// claim_patterns is a mapping from the name of a custom claim
	// to a regular expression for matching that claim's value.
	ClaimPatterns map[string]string `` /* 188-byte string literal not displayed */
	// contains filtered or unexported fields
}

func (*Identity_ClaimMatch) Descriptor deprecated 

func (*Identity_ClaimMatch) Descriptor() ([]byte, []int)

Deprecated: Use Identity_ClaimMatch.ProtoReflect.Descriptor instead.

func (*Identity_ClaimMatch) GetAud 

func (m *Identity_ClaimMatch) GetAud() isIdentity_ClaimMatch_Aud

func (*Identity_ClaimMatch) GetAudience 

func (x *Identity_ClaimMatch) GetAudience() string

func (*Identity_ClaimMatch) GetAudiencePattern 

func (x *Identity_ClaimMatch) GetAudiencePattern() string

func (*Identity_ClaimMatch) GetClaimPatterns 

func (x *Identity_ClaimMatch) GetClaimPatterns() map[string]string

func (*Identity_ClaimMatch) GetClaims 

func (x *Identity_ClaimMatch) GetClaims() map[string]string

func (*Identity_ClaimMatch) GetIss 

func (m *Identity_ClaimMatch) GetIss() isIdentity_ClaimMatch_Iss

func (*Identity_ClaimMatch) GetIssuer 

func (x *Identity_ClaimMatch) GetIssuer() string

func (*Identity_ClaimMatch) GetIssuerPattern 

func (x *Identity_ClaimMatch) GetIssuerPattern() string

func (*Identity_ClaimMatch) GetSub 

func (m *Identity_ClaimMatch) GetSub() isIdentity_ClaimMatch_Sub

func (*Identity_ClaimMatch) GetSubject 

func (x *Identity_ClaimMatch) GetSubject() string

func (*Identity_ClaimMatch) GetSubjectPattern 

func (x *Identity_ClaimMatch) GetSubjectPattern() string

func (*Identity_ClaimMatch) ProtoMessage 

func (*Identity_ClaimMatch) ProtoMessage()

func (*Identity_ClaimMatch) ProtoReflect 

func (x *Identity_ClaimMatch) ProtoReflect() protoreflect.Message

func (*Identity_ClaimMatch) Reset 

func (x *Identity_ClaimMatch) Reset()

func (*Identity_ClaimMatch) String 

func (x *Identity_ClaimMatch) String() string

type Identity_ClaimMatch_ 

type Identity_ClaimMatch_ struct {
	// claim_match checks the third party IdP token's claims against one
	// or more configured patterns.
	ClaimMatch *Identity_ClaimMatch `protobuf:"bytes,10,opt,name=claim_match,json=claimMatch,proto3,oneof"`
}

type Identity_ClaimMatch_Audience 

type Identity_ClaimMatch_Audience struct {
	// audience of OIDC ID tokens issued for this identity.
	Audience string `protobuf:"bytes,5,opt,name=audience,proto3,oneof"`
}

type Identity_ClaimMatch_AudiencePattern 

type Identity_ClaimMatch_AudiencePattern struct {
	// audience_pattern is a regular expression for matching the
	// token's audience claim.
	AudiencePattern string `protobuf:"bytes,6,opt,name=audience_pattern,json=audiencePattern,proto3,oneof"`
}

type Identity_ClaimMatch_Issuer 

type Identity_ClaimMatch_Issuer struct {
	// issuer of the OIDC ID tokens issued for this identity.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3,oneof"`
}

type Identity_ClaimMatch_IssuerPattern 

type Identity_ClaimMatch_IssuerPattern struct {
	// issuer_pattern is a regular expression for matching the
	// token's issuer claim.
	IssuerPattern string `protobuf:"bytes,2,opt,name=issuer_pattern,json=issuerPattern,proto3,oneof"`
}

type Identity_ClaimMatch_Subject 

type Identity_ClaimMatch_Subject struct {
	// subject of OIDC ID tokens issued for this identity.
	Subject string `protobuf:"bytes,3,opt,name=subject,proto3,oneof"`
}

type Identity_ClaimMatch_SubjectPattern 

type Identity_ClaimMatch_SubjectPattern struct {
	// subject_pattern is a regular expression for matching the
	// token's subject claim.
	SubjectPattern string `protobuf:"bytes,4,opt,name=subject_pattern,json=subjectPattern,proto3,oneof"`
}

type Identity_ServicePrincipal 

type Identity_ServicePrincipal struct {
	// service_principal is the name of the Chainguard service that is
	// allowed to assume this identity.  These names correlate with the
	// service names used in impersonation with account associations.
	ServicePrincipal ServicePrincipal `` /* 128-byte string literal not displayed */
}

type Identity_Static 

type Identity_Static struct {
	// static is equivalent to literal, but instead of discovering the
	// IdP's verification keys we verify the identity using pre-registered
	// verification keys.  This is intended for use with identities from
	// providers without an "online" issuer (network accessible to our IdP),
	// such as a KinD/minikube cluster.
	// NOTE: because this path does not have a mechanism for key rotation
	// the identity will expire, with a maximum lifetime of 30d.
	Static *Identity_StaticKeys `protobuf:"bytes,11,opt,name=static,proto3,oneof"`
}

type Identity_StaticKeys 

type Identity_StaticKeys struct {

	// issuer of the OIDC ID tokens issued for this identity.
	// Matches the `iss` claim.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// subject of OIDC ID tokens issued for this identity.
	// Matches the `sub` claim.
	Subject string `protobuf:"bytes,2,opt,name=subject,proto3" json:"subject,omitempty"`
	// issuer_keys is JWKS-formatted public keys for the issuer.
	// Required, otherwise use Literal.
	IssuerKeys string `protobuf:"bytes,4,opt,name=issuer_keys,json=issuerKeys,proto3" json:"issuer_keys,omitempty"`
	// expiration is the time when the issuer_keys will expire.
	// Defaults to / Maximum of 30 days after creation time.
	Expiration *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=expiration,proto3" json:"expiration,omitempty"`
	// contains filtered or unexported fields
}

func (*Identity_StaticKeys) Descriptor deprecated 

func (*Identity_StaticKeys) Descriptor() ([]byte, []int)

Deprecated: Use Identity_StaticKeys.ProtoReflect.Descriptor instead.

func (*Identity_StaticKeys) GetExpiration 

func (x *Identity_StaticKeys) GetExpiration() *timestamppb.Timestamp

func (*Identity_StaticKeys) GetIssuer 

func (x *Identity_StaticKeys) GetIssuer() string

func (*Identity_StaticKeys) GetIssuerKeys 

func (x *Identity_StaticKeys) GetIssuerKeys() string

func (*Identity_StaticKeys) GetSubject 

func (x *Identity_StaticKeys) GetSubject() string

func (*Identity_StaticKeys) ProtoMessage 

func (*Identity_StaticKeys) ProtoMessage()

func (*Identity_StaticKeys) ProtoReflect 

func (x *Identity_StaticKeys) ProtoReflect() protoreflect.Message

func (*Identity_StaticKeys) Reset 

func (x *Identity_StaticKeys) Reset()

func (*Identity_StaticKeys) String 

func (x *Identity_StaticKeys) String() string

type KMSCA 

type KMSCA struct {

	// key_ref is a unique reference to the signing key used for this CA
	// most likely a KMS key prefixed with gcpkms://, awskms://, azurekms:// etc
	// and the relevant resource name
	KeyRef string `protobuf:"bytes,1,opt,name=key_ref,json=keyRef,proto3" json:"key_ref,omitempty"`
	// cert_chain is the root certificate and (optional) chain
	// in PEM-encoded format
	CertChain string `protobuf:"bytes,2,opt,name=cert_chain,json=certChain,proto3" json:"cert_chain,omitempty"`
	// contains filtered or unexported fields
}

func (*KMSCA) Descriptor deprecated 

func (*KMSCA) Descriptor() ([]byte, []int)

Deprecated: Use KMSCA.ProtoReflect.Descriptor instead.

func (*KMSCA) GetCertChain 

func (x *KMSCA) GetCertChain() string

func (*KMSCA) GetKeyRef 

func (x *KMSCA) GetKeyRef() string

func (*KMSCA) ProtoMessage 

func (*KMSCA) ProtoMessage()

func (*KMSCA) ProtoReflect 

func (x *KMSCA) ProtoReflect() protoreflect.Message

func (*KMSCA) Reset 

func (x *KMSCA) Reset()

func (*KMSCA) String 

func (x *KMSCA) String() string

type ListVersionsRequest 

type ListVersionsRequest struct {

	// policy_id is the identifier of the policy to list versions of.
	PolicyId string `protobuf:"bytes,1,opt,name=policy_id,json=policyId,proto3" json:"policy_id,omitempty"`
	// contains filtered or unexported fields
}

func (*ListVersionsRequest) Descriptor deprecated 

func (*ListVersionsRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListVersionsRequest.ProtoReflect.Descriptor instead.

func (*ListVersionsRequest) GetPolicyId 

func (x *ListVersionsRequest) GetPolicyId() string

func (*ListVersionsRequest) ProtoMessage 

func (*ListVersionsRequest) ProtoMessage()

func (*ListVersionsRequest) ProtoReflect 

func (x *ListVersionsRequest) ProtoReflect() protoreflect.Message

func (*ListVersionsRequest) Reset 

func (x *ListVersionsRequest) Reset()

func (*ListVersionsRequest) String 

func (x *ListVersionsRequest) String() string

type LookupRequest 

type LookupRequest struct {

	// issuer is the oidc issuer to look up.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// subject is the subject to look up.
	Subject string `protobuf:"bytes,2,opt,name=subject,proto3" json:"subject,omitempty"`
	// contains filtered or unexported fields
}

func (*LookupRequest) Descriptor deprecated 

func (*LookupRequest) Descriptor() ([]byte, []int)

Deprecated: Use LookupRequest.ProtoReflect.Descriptor instead.

func (*LookupRequest) GetIssuer 

func (x *LookupRequest) GetIssuer() string

func (*LookupRequest) GetSubject 

func (x *LookupRequest) GetSubject() string

func (*LookupRequest) ProtoMessage 

func (*LookupRequest) ProtoMessage()

func (*LookupRequest) ProtoReflect 

func (x *LookupRequest) ProtoReflect() protoreflect.Message

func (*LookupRequest) Reset 

func (x *LookupRequest) Reset()

func (*LookupRequest) String 

func (x *LookupRequest) String() string

type PoliciesClient 

type PoliciesClient interface {
	Create(ctx context.Context, in *CreatePolicyRequest, opts ...grpc.CallOption) (*Policy, error)
	List(ctx context.Context, in *PolicyFilter, opts ...grpc.CallOption) (*PolicyList, error)
	Delete(ctx context.Context, in *DeletePolicyRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
	Update(ctx context.Context, in *Policy, opts ...grpc.CallOption) (*Policy, error)
	ListVersions(ctx context.Context, in *ListVersionsRequest, opts ...grpc.CallOption) (*PolicyVersionList, error)
	ActivateVersion(ctx context.Context, in *ActivateVersionRequest, opts ...grpc.CallOption) (*Policy, error)
}

PoliciesClient is the client API for Policies service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewPoliciesClient 

func NewPoliciesClient(cc grpc.ClientConnInterface) PoliciesClient

type PoliciesServer 

type PoliciesServer interface {
	Create(context.Context, *CreatePolicyRequest) (*Policy, error)
	List(context.Context, *PolicyFilter) (*PolicyList, error)
	Delete(context.Context, *DeletePolicyRequest) (*emptypb.Empty, error)
	Update(context.Context, *Policy) (*Policy, error)
	ListVersions(context.Context, *ListVersionsRequest) (*PolicyVersionList, error)
	ActivateVersion(context.Context, *ActivateVersionRequest) (*Policy, error)
	// contains filtered or unexported methods
}

PoliciesServer is the server API for Policies service. All implementations must embed UnimplementedPoliciesServer for forward compatibility

type Policy 

type Policy struct {

	// id is identifier of this specific policy.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// name, human readable name of policy.
	// This field is populated from the document and any existing value will be ignored for Create/Update.
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// description, human readable description of policy.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// document, YAML encoded policy document.
	Document string `protobuf:"bytes,4,opt,name=document,proto3" json:"document,omitempty"`
	// created_at is the timestamp for when the policy was created.
	CreatedAt *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"`
	// updated_at is the timestamp when the current version of the policy was last updated.
	UpdatedAt *timestamppb.Timestamp `protobuf:"bytes,6,opt,name=updated_at,json=updatedAt,proto3" json:"updated_at,omitempty"`
	// enforced_version contains information about the enforced version of this policy.
	// When used as a return value, Policy.name, Policy.description, and Policy.document are all copies of
	// the respective fields in enforced_version for backwards compatibility. enforced_version may be empty for
	// legacy policies without versions.
	// When used for Create or Update, set enforced_version.label to set an optional version label.
	EnforcedVersion *PolicyVersion `protobuf:"bytes,7,opt,name=enforced_version,json=enforcedVersion,proto3" json:"enforced_version,omitempty"`
	// contains filtered or unexported fields
}

func (*Policy) CloudEventsExtension 

func (x *Policy) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*Policy) CloudEventsSubject 

func (x *Policy) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*Policy) Descriptor deprecated 

func (*Policy) Descriptor() ([]byte, []int)

Deprecated: Use Policy.ProtoReflect.Descriptor instead.

func (*Policy) GetCreatedAt 

func (x *Policy) GetCreatedAt() *timestamppb.Timestamp

func (*Policy) GetDescription 

func (x *Policy) GetDescription() string

func (*Policy) GetDocument 

func (x *Policy) GetDocument() string

func (*Policy) GetEnforcedVersion 

func (x *Policy) GetEnforcedVersion() *PolicyVersion

func (*Policy) GetId 

func (x *Policy) GetId() string

func (*Policy) GetName 

func (x *Policy) GetName() string

func (*Policy) GetUpdatedAt 

func (x *Policy) GetUpdatedAt() *timestamppb.Timestamp

func (*Policy) ProtoMessage 

func (*Policy) ProtoMessage()

func (*Policy) ProtoReflect 

func (x *Policy) ProtoReflect() protoreflect.Message

func (*Policy) Reset 

func (x *Policy) Reset()

func (*Policy) String 

func (x *Policy) String() string

type PolicyAuthor 

type PolicyAuthor struct {

	// id is the UID of the author identity.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// email is the email address of the author, if known.
	Email string `protobuf:"bytes,2,opt,name=email,proto3" json:"email,omitempty"`
	// contains filtered or unexported fields
}

func (*PolicyAuthor) Descriptor deprecated 

func (*PolicyAuthor) Descriptor() ([]byte, []int)

Deprecated: Use PolicyAuthor.ProtoReflect.Descriptor instead.

func (*PolicyAuthor) GetEmail 

func (x *PolicyAuthor) GetEmail() string

func (*PolicyAuthor) GetId 

func (x *PolicyAuthor) GetId() string

func (*PolicyAuthor) ProtoMessage 

func (*PolicyAuthor) ProtoMessage()

func (*PolicyAuthor) ProtoReflect 

func (x *PolicyAuthor) ProtoReflect() protoreflect.Message

func (*PolicyAuthor) Reset 

func (x *PolicyAuthor) Reset()

func (*PolicyAuthor) String 

func (x *PolicyAuthor) String() string

type PolicyFilter 

type PolicyFilter struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// uidp filers records based on their position in the group hierarchy.
	Uidp *v1.UIDPFilter `protobuf:"bytes,2,opt,name=uidp,proto3" json:"uidp,omitempty"`
	// name is the exact name of the record.
	Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

func (*PolicyFilter) Descriptor deprecated 

func (*PolicyFilter) Descriptor() ([]byte, []int)

Deprecated: Use PolicyFilter.ProtoReflect.Descriptor instead.

func (*PolicyFilter) GetId 

func (x *PolicyFilter) GetId() string

func (*PolicyFilter) GetName 

func (x *PolicyFilter) GetName() string

func (*PolicyFilter) GetUidp 

func (x *PolicyFilter) GetUidp() *v1.UIDPFilter

func (*PolicyFilter) ProtoMessage 

func (*PolicyFilter) ProtoMessage()

func (*PolicyFilter) ProtoReflect 

func (x *PolicyFilter) ProtoReflect() protoreflect.Message

func (*PolicyFilter) Reset 

func (x *PolicyFilter) Reset()

func (*PolicyFilter) String 

func (x *PolicyFilter) String() string

type PolicyList 

type PolicyList struct {
	Items []*Policy `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*PolicyList) Descriptor deprecated 

func (*PolicyList) Descriptor() ([]byte, []int)

Deprecated: Use PolicyList.ProtoReflect.Descriptor instead.

func (*PolicyList) GetItems 

func (x *PolicyList) GetItems() []*Policy

func (*PolicyList) ProtoMessage 

func (*PolicyList) ProtoMessage()

func (*PolicyList) ProtoReflect 

func (x *PolicyList) ProtoReflect() protoreflect.Message

func (*PolicyList) Reset 

func (x *PolicyList) Reset()

func (*PolicyList) String 

func (x *PolicyList) String() string

type PolicyVersion 

type PolicyVersion struct {

	// id is the identifier of this specific policy version.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// name, human-readable name of policy.
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// description, human-readable description of policy.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// document, YAML encoded policy document.
	Document string `protobuf:"bytes,4,opt,name=document,proto3" json:"document,omitempty"`
	// author is information about the identity that created/updated this version of the policy, if known.
	Author *PolicyAuthor `protobuf:"bytes,5,opt,name=author,proto3" json:"author,omitempty"`
	// created_at is the timestamp from when this version was created.
	CreatedAt *timestamppb.Timestamp `protobuf:"bytes,6,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"`
	// label is a human-readable identifier for this version of the policy.
	Label string `protobuf:"bytes,7,opt,name=label,proto3" json:"label,omitempty"`
	// contains filtered or unexported fields
}

func (*PolicyVersion) Descriptor deprecated 

func (*PolicyVersion) Descriptor() ([]byte, []int)

Deprecated: Use PolicyVersion.ProtoReflect.Descriptor instead.

func (*PolicyVersion) GetAuthor 

func (x *PolicyVersion) GetAuthor() *PolicyAuthor

func (*PolicyVersion) GetCreatedAt 

func (x *PolicyVersion) GetCreatedAt() *timestamppb.Timestamp

func (*PolicyVersion) GetDescription 

func (x *PolicyVersion) GetDescription() string

func (*PolicyVersion) GetDocument 

func (x *PolicyVersion) GetDocument() string

func (*PolicyVersion) GetId 

func (x *PolicyVersion) GetId() string

func (*PolicyVersion) GetLabel 

func (x *PolicyVersion) GetLabel() string

func (*PolicyVersion) GetName 

func (x *PolicyVersion) GetName() string

func (*PolicyVersion) ProtoMessage 

func (*PolicyVersion) ProtoMessage()

func (*PolicyVersion) ProtoReflect 

func (x *PolicyVersion) ProtoReflect() protoreflect.Message

func (*PolicyVersion) Reset 

func (x *PolicyVersion) Reset()

func (*PolicyVersion) String 

func (x *PolicyVersion) String() string

type PolicyVersionList 

type PolicyVersionList struct {
	Items []*PolicyVersion `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*PolicyVersionList) Descriptor deprecated 

func (*PolicyVersionList) Descriptor() ([]byte, []int)

Deprecated: Use PolicyVersionList.ProtoReflect.Descriptor instead.

func (*PolicyVersionList) GetItems 

func (x *PolicyVersionList) GetItems() []*PolicyVersion

func (*PolicyVersionList) ProtoMessage 

func (*PolicyVersionList) ProtoMessage()

func (*PolicyVersionList) ProtoReflect 

func (x *PolicyVersionList) ProtoReflect() protoreflect.Message

func (*PolicyVersionList) Reset 

func (x *PolicyVersionList) Reset()

func (*PolicyVersionList) String 

func (x *PolicyVersionList) String() string

type RegistrationRequest 

type RegistrationRequest struct {

	// Types that are assignable to Kind:
	//
	//	*RegistrationRequest_Human_
	//	*RegistrationRequest_Cluster_
	Kind isRegistrationRequest_Kind `protobuf_oneof:"kind"`
	// contains filtered or unexported fields
}

func (*RegistrationRequest) Descriptor deprecated 

func (*RegistrationRequest) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationRequest.ProtoReflect.Descriptor instead.

func (*RegistrationRequest) GetCluster 

func (x *RegistrationRequest) GetCluster() *RegistrationRequest_Cluster

func (*RegistrationRequest) GetHuman 

func (x *RegistrationRequest) GetHuman() *RegistrationRequest_Human

func (*RegistrationRequest) GetKind 

func (m *RegistrationRequest) GetKind() isRegistrationRequest_Kind

func (*RegistrationRequest) ProtoMessage 

func (*RegistrationRequest) ProtoMessage()

func (*RegistrationRequest) ProtoReflect 

func (x *RegistrationRequest) ProtoReflect() protoreflect.Message

func (*RegistrationRequest) Reset 

func (x *RegistrationRequest) Reset()

func (*RegistrationRequest) String 

func (x *RegistrationRequest) String() string

type RegistrationRequest_Cluster 

type RegistrationRequest_Cluster struct {

	// code is the json-encoded authentication code.
	Code string `protobuf:"bytes,1,opt,name=code,proto3" json:"code,omitempty"`
	// cluster_id is an optional cluster id if registering a cluster.
	ClusterId string `protobuf:"bytes,2,opt,name=cluster_id,json=clusterId,proto3" json:"cluster_id,omitempty"`
	// contains filtered or unexported fields
}

func (*RegistrationRequest_Cluster) Descriptor deprecated 

func (*RegistrationRequest_Cluster) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationRequest_Cluster.ProtoReflect.Descriptor instead.

func (*RegistrationRequest_Cluster) GetClusterId 

func (x *RegistrationRequest_Cluster) GetClusterId() string

func (*RegistrationRequest_Cluster) GetCode 

func (x *RegistrationRequest_Cluster) GetCode() string

func (*RegistrationRequest_Cluster) ProtoMessage 

func (*RegistrationRequest_Cluster) ProtoMessage()

func (*RegistrationRequest_Cluster) ProtoReflect 

func (x *RegistrationRequest_Cluster) ProtoReflect() protoreflect.Message

func (*RegistrationRequest_Cluster) Reset 

func (x *RegistrationRequest_Cluster) Reset()

func (*RegistrationRequest_Cluster) String 

func (x *RegistrationRequest_Cluster) String() string

type RegistrationRequest_Cluster_ 

type RegistrationRequest_Cluster_ struct {
	Cluster *RegistrationRequest_Cluster `protobuf:"bytes,2,opt,name=cluster,proto3,oneof"`
}

type RegistrationRequest_Human 

type RegistrationRequest_Human struct {

	// code is the json-encoded authentication code.
	// +optional
	Code string `protobuf:"bytes,1,opt,name=code,proto3" json:"code,omitempty"`
	// contains filtered or unexported fields
}

func (*RegistrationRequest_Human) Descriptor deprecated 

func (*RegistrationRequest_Human) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationRequest_Human.ProtoReflect.Descriptor instead.

func (*RegistrationRequest_Human) GetCode 

func (x *RegistrationRequest_Human) GetCode() string

func (*RegistrationRequest_Human) ProtoMessage 

func (*RegistrationRequest_Human) ProtoMessage()

func (*RegistrationRequest_Human) ProtoReflect 

func (x *RegistrationRequest_Human) ProtoReflect() protoreflect.Message

func (*RegistrationRequest_Human) Reset 

func (x *RegistrationRequest_Human) Reset()

func (*RegistrationRequest_Human) String 

func (x *RegistrationRequest_Human) String() string

type RegistrationRequest_Human_ 

type RegistrationRequest_Human_ struct {
	Human *RegistrationRequest_Human `protobuf:"bytes,1,opt,name=human,proto3,oneof"`
}

type Role 

type Role struct {

	// id, The Group path under which this Role resides.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// name, human readable name of group.
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// description, human readable description of group.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// capabilities, human readable list of capabilities supported by the group.
	Capabilities []string `protobuf:"bytes,4,rep,name=capabilities,proto3" json:"capabilities,omitempty"`
	// contains filtered or unexported fields
}

func (*Role) CloudEventsExtension 

func (x *Role) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*Role) CloudEventsSubject 

func (x *Role) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*Role) Descriptor deprecated 

func (*Role) Descriptor() ([]byte, []int)

Deprecated: Use Role.ProtoReflect.Descriptor instead.

func (*Role) GetCapabilities 

func (x *Role) GetCapabilities() []string

func (*Role) GetDescription 

func (x *Role) GetDescription() string

func (*Role) GetId 

func (x *Role) GetId() string

func (*Role) GetName 

func (x *Role) GetName() string

func (*Role) ProtoMessage 

func (*Role) ProtoMessage()

func (*Role) ProtoReflect 

func (x *Role) ProtoReflect() protoreflect.Message

func (*Role) Reset 

func (x *Role) Reset()

func (*Role) String 

func (x *Role) String() string

type RoleBinding 

type RoleBinding struct {

	// id, the UID of this role binding.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// identity, UID of the Identity to bind.
	Identity string `protobuf:"bytes,2,opt,name=identity,proto3" json:"identity,omitempty"`
	// group, UIDP of the group to bind. This field is ignored and will be removed
	// in the future. The group is always the parent of the UIDP.
	//
	// Deprecated: Do not use.
	Group string `protobuf:"bytes,3,opt,name=group,proto3" json:"group,omitempty"`
	// role, UIDP of the Role to bind
	Role string `protobuf:"bytes,4,opt,name=role,proto3" json:"role,omitempty"`
	// contains filtered or unexported fields
}

func (*RoleBinding) CloudEventsExtension 

func (x *RoleBinding) CloudEventsExtension(key string) (string, bool)

CloudEventsExtension implements chainguard.dev/sdk/events/Extendable.CloudEventsExtension

func (*RoleBinding) CloudEventsSubject 

func (x *RoleBinding) CloudEventsSubject() string

CloudEventsSubject implements chainguard.dev/sdk/events/Eventable.CloudEventsSubject.

func (*RoleBinding) Descriptor deprecated 

func (*RoleBinding) Descriptor() ([]byte, []int)

Deprecated: Use RoleBinding.ProtoReflect.Descriptor instead.

func (*RoleBinding) GetGroup deprecated 

func (x *RoleBinding) GetGroup() string

Deprecated: Do not use.

func (*RoleBinding) GetId 

func (x *RoleBinding) GetId() string

func (*RoleBinding) GetIdentity 

func (x *RoleBinding) GetIdentity() string

func (*RoleBinding) GetRole 

func (x *RoleBinding) GetRole() string

func (*RoleBinding) ProtoMessage 

func (*RoleBinding) ProtoMessage()

func (*RoleBinding) ProtoReflect 

func (x *RoleBinding) ProtoReflect() protoreflect.Message

func (*RoleBinding) Reset 

func (x *RoleBinding) Reset()

func (*RoleBinding) String 

func (x *RoleBinding) String() string

type RoleBindingFilter 

type RoleBindingFilter struct {

	// id is the exact UID of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// uidp filters records based on their position in the group hierarchy.
	Uidp *v1.UIDPFilter `protobuf:"bytes,2,opt,name=uidp,proto3" json:"uidp,omitempty"`
	// contains filtered or unexported fields
}

func (*RoleBindingFilter) Descriptor deprecated 

func (*RoleBindingFilter) Descriptor() ([]byte, []int)

Deprecated: Use RoleBindingFilter.ProtoReflect.Descriptor instead.

func (*RoleBindingFilter) GetId 

func (x *RoleBindingFilter) GetId() string

func (*RoleBindingFilter) GetUidp 

func (x *RoleBindingFilter) GetUidp() *v1.UIDPFilter

func (*RoleBindingFilter) ProtoMessage 

func (*RoleBindingFilter) ProtoMessage()

func (*RoleBindingFilter) ProtoReflect 

func (x *RoleBindingFilter) ProtoReflect() protoreflect.Message

func (*RoleBindingFilter) Reset 

func (x *RoleBindingFilter) Reset()

func (*RoleBindingFilter) String 

func (x *RoleBindingFilter) String() string

type RoleBindingList 

type RoleBindingList struct {
	Items []*RoleBindingList_Binding `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*RoleBindingList) Descriptor deprecated 

func (*RoleBindingList) Descriptor() ([]byte, []int)

Deprecated: Use RoleBindingList.ProtoReflect.Descriptor instead.

func (*RoleBindingList) GetItems 

func (x *RoleBindingList) GetItems() []*RoleBindingList_Binding

func (*RoleBindingList) ProtoMessage 

func (*RoleBindingList) ProtoMessage()

func (*RoleBindingList) ProtoReflect 

func (x *RoleBindingList) ProtoReflect() protoreflect.Message

func (*RoleBindingList) Reset 

func (x *RoleBindingList) Reset()

func (*RoleBindingList) String 

func (x *RoleBindingList) String() string

type RoleBindingList_Binding 

type RoleBindingList_Binding struct {

	// id, the UID of this role binding.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// group of the bound role.
	Group *Group `protobuf:"bytes,2,opt,name=group,proto3" json:"group,omitempty"`
	// identity, UID of the Identity bound.
	Identity string `protobuf:"bytes,3,opt,name=identity,proto3" json:"identity,omitempty"`
	// role of the bound identity.
	Role *Role `protobuf:"bytes,4,opt,name=role,proto3" json:"role,omitempty"`
	// email of the bound identity.
	Email string `protobuf:"bytes,5,opt,name=email,proto3" json:"email,omitempty"`
	// ClaimMatch issuer of the bound identity.
	ClaimMatchIssuer string `protobuf:"bytes,6,opt,name=claim_match_issuer,json=claimMatchIssuer,proto3" json:"claim_match_issuer,omitempty"`
	// ClaimMatch subject of the bound identity.
	ClaimMatchSubject string `protobuf:"bytes,7,opt,name=claim_match_subject,json=claimMatchSubject,proto3" json:"claim_match_subject,omitempty"`
	// contains filtered or unexported fields
}

func (*RoleBindingList_Binding) Descriptor deprecated 

func (*RoleBindingList_Binding) Descriptor() ([]byte, []int)

Deprecated: Use RoleBindingList_Binding.ProtoReflect.Descriptor instead.

func (*RoleBindingList_Binding) GetClaimMatchIssuer 

func (x *RoleBindingList_Binding) GetClaimMatchIssuer() string

func (*RoleBindingList_Binding) GetClaimMatchSubject 

func (x *RoleBindingList_Binding) GetClaimMatchSubject() string

func (*RoleBindingList_Binding) GetEmail 

func (x *RoleBindingList_Binding) GetEmail() string

func (*RoleBindingList_Binding) GetGroup 

func (x *RoleBindingList_Binding) GetGroup() *Group

func (*RoleBindingList_Binding) GetId 

func (x *RoleBindingList_Binding) GetId() string

func (*RoleBindingList_Binding) GetIdentity 

func (x *RoleBindingList_Binding) GetIdentity() string

func (*RoleBindingList_Binding) GetRole 

func (x *RoleBindingList_Binding) GetRole() *Role

func (*RoleBindingList_Binding) ProtoMessage 

func (*RoleBindingList_Binding) ProtoMessage()

func (*RoleBindingList_Binding) ProtoReflect 

func (x *RoleBindingList_Binding) ProtoReflect() protoreflect.Message

func (*RoleBindingList_Binding) Reset 

func (x *RoleBindingList_Binding) Reset()

func (*RoleBindingList_Binding) String 

func (x *RoleBindingList_Binding) String() string

type RoleBindingsClient 

type RoleBindingsClient interface {
	Create(ctx context.Context, in *CreateRoleBindingRequest, opts ...grpc.CallOption) (*RoleBinding, error)
	Update(ctx context.Context, in *RoleBinding, opts ...grpc.CallOption) (*RoleBinding, error)
	List(ctx context.Context, in *RoleBindingFilter, opts ...grpc.CallOption) (*RoleBindingList, error)
	Delete(ctx context.Context, in *DeleteRoleBindingRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
}

RoleBindingsClient is the client API for RoleBindings service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewRoleBindingsClient 

func NewRoleBindingsClient(cc grpc.ClientConnInterface) RoleBindingsClient

type RoleBindingsServer 

type RoleBindingsServer interface {
	Create(context.Context, *CreateRoleBindingRequest) (*RoleBinding, error)
	Update(context.Context, *RoleBinding) (*RoleBinding, error)
	List(context.Context, *RoleBindingFilter) (*RoleBindingList, error)
	Delete(context.Context, *DeleteRoleBindingRequest) (*emptypb.Empty, error)
	// contains filtered or unexported methods
}

RoleBindingsServer is the server API for RoleBindings service. All implementations must embed UnimplementedRoleBindingsServer for forward compatibility

type RoleFilter 

type RoleFilter struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// name is the exact name of the record
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// parent is the exact UIDP of the parent, or / for root
	Parent string `protobuf:"bytes,3,opt,name=parent,proto3" json:"parent,omitempty"`
	// uidp filters records based on their position in the group hierarchy.
	Uidp *v1.UIDPFilter `protobuf:"bytes,4,opt,name=uidp,proto3" json:"uidp,omitempty"`
	// contains filtered or unexported fields
}

func (*RoleFilter) Descriptor deprecated 

func (*RoleFilter) Descriptor() ([]byte, []int)

Deprecated: Use RoleFilter.ProtoReflect.Descriptor instead.

func (*RoleFilter) GetId 

func (x *RoleFilter) GetId() string

func (*RoleFilter) GetName 

func (x *RoleFilter) GetName() string

func (*RoleFilter) GetParent 

func (x *RoleFilter) GetParent() string

func (*RoleFilter) GetUidp 

func (x *RoleFilter) GetUidp() *v1.UIDPFilter

func (*RoleFilter) ProtoMessage 

func (*RoleFilter) ProtoMessage()

func (*RoleFilter) ProtoReflect 

func (x *RoleFilter) ProtoReflect() protoreflect.Message

func (*RoleFilter) Reset 

func (x *RoleFilter) Reset()

func (*RoleFilter) String 

func (x *RoleFilter) String() string

type RoleList 

type RoleList struct {
	Items []*Role `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*RoleList) Descriptor deprecated 

func (*RoleList) Descriptor() ([]byte, []int)

Deprecated: Use RoleList.ProtoReflect.Descriptor instead.

func (*RoleList) GetItems 

func (x *RoleList) GetItems() []*Role

func (*RoleList) ProtoMessage 

func (*RoleList) ProtoMessage()

func (*RoleList) ProtoReflect 

func (x *RoleList) ProtoReflect() protoreflect.Message

func (*RoleList) Reset 

func (x *RoleList) Reset()

func (*RoleList) String 

func (x *RoleList) String() string

type RolesClient 

type RolesClient interface {
	Create(ctx context.Context, in *CreateRoleRequest, opts ...grpc.CallOption) (*Role, error)
	Update(ctx context.Context, in *Role, opts ...grpc.CallOption) (*Role, error)
	List(ctx context.Context, in *RoleFilter, opts ...grpc.CallOption) (*RoleList, error)
	Delete(ctx context.Context, in *DeleteRoleRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
}

RolesClient is the client API for Roles service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewRolesClient 

func NewRolesClient(cc grpc.ClientConnInterface) RolesClient

type RolesServer 

type RolesServer interface {
	Create(context.Context, *CreateRoleRequest) (*Role, error)
	Update(context.Context, *Role) (*Role, error)
	List(context.Context, *RoleFilter) (*RoleList, error)
	Delete(context.Context, *DeleteRoleRequest) (*emptypb.Empty, error)
	// contains filtered or unexported methods
}

RolesServer is the server API for Roles service. All implementations must embed UnimplementedRolesServer for forward compatibility

type ServicePrincipal 

type ServicePrincipal int32
const (
	ServicePrincipal_UNKNOWN        ServicePrincipal = 0
	ServicePrincipal_COSIGNED       ServicePrincipal = 1
	ServicePrincipal_INGESTER       ServicePrincipal = 2
	ServicePrincipal_CATALOG_SYNCER ServicePrincipal = 3
)

func (ServicePrincipal) Descriptor 

func (ServicePrincipal) Descriptor() protoreflect.EnumDescriptor

func (ServicePrincipal) Enum 

func (x ServicePrincipal) Enum() *ServicePrincipal

func (ServicePrincipal) EnumDescriptor deprecated 

func (ServicePrincipal) EnumDescriptor() ([]byte, []int)

Deprecated: Use ServicePrincipal.Descriptor instead.

func (ServicePrincipal) Number 

func (x ServicePrincipal) Number() protoreflect.EnumNumber

func (ServicePrincipal) String 

func (x ServicePrincipal) String() string

func (ServicePrincipal) Type 

func (ServicePrincipal) Type() protoreflect.EnumType

type Sigstore 

type Sigstore struct {

	// id is identifier of this specific sigstore instance.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// name, human-readable name of the sigstore instance.
	Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
	// description, human-readable description of the sigstore instance.
	Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
	// certificate authority for this instance of sigstore
	CertificateAuthority *CertificateAuthority `protobuf:"bytes,4,opt,name=certificate_authority,json=certificateAuthority,proto3" json:"certificate_authority,omitempty"`
	// unique hostname of this sigstore instance
	Hostname string `protobuf:"bytes,5,opt,name=hostname,proto3" json:"hostname,omitempty"`
	// contains filtered or unexported fields
}

func (*Sigstore) Descriptor deprecated 

func (*Sigstore) Descriptor() ([]byte, []int)

Deprecated: Use Sigstore.ProtoReflect.Descriptor instead.

func (*Sigstore) GetCertificateAuthority 

func (x *Sigstore) GetCertificateAuthority() *CertificateAuthority

func (*Sigstore) GetDescription 

func (x *Sigstore) GetDescription() string

func (*Sigstore) GetHostname 

func (x *Sigstore) GetHostname() string

func (*Sigstore) GetId 

func (x *Sigstore) GetId() string

func (*Sigstore) GetName 

func (x *Sigstore) GetName() string

func (*Sigstore) ProtoMessage 

func (*Sigstore) ProtoMessage()

func (*Sigstore) ProtoReflect 

func (x *Sigstore) ProtoReflect() protoreflect.Message

func (*Sigstore) Reset 

func (x *Sigstore) Reset()

func (*Sigstore) String 

func (x *Sigstore) String() string

type SigstoreFilter 

type SigstoreFilter struct {

	// id is the exact UIDP of the record.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// uidp filers records based on their position in the group hierarchy.
	Uidp *v1.UIDPFilter `protobuf:"bytes,2,opt,name=uidp,proto3" json:"uidp,omitempty"`
	// name is the exact name of the record.
	Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
	// contains filtered or unexported fields
}

func (*SigstoreFilter) Descriptor deprecated 

func (*SigstoreFilter) Descriptor() ([]byte, []int)

Deprecated: Use SigstoreFilter.ProtoReflect.Descriptor instead.

func (*SigstoreFilter) GetId 

func (x *SigstoreFilter) GetId() string

func (*SigstoreFilter) GetName 

func (x *SigstoreFilter) GetName() string

func (*SigstoreFilter) GetUidp 

func (x *SigstoreFilter) GetUidp() *v1.UIDPFilter

func (*SigstoreFilter) ProtoMessage 

func (*SigstoreFilter) ProtoMessage()

func (*SigstoreFilter) ProtoReflect 

func (x *SigstoreFilter) ProtoReflect() protoreflect.Message

func (*SigstoreFilter) Reset 

func (x *SigstoreFilter) Reset()

func (*SigstoreFilter) String 

func (x *SigstoreFilter) String() string

type SigstoreList 

type SigstoreList struct {
	Items []*Sigstore `protobuf:"bytes,1,rep,name=items,proto3" json:"items,omitempty"`
	// contains filtered or unexported fields
}

func (*SigstoreList) Descriptor deprecated 

func (*SigstoreList) Descriptor() ([]byte, []int)

Deprecated: Use SigstoreList.ProtoReflect.Descriptor instead.

func (*SigstoreList) GetItems 

func (x *SigstoreList) GetItems() []*Sigstore

func (*SigstoreList) ProtoMessage 

func (*SigstoreList) ProtoMessage()

func (*SigstoreList) ProtoReflect 

func (x *SigstoreList) ProtoReflect() protoreflect.Message

func (*SigstoreList) Reset 

func (x *SigstoreList) Reset()

func (*SigstoreList) String 

func (x *SigstoreList) String() string

type SigstoreServiceClient 

type SigstoreServiceClient interface {
	Create(ctx context.Context, in *CreateSigstoreRequest, opts ...grpc.CallOption) (*Sigstore, error)
	List(ctx context.Context, in *SigstoreFilter, opts ...grpc.CallOption) (*SigstoreList, error)
	Delete(ctx context.Context, in *DeleteSigstoreRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
	Update(ctx context.Context, in *Sigstore, opts ...grpc.CallOption) (*Sigstore, error)
}

SigstoreServiceClient is the client API for SigstoreService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewSigstoreServiceClient 

func NewSigstoreServiceClient(cc grpc.ClientConnInterface) SigstoreServiceClient

type SigstoreServiceServer 

type SigstoreServiceServer interface {
	Create(context.Context, *CreateSigstoreRequest) (*Sigstore, error)
	List(context.Context, *SigstoreFilter) (*SigstoreList, error)
	Delete(context.Context, *DeleteSigstoreRequest) (*emptypb.Empty, error)
	Update(context.Context, *Sigstore) (*Sigstore, error)
	// contains filtered or unexported methods
}

SigstoreServiceServer is the server API for SigstoreService service. All implementations must embed UnimplementedSigstoreServiceServer for forward compatibility

type StoredGroupInvite 

type StoredGroupInvite struct {

	// id, The group UIDP under which this invite resides.
	Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
	// expiration, timestamp this invite becomes no longer valid.
	Expiration *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=expiration,proto3" json:"expiration,omitempty"`
	// key_id is used to identify the verification key for this code.
	KeyId string `protobuf:"bytes,3,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
	// role is the role the invited identity will be role-bound to the group with.
	Role *Role `protobuf:"bytes,4,opt,name=role,proto3" json:"role,omitempty"`
	// contains filtered or unexported fields
}

func (*StoredGroupInvite) Descriptor deprecated 

func (*StoredGroupInvite) Descriptor() ([]byte, []int)

Deprecated: Use StoredGroupInvite.ProtoReflect.Descriptor instead.

func (*StoredGroupInvite) GetExpiration 

func (x *StoredGroupInvite) GetExpiration() *timestamppb.Timestamp

func (*StoredGroupInvite) GetId 

func (x *StoredGroupInvite) GetId() string

func (*StoredGroupInvite) GetKeyId 

func (x *StoredGroupInvite) GetKeyId() string

func (*StoredGroupInvite) GetRole 

func (x *StoredGroupInvite) GetRole() *Role

func (*StoredGroupInvite) ProtoMessage 

func (*StoredGroupInvite) ProtoMessage()

func (*StoredGroupInvite) ProtoReflect 

func (x *StoredGroupInvite) ProtoReflect() protoreflect.Message

func (*StoredGroupInvite) Reset 

func (x *StoredGroupInvite) Reset()

func (*StoredGroupInvite) String 

func (x *StoredGroupInvite) String() string

type UnimplementedGroupAccountAssociationsServer 

type UnimplementedGroupAccountAssociationsServer struct {
}

UnimplementedGroupAccountAssociationsServer must be embedded to have forward compatible implementations.

func (UnimplementedGroupAccountAssociationsServer) Check 

func (UnimplementedGroupAccountAssociationsServer) Check(context.Context, *AccountAssociationsCheckRequest) (*AccountAssociationsStatus, error)

func (UnimplementedGroupAccountAssociationsServer) Create 

func (UnimplementedGroupAccountAssociationsServer) Create(context.Context, *AccountAssociations) (*AccountAssociations, error)

func (UnimplementedGroupAccountAssociationsServer) Delete 

func (UnimplementedGroupAccountAssociationsServer) Delete(context.Context, *DeleteAccountAssociationsRequest) (*emptypb.Empty, error)

func (UnimplementedGroupAccountAssociationsServer) List 

func (UnimplementedGroupAccountAssociationsServer) List(context.Context, *AccountAssociationsFilter) (*AccountAssociationsList, error)

func (UnimplementedGroupAccountAssociationsServer) Update 

func (UnimplementedGroupAccountAssociationsServer) Update(context.Context, *AccountAssociations) (*AccountAssociations, error)

type UnimplementedGroupInvitesServer 

type UnimplementedGroupInvitesServer struct {
}

UnimplementedGroupInvitesServer must be embedded to have forward compatible implementations.

func (UnimplementedGroupInvitesServer) Create 

func (UnimplementedGroupInvitesServer) Create(context.Context, *GroupInviteRequest) (*GroupInvite, error)

func (UnimplementedGroupInvitesServer) CreateWithGroup 

func (UnimplementedGroupInvitesServer) CreateWithGroup(context.Context, *GroupInviteRequest) (*GroupInvite, error)

func (UnimplementedGroupInvitesServer) Delete 

func (UnimplementedGroupInvitesServer) Delete(context.Context, *DeleteGroupInviteRequest) (*emptypb.Empty, error)

func (UnimplementedGroupInvitesServer) List 

func (UnimplementedGroupInvitesServer) List(context.Context, *GroupInviteFilter) (*GroupInviteList, error)

type UnimplementedGroupsServer 

type UnimplementedGroupsServer struct {
}

UnimplementedGroupsServer must be embedded to have forward compatible implementations.

func (UnimplementedGroupsServer) Create 

func (UnimplementedGroupsServer) Create(context.Context, *CreateGroupRequest) (*Group, error)

func (UnimplementedGroupsServer) Delete 

func (UnimplementedGroupsServer) Delete(context.Context, *DeleteGroupRequest) (*emptypb.Empty, error)

func (UnimplementedGroupsServer) List 

func (UnimplementedGroupsServer) List(context.Context, *GroupFilter) (*GroupList, error)

func (UnimplementedGroupsServer) Update 

func (UnimplementedGroupsServer) Update(context.Context, *Group) (*Group, error)

type UnimplementedIdentitiesServer 

type UnimplementedIdentitiesServer struct {
}

UnimplementedIdentitiesServer must be embedded to have forward compatible implementations.

func (UnimplementedIdentitiesServer) Create 

func (UnimplementedIdentitiesServer) Create(context.Context, *CreateIdentityRequest) (*Identity, error)

func (UnimplementedIdentitiesServer) Delete 

func (UnimplementedIdentitiesServer) Delete(context.Context, *DeleteIdentityRequest) (*emptypb.Empty, error)

func (UnimplementedIdentitiesServer) List 

func (UnimplementedIdentitiesServer) List(context.Context, *IdentityFilter) (*IdentityList, error)

func (UnimplementedIdentitiesServer) Lookup 

func (UnimplementedIdentitiesServer) Lookup(context.Context, *LookupRequest) (*Identity, error)

func (UnimplementedIdentitiesServer) Update 

func (UnimplementedIdentitiesServer) Update(context.Context, *Identity) (*Identity, error)

type UnimplementedIdentityProvidersServer 

type UnimplementedIdentityProvidersServer struct {
}

UnimplementedIdentityProvidersServer must be embedded to have forward compatible implementations.

func (UnimplementedIdentityProvidersServer) Create 

func (UnimplementedIdentityProvidersServer) Create(context.Context, *CreateIdentityProviderRequest) (*IdentityProvider, error)

func (UnimplementedIdentityProvidersServer) Delete 

func (UnimplementedIdentityProvidersServer) Delete(context.Context, *DeleteIdentityProviderRequest) (*emptypb.Empty, error)

func (UnimplementedIdentityProvidersServer) List 

func (UnimplementedIdentityProvidersServer) List(context.Context, *IdentityProviderFilter) (*IdentityProviderList, error)

func (UnimplementedIdentityProvidersServer) Update 

func (UnimplementedIdentityProvidersServer) Update(context.Context, *IdentityProvider) (*IdentityProvider, error)

type UnimplementedPoliciesServer 

type UnimplementedPoliciesServer struct {
}

UnimplementedPoliciesServer must be embedded to have forward compatible implementations.

func (UnimplementedPoliciesServer) ActivateVersion 

func (UnimplementedPoliciesServer) ActivateVersion(context.Context, *ActivateVersionRequest) (*Policy, error)

func (UnimplementedPoliciesServer) Create 

func (UnimplementedPoliciesServer) Create(context.Context, *CreatePolicyRequest) (*Policy, error)

func (UnimplementedPoliciesServer) Delete 

func (UnimplementedPoliciesServer) Delete(context.Context, *DeletePolicyRequest) (*emptypb.Empty, error)

func (UnimplementedPoliciesServer) List 

func (UnimplementedPoliciesServer) List(context.Context, *PolicyFilter) (*PolicyList, error)

func (UnimplementedPoliciesServer) ListVersions 

func (UnimplementedPoliciesServer) ListVersions(context.Context, *ListVersionsRequest) (*PolicyVersionList, error)

func (UnimplementedPoliciesServer) Update 

func (UnimplementedPoliciesServer) Update(context.Context, *Policy) (*Policy, error)

type UnimplementedRoleBindingsServer 

type UnimplementedRoleBindingsServer struct {
}

UnimplementedRoleBindingsServer must be embedded to have forward compatible implementations.

func (UnimplementedRoleBindingsServer) Create 

func (UnimplementedRoleBindingsServer) Create(context.Context, *CreateRoleBindingRequest) (*RoleBinding, error)

func (UnimplementedRoleBindingsServer) Delete 

func (UnimplementedRoleBindingsServer) Delete(context.Context, *DeleteRoleBindingRequest) (*emptypb.Empty, error)

func (UnimplementedRoleBindingsServer) List 

func (UnimplementedRoleBindingsServer) List(context.Context, *RoleBindingFilter) (*RoleBindingList, error)

func (UnimplementedRoleBindingsServer) Update 

func (UnimplementedRoleBindingsServer) Update(context.Context, *RoleBinding) (*RoleBinding, error)

type UnimplementedRolesServer 

type UnimplementedRolesServer struct {
}

UnimplementedRolesServer must be embedded to have forward compatible implementations.

func (UnimplementedRolesServer) Create 

func (UnimplementedRolesServer) Create(context.Context, *CreateRoleRequest) (*Role, error)

func (UnimplementedRolesServer) Delete 

func (UnimplementedRolesServer) Delete(context.Context, *DeleteRoleRequest) (*emptypb.Empty, error)

func (UnimplementedRolesServer) List 

func (UnimplementedRolesServer) List(context.Context, *RoleFilter) (*RoleList, error)

func (UnimplementedRolesServer) Update 

func (UnimplementedRolesServer) Update(context.Context, *Role) (*Role, error)

type UnimplementedSigstoreServiceServer 

type UnimplementedSigstoreServiceServer struct {
}

UnimplementedSigstoreServiceServer must be embedded to have forward compatible implementations.

func (UnimplementedSigstoreServiceServer) Create 

func (UnimplementedSigstoreServiceServer) Create(context.Context, *CreateSigstoreRequest) (*Sigstore, error)

func (UnimplementedSigstoreServiceServer) Delete 

func (UnimplementedSigstoreServiceServer) Delete(context.Context, *DeleteSigstoreRequest) (*emptypb.Empty, error)

func (UnimplementedSigstoreServiceServer) List 

func (UnimplementedSigstoreServiceServer) List(context.Context, *SigstoreFilter) (*SigstoreList, error)

func (UnimplementedSigstoreServiceServer) Update 

func (UnimplementedSigstoreServiceServer) Update(context.Context, *Sigstore) (*Sigstore, error)

type UnsafeGroupAccountAssociationsServer 

type UnsafeGroupAccountAssociationsServer interface {
	// contains filtered or unexported methods
}

UnsafeGroupAccountAssociationsServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to GroupAccountAssociationsServer will result in compilation errors.

type UnsafeGroupInvitesServer 

type UnsafeGroupInvitesServer interface {
	// contains filtered or unexported methods
}

UnsafeGroupInvitesServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to GroupInvitesServer will result in compilation errors.

type UnsafeGroupsServer 

type UnsafeGroupsServer interface {
	// contains filtered or unexported methods
}

UnsafeGroupsServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to GroupsServer will result in compilation errors.

type UnsafeIdentitiesServer 

type UnsafeIdentitiesServer interface {
	// contains filtered or unexported methods
}

UnsafeIdentitiesServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to IdentitiesServer will result in compilation errors.

type UnsafeIdentityProvidersServer 

type UnsafeIdentityProvidersServer interface {
	// contains filtered or unexported methods
}

UnsafeIdentityProvidersServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to IdentityProvidersServer will result in compilation errors.

type UnsafePoliciesServer 

type UnsafePoliciesServer interface {
	// contains filtered or unexported methods
}

UnsafePoliciesServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to PoliciesServer will result in compilation errors.

type UnsafeRoleBindingsServer 

type UnsafeRoleBindingsServer interface {
	// contains filtered or unexported methods
}

UnsafeRoleBindingsServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to RoleBindingsServer will result in compilation errors.

type UnsafeRolesServer 

type UnsafeRolesServer interface {
	// contains filtered or unexported methods
}

UnsafeRolesServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to RolesServer will result in compilation errors.

type UnsafeSigstoreServiceServer 

type UnsafeSigstoreServiceServer interface {
	// contains filtered or unexported methods
}

UnsafeSigstoreServiceServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to SigstoreServiceServer will result in compilation errors.

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.