luci: go.chromium.org/luci/tokenserver/api/bq Index | Files

package bq

import "go.chromium.org/luci/tokenserver/api/bq"

Package bq contains BigQuery tables schemas.

Index

Package Files

bq.pb.go gen.go

type DelegationToken Uses

type DelegationToken struct {
    // First 16 bytes of SHA256 of the token body, hex-encoded.
    Fingerprint string `protobuf:"bytes,1,opt,name=fingerprint,proto3" json:"fingerprint,omitempty"`
    // Kind of the token.
    TokenKind messages.Subtoken_Kind `protobuf:"varint,2,opt,name=token_kind,json=tokenKind,proto3,enum=messages.Subtoken_Kind" json:"token_kind,omitempty"`
    // Identifier of this token as generated by the token server.
    TokenId string `protobuf:"bytes,3,opt,name=token_id,json=tokenId,proto3" json:"token_id,omitempty"`
    // Identity whose authority is delegated.
    DelegatedIdentity string `protobuf:"bytes,4,opt,name=delegated_identity,json=delegatedIdentity,proto3" json:"delegated_identity,omitempty"`
    // Who requested this token.
    RequestorIdentity string `protobuf:"bytes,5,opt,name=requestor_identity,json=requestorIdentity,proto3" json:"requestor_identity,omitempty"`
    // When the token was generated.
    IssuedAt *timestamp.Timestamp `protobuf:"bytes,6,opt,name=issued_at,json=issuedAt,proto3" json:"issued_at,omitempty"`
    // When the token expires.
    Expiration *timestamp.Timestamp `protobuf:"bytes,7,opt,name=expiration,proto3" json:"expiration,omitempty"`
    // Who can present this token.
    TargetAudience []string `protobuf:"bytes,8,rep,name=target_audience,json=targetAudience,proto3" json:"target_audience,omitempty"`
    // What services should accept this token
    TargetServices []string `protobuf:"bytes,9,rep,name=target_services,json=targetServices,proto3" json:"target_services,omitempty"`
    // Token validity duration (in seconds), as requested by the caller.
    RequestedValidity int64 `protobuf:"varint,10,opt,name=requested_validity,json=requestedValidity,proto3" json:"requested_validity,omitempty"`
    // An intent string provided by the caller.
    RequestedIntent string `protobuf:"bytes,11,opt,name=requested_intent,json=requestedIntent,proto3" json:"requested_intent,omitempty"`
    // Arbitrary key:value pairs embedded into the token.
    Tags []string `protobuf:"bytes,12,rep,name=tags,proto3" json:"tags,omitempty"`
    // Revision of the luci-config repo with rules.
    ConfigRev string `protobuf:"bytes,13,opt,name=config_rev,json=configRev,proto3" json:"config_rev,omitempty"`
    // Name of the rule used to authorize this call.
    ConfigRule string `protobuf:"bytes,14,opt,name=config_rule,json=configRule,proto3" json:"config_rule,omitempty"`
    // IP address of the caller.
    PeerIp string `protobuf:"bytes,15,opt,name=peer_ip,json=peerIp,proto3" json:"peer_ip,omitempty"`
    // Identifier of the token server GAE app and version.
    ServiceVersion string `protobuf:"bytes,16,opt,name=service_version,json=serviceVersion,proto3" json:"service_version,omitempty"`
    // ID of the GAE request that handled the call.
    GaeRequestId string `protobuf:"bytes,17,opt,name=gae_request_id,json=gaeRequestId,proto3" json:"gae_request_id,omitempty"`
    // Revision of groups database used to authorize this call.
    AuthDbRev            int64    `protobuf:"varint,18,opt,name=auth_db_rev,json=authDbRev,proto3" json:"auth_db_rev,omitempty"`
    XXX_NoUnkeyedLiteral struct{} `json:"-"`
    XXX_unrecognized     []byte   `json:"-"`
    XXX_sizecache        int32    `json:"-"`
}

Issued delegation tokens.

func (*DelegationToken) Descriptor Uses

func (*DelegationToken) Descriptor() ([]byte, []int)

func (*DelegationToken) GetAuthDbRev Uses

func (m *DelegationToken) GetAuthDbRev() int64

func (*DelegationToken) GetConfigRev Uses

func (m *DelegationToken) GetConfigRev() string

func (*DelegationToken) GetConfigRule Uses

func (m *DelegationToken) GetConfigRule() string

func (*DelegationToken) GetDelegatedIdentity Uses

func (m *DelegationToken) GetDelegatedIdentity() string

func (*DelegationToken) GetExpiration Uses

func (m *DelegationToken) GetExpiration() *timestamp.Timestamp

func (*DelegationToken) GetFingerprint Uses

func (m *DelegationToken) GetFingerprint() string

func (*DelegationToken) GetGaeRequestId Uses

func (m *DelegationToken) GetGaeRequestId() string

func (*DelegationToken) GetIssuedAt Uses

func (m *DelegationToken) GetIssuedAt() *timestamp.Timestamp

func (*DelegationToken) GetPeerIp Uses

func (m *DelegationToken) GetPeerIp() string

func (*DelegationToken) GetRequestedIntent Uses

func (m *DelegationToken) GetRequestedIntent() string

func (*DelegationToken) GetRequestedValidity Uses

func (m *DelegationToken) GetRequestedValidity() int64

func (*DelegationToken) GetRequestorIdentity Uses

func (m *DelegationToken) GetRequestorIdentity() string

func (*DelegationToken) GetServiceVersion Uses

func (m *DelegationToken) GetServiceVersion() string

func (*DelegationToken) GetTags Uses

func (m *DelegationToken) GetTags() []string

func (*DelegationToken) GetTargetAudience Uses

func (m *DelegationToken) GetTargetAudience() []string

func (*DelegationToken) GetTargetServices Uses

func (m *DelegationToken) GetTargetServices() []string

func (*DelegationToken) GetTokenId Uses

func (m *DelegationToken) GetTokenId() string

func (*DelegationToken) GetTokenKind Uses

func (m *DelegationToken) GetTokenKind() messages.Subtoken_Kind

func (*DelegationToken) ProtoMessage Uses

func (*DelegationToken) ProtoMessage()

func (*DelegationToken) Reset Uses

func (m *DelegationToken) Reset()

func (*DelegationToken) String Uses

func (m *DelegationToken) String() string

func (*DelegationToken) XXX_DiscardUnknown Uses

func (m *DelegationToken) XXX_DiscardUnknown()

func (*DelegationToken) XXX_Marshal Uses

func (m *DelegationToken) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*DelegationToken) XXX_Merge Uses

func (m *DelegationToken) XXX_Merge(src proto.Message)

func (*DelegationToken) XXX_Size Uses

func (m *DelegationToken) XXX_Size() int

func (*DelegationToken) XXX_Unmarshal Uses

func (m *DelegationToken) XXX_Unmarshal(b []byte) error

type MachineToken Uses

type MachineToken struct {
    // First 16 bytes of SHA256 of the token body, hex-encoded.
    Fingerprint string `protobuf:"bytes,1,opt,name=fingerprint,proto3" json:"fingerprint,omitempty"`
    // Machine domain name encoded in the token.
    MachineFqdn string `protobuf:"bytes,2,opt,name=machine_fqdn,json=machineFqdn,proto3" json:"machine_fqdn,omitempty"`
    // Type of the machine token.
    TokenType api.MachineTokenType `protobuf:"varint,3,opt,name=token_type,json=tokenType,proto3,enum=tokenserver.MachineTokenType" json:"token_type,omitempty"`
    // When the token was generated.
    IssuedAt *timestamp.Timestamp `protobuf:"bytes,4,opt,name=issued_at,json=issuedAt,proto3" json:"issued_at,omitempty"`
    // When the token expires.
    Expiration *timestamp.Timestamp `protobuf:"bytes,5,opt,name=expiration,proto3" json:"expiration,omitempty"`
    // Serial number of the peer certificate.
    CertSerialNumber string `protobuf:"bytes,6,opt,name=cert_serial_number,json=certSerialNumber,proto3" json:"cert_serial_number,omitempty"`
    // Type of the signature used to proof possession of the private key.
    SignatureAlgorithm v1.SignatureAlgorithm `protobuf:"varint,7,opt,name=signature_algorithm,json=signatureAlgorithm,proto3,enum=tokenserver.minter.SignatureAlgorithm" json:"signature_algorithm,omitempty"`
    // Common Name of a CA that signed the peer certificate.
    CaCommonName string `protobuf:"bytes,8,opt,name=ca_common_name,json=caCommonName,proto3" json:"ca_common_name,omitempty"`
    // Revision of the luci-config repo that contains the CA.
    CaConfigRev string `protobuf:"bytes,9,opt,name=ca_config_rev,json=caConfigRev,proto3" json:"ca_config_rev,omitempty"`
    // IP address of the caller.
    PeerIp string `protobuf:"bytes,10,opt,name=peer_ip,json=peerIp,proto3" json:"peer_ip,omitempty"`
    // Identifier of the token server GAE app and version.
    ServiceVersion string `protobuf:"bytes,11,opt,name=service_version,json=serviceVersion,proto3" json:"service_version,omitempty"`
    // ID of the GAE request that handled the call.
    GaeRequestId         string   `protobuf:"bytes,12,opt,name=gae_request_id,json=gaeRequestId,proto3" json:"gae_request_id,omitempty"`
    XXX_NoUnkeyedLiteral struct{} `json:"-"`
    XXX_unrecognized     []byte   `json:"-"`
    XXX_sizecache        int32    `json:"-"`
}

Issued machine tokens.

func (*MachineToken) Descriptor Uses

func (*MachineToken) Descriptor() ([]byte, []int)

func (*MachineToken) GetCaCommonName Uses

func (m *MachineToken) GetCaCommonName() string

func (*MachineToken) GetCaConfigRev Uses

func (m *MachineToken) GetCaConfigRev() string

func (*MachineToken) GetCertSerialNumber Uses

func (m *MachineToken) GetCertSerialNumber() string

func (*MachineToken) GetExpiration Uses

func (m *MachineToken) GetExpiration() *timestamp.Timestamp

func (*MachineToken) GetFingerprint Uses

func (m *MachineToken) GetFingerprint() string

func (*MachineToken) GetGaeRequestId Uses

func (m *MachineToken) GetGaeRequestId() string

func (*MachineToken) GetIssuedAt Uses

func (m *MachineToken) GetIssuedAt() *timestamp.Timestamp

func (*MachineToken) GetMachineFqdn Uses

func (m *MachineToken) GetMachineFqdn() string

func (*MachineToken) GetPeerIp Uses

func (m *MachineToken) GetPeerIp() string

func (*MachineToken) GetServiceVersion Uses

func (m *MachineToken) GetServiceVersion() string

func (*MachineToken) GetSignatureAlgorithm Uses

func (m *MachineToken) GetSignatureAlgorithm() v1.SignatureAlgorithm

func (*MachineToken) GetTokenType Uses

func (m *MachineToken) GetTokenType() api.MachineTokenType

func (*MachineToken) ProtoMessage Uses

func (*MachineToken) ProtoMessage()

func (*MachineToken) Reset Uses

func (m *MachineToken) Reset()

func (*MachineToken) String Uses

func (m *MachineToken) String() string

func (*MachineToken) XXX_DiscardUnknown Uses

func (m *MachineToken) XXX_DiscardUnknown()

func (*MachineToken) XXX_Marshal Uses

func (m *MachineToken) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*MachineToken) XXX_Merge Uses

func (m *MachineToken) XXX_Merge(src proto.Message)

func (*MachineToken) XXX_Size Uses

func (m *MachineToken) XXX_Size() int

func (*MachineToken) XXX_Unmarshal Uses

func (m *MachineToken) XXX_Unmarshal(b []byte) error

type OAuthToken Uses

type OAuthToken struct {
    // First 16 bytes of SHA256 of the token body, hex-encoded.
    Fingerprint string `protobuf:"bytes,1,opt,name=fingerprint,proto3" json:"fingerprint,omitempty"`
    // First 16 bytes of SHA256 of the oauth grant, hex-encoded.
    GrantFingerprint string `protobuf:"bytes,2,opt,name=grant_fingerprint,json=grantFingerprint,proto3" json:"grant_fingerprint,omitempty"`
    // Service account email the end user wants to act as.
    ServiceAccount string `protobuf:"bytes,3,opt,name=service_account,json=serviceAccount,proto3" json:"service_account,omitempty"`
    // Requested OAuth scopes.
    OauthScopes []string `protobuf:"bytes,4,rep,name=oauth_scopes,json=oauthScopes,proto3" json:"oauth_scopes,omitempty"`
    // Who requested and who can use this token.
    ProxyIdentity string `protobuf:"bytes,5,opt,name=proxy_identity,json=proxyIdentity,proto3" json:"proxy_identity,omitempty"`
    // On whose behalf the token is generated.
    EndUserIdentity string `protobuf:"bytes,6,opt,name=end_user_identity,json=endUserIdentity,proto3" json:"end_user_identity,omitempty"`
    // When this request happened.
    RequestedAt *timestamp.Timestamp `protobuf:"bytes,7,opt,name=requested_at,json=requestedAt,proto3" json:"requested_at,omitempty"`
    // When the token expires.
    Expiration *timestamp.Timestamp `protobuf:"bytes,8,opt,name=expiration,proto3" json:"expiration,omitempty"`
    // Arbitrary key:value pairs provided by the caller.
    AuditTags []string `protobuf:"bytes,9,rep,name=audit_tags,json=auditTags,proto3" json:"audit_tags,omitempty"`
    // Revision of the luci-config repo with rules.
    ConfigRev string `protobuf:"bytes,10,opt,name=config_rev,json=configRev,proto3" json:"config_rev,omitempty"`
    // Name of the rule used to authorize this call.
    ConfigRule string `protobuf:"bytes,11,opt,name=config_rule,json=configRule,proto3" json:"config_rule,omitempty"`
    // IP address of the caller.
    PeerIp string `protobuf:"bytes,12,opt,name=peer_ip,json=peerIp,proto3" json:"peer_ip,omitempty"`
    // Identifier of the token server GAE app and version.
    ServiceVersion string `protobuf:"bytes,13,opt,name=service_version,json=serviceVersion,proto3" json:"service_version,omitempty"`
    // ID of the GAE request that handled the call.
    GaeRequestId string `protobuf:"bytes,14,opt,name=gae_request_id,json=gaeRequestId,proto3" json:"gae_request_id,omitempty"`
    // Revision of groups database used to authorize this call.
    AuthDbRev            int64    `protobuf:"varint,15,opt,name=auth_db_rev,json=authDbRev,proto3" json:"auth_db_rev,omitempty"`
    XXX_NoUnkeyedLiteral struct{} `json:"-"`
    XXX_unrecognized     []byte   `json:"-"`
    XXX_sizecache        int32    `json:"-"`
}

Issued OAuth tokens.

func (*OAuthToken) Descriptor Uses

func (*OAuthToken) Descriptor() ([]byte, []int)

func (*OAuthToken) GetAuditTags Uses

func (m *OAuthToken) GetAuditTags() []string

func (*OAuthToken) GetAuthDbRev Uses

func (m *OAuthToken) GetAuthDbRev() int64

func (*OAuthToken) GetConfigRev Uses

func (m *OAuthToken) GetConfigRev() string

func (*OAuthToken) GetConfigRule Uses

func (m *OAuthToken) GetConfigRule() string

func (*OAuthToken) GetEndUserIdentity Uses

func (m *OAuthToken) GetEndUserIdentity() string

func (*OAuthToken) GetExpiration Uses

func (m *OAuthToken) GetExpiration() *timestamp.Timestamp

func (*OAuthToken) GetFingerprint Uses

func (m *OAuthToken) GetFingerprint() string

func (*OAuthToken) GetGaeRequestId Uses

func (m *OAuthToken) GetGaeRequestId() string

func (*OAuthToken) GetGrantFingerprint Uses

func (m *OAuthToken) GetGrantFingerprint() string

func (*OAuthToken) GetOauthScopes Uses

func (m *OAuthToken) GetOauthScopes() []string

func (*OAuthToken) GetPeerIp Uses

func (m *OAuthToken) GetPeerIp() string

func (*OAuthToken) GetProxyIdentity Uses

func (m *OAuthToken) GetProxyIdentity() string

func (*OAuthToken) GetRequestedAt Uses

func (m *OAuthToken) GetRequestedAt() *timestamp.Timestamp

func (*OAuthToken) GetServiceAccount Uses

func (m *OAuthToken) GetServiceAccount() string

func (*OAuthToken) GetServiceVersion Uses

func (m *OAuthToken) GetServiceVersion() string

func (*OAuthToken) ProtoMessage Uses

func (*OAuthToken) ProtoMessage()

func (*OAuthToken) Reset Uses

func (m *OAuthToken) Reset()

func (*OAuthToken) String Uses

func (m *OAuthToken) String() string

func (*OAuthToken) XXX_DiscardUnknown Uses

func (m *OAuthToken) XXX_DiscardUnknown()

func (*OAuthToken) XXX_Marshal Uses

func (m *OAuthToken) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*OAuthToken) XXX_Merge Uses

func (m *OAuthToken) XXX_Merge(src proto.Message)

func (*OAuthToken) XXX_Size Uses

func (m *OAuthToken) XXX_Size() int

func (*OAuthToken) XXX_Unmarshal Uses

func (m *OAuthToken) XXX_Unmarshal(b []byte) error

type OAuthTokenGrant Uses

type OAuthTokenGrant struct {
    // First 16 bytes of SHA256 of the token body, hex-encoded.
    Fingerprint string `protobuf:"bytes,1,opt,name=fingerprint,proto3" json:"fingerprint,omitempty"`
    // Identifier of this token as generated by the token server.
    TokenId string `protobuf:"bytes,2,opt,name=token_id,json=tokenId,proto3" json:"token_id,omitempty"`
    // Service account email the end user wants to act as.
    ServiceAccount string `protobuf:"bytes,3,opt,name=service_account,json=serviceAccount,proto3" json:"service_account,omitempty"`
    // Who requested and who can use this token.
    ProxyIdentity string `protobuf:"bytes,4,opt,name=proxy_identity,json=proxyIdentity,proto3" json:"proxy_identity,omitempty"`
    // On whose behalf the token is generated.
    EndUserIdentity string `protobuf:"bytes,5,opt,name=end_user_identity,json=endUserIdentity,proto3" json:"end_user_identity,omitempty"`
    // When the token was generated.
    IssuedAt *timestamp.Timestamp `protobuf:"bytes,6,opt,name=issued_at,json=issuedAt,proto3" json:"issued_at,omitempty"`
    // When the token expires.
    Expiration *timestamp.Timestamp `protobuf:"bytes,7,opt,name=expiration,proto3" json:"expiration,omitempty"`
    // Arbitrary key:value pairs provided by the caller.
    AuditTags []string `protobuf:"bytes,8,rep,name=audit_tags,json=auditTags,proto3" json:"audit_tags,omitempty"`
    // Revision of the luci-config repo with rules.
    ConfigRev string `protobuf:"bytes,9,opt,name=config_rev,json=configRev,proto3" json:"config_rev,omitempty"`
    // Name of the rule used to authorize this call.
    ConfigRule string `protobuf:"bytes,10,opt,name=config_rule,json=configRule,proto3" json:"config_rule,omitempty"`
    // IP address of the caller.
    PeerIp string `protobuf:"bytes,11,opt,name=peer_ip,json=peerIp,proto3" json:"peer_ip,omitempty"`
    // Identifier of the token server GAE app and version.
    ServiceVersion string `protobuf:"bytes,12,opt,name=service_version,json=serviceVersion,proto3" json:"service_version,omitempty"`
    // ID of the GAE request that handled the call.
    GaeRequestId string `protobuf:"bytes,13,opt,name=gae_request_id,json=gaeRequestId,proto3" json:"gae_request_id,omitempty"`
    // Revision of groups database used to authorize this call.
    AuthDbRev            int64    `protobuf:"varint,14,opt,name=auth_db_rev,json=authDbRev,proto3" json:"auth_db_rev,omitempty"`
    XXX_NoUnkeyedLiteral struct{} `json:"-"`
    XXX_unrecognized     []byte   `json:"-"`
    XXX_sizecache        int32    `json:"-"`
}

Issued OAuth token grants.

func (*OAuthTokenGrant) Descriptor Uses

func (*OAuthTokenGrant) Descriptor() ([]byte, []int)

func (*OAuthTokenGrant) GetAuditTags Uses

func (m *OAuthTokenGrant) GetAuditTags() []string

func (*OAuthTokenGrant) GetAuthDbRev Uses

func (m *OAuthTokenGrant) GetAuthDbRev() int64

func (*OAuthTokenGrant) GetConfigRev Uses

func (m *OAuthTokenGrant) GetConfigRev() string

func (*OAuthTokenGrant) GetConfigRule Uses

func (m *OAuthTokenGrant) GetConfigRule() string

func (*OAuthTokenGrant) GetEndUserIdentity Uses

func (m *OAuthTokenGrant) GetEndUserIdentity() string

func (*OAuthTokenGrant) GetExpiration Uses

func (m *OAuthTokenGrant) GetExpiration() *timestamp.Timestamp

func (*OAuthTokenGrant) GetFingerprint Uses

func (m *OAuthTokenGrant) GetFingerprint() string

func (*OAuthTokenGrant) GetGaeRequestId Uses

func (m *OAuthTokenGrant) GetGaeRequestId() string

func (*OAuthTokenGrant) GetIssuedAt Uses

func (m *OAuthTokenGrant) GetIssuedAt() *timestamp.Timestamp

func (*OAuthTokenGrant) GetPeerIp Uses

func (m *OAuthTokenGrant) GetPeerIp() string

func (*OAuthTokenGrant) GetProxyIdentity Uses

func (m *OAuthTokenGrant) GetProxyIdentity() string

func (*OAuthTokenGrant) GetServiceAccount Uses

func (m *OAuthTokenGrant) GetServiceAccount() string

func (*OAuthTokenGrant) GetServiceVersion Uses

func (m *OAuthTokenGrant) GetServiceVersion() string

func (*OAuthTokenGrant) GetTokenId Uses

func (m *OAuthTokenGrant) GetTokenId() string

func (*OAuthTokenGrant) ProtoMessage Uses

func (*OAuthTokenGrant) ProtoMessage()

func (*OAuthTokenGrant) Reset Uses

func (m *OAuthTokenGrant) Reset()

func (*OAuthTokenGrant) String Uses

func (m *OAuthTokenGrant) String() string

func (*OAuthTokenGrant) XXX_DiscardUnknown Uses

func (m *OAuthTokenGrant) XXX_DiscardUnknown()

func (*OAuthTokenGrant) XXX_Marshal Uses

func (m *OAuthTokenGrant) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*OAuthTokenGrant) XXX_Merge Uses

func (m *OAuthTokenGrant) XXX_Merge(src proto.Message)

func (*OAuthTokenGrant) XXX_Size Uses

func (m *OAuthTokenGrant) XXX_Size() int

func (*OAuthTokenGrant) XXX_Unmarshal Uses

func (m *OAuthTokenGrant) XXX_Unmarshal(b []byte) error

Package bq imports 7 packages (graph) and is imported by 3 packages. Updated 2018-11-15. Refresh now. Tools for package owners.