Documentation

Overview

Package istio_v1_auth is a generated protocol buffer package.

It is generated from these files:
	security/proto/ca_service.proto

It has these top-level messages:
	CsrRequest
	CsrResponse

go:generate $GOPATH/src/istio.io/istio/bin/mixer_codegen.sh -f security/proto/ca_service.proto go:generate $GOPATH/src/istio.io/istio/bin/mixer_codegen.sh -f security/proto/workload_service.proto go:generate $GOPATH/src/istio.io/istio/bin/mixer_codegen.sh -f security/proto/istioca.proto nolint

Package istio_v1_auth is a generated protocol buffer package.

It is generated from these files:
	security/proto/istioca.proto

It has these top-level messages:
	IstioCertificateRequest
	IstioCertificateResponse

Package istio_v1_auth is a generated protocol buffer package.

It is generated from these files:
	security/proto/workload_service.proto

It has these top-level messages:
	CheckRequest
	CheckResponse

Index

Constants

This section is empty.

Variables

View Source
var (
	ErrInvalidLengthCaService = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflowCaService   = fmt.Errorf("proto: integer overflow")
)
View Source
var (
	ErrInvalidLengthIstioca = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflowIstioca   = fmt.Errorf("proto: integer overflow")
)
View Source
var (
	ErrInvalidLengthWorkloadService = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflowWorkloadService   = fmt.Errorf("proto: integer overflow")
)

Functions

func RegisterIstioCAServiceServer

func RegisterIstioCAServiceServer(s *grpc.Server, srv IstioCAServiceServer)

func RegisterIstioCertificateServiceServer

func RegisterIstioCertificateServiceServer(s *grpc.Server, srv IstioCertificateServiceServer)

func RegisterWorkloadServiceServer

func RegisterWorkloadServiceServer(s *grpc.Server, srv WorkloadServiceServer)

Types

type CheckRequest

type CheckRequest struct {
	Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
}

func (*CheckRequest) Descriptor

func (*CheckRequest) Descriptor() ([]byte, []int)

func (*CheckRequest) Equal

func (this *CheckRequest) Equal(that interface{}) bool

func (*CheckRequest) GetName

func (m *CheckRequest) GetName() string

func (*CheckRequest) GoString

func (this *CheckRequest) GoString() string

func (*CheckRequest) Marshal

func (m *CheckRequest) Marshal() (dAtA []byte, err error)

func (*CheckRequest) MarshalTo

func (m *CheckRequest) MarshalTo(dAtA []byte) (int, error)

func (*CheckRequest) ProtoMessage

func (*CheckRequest) ProtoMessage()

func (*CheckRequest) Reset

func (m *CheckRequest) Reset()

func (*CheckRequest) Size

func (m *CheckRequest) Size() (n int)

func (*CheckRequest) String

func (this *CheckRequest) String() string

func (*CheckRequest) Unmarshal

func (m *CheckRequest) Unmarshal(dAtA []byte) error

type CheckResponse

type CheckResponse struct {
	Status *google_rpc.Status `protobuf:"bytes,1,opt,name=status" json:"status,omitempty"`
}

func (*CheckResponse) Descriptor

func (*CheckResponse) Descriptor() ([]byte, []int)

func (*CheckResponse) Equal

func (this *CheckResponse) Equal(that interface{}) bool

func (*CheckResponse) GetStatus

func (m *CheckResponse) GetStatus() *google_rpc.Status

func (*CheckResponse) GoString

func (this *CheckResponse) GoString() string

func (*CheckResponse) Marshal

func (m *CheckResponse) Marshal() (dAtA []byte, err error)

func (*CheckResponse) MarshalTo

func (m *CheckResponse) MarshalTo(dAtA []byte) (int, error)

func (*CheckResponse) ProtoMessage

func (*CheckResponse) ProtoMessage()

func (*CheckResponse) Reset

func (m *CheckResponse) Reset()

func (*CheckResponse) Size

func (m *CheckResponse) Size() (n int)

func (*CheckResponse) String

func (this *CheckResponse) String() string

func (*CheckResponse) Unmarshal

func (m *CheckResponse) Unmarshal(dAtA []byte) error

type CsrRequest

type CsrRequest struct {
	// PEM-encoded certificate signing request
	CsrPem []byte `protobuf:"bytes,1,opt,name=csr_pem,json=csrPem,proto3" json:"csr_pem,omitempty"`
	// opaque credential for node agent
	NodeAgentCredential []byte `protobuf:"bytes,2,opt,name=node_agent_credential,json=nodeAgentCredential,proto3" json:"node_agent_credential,omitempty"`
	// type of the node_agent_credential (aws/gcp/onprem/custom...)
	CredentialType string `protobuf:"bytes,3,opt,name=credential_type,json=credentialType,proto3" json:"credential_type,omitempty"`
	// the requested ttl of the certificate in minutes
	RequestedTtlMinutes int32 `protobuf:"varint,4,opt,name=requested_ttl_minutes,json=requestedTtlMinutes,proto3" json:"requested_ttl_minutes,omitempty"`
}

func (*CsrRequest) Descriptor

func (*CsrRequest) Descriptor() ([]byte, []int)

func (*CsrRequest) Marshal

func (m *CsrRequest) Marshal() (dAtA []byte, err error)

func (*CsrRequest) MarshalTo

func (m *CsrRequest) MarshalTo(dAtA []byte) (int, error)

func (*CsrRequest) ProtoMessage

func (*CsrRequest) ProtoMessage()

func (*CsrRequest) Reset

func (m *CsrRequest) Reset()

func (*CsrRequest) Size

func (m *CsrRequest) Size() (n int)

func (*CsrRequest) String

func (this *CsrRequest) String() string

func (*CsrRequest) Unmarshal

func (m *CsrRequest) Unmarshal(dAtA []byte) error

type CsrResponse

type CsrResponse struct {
	// Whether the CSR is approved.
	IsApproved bool               `protobuf:"varint,1,opt,name=is_approved,json=isApproved,proto3" json:"is_approved,omitempty"`
	Status     *google_rpc.Status `protobuf:"bytes,2,opt,name=status" json:"status,omitempty"`
	// The signed target cert.
	SignedCert []byte `protobuf:"bytes,3,opt,name=signed_cert,json=signedCert,proto3" json:"signed_cert,omitempty"`
	// The cert chain up to the trusted root cert. It includes all the certs between the
	// newly signed cert and the root cert.
	CertChain []byte `protobuf:"bytes,4,opt,name=cert_chain,json=certChain,proto3" json:"cert_chain,omitempty"`
}

func (*CsrResponse) Descriptor

func (*CsrResponse) Descriptor() ([]byte, []int)

func (*CsrResponse) Marshal

func (m *CsrResponse) Marshal() (dAtA []byte, err error)

func (*CsrResponse) MarshalTo

func (m *CsrResponse) MarshalTo(dAtA []byte) (int, error)

func (*CsrResponse) ProtoMessage

func (*CsrResponse) ProtoMessage()

func (*CsrResponse) Reset

func (m *CsrResponse) Reset()

func (*CsrResponse) Size

func (m *CsrResponse) Size() (n int)

func (*CsrResponse) String

func (this *CsrResponse) String() string

func (*CsrResponse) Unmarshal

func (m *CsrResponse) Unmarshal(dAtA []byte) error

type IstioCAServiceClient

type IstioCAServiceClient interface {
	// A request object includes a PEM-encoded certificate signing request that
	// is generated on the Node Agent. Additionally credential can be attached
	// within the request object for a server to authenticate the originating
	// node agent.
	HandleCSR(ctx context.Context, in *CsrRequest, opts ...grpc.CallOption) (*CsrResponse, error)
}

func NewIstioCAServiceClient

func NewIstioCAServiceClient(cc *grpc.ClientConn) IstioCAServiceClient

type IstioCAServiceServer

type IstioCAServiceServer interface {
	// A request object includes a PEM-encoded certificate signing request that
	// is generated on the Node Agent. Additionally credential can be attached
	// within the request object for a server to authenticate the originating
	// node agent.
	HandleCSR(context.Context, *CsrRequest) (*CsrResponse, error)
}

type IstioCertificateRequest

type IstioCertificateRequest struct {
	// PEM-encoded certificate request.
	Csr string `protobuf:"bytes,1,opt,name=csr,proto3" json:"csr,omitempty"`
	// Optional subject ID field.
	SubjectId string `protobuf:"bytes,2,opt,name=subject_id,json=subjectId,proto3" json:"subject_id,omitempty"`
	// Optional: requested certificate validity period, in seconds.
	ValidityDuration int64 `protobuf:"varint,3,opt,name=validity_duration,json=validityDuration,proto3" json:"validity_duration,omitempty"`
}

Certificate request message.

func (*IstioCertificateRequest) Descriptor

func (*IstioCertificateRequest) Descriptor() ([]byte, []int)

func (*IstioCertificateRequest) Equal

func (this *IstioCertificateRequest) Equal(that interface{}) bool

func (*IstioCertificateRequest) GetCsr

func (m *IstioCertificateRequest) GetCsr() string

func (*IstioCertificateRequest) GetSubjectId

func (m *IstioCertificateRequest) GetSubjectId() string

func (*IstioCertificateRequest) GetValidityDuration

func (m *IstioCertificateRequest) GetValidityDuration() int64

func (*IstioCertificateRequest) GoString

func (this *IstioCertificateRequest) GoString() string

func (*IstioCertificateRequest) Marshal

func (m *IstioCertificateRequest) Marshal() (dAtA []byte, err error)

func (*IstioCertificateRequest) MarshalTo

func (m *IstioCertificateRequest) MarshalTo(dAtA []byte) (int, error)

func (*IstioCertificateRequest) ProtoMessage

func (*IstioCertificateRequest) ProtoMessage()

func (*IstioCertificateRequest) Reset

func (m *IstioCertificateRequest) Reset()

func (*IstioCertificateRequest) Size

func (m *IstioCertificateRequest) Size() (n int)

func (*IstioCertificateRequest) String

func (this *IstioCertificateRequest) String() string

func (*IstioCertificateRequest) Unmarshal

func (m *IstioCertificateRequest) Unmarshal(dAtA []byte) error

type IstioCertificateResponse

type IstioCertificateResponse struct {
	// PEM-encoded certificate chain.
	// Leaf cert is element '0'. Root cert is element 'n'.
	CertChain []string `protobuf:"bytes,1,rep,name=cert_chain,json=certChain" json:"cert_chain,omitempty"`
}

Certificate response message.

func (*IstioCertificateResponse) Descriptor

func (*IstioCertificateResponse) Descriptor() ([]byte, []int)

func (*IstioCertificateResponse) Equal

func (this *IstioCertificateResponse) Equal(that interface{}) bool

func (*IstioCertificateResponse) GetCertChain

func (m *IstioCertificateResponse) GetCertChain() []string

func (*IstioCertificateResponse) GoString

func (this *IstioCertificateResponse) GoString() string

func (*IstioCertificateResponse) Marshal

func (m *IstioCertificateResponse) Marshal() (dAtA []byte, err error)

func (*IstioCertificateResponse) MarshalTo

func (m *IstioCertificateResponse) MarshalTo(dAtA []byte) (int, error)

func (*IstioCertificateResponse) ProtoMessage

func (*IstioCertificateResponse) ProtoMessage()

func (*IstioCertificateResponse) Reset

func (m *IstioCertificateResponse) Reset()

func (*IstioCertificateResponse) Size

func (m *IstioCertificateResponse) Size() (n int)

func (*IstioCertificateResponse) String

func (this *IstioCertificateResponse) String() string

func (*IstioCertificateResponse) Unmarshal

func (m *IstioCertificateResponse) Unmarshal(dAtA []byte) error

type IstioCertificateServiceClient

type IstioCertificateServiceClient interface {
	// Using provided CSR, returns a signed certificate.
	CreateCertificate(ctx context.Context, in *IstioCertificateRequest, opts ...grpc.CallOption) (*IstioCertificateResponse, error)
}

func NewIstioCertificateServiceClient

func NewIstioCertificateServiceClient(cc *grpc.ClientConn) IstioCertificateServiceClient

type IstioCertificateServiceServer

type IstioCertificateServiceServer interface {
	// Using provided CSR, returns a signed certificate.
	CreateCertificate(context.Context, *IstioCertificateRequest) (*IstioCertificateResponse, error)
}

type WorkloadServiceClient

type WorkloadServiceClient interface {
	Check(ctx context.Context, in *CheckRequest, opts ...grpc.CallOption) (*CheckResponse, error)
}

func NewWorkloadServiceClient

func NewWorkloadServiceClient(cc *grpc.ClientConn) WorkloadServiceClient

type WorkloadServiceServer

type WorkloadServiceServer interface {
	Check(context.Context, *CheckRequest) (*CheckResponse, error)
}

Directories

Path Synopsis
providers/google Package google_security_istioca_v1alpha1 is a generated protocol buffer package.