Documentation
¶
Index ¶
- Variables
- func RegisterIdentityServer(s *grpc.Server, srv IdentityServer)
- type CertifyRequest
- func (*CertifyRequest) Descriptor() ([]byte, []int)deprecated
- func (x *CertifyRequest) GetCertificateSigningRequest() []byte
- func (x *CertifyRequest) GetIdentity() string
- func (x *CertifyRequest) GetToken() []byte
- func (*CertifyRequest) ProtoMessage()
- func (x *CertifyRequest) ProtoReflect() protoreflect.Message
- func (x *CertifyRequest) Reset()
- func (x *CertifyRequest) String() string
- type CertifyResponse
- func (*CertifyResponse) Descriptor() ([]byte, []int)deprecated
- func (x *CertifyResponse) GetIntermediateCertificates() [][]byte
- func (x *CertifyResponse) GetLeafCertificate() []byte
- func (x *CertifyResponse) GetValidUntil() *timestamp.Timestamp
- func (*CertifyResponse) ProtoMessage()
- func (x *CertifyResponse) ProtoReflect() protoreflect.Message
- func (x *CertifyResponse) Reset()
- func (x *CertifyResponse) String() string
- type IdentityClient
- type IdentityServer
- type UnimplementedIdentityServer
Constants ¶
This section is empty.
Variables ¶
View Source
var File_identity_proto protoreflect.FileDescriptor
Functions ¶
func RegisterIdentityServer ¶
func RegisterIdentityServer(s *grpc.Server, srv IdentityServer)
Types ¶
type CertifyRequest ¶
type CertifyRequest struct {
Identity string `protobuf:"bytes,1,opt,name=identity,proto3" json:"identity,omitempty"`
// Proof of the requester's identity.
//
// In Kubernetes, for instance, this is the contents of a service account
// token.
Token []byte `protobuf:"bytes,2,opt,name=token,proto3" json:"token,omitempty"`
// A PEM-encoded x509 Certificate Signing Request.
CertificateSigningRequest []byte `` /* 138-byte string literal not displayed */
// contains filtered or unexported fields
}
func (*CertifyRequest) Descriptor
deprecated
func (*CertifyRequest) Descriptor() ([]byte, []int)
Deprecated: Use CertifyRequest.ProtoReflect.Descriptor instead.
func (*CertifyRequest) GetCertificateSigningRequest ¶
func (x *CertifyRequest) GetCertificateSigningRequest() []byte
func (*CertifyRequest) GetIdentity ¶
func (x *CertifyRequest) GetIdentity() string
func (*CertifyRequest) GetToken ¶
func (x *CertifyRequest) GetToken() []byte
func (*CertifyRequest) ProtoMessage ¶
func (*CertifyRequest) ProtoMessage()
func (*CertifyRequest) ProtoReflect ¶ added in v0.1.13
func (x *CertifyRequest) ProtoReflect() protoreflect.Message
func (*CertifyRequest) Reset ¶
func (x *CertifyRequest) Reset()
func (*CertifyRequest) String ¶
func (x *CertifyRequest) String() string
type CertifyResponse ¶
type CertifyResponse struct {
// A PEM-encoded x509 Certificate.
LeafCertificate []byte `protobuf:"bytes,1,opt,name=leaf_certificate,json=leafCertificate,proto3" json:"leaf_certificate,omitempty"`
// A list of PEM-encoded x509 Certificates that establish the trust chain
// between the leaf_certificate and the well-known trust anchors.
IntermediateCertificates [][]byte `` /* 133-byte string literal not displayed */
ValidUntil *timestamp.Timestamp `protobuf:"bytes,3,opt,name=valid_until,json=validUntil,proto3" json:"valid_until,omitempty"`
// contains filtered or unexported fields
}
func (*CertifyResponse) Descriptor
deprecated
func (*CertifyResponse) Descriptor() ([]byte, []int)
Deprecated: Use CertifyResponse.ProtoReflect.Descriptor instead.
func (*CertifyResponse) GetIntermediateCertificates ¶
func (x *CertifyResponse) GetIntermediateCertificates() [][]byte
func (*CertifyResponse) GetLeafCertificate ¶
func (x *CertifyResponse) GetLeafCertificate() []byte
func (*CertifyResponse) GetValidUntil ¶
func (x *CertifyResponse) GetValidUntil() *timestamp.Timestamp
func (*CertifyResponse) ProtoMessage ¶
func (*CertifyResponse) ProtoMessage()
func (*CertifyResponse) ProtoReflect ¶ added in v0.1.13
func (x *CertifyResponse) ProtoReflect() protoreflect.Message
func (*CertifyResponse) Reset ¶
func (x *CertifyResponse) Reset()
func (*CertifyResponse) String ¶
func (x *CertifyResponse) String() string
type IdentityClient ¶
type IdentityClient interface {
// Requests that a time-bounded certificate be signed.
//
// The requester must provide a token that verifies the client's identity and
// a Certificate Signing Request that adheres to the service naming rules.
//
// Errors are returned when the provided request is invalid or when
// authentication cannot be performed.
Certify(ctx context.Context, in *CertifyRequest, opts ...grpc.CallOption) (*CertifyResponse, error)
}
IdentityClient is the client API for Identity service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.
func NewIdentityClient ¶
func NewIdentityClient(cc grpc.ClientConnInterface) IdentityClient
type IdentityServer ¶
type IdentityServer interface {
// Requests that a time-bounded certificate be signed.
//
// The requester must provide a token that verifies the client's identity and
// a Certificate Signing Request that adheres to the service naming rules.
//
// Errors are returned when the provided request is invalid or when
// authentication cannot be performed.
Certify(context.Context, *CertifyRequest) (*CertifyResponse, error)
}
IdentityServer is the server API for Identity service.
type UnimplementedIdentityServer ¶ added in v0.1.13
type UnimplementedIdentityServer struct {
}
UnimplementedIdentityServer can be embedded to have forward compatible implementations.
func (*UnimplementedIdentityServer) Certify ¶ added in v0.1.13
func (*UnimplementedIdentityServer) Certify(context.Context, *CertifyRequest) (*CertifyResponse, error)
Source Files
Click to show internal directories.
Click to hide internal directories.