genproto: google.golang.org/genproto/googleapis/cloud/security/privateca/v1beta1 Index | Files

package privateca

import "google.golang.org/genproto/googleapis/cloud/security/privateca/v1beta1"

Index

Package Files

resources.pb.go service.pb.go

Variables

var (
    RevocationReason_name = map[int32]string{
        0:  "REVOCATION_REASON_UNSPECIFIED",
        1:  "KEY_COMPROMISE",
        2:  "CERTIFICATE_AUTHORITY_COMPROMISE",
        3:  "AFFILIATION_CHANGED",
        4:  "SUPERSEDED",
        5:  "CESSATION_OF_OPERATION",
        6:  "CERTIFICATE_HOLD",
        7:  "PRIVILEGE_WITHDRAWN",
        8:  "ATTRIBUTE_AUTHORITY_COMPROMISE",
    }
    RevocationReason_value = map[string]int32{
        "REVOCATION_REASON_UNSPECIFIED":    0,
        "KEY_COMPROMISE":                   1,
        "CERTIFICATE_AUTHORITY_COMPROMISE": 2,
        "AFFILIATION_CHANGED":              3,
        "SUPERSEDED":                       4,
        "CESSATION_OF_OPERATION":           5,
        "CERTIFICATE_HOLD":                 6,
        "PRIVILEGE_WITHDRAWN":              7,
        "ATTRIBUTE_AUTHORITY_COMPROMISE":   8,
    }
)

Enum value maps for RevocationReason.

var (
    CertificateAuthority_Type_name = map[int32]string{
        0:  "TYPE_UNSPECIFIED",
        1:  "SELF_SIGNED",
        2:  "SUBORDINATE",
    }
    CertificateAuthority_Type_value = map[string]int32{
        "TYPE_UNSPECIFIED": 0,
        "SELF_SIGNED":      1,
        "SUBORDINATE":      2,
    }
)

Enum value maps for CertificateAuthority_Type.

var (
    CertificateAuthority_Tier_name = map[int32]string{
        0:  "TIER_UNSPECIFIED",
        1:  "ENTERPRISE",
        2:  "DEVOPS",
    }
    CertificateAuthority_Tier_value = map[string]int32{
        "TIER_UNSPECIFIED": 0,
        "ENTERPRISE":       1,
        "DEVOPS":           2,
    }
)

Enum value maps for CertificateAuthority_Tier.

var (
    CertificateAuthority_State_name = map[int32]string{
        0:  "STATE_UNSPECIFIED",
        1:  "ENABLED",
        2:  "DISABLED",
        3:  "PENDING_ACTIVATION",
        4:  "PENDING_DELETION",
    }
    CertificateAuthority_State_value = map[string]int32{
        "STATE_UNSPECIFIED":  0,
        "ENABLED":            1,
        "DISABLED":           2,
        "PENDING_ACTIVATION": 3,
        "PENDING_DELETION":   4,
    }
)

Enum value maps for CertificateAuthority_State.

var (
    CertificateAuthority_SignHashAlgorithm_name = map[int32]string{
        0:  "SIGN_HASH_ALGORITHM_UNSPECIFIED",
        1:  "RSA_PSS_2048_SHA256",
        2:  "RSA_PSS_3072_SHA256",
        3:  "RSA_PSS_4096_SHA256",
        6:  "RSA_PKCS1_2048_SHA256",
        7:  "RSA_PKCS1_3072_SHA256",
        8:  "RSA_PKCS1_4096_SHA256",
        4:  "EC_P256_SHA256",
        5:  "EC_P384_SHA384",
    }
    CertificateAuthority_SignHashAlgorithm_value = map[string]int32{
        "SIGN_HASH_ALGORITHM_UNSPECIFIED": 0,
        "RSA_PSS_2048_SHA256":             1,
        "RSA_PSS_3072_SHA256":             2,
        "RSA_PSS_4096_SHA256":             3,
        "RSA_PKCS1_2048_SHA256":           6,
        "RSA_PKCS1_3072_SHA256":           7,
        "RSA_PKCS1_4096_SHA256":           8,
        "EC_P256_SHA256":                  4,
        "EC_P384_SHA384":                  5,
    }
)

Enum value maps for CertificateAuthority_SignHashAlgorithm.

var (
    CertificateRevocationList_State_name = map[int32]string{
        0:  "STATE_UNSPECIFIED",
        1:  "ACTIVE",
        2:  "SUPERSEDED",
    }
    CertificateRevocationList_State_value = map[string]int32{
        "STATE_UNSPECIFIED": 0,
        "ACTIVE":            1,
        "SUPERSEDED":        2,
    }
)

Enum value maps for CertificateRevocationList_State.

var (
    PublicKey_KeyType_name = map[int32]string{
        0:  "KEY_TYPE_UNSPECIFIED",
        1:  "PEM_RSA_KEY",
        2:  "PEM_EC_KEY",
    }
    PublicKey_KeyType_value = map[string]int32{
        "KEY_TYPE_UNSPECIFIED": 0,
        "PEM_RSA_KEY":          1,
        "PEM_EC_KEY":           2,
    }
)

Enum value maps for PublicKey_KeyType.

var File_google_cloud_security_privateca_v1beta1_resources_proto protoreflect.FileDescriptor
var File_google_cloud_security_privateca_v1beta1_service_proto protoreflect.FileDescriptor

func RegisterCertificateAuthorityServiceServer Uses

func RegisterCertificateAuthorityServiceServer(s *grpc.Server, srv CertificateAuthorityServiceServer)

type ActivateCertificateAuthorityRequest Uses

type ActivateCertificateAuthorityRequest struct {

    // Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
    // format `projects/*/locations/*/certificateAuthorities/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Required. The signed CA certificate issued from
    // [FetchCertificateAuthorityCsrResponse.pem_csr][google.cloud.security.privateca.v1beta1.FetchCertificateAuthorityCsrResponse.pem_csr].
    PemCaCertificate string `protobuf:"bytes,2,opt,name=pem_ca_certificate,json=pemCaCertificate,proto3" json:"pem_ca_certificate,omitempty"`
    // Required. Must include information about the issuer of 'pem_ca_certificate', and any
    // further issuers until the self-signed CA.
    SubordinateConfig *SubordinateConfig `protobuf:"bytes,3,opt,name=subordinate_config,json=subordinateConfig,proto3" json:"subordinate_config,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,4,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.ActivateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ActivateCertificateAuthority].

func (*ActivateCertificateAuthorityRequest) Descriptor Uses

func (*ActivateCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use ActivateCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*ActivateCertificateAuthorityRequest) GetName Uses

func (x *ActivateCertificateAuthorityRequest) GetName() string

func (*ActivateCertificateAuthorityRequest) GetPemCaCertificate Uses

func (x *ActivateCertificateAuthorityRequest) GetPemCaCertificate() string

func (*ActivateCertificateAuthorityRequest) GetRequestId Uses

func (x *ActivateCertificateAuthorityRequest) GetRequestId() string

func (*ActivateCertificateAuthorityRequest) GetSubordinateConfig Uses

func (x *ActivateCertificateAuthorityRequest) GetSubordinateConfig() *SubordinateConfig

func (*ActivateCertificateAuthorityRequest) ProtoMessage Uses

func (*ActivateCertificateAuthorityRequest) ProtoMessage()

func (*ActivateCertificateAuthorityRequest) ProtoReflect Uses

func (x *ActivateCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*ActivateCertificateAuthorityRequest) Reset Uses

func (x *ActivateCertificateAuthorityRequest) Reset()

func (*ActivateCertificateAuthorityRequest) String Uses

func (x *ActivateCertificateAuthorityRequest) String() string

type Certificate Uses

type Certificate struct {

    // Output only. The resource path for this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] in the format
    // `projects/*/locations/*/certificateAuthorities/*/certificates/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // The config used to create a signed X.509 certificate.
    //
    // Types that are assignable to CertificateConfig:
    //	*Certificate_PemCsr
    //	*Certificate_Config
    CertificateConfig isCertificate_CertificateConfig `protobuf_oneof:"certificate_config"`
    // Required. Immutable. The desired lifetime of a certificate. Used to create the
    // "not_before_time" and "not_after_time" fields inside an X.509
    // certificate. Note that the lifetime may be truncated if it would extend
    // past the life of any certificate authority in the issuing chain.
    Lifetime *durationpb.Duration `protobuf:"bytes,4,opt,name=lifetime,proto3" json:"lifetime,omitempty"`
    // Output only. Details regarding the revocation of this [Certificate][google.cloud.security.privateca.v1beta1.Certificate]. This
    // [Certificate][google.cloud.security.privateca.v1beta1.Certificate] is considered revoked if and only if this field is present.
    RevocationDetails *Certificate_RevocationDetails `protobuf:"bytes,5,opt,name=revocation_details,json=revocationDetails,proto3" json:"revocation_details,omitempty"`
    // Output only. The pem-encoded, signed X.509 certificate.
    PemCertificate string `protobuf:"bytes,6,opt,name=pem_certificate,json=pemCertificate,proto3" json:"pem_certificate,omitempty"`
    // Output only. A structured description of the issued X.509 certificate.
    CertificateDescription *CertificateDescription `protobuf:"bytes,7,opt,name=certificate_description,json=certificateDescription,proto3" json:"certificate_description,omitempty"`
    // Output only. The chain that may be used to verify the X.509 certificate. Expected to be
    // in issuer-to-root order according to RFC 5246.
    PemCertificateChain []string `protobuf:"bytes,8,rep,name=pem_certificate_chain,json=pemCertificateChain,proto3" json:"pem_certificate_chain,omitempty"`
    // Output only. The time at which this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] was created.
    CreateTime *timestamppb.Timestamp `protobuf:"bytes,9,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
    // Output only. The time at which this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] was updated.
    UpdateTime *timestamppb.Timestamp `protobuf:"bytes,10,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
    // Optional. Labels with user-defined metadata.
    Labels map[string]string `protobuf:"bytes,11,rep,name=labels,proto3" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
    // contains filtered or unexported fields
}

A [Certificate][google.cloud.security.privateca.v1beta1.Certificate] corresponds to a signed X.509 certificate issued by a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].

func (*Certificate) Descriptor Uses

func (*Certificate) Descriptor() ([]byte, []int)

Deprecated: Use Certificate.ProtoReflect.Descriptor instead.

func (*Certificate) GetCertificateConfig Uses

func (m *Certificate) GetCertificateConfig() isCertificate_CertificateConfig

func (*Certificate) GetCertificateDescription Uses

func (x *Certificate) GetCertificateDescription() *CertificateDescription

func (*Certificate) GetConfig Uses

func (x *Certificate) GetConfig() *CertificateConfig

func (*Certificate) GetCreateTime Uses

func (x *Certificate) GetCreateTime() *timestamppb.Timestamp

func (*Certificate) GetLabels Uses

func (x *Certificate) GetLabels() map[string]string

func (*Certificate) GetLifetime Uses

func (x *Certificate) GetLifetime() *durationpb.Duration

func (*Certificate) GetName Uses

func (x *Certificate) GetName() string

func (*Certificate) GetPemCertificate Uses

func (x *Certificate) GetPemCertificate() string

func (*Certificate) GetPemCertificateChain Uses

func (x *Certificate) GetPemCertificateChain() []string

func (*Certificate) GetPemCsr Uses

func (x *Certificate) GetPemCsr() string

func (*Certificate) GetRevocationDetails Uses

func (x *Certificate) GetRevocationDetails() *Certificate_RevocationDetails

func (*Certificate) GetUpdateTime Uses

func (x *Certificate) GetUpdateTime() *timestamppb.Timestamp

func (*Certificate) ProtoMessage Uses

func (*Certificate) ProtoMessage()

func (*Certificate) ProtoReflect Uses

func (x *Certificate) ProtoReflect() protoreflect.Message

func (*Certificate) Reset Uses

func (x *Certificate) Reset()

func (*Certificate) String Uses

func (x *Certificate) String() string

type CertificateAuthority Uses

type CertificateAuthority struct {

    // Output only. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
    // format `projects/*/locations/*/certificateAuthorities/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Required. Immutable. The [Type][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type] of this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    Type CertificateAuthority_Type `protobuf:"varint,2,opt,name=type,proto3,enum=google.cloud.security.privateca.v1beta1.CertificateAuthority_Type" json:"type,omitempty"`
    // Required. Immutable. The [Tier][google.cloud.security.privateca.v1beta1.CertificateAuthority.Tier] of this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    Tier CertificateAuthority_Tier `protobuf:"varint,3,opt,name=tier,proto3,enum=google.cloud.security.privateca.v1beta1.CertificateAuthority_Tier" json:"tier,omitempty"`
    // Required. Immutable. The config used to create a self-signed X.509 certificate or CSR.
    Config *CertificateConfig `protobuf:"bytes,4,opt,name=config,proto3" json:"config,omitempty"`
    // Required. The desired lifetime of the CA certificate. Used to create the
    // "not_before_time" and "not_after_time" fields inside an X.509
    // certificate.
    Lifetime *durationpb.Duration `protobuf:"bytes,5,opt,name=lifetime,proto3" json:"lifetime,omitempty"`
    // Required. Immutable. Used when issuing certificates for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]. If this
    // [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] is a self-signed CertificateAuthority, this key
    // is also used to sign the self-signed CA certificate. Otherwise, it
    // is used to sign a CSR.
    KeySpec *CertificateAuthority_KeyVersionSpec `protobuf:"bytes,6,opt,name=key_spec,json=keySpec,proto3" json:"key_spec,omitempty"`
    // Optional. The [CertificateAuthorityPolicy][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy] to enforce when issuing
    // [Certificates][google.cloud.security.privateca.v1beta1.Certificate] from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    CertificatePolicy *CertificateAuthority_CertificateAuthorityPolicy `protobuf:"bytes,7,opt,name=certificate_policy,json=certificatePolicy,proto3" json:"certificate_policy,omitempty"`
    // Optional. The [IssuingOptions][google.cloud.security.privateca.v1beta1.CertificateAuthority.IssuingOptions] to follow when issuing [Certificates][google.cloud.security.privateca.v1beta1.Certificate]
    // from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    IssuingOptions *CertificateAuthority_IssuingOptions `protobuf:"bytes,8,opt,name=issuing_options,json=issuingOptions,proto3" json:"issuing_options,omitempty"`
    // Optional. If this is a subordinate [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], this field will be set
    // with the subordinate configuration, which describes its issuers. This may
    // be updated, but this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] must continue to validate.
    SubordinateConfig *SubordinateConfig `protobuf:"bytes,19,opt,name=subordinate_config,json=subordinateConfig,proto3" json:"subordinate_config,omitempty"`
    // Output only. The [State][google.cloud.security.privateca.v1beta1.CertificateAuthority.State] for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    State CertificateAuthority_State `protobuf:"varint,10,opt,name=state,proto3,enum=google.cloud.security.privateca.v1beta1.CertificateAuthority_State" json:"state,omitempty"`
    // Output only. This [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s certificate chain, including the current
    // [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s certificate. Ordered such that the root issuer
    // is the final element (consistent with RFC 5246). For a self-signed CA, this
    // will only list the current [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s certificate.
    PemCaCertificates []string `protobuf:"bytes,9,rep,name=pem_ca_certificates,json=pemCaCertificates,proto3" json:"pem_ca_certificates,omitempty"`
    // Output only. A structured description of this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s CA certificate
    // and its issuers. Ordered as self-to-root.
    CaCertificateDescriptions []*CertificateDescription `protobuf:"bytes,12,rep,name=ca_certificate_descriptions,json=caCertificateDescriptions,proto3" json:"ca_certificate_descriptions,omitempty"`
    // Immutable. The name of a Cloud Storage bucket where this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will
    // publish content, such as the CA certificate and CRLs. This must be a bucket
    // name, without any prefixes (such as `gs://`) or suffixes (such as
    // `.googleapis.com`). For example, to use a bucket named `my-bucket`, you
    // would simply specify `my-bucket`. If not specified, a managed bucket will
    // be created.
    GcsBucket string `protobuf:"bytes,13,opt,name=gcs_bucket,json=gcsBucket,proto3" json:"gcs_bucket,omitempty"`
    // Output only. URLs for accessing content published by this CA, such as the CA certificate
    // and CRLs.
    AccessUrls *CertificateAuthority_AccessUrls `protobuf:"bytes,14,opt,name=access_urls,json=accessUrls,proto3" json:"access_urls,omitempty"`
    // Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] was created.
    CreateTime *timestamppb.Timestamp `protobuf:"bytes,15,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
    // Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] was updated.
    UpdateTime *timestamppb.Timestamp `protobuf:"bytes,16,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
    // Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will be deleted, if
    // scheduled for deletion.
    DeleteTime *timestamppb.Timestamp `protobuf:"bytes,17,opt,name=delete_time,json=deleteTime,proto3" json:"delete_time,omitempty"`
    // Optional. Labels with user-defined metadata.
    Labels map[string]string `protobuf:"bytes,18,rep,name=labels,proto3" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
    // contains filtered or unexported fields
}

A [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] represents an individual Certificate Authority. A [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] can be used to create [Certificates][google.cloud.security.privateca.v1beta1.Certificate].

func (*CertificateAuthority) Descriptor Uses

func (*CertificateAuthority) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority.ProtoReflect.Descriptor instead.

func (*CertificateAuthority) GetAccessUrls Uses

func (x *CertificateAuthority) GetAccessUrls() *CertificateAuthority_AccessUrls

func (*CertificateAuthority) GetCaCertificateDescriptions Uses

func (x *CertificateAuthority) GetCaCertificateDescriptions() []*CertificateDescription

func (*CertificateAuthority) GetCertificatePolicy Uses

func (x *CertificateAuthority) GetCertificatePolicy() *CertificateAuthority_CertificateAuthorityPolicy

func (*CertificateAuthority) GetConfig Uses

func (x *CertificateAuthority) GetConfig() *CertificateConfig

func (*CertificateAuthority) GetCreateTime Uses

func (x *CertificateAuthority) GetCreateTime() *timestamppb.Timestamp

func (*CertificateAuthority) GetDeleteTime Uses

func (x *CertificateAuthority) GetDeleteTime() *timestamppb.Timestamp

func (*CertificateAuthority) GetGcsBucket Uses

func (x *CertificateAuthority) GetGcsBucket() string

func (*CertificateAuthority) GetIssuingOptions Uses

func (x *CertificateAuthority) GetIssuingOptions() *CertificateAuthority_IssuingOptions

func (*CertificateAuthority) GetKeySpec Uses

func (x *CertificateAuthority) GetKeySpec() *CertificateAuthority_KeyVersionSpec

func (*CertificateAuthority) GetLabels Uses

func (x *CertificateAuthority) GetLabels() map[string]string

func (*CertificateAuthority) GetLifetime Uses

func (x *CertificateAuthority) GetLifetime() *durationpb.Duration

func (*CertificateAuthority) GetName Uses

func (x *CertificateAuthority) GetName() string

func (*CertificateAuthority) GetPemCaCertificates Uses

func (x *CertificateAuthority) GetPemCaCertificates() []string

func (*CertificateAuthority) GetState Uses

func (x *CertificateAuthority) GetState() CertificateAuthority_State

func (*CertificateAuthority) GetSubordinateConfig Uses

func (x *CertificateAuthority) GetSubordinateConfig() *SubordinateConfig

func (*CertificateAuthority) GetTier Uses

func (x *CertificateAuthority) GetTier() CertificateAuthority_Tier

func (*CertificateAuthority) GetType Uses

func (x *CertificateAuthority) GetType() CertificateAuthority_Type

func (*CertificateAuthority) GetUpdateTime Uses

func (x *CertificateAuthority) GetUpdateTime() *timestamppb.Timestamp

func (*CertificateAuthority) ProtoMessage Uses

func (*CertificateAuthority) ProtoMessage()

func (*CertificateAuthority) ProtoReflect Uses

func (x *CertificateAuthority) ProtoReflect() protoreflect.Message

func (*CertificateAuthority) Reset Uses

func (x *CertificateAuthority) Reset()

func (*CertificateAuthority) String Uses

func (x *CertificateAuthority) String() string

type CertificateAuthorityServiceClient Uses

type CertificateAuthorityServiceClient interface {
    // Create a new [Certificate][google.cloud.security.privateca.v1beta1.Certificate] in a given Project, Location from a particular
    // [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    CreateCertificate(ctx context.Context, in *CreateCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
    // Returns a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
    GetCertificate(ctx context.Context, in *GetCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
    // Lists [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
    ListCertificates(ctx context.Context, in *ListCertificatesRequest, opts ...grpc.CallOption) (*ListCertificatesResponse, error)
    // Revoke a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
    RevokeCertificate(ctx context.Context, in *RevokeCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
    // Update a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]. Currently, the only field you can update is the
    // [labels][google.cloud.security.privateca.v1beta1.Certificate.labels] field.
    UpdateCertificate(ctx context.Context, in *UpdateCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
    // Activate a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is in state
    // [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
    // of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. After the
    // parent Certificate Authority signs a certificate signing request from
    // [FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr], this method can complete the activation
    // process.
    ActivateCertificateAuthority(ctx context.Context, in *ActivateCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Create a new [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in a given Project and Location.
    CreateCertificateAuthority(ctx context.Context, in *CreateCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Disable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    DisableCertificateAuthority(ctx context.Context, in *DisableCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Enable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    EnableCertificateAuthority(ctx context.Context, in *EnableCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Fetch a certificate signing request (CSR) from a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
    // that is in state
    // [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
    // of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. The CSR must
    // then be signed by the desired parent Certificate Authority, which could be
    // another [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] resource, or could be an on-prem
    // certificate authority. See also [ActivateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ActivateCertificateAuthority].
    FetchCertificateAuthorityCsr(ctx context.Context, in *FetchCertificateAuthorityCsrRequest, opts ...grpc.CallOption) (*FetchCertificateAuthorityCsrResponse, error)
    // Returns a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    GetCertificateAuthority(ctx context.Context, in *GetCertificateAuthorityRequest, opts ...grpc.CallOption) (*CertificateAuthority, error)
    // Lists [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    ListCertificateAuthorities(ctx context.Context, in *ListCertificateAuthoritiesRequest, opts ...grpc.CallOption) (*ListCertificateAuthoritiesResponse, error)
    // Restore a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is scheduled for deletion.
    RestoreCertificateAuthority(ctx context.Context, in *RestoreCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Schedule a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] for deletion.
    ScheduleDeleteCertificateAuthority(ctx context.Context, in *ScheduleDeleteCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Update a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    UpdateCertificateAuthority(ctx context.Context, in *UpdateCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Returns a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    GetCertificateRevocationList(ctx context.Context, in *GetCertificateRevocationListRequest, opts ...grpc.CallOption) (*CertificateRevocationList, error)
    // Lists [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    ListCertificateRevocationLists(ctx context.Context, in *ListCertificateRevocationListsRequest, opts ...grpc.CallOption) (*ListCertificateRevocationListsResponse, error)
    // Update a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    UpdateCertificateRevocationList(ctx context.Context, in *UpdateCertificateRevocationListRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
    // Returns a [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig].
    GetReusableConfig(ctx context.Context, in *GetReusableConfigRequest, opts ...grpc.CallOption) (*ReusableConfig, error)
    // Lists [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig].
    ListReusableConfigs(ctx context.Context, in *ListReusableConfigsRequest, opts ...grpc.CallOption) (*ListReusableConfigsResponse, error)
}

CertificateAuthorityServiceClient is the client API for CertificateAuthorityService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.

func NewCertificateAuthorityServiceClient Uses

func NewCertificateAuthorityServiceClient(cc grpc.ClientConnInterface) CertificateAuthorityServiceClient

type CertificateAuthorityServiceServer Uses

type CertificateAuthorityServiceServer interface {
    // Create a new [Certificate][google.cloud.security.privateca.v1beta1.Certificate] in a given Project, Location from a particular
    // [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    CreateCertificate(context.Context, *CreateCertificateRequest) (*Certificate, error)
    // Returns a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
    GetCertificate(context.Context, *GetCertificateRequest) (*Certificate, error)
    // Lists [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
    ListCertificates(context.Context, *ListCertificatesRequest) (*ListCertificatesResponse, error)
    // Revoke a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
    RevokeCertificate(context.Context, *RevokeCertificateRequest) (*Certificate, error)
    // Update a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]. Currently, the only field you can update is the
    // [labels][google.cloud.security.privateca.v1beta1.Certificate.labels] field.
    UpdateCertificate(context.Context, *UpdateCertificateRequest) (*Certificate, error)
    // Activate a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is in state
    // [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
    // of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. After the
    // parent Certificate Authority signs a certificate signing request from
    // [FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr], this method can complete the activation
    // process.
    ActivateCertificateAuthority(context.Context, *ActivateCertificateAuthorityRequest) (*longrunning.Operation, error)
    // Create a new [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in a given Project and Location.
    CreateCertificateAuthority(context.Context, *CreateCertificateAuthorityRequest) (*longrunning.Operation, error)
    // Disable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    DisableCertificateAuthority(context.Context, *DisableCertificateAuthorityRequest) (*longrunning.Operation, error)
    // Enable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    EnableCertificateAuthority(context.Context, *EnableCertificateAuthorityRequest) (*longrunning.Operation, error)
    // Fetch a certificate signing request (CSR) from a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
    // that is in state
    // [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
    // of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. The CSR must
    // then be signed by the desired parent Certificate Authority, which could be
    // another [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] resource, or could be an on-prem
    // certificate authority. See also [ActivateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ActivateCertificateAuthority].
    FetchCertificateAuthorityCsr(context.Context, *FetchCertificateAuthorityCsrRequest) (*FetchCertificateAuthorityCsrResponse, error)
    // Returns a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    GetCertificateAuthority(context.Context, *GetCertificateAuthorityRequest) (*CertificateAuthority, error)
    // Lists [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    ListCertificateAuthorities(context.Context, *ListCertificateAuthoritiesRequest) (*ListCertificateAuthoritiesResponse, error)
    // Restore a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is scheduled for deletion.
    RestoreCertificateAuthority(context.Context, *RestoreCertificateAuthorityRequest) (*longrunning.Operation, error)
    // Schedule a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] for deletion.
    ScheduleDeleteCertificateAuthority(context.Context, *ScheduleDeleteCertificateAuthorityRequest) (*longrunning.Operation, error)
    // Update a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    UpdateCertificateAuthority(context.Context, *UpdateCertificateAuthorityRequest) (*longrunning.Operation, error)
    // Returns a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    GetCertificateRevocationList(context.Context, *GetCertificateRevocationListRequest) (*CertificateRevocationList, error)
    // Lists [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    ListCertificateRevocationLists(context.Context, *ListCertificateRevocationListsRequest) (*ListCertificateRevocationListsResponse, error)
    // Update a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    UpdateCertificateRevocationList(context.Context, *UpdateCertificateRevocationListRequest) (*longrunning.Operation, error)
    // Returns a [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig].
    GetReusableConfig(context.Context, *GetReusableConfigRequest) (*ReusableConfig, error)
    // Lists [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig].
    ListReusableConfigs(context.Context, *ListReusableConfigsRequest) (*ListReusableConfigsResponse, error)
}

CertificateAuthorityServiceServer is the server API for CertificateAuthorityService service.

type CertificateAuthority_AccessUrls Uses

type CertificateAuthority_AccessUrls struct {

    // The URL where this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s CA certificate is
    // published. This will only be set for CAs that have been activated.
    CaCertificateAccessUrl string `protobuf:"bytes,1,opt,name=ca_certificate_access_url,json=caCertificateAccessUrl,proto3" json:"ca_certificate_access_url,omitempty"`
    // The URL where this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s CRLs are published. This
    // will only be set for CAs that have been activated.
    CrlAccessUrl string `protobuf:"bytes,2,opt,name=crl_access_url,json=crlAccessUrl,proto3" json:"crl_access_url,omitempty"`
    // contains filtered or unexported fields
}

URLs where a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will publish content.

func (*CertificateAuthority_AccessUrls) Descriptor Uses

func (*CertificateAuthority_AccessUrls) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_AccessUrls.ProtoReflect.Descriptor instead.

func (*CertificateAuthority_AccessUrls) GetCaCertificateAccessUrl Uses

func (x *CertificateAuthority_AccessUrls) GetCaCertificateAccessUrl() string

func (*CertificateAuthority_AccessUrls) GetCrlAccessUrl Uses

func (x *CertificateAuthority_AccessUrls) GetCrlAccessUrl() string

func (*CertificateAuthority_AccessUrls) ProtoMessage Uses

func (*CertificateAuthority_AccessUrls) ProtoMessage()

func (*CertificateAuthority_AccessUrls) ProtoReflect Uses

func (x *CertificateAuthority_AccessUrls) ProtoReflect() protoreflect.Message

func (*CertificateAuthority_AccessUrls) Reset Uses

func (x *CertificateAuthority_AccessUrls) Reset()

func (*CertificateAuthority_AccessUrls) String Uses

func (x *CertificateAuthority_AccessUrls) String() string

type CertificateAuthority_CertificateAuthorityPolicy Uses

type CertificateAuthority_CertificateAuthorityPolicy struct {

    // Allowed configurations or a single configuration for all issued
    // certificates.
    //
    // Types that are assignable to ConfigPolicy:
    //	*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList_
    //	*CertificateAuthority_CertificateAuthorityPolicy_OverwriteConfigValues
    ConfigPolicy isCertificateAuthority_CertificateAuthorityPolicy_ConfigPolicy `protobuf_oneof:"config_policy"`
    // Optional. If any [Subject][google.cloud.security.privateca.v1beta1.Subject] is specified here, then all
    // [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] must
    // match at least one listed [Subject][google.cloud.security.privateca.v1beta1.Subject]. If a [Subject][google.cloud.security.privateca.v1beta1.Subject] has an empty
    // field, any value will be allowed for that field.
    AllowedLocationsAndOrganizations []*Subject `protobuf:"bytes,3,rep,name=allowed_locations_and_organizations,json=allowedLocationsAndOrganizations,proto3" json:"allowed_locations_and_organizations,omitempty"`
    // Optional. If any value is specified here, then all
    // [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] must
    // match at least one listed value. If no value is specified, all values
    // will be allowed for this fied. Glob patterns are also supported.
    AllowedCommonNames []string `protobuf:"bytes,4,rep,name=allowed_common_names,json=allowedCommonNames,proto3" json:"allowed_common_names,omitempty"`
    // Optional. If a [AllowedSubjectAltNames][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.AllowedSubjectAltNames] is specified here, then all
    // [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] must
    // match [AllowedSubjectAltNames][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.AllowedSubjectAltNames]. If no value or an empty value
    // is specified, any value will be allowed for the [SubjectAltNames][google.cloud.security.privateca.v1beta1.SubjectAltNames]
    // field.
    AllowedSans *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames `protobuf:"bytes,5,opt,name=allowed_sans,json=allowedSans,proto3" json:"allowed_sans,omitempty"`
    // Optional. The maximum lifetime allowed by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]. Note that
    // if the any part if the issuing chain expires before a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]'s
    // requested maximum_lifetime, the effective lifetime will be explicitly
    // truncated.
    MaximumLifetime *durationpb.Duration `protobuf:"bytes,6,opt,name=maximum_lifetime,json=maximumLifetime,proto3" json:"maximum_lifetime,omitempty"`
    // Optional. If specified, then only methods allowed in the [IssuanceModes][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.IssuanceModes] may be
    // used to issue [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
    AllowedIssuanceModes *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes `protobuf:"bytes,8,opt,name=allowed_issuance_modes,json=allowedIssuanceModes,proto3" json:"allowed_issuance_modes,omitempty"`
    // contains filtered or unexported fields
}

The issuing policy for a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]. [Certificates][google.cloud.security.privateca.v1beta1.Certificate] will not be successfully issued from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] if they violate the policy.

func (*CertificateAuthority_CertificateAuthorityPolicy) Descriptor Uses

func (*CertificateAuthority_CertificateAuthorityPolicy) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy.ProtoReflect.Descriptor instead.

func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedCommonNames Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedCommonNames() []string

func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedConfigList Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedConfigList() *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList

func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedIssuanceModes Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedIssuanceModes() *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes

func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedLocationsAndOrganizations Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedLocationsAndOrganizations() []*Subject

func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedSans Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedSans() *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames

func (*CertificateAuthority_CertificateAuthorityPolicy) GetConfigPolicy Uses

func (m *CertificateAuthority_CertificateAuthorityPolicy) GetConfigPolicy() isCertificateAuthority_CertificateAuthorityPolicy_ConfigPolicy

func (*CertificateAuthority_CertificateAuthorityPolicy) GetMaximumLifetime Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) GetMaximumLifetime() *durationpb.Duration

func (*CertificateAuthority_CertificateAuthorityPolicy) GetOverwriteConfigValues Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) GetOverwriteConfigValues() *ReusableConfigWrapper

func (*CertificateAuthority_CertificateAuthorityPolicy) ProtoMessage Uses

func (*CertificateAuthority_CertificateAuthorityPolicy) ProtoMessage()

func (*CertificateAuthority_CertificateAuthorityPolicy) ProtoReflect Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) ProtoReflect() protoreflect.Message

func (*CertificateAuthority_CertificateAuthorityPolicy) Reset Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) Reset()

func (*CertificateAuthority_CertificateAuthorityPolicy) String Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy) String() string

type CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList Uses

type CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList struct {

    // Required. All [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
    // must match at least one listed [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper]. If a
    // [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper] has an empty field, any value will be
    // allowed for that field.
    AllowedConfigValues []*ReusableConfigWrapper `protobuf:"bytes,1,rep,name=allowed_config_values,json=allowedConfigValues,proto3" json:"allowed_config_values,omitempty"`
    // contains filtered or unexported fields
}

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Descriptor Uses

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList.ProtoReflect.Descriptor instead.

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) GetAllowedConfigValues Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) GetAllowedConfigValues() []*ReusableConfigWrapper

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoMessage Uses

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoMessage()

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoReflect Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoReflect() protoreflect.Message

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Reset Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Reset()

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) String Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) String() string

type CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList_ Uses

type CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList_ struct {
    // Optional. All [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
    // must match at least one listed [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper] in the list.
    AllowedConfigList *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList `protobuf:"bytes,1,opt,name=allowed_config_list,json=allowedConfigList,proto3,oneof"`
}

type CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames Uses

type CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames struct {

    // Optional. Contains valid, fully-qualified host names. Glob patterns are also
    // supported. To allow an explicit wildcard certificate, escape with
    // backlash (i.e. "\*").
    // E.g. for globbed entries: '*bar.com' will allow foo.bar.com, but not
    // *.bar.com, unless the [allow_globbing_dns_wildcards][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.AllowedSubjectAltNames.allow_globbing_dns_wildcards] field is set.
    // E.g. for wildcard entries: '\*.bar.com' will allow '*.bar.com', but not
    // 'foo.bar.com'.
    AllowedDnsNames []string `protobuf:"bytes,1,rep,name=allowed_dns_names,json=allowedDnsNames,proto3" json:"allowed_dns_names,omitempty"`
    // Optional. Contains valid RFC 3986 URIs. Glob patterns are also supported. To
    // match across path seperators (i.e. '/') use the double star glob
    // pattern (i.e. '**').
    AllowedUris []string `protobuf:"bytes,2,rep,name=allowed_uris,json=allowedUris,proto3" json:"allowed_uris,omitempty"`
    // Optional. Contains valid RFC 2822 E-mail addresses. Glob patterns are also
    // supported.
    AllowedEmailAddresses []string `protobuf:"bytes,3,rep,name=allowed_email_addresses,json=allowedEmailAddresses,proto3" json:"allowed_email_addresses,omitempty"`
    // Optional. Contains valid 32-bit IPv4 addresses and subnet ranges or RFC 4291 IPv6
    // addresses and subnet ranges. Subnet ranges are specified using the
    // '/' notation (e.g. 10.0.0.0/8, 2001:700:300:1800::/64). Glob patterns
    // are supported only for ip address entries (i.e. not for subnet ranges).
    AllowedIps []string `protobuf:"bytes,4,rep,name=allowed_ips,json=allowedIps,proto3" json:"allowed_ips,omitempty"`
    // Optional. Specifies if glob patterns used for [allowed_dns_names][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.AllowedSubjectAltNames.allowed_dns_names] allows
    // wildcard certificates.
    AllowGlobbingDnsWildcards bool `protobuf:"varint,5,opt,name=allow_globbing_dns_wildcards,json=allowGlobbingDnsWildcards,proto3" json:"allow_globbing_dns_wildcards,omitempty"`
    // Optional. Specifies if to allow custom X509Extension values.
    AllowCustomSans bool `protobuf:"varint,6,opt,name=allow_custom_sans,json=allowCustomSans,proto3" json:"allow_custom_sans,omitempty"`
    // contains filtered or unexported fields
}

[AllowedSubjectAltNames][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.AllowedSubjectAltNames] specifies the allowed values for [SubjectAltNames][google.cloud.security.privateca.v1beta1.SubjectAltNames] by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] when issuing [Certificates][google.cloud.security.privateca.v1beta1.Certificate].

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Descriptor Uses

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames.ProtoReflect.Descriptor instead.

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowCustomSans Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowCustomSans() bool

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowGlobbingDnsWildcards Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowGlobbingDnsWildcards() bool

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedDnsNames Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedDnsNames() []string

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedEmailAddresses Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedEmailAddresses() []string

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedIps Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedIps() []string

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedUris Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedUris() []string

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoMessage Uses

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoMessage()

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoReflect Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoReflect() protoreflect.Message

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Reset Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Reset()

func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) String Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) String() string

type CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes Uses

type CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes struct {

    // Required. When true, allows callers to create [Certificates][google.cloud.security.privateca.v1beta1.Certificate] by
    // specifying a CSR.
    AllowCsrBasedIssuance bool `protobuf:"varint,1,opt,name=allow_csr_based_issuance,json=allowCsrBasedIssuance,proto3" json:"allow_csr_based_issuance,omitempty"`
    // Required. When true, allows callers to create [Certificates][google.cloud.security.privateca.v1beta1.Certificate] by
    // specifying a [CertificateConfig][google.cloud.security.privateca.v1beta1.CertificateConfig].
    AllowConfigBasedIssuance bool `protobuf:"varint,2,opt,name=allow_config_based_issuance,json=allowConfigBasedIssuance,proto3" json:"allow_config_based_issuance,omitempty"`
    // contains filtered or unexported fields
}

[IssuanceModes][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.IssuanceModes] specifies the allowed ways in which [Certificates][google.cloud.security.privateca.v1beta1.Certificate] may be requested from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Descriptor Uses

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes.ProtoReflect.Descriptor instead.

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowConfigBasedIssuance Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowConfigBasedIssuance() bool

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowCsrBasedIssuance Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowCsrBasedIssuance() bool

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoMessage Uses

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoMessage()

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoReflect Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoReflect() protoreflect.Message

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Reset Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Reset()

func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) String Uses

func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) String() string

type CertificateAuthority_CertificateAuthorityPolicy_OverwriteConfigValues Uses

type CertificateAuthority_CertificateAuthorityPolicy_OverwriteConfigValues struct {
    // Optional. All [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
    // will use the provided configuration values, overwriting any requested
    // configuration values.
    OverwriteConfigValues *ReusableConfigWrapper `protobuf:"bytes,2,opt,name=overwrite_config_values,json=overwriteConfigValues,proto3,oneof"`
}

type CertificateAuthority_IssuingOptions Uses

type CertificateAuthority_IssuingOptions struct {

    // Required. When true, includes a URL to the issuing CA certificate in the
    // "authority information access" X.509 extension.
    IncludeCaCertUrl bool `protobuf:"varint,1,opt,name=include_ca_cert_url,json=includeCaCertUrl,proto3" json:"include_ca_cert_url,omitempty"`
    // Required. When true, includes a URL to the CRL corresponding to certificates
    // issued from a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    // CRLs will expire 7 days from their creation. However, we will rebuild
    // daily. CRLs are also rebuilt shortly after a certificate is revoked.
    IncludeCrlAccessUrl bool `protobuf:"varint,2,opt,name=include_crl_access_url,json=includeCrlAccessUrl,proto3" json:"include_crl_access_url,omitempty"`
    // contains filtered or unexported fields
}

Options that affect all certificates issued by a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].

func (*CertificateAuthority_IssuingOptions) Descriptor Uses

func (*CertificateAuthority_IssuingOptions) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_IssuingOptions.ProtoReflect.Descriptor instead.

func (*CertificateAuthority_IssuingOptions) GetIncludeCaCertUrl Uses

func (x *CertificateAuthority_IssuingOptions) GetIncludeCaCertUrl() bool

func (*CertificateAuthority_IssuingOptions) GetIncludeCrlAccessUrl Uses

func (x *CertificateAuthority_IssuingOptions) GetIncludeCrlAccessUrl() bool

func (*CertificateAuthority_IssuingOptions) ProtoMessage Uses

func (*CertificateAuthority_IssuingOptions) ProtoMessage()

func (*CertificateAuthority_IssuingOptions) ProtoReflect Uses

func (x *CertificateAuthority_IssuingOptions) ProtoReflect() protoreflect.Message

func (*CertificateAuthority_IssuingOptions) Reset Uses

func (x *CertificateAuthority_IssuingOptions) Reset()

func (*CertificateAuthority_IssuingOptions) String Uses

func (x *CertificateAuthority_IssuingOptions) String() string

type CertificateAuthority_KeyVersionSpec Uses

type CertificateAuthority_KeyVersionSpec struct {

    // Types that are assignable to KeyVersion:
    //	*CertificateAuthority_KeyVersionSpec_CloudKmsKeyVersion
    //	*CertificateAuthority_KeyVersionSpec_Algorithm
    KeyVersion isCertificateAuthority_KeyVersionSpec_KeyVersion `protobuf_oneof:"KeyVersion"`
    // contains filtered or unexported fields
}

A Cloud KMS key configuration that a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will use.

func (*CertificateAuthority_KeyVersionSpec) Descriptor Uses

func (*CertificateAuthority_KeyVersionSpec) Descriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_KeyVersionSpec.ProtoReflect.Descriptor instead.

func (*CertificateAuthority_KeyVersionSpec) GetAlgorithm Uses

func (x *CertificateAuthority_KeyVersionSpec) GetAlgorithm() CertificateAuthority_SignHashAlgorithm

func (*CertificateAuthority_KeyVersionSpec) GetCloudKmsKeyVersion Uses

func (x *CertificateAuthority_KeyVersionSpec) GetCloudKmsKeyVersion() string

func (*CertificateAuthority_KeyVersionSpec) GetKeyVersion Uses

func (m *CertificateAuthority_KeyVersionSpec) GetKeyVersion() isCertificateAuthority_KeyVersionSpec_KeyVersion

func (*CertificateAuthority_KeyVersionSpec) ProtoMessage Uses

func (*CertificateAuthority_KeyVersionSpec) ProtoMessage()

func (*CertificateAuthority_KeyVersionSpec) ProtoReflect Uses

func (x *CertificateAuthority_KeyVersionSpec) ProtoReflect() protoreflect.Message

func (*CertificateAuthority_KeyVersionSpec) Reset Uses

func (x *CertificateAuthority_KeyVersionSpec) Reset()

func (*CertificateAuthority_KeyVersionSpec) String Uses

func (x *CertificateAuthority_KeyVersionSpec) String() string

type CertificateAuthority_KeyVersionSpec_Algorithm Uses

type CertificateAuthority_KeyVersionSpec_Algorithm struct {
    // Required. The algorithm to use for creating a managed Cloud KMS key for a for a
    // simplified experience. All managed keys will be have their
    // [ProtectionLevel][google.cloud.kms.v1.ProtectionLevel] as `HSM`.
    Algorithm CertificateAuthority_SignHashAlgorithm `protobuf:"varint,2,opt,name=algorithm,proto3,enum=google.cloud.security.privateca.v1beta1.CertificateAuthority_SignHashAlgorithm,oneof"`
}

type CertificateAuthority_KeyVersionSpec_CloudKmsKeyVersion Uses

type CertificateAuthority_KeyVersionSpec_CloudKmsKeyVersion struct {
    // Required. The resource name for an existing Cloud KMS CryptoKeyVersion in the
    // format
    // `projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*`.
    // This option enables full flexibility in the key's capabilities and
    // properties.
    CloudKmsKeyVersion string `protobuf:"bytes,1,opt,name=cloud_kms_key_version,json=cloudKmsKeyVersion,proto3,oneof"`
}

type CertificateAuthority_SignHashAlgorithm Uses

type CertificateAuthority_SignHashAlgorithm int32

The algorithm of a Cloud KMS CryptoKeyVersion of a [CryptoKey][google.cloud.kms.v1.CryptoKey] with the [CryptoKeyPurpose][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose] value `ASYMMETRIC_SIGN`. These values correspond to the [CryptoKeyVersionAlgorithm][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm] values. For RSA signing algorithms, the PSS algorithms should be preferred, use PKCS1 algorithms if required for compatibility. For further recommandations, see https://cloud.google.com/kms/docs/algorithms#algorithm_recommendations.

const (
    // Not specified.
    CertificateAuthority_SIGN_HASH_ALGORITHM_UNSPECIFIED CertificateAuthority_SignHashAlgorithm = 0
    // maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PSS_2048_SHA256
    CertificateAuthority_RSA_PSS_2048_SHA256 CertificateAuthority_SignHashAlgorithm = 1
    // maps to CryptoKeyVersionAlgorithm. RSA_SIGN_PSS_3072_SHA256
    CertificateAuthority_RSA_PSS_3072_SHA256 CertificateAuthority_SignHashAlgorithm = 2
    // maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PSS_4096_SHA256
    CertificateAuthority_RSA_PSS_4096_SHA256 CertificateAuthority_SignHashAlgorithm = 3
    // maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PKCS1_2048_SHA256
    CertificateAuthority_RSA_PKCS1_2048_SHA256 CertificateAuthority_SignHashAlgorithm = 6
    // maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PKCS1_3072_SHA256
    CertificateAuthority_RSA_PKCS1_3072_SHA256 CertificateAuthority_SignHashAlgorithm = 7
    // maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PKCS1_4096_SHA256
    CertificateAuthority_RSA_PKCS1_4096_SHA256 CertificateAuthority_SignHashAlgorithm = 8
    // maps to CryptoKeyVersionAlgorithm.EC_SIGN_P256_SHA256
    CertificateAuthority_EC_P256_SHA256 CertificateAuthority_SignHashAlgorithm = 4
    // maps to CryptoKeyVersionAlgorithm.EC_SIGN_P384_SHA384
    CertificateAuthority_EC_P384_SHA384 CertificateAuthority_SignHashAlgorithm = 5
)

func (CertificateAuthority_SignHashAlgorithm) Descriptor Uses

func (CertificateAuthority_SignHashAlgorithm) Descriptor() protoreflect.EnumDescriptor

func (CertificateAuthority_SignHashAlgorithm) Enum Uses

func (x CertificateAuthority_SignHashAlgorithm) Enum() *CertificateAuthority_SignHashAlgorithm

func (CertificateAuthority_SignHashAlgorithm) EnumDescriptor Uses

func (CertificateAuthority_SignHashAlgorithm) EnumDescriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_SignHashAlgorithm.Descriptor instead.

func (CertificateAuthority_SignHashAlgorithm) Number Uses

func (x CertificateAuthority_SignHashAlgorithm) Number() protoreflect.EnumNumber

func (CertificateAuthority_SignHashAlgorithm) String Uses

func (x CertificateAuthority_SignHashAlgorithm) String() string

func (CertificateAuthority_SignHashAlgorithm) Type Uses

func (CertificateAuthority_SignHashAlgorithm) Type() protoreflect.EnumType

type CertificateAuthority_State Uses

type CertificateAuthority_State int32

The state of a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], indicating if it can be used.

const (
    // Not specified.
    CertificateAuthority_STATE_UNSPECIFIED CertificateAuthority_State = 0
    // Certificates can be issued from this CA. CRLs will be generated for this
    // CA.
    CertificateAuthority_ENABLED CertificateAuthority_State = 1
    // Certificates cannot be issued from this CA. CRLs will still be generated.
    CertificateAuthority_DISABLED CertificateAuthority_State = 2
    // Certificates cannot be issued from this CA. CRLs will not be generated.
    CertificateAuthority_PENDING_ACTIVATION CertificateAuthority_State = 3
    // Certificates cannot be issued from this CA. CRLs will not be generated.
    CertificateAuthority_PENDING_DELETION CertificateAuthority_State = 4
)

func (CertificateAuthority_State) Descriptor Uses

func (CertificateAuthority_State) Descriptor() protoreflect.EnumDescriptor

func (CertificateAuthority_State) Enum Uses

func (x CertificateAuthority_State) Enum() *CertificateAuthority_State

func (CertificateAuthority_State) EnumDescriptor Uses

func (CertificateAuthority_State) EnumDescriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_State.Descriptor instead.

func (CertificateAuthority_State) Number Uses

func (x CertificateAuthority_State) Number() protoreflect.EnumNumber

func (CertificateAuthority_State) String Uses

func (x CertificateAuthority_State) String() string

func (CertificateAuthority_State) Type Uses

func (CertificateAuthority_State) Type() protoreflect.EnumType

type CertificateAuthority_Tier Uses

type CertificateAuthority_Tier int32

The tier of a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], indicating its supported functionality and/or billing SKU.

const (
    // Not specified.
    CertificateAuthority_TIER_UNSPECIFIED CertificateAuthority_Tier = 0
    // Enterprise tier.
    CertificateAuthority_ENTERPRISE CertificateAuthority_Tier = 1
    // DevOps tier.
    CertificateAuthority_DEVOPS CertificateAuthority_Tier = 2
)

func (CertificateAuthority_Tier) Descriptor Uses

func (CertificateAuthority_Tier) Descriptor() protoreflect.EnumDescriptor

func (CertificateAuthority_Tier) Enum Uses

func (x CertificateAuthority_Tier) Enum() *CertificateAuthority_Tier

func (CertificateAuthority_Tier) EnumDescriptor Uses

func (CertificateAuthority_Tier) EnumDescriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_Tier.Descriptor instead.

func (CertificateAuthority_Tier) Number Uses

func (x CertificateAuthority_Tier) Number() protoreflect.EnumNumber

func (CertificateAuthority_Tier) String Uses

func (x CertificateAuthority_Tier) String() string

func (CertificateAuthority_Tier) Type Uses

func (CertificateAuthority_Tier) Type() protoreflect.EnumType

type CertificateAuthority_Type Uses

type CertificateAuthority_Type int32

The type of a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], indicating its issuing chain.

const (
    // Not specified.
    CertificateAuthority_TYPE_UNSPECIFIED CertificateAuthority_Type = 0
    // Self-signed CA.
    CertificateAuthority_SELF_SIGNED CertificateAuthority_Type = 1
    // Subordinate CA. Could be issued by a Private CA [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
    // or an unmanaged CA.
    CertificateAuthority_SUBORDINATE CertificateAuthority_Type = 2
)

func (CertificateAuthority_Type) Descriptor Uses

func (CertificateAuthority_Type) Descriptor() protoreflect.EnumDescriptor

func (CertificateAuthority_Type) Enum Uses

func (x CertificateAuthority_Type) Enum() *CertificateAuthority_Type

func (CertificateAuthority_Type) EnumDescriptor Uses

func (CertificateAuthority_Type) EnumDescriptor() ([]byte, []int)

Deprecated: Use CertificateAuthority_Type.Descriptor instead.

func (CertificateAuthority_Type) Number Uses

func (x CertificateAuthority_Type) Number() protoreflect.EnumNumber

func (CertificateAuthority_Type) String Uses

func (x CertificateAuthority_Type) String() string

func (CertificateAuthority_Type) Type Uses

func (CertificateAuthority_Type) Type() protoreflect.EnumType

type CertificateConfig Uses

type CertificateConfig struct {

    // Required. Specifies some of the values in a certificate that are related to the
    // subject.
    SubjectConfig *CertificateConfig_SubjectConfig `protobuf:"bytes,1,opt,name=subject_config,json=subjectConfig,proto3" json:"subject_config,omitempty"`
    // Required. Describes how some of the technical fields in a certificate should be
    // populated.
    ReusableConfig *ReusableConfigWrapper `protobuf:"bytes,2,opt,name=reusable_config,json=reusableConfig,proto3" json:"reusable_config,omitempty"`
    // Optional. The public key that corresponds to this config. This is, for example, used
    // when issuing [Certificates][google.cloud.security.privateca.v1beta1.Certificate], but not when creating a
    // self-signed [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] or [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] CSR.
    PublicKey *PublicKey `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"`
    // contains filtered or unexported fields
}

A [CertificateConfig][google.cloud.security.privateca.v1beta1.CertificateConfig] describes an X.509 certificate or CSR that is to be created, as an alternative to using ASN.1.

func (*CertificateConfig) Descriptor Uses

func (*CertificateConfig) Descriptor() ([]byte, []int)

Deprecated: Use CertificateConfig.ProtoReflect.Descriptor instead.

func (*CertificateConfig) GetPublicKey Uses

func (x *CertificateConfig) GetPublicKey() *PublicKey

func (*CertificateConfig) GetReusableConfig Uses

func (x *CertificateConfig) GetReusableConfig() *ReusableConfigWrapper

func (*CertificateConfig) GetSubjectConfig Uses

func (x *CertificateConfig) GetSubjectConfig() *CertificateConfig_SubjectConfig

func (*CertificateConfig) ProtoMessage Uses

func (*CertificateConfig) ProtoMessage()

func (*CertificateConfig) ProtoReflect Uses

func (x *CertificateConfig) ProtoReflect() protoreflect.Message

func (*CertificateConfig) Reset Uses

func (x *CertificateConfig) Reset()

func (*CertificateConfig) String Uses

func (x *CertificateConfig) String() string

type CertificateConfig_SubjectConfig Uses

type CertificateConfig_SubjectConfig struct {

    // Required. Contains distinguished name fields such as the location and organization.
    Subject *Subject `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"`
    // Optional. The "common name" of the distinguished name.
    CommonName string `protobuf:"bytes,2,opt,name=common_name,json=commonName,proto3" json:"common_name,omitempty"`
    // Optional. The subject alternative name fields.
    SubjectAltName *SubjectAltNames `protobuf:"bytes,3,opt,name=subject_alt_name,json=subjectAltName,proto3" json:"subject_alt_name,omitempty"`
    // contains filtered or unexported fields
}

These values are used to create the distinguished name and subject alternative name fields in an X.509 certificate.

func (*CertificateConfig_SubjectConfig) Descriptor Uses

func (*CertificateConfig_SubjectConfig) Descriptor() ([]byte, []int)

Deprecated: Use CertificateConfig_SubjectConfig.ProtoReflect.Descriptor instead.

func (*CertificateConfig_SubjectConfig) GetCommonName Uses

func (x *CertificateConfig_SubjectConfig) GetCommonName() string

func (*CertificateConfig_SubjectConfig) GetSubject Uses

func (x *CertificateConfig_SubjectConfig) GetSubject() *Subject

func (*CertificateConfig_SubjectConfig) GetSubjectAltName Uses

func (x *CertificateConfig_SubjectConfig) GetSubjectAltName() *SubjectAltNames

func (*CertificateConfig_SubjectConfig) ProtoMessage Uses

func (*CertificateConfig_SubjectConfig) ProtoMessage()

func (*CertificateConfig_SubjectConfig) ProtoReflect Uses

func (x *CertificateConfig_SubjectConfig) ProtoReflect() protoreflect.Message

func (*CertificateConfig_SubjectConfig) Reset Uses

func (x *CertificateConfig_SubjectConfig) Reset()

func (*CertificateConfig_SubjectConfig) String Uses

func (x *CertificateConfig_SubjectConfig) String() string

type CertificateDescription Uses

type CertificateDescription struct {

    // Describes some of the values in a certificate that are related to the
    // subject and lifetime.
    SubjectDescription *CertificateDescription_SubjectDescription `protobuf:"bytes,1,opt,name=subject_description,json=subjectDescription,proto3" json:"subject_description,omitempty"`
    // Describes some of the technical fields in a certificate.
    ConfigValues *ReusableConfigValues `protobuf:"bytes,2,opt,name=config_values,json=configValues,proto3" json:"config_values,omitempty"`
    // The public key that corresponds to an issued certificate.
    PublicKey *PublicKey `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"`
    // Provides a means of identifiying certificates that contain a particular
    // public key, per https://tools.ietf.org/html/rfc5280#section-4.2.1.2.
    SubjectKeyId *CertificateDescription_KeyId `protobuf:"bytes,4,opt,name=subject_key_id,json=subjectKeyId,proto3" json:"subject_key_id,omitempty"`
    // Identifies the subject_key_id of the parent certificate, per
    // https://tools.ietf.org/html/rfc5280#section-4.2.1.1
    AuthorityKeyId *CertificateDescription_KeyId `protobuf:"bytes,5,opt,name=authority_key_id,json=authorityKeyId,proto3" json:"authority_key_id,omitempty"`
    // Describes a list of locations to obtain CRL information, i.e.
    // the DistributionPoint.fullName described by
    // https://tools.ietf.org/html/rfc5280#section-4.2.1.13
    CrlDistributionPoints []string `protobuf:"bytes,6,rep,name=crl_distribution_points,json=crlDistributionPoints,proto3" json:"crl_distribution_points,omitempty"`
    // Describes lists of issuer CA certificate URLs that appear in the
    // "Authority Information Access" extension in the certificate.
    AiaIssuingCertificateUrls []string `protobuf:"bytes,7,rep,name=aia_issuing_certificate_urls,json=aiaIssuingCertificateUrls,proto3" json:"aia_issuing_certificate_urls,omitempty"`
    // The hash of the x.509 certificate.
    CertFingerprint *CertificateDescription_CertificateFingerprint `protobuf:"bytes,8,opt,name=cert_fingerprint,json=certFingerprint,proto3" json:"cert_fingerprint,omitempty"`
    // contains filtered or unexported fields
}

A [CertificateDescription][google.cloud.security.privateca.v1beta1.CertificateDescription] describes an X.509 certificate or CSR that has been issued, as an alternative to using ASN.1 / X.509.

func (*CertificateDescription) Descriptor Uses

func (*CertificateDescription) Descriptor() ([]byte, []int)

Deprecated: Use CertificateDescription.ProtoReflect.Descriptor instead.

func (*CertificateDescription) GetAiaIssuingCertificateUrls Uses

func (x *CertificateDescription) GetAiaIssuingCertificateUrls() []string

func (*CertificateDescription) GetAuthorityKeyId Uses

func (x *CertificateDescription) GetAuthorityKeyId() *CertificateDescription_KeyId

func (*CertificateDescription) GetCertFingerprint Uses

func (x *CertificateDescription) GetCertFingerprint() *CertificateDescription_CertificateFingerprint

func (*CertificateDescription) GetConfigValues Uses

func (x *CertificateDescription) GetConfigValues() *ReusableConfigValues

func (*CertificateDescription) GetCrlDistributionPoints Uses

func (x *CertificateDescription) GetCrlDistributionPoints() []string

func (*CertificateDescription) GetPublicKey Uses

func (x *CertificateDescription) GetPublicKey() *PublicKey

func (*CertificateDescription) GetSubjectDescription Uses

func (x *CertificateDescription) GetSubjectDescription() *CertificateDescription_SubjectDescription

func (*CertificateDescription) GetSubjectKeyId Uses

func (x *CertificateDescription) GetSubjectKeyId() *CertificateDescription_KeyId

func (*CertificateDescription) ProtoMessage Uses

func (*CertificateDescription) ProtoMessage()

func (*CertificateDescription) ProtoReflect Uses

func (x *CertificateDescription) ProtoReflect() protoreflect.Message

func (*CertificateDescription) Reset Uses

func (x *CertificateDescription) Reset()

func (*CertificateDescription) String Uses

func (x *CertificateDescription) String() string

type CertificateDescription_CertificateFingerprint Uses

type CertificateDescription_CertificateFingerprint struct {

    // The SHA 256 hash, encoded in hexadecimal, of the DER x509 certificate.
    Sha256Hash string `protobuf:"bytes,1,opt,name=sha256_hash,json=sha256Hash,proto3" json:"sha256_hash,omitempty"`
    // contains filtered or unexported fields
}

A group of fingerprints for the x509 certificate.

func (*CertificateDescription_CertificateFingerprint) Descriptor Uses

func (*CertificateDescription_CertificateFingerprint) Descriptor() ([]byte, []int)

Deprecated: Use CertificateDescription_CertificateFingerprint.ProtoReflect.Descriptor instead.

func (*CertificateDescription_CertificateFingerprint) GetSha256Hash Uses

func (x *CertificateDescription_CertificateFingerprint) GetSha256Hash() string

func (*CertificateDescription_CertificateFingerprint) ProtoMessage Uses

func (*CertificateDescription_CertificateFingerprint) ProtoMessage()

func (*CertificateDescription_CertificateFingerprint) ProtoReflect Uses

func (x *CertificateDescription_CertificateFingerprint) ProtoReflect() protoreflect.Message

func (*CertificateDescription_CertificateFingerprint) Reset Uses

func (x *CertificateDescription_CertificateFingerprint) Reset()

func (*CertificateDescription_CertificateFingerprint) String Uses

func (x *CertificateDescription_CertificateFingerprint) String() string

type CertificateDescription_KeyId Uses

type CertificateDescription_KeyId struct {

    // Optional. The value of this KeyId encoded in lowercase hexadecimal. This is most
    // likely the 160 bit SHA-1 hash of the public key.
    KeyId string `protobuf:"bytes,1,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
    // contains filtered or unexported fields
}

A KeyId identifies a specific public key, usually by hashing the public key.

func (*CertificateDescription_KeyId) Descriptor Uses

func (*CertificateDescription_KeyId) Descriptor() ([]byte, []int)

Deprecated: Use CertificateDescription_KeyId.ProtoReflect.Descriptor instead.

func (*CertificateDescription_KeyId) GetKeyId Uses

func (x *CertificateDescription_KeyId) GetKeyId() string

func (*CertificateDescription_KeyId) ProtoMessage Uses

func (*CertificateDescription_KeyId) ProtoMessage()

func (*CertificateDescription_KeyId) ProtoReflect Uses

func (x *CertificateDescription_KeyId) ProtoReflect() protoreflect.Message

func (*CertificateDescription_KeyId) Reset Uses

func (x *CertificateDescription_KeyId) Reset()

func (*CertificateDescription_KeyId) String Uses

func (x *CertificateDescription_KeyId) String() string

type CertificateDescription_SubjectDescription Uses

type CertificateDescription_SubjectDescription struct {

    // Contains distinguished name fields such as the location and organization.
    Subject *Subject `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"`
    // The "common name" of the distinguished name.
    CommonName string `protobuf:"bytes,2,opt,name=common_name,json=commonName,proto3" json:"common_name,omitempty"`
    // The subject alternative name fields.
    SubjectAltName *SubjectAltNames `protobuf:"bytes,3,opt,name=subject_alt_name,json=subjectAltName,proto3" json:"subject_alt_name,omitempty"`
    // The serial number encoded in lowercase hexadecimal.
    HexSerialNumber string `protobuf:"bytes,4,opt,name=hex_serial_number,json=hexSerialNumber,proto3" json:"hex_serial_number,omitempty"`
    // For convenience, the actual lifetime of an issued certificate.
    // Corresponds to 'not_after_time' - 'not_before_time'.
    Lifetime *durationpb.Duration `protobuf:"bytes,5,opt,name=lifetime,proto3" json:"lifetime,omitempty"`
    // The time at which the certificate becomes valid.
    NotBeforeTime *timestamppb.Timestamp `protobuf:"bytes,6,opt,name=not_before_time,json=notBeforeTime,proto3" json:"not_before_time,omitempty"`
    // The time at which the certificate expires.
    NotAfterTime *timestamppb.Timestamp `protobuf:"bytes,7,opt,name=not_after_time,json=notAfterTime,proto3" json:"not_after_time,omitempty"`
    // contains filtered or unexported fields
}

These values describe fields in an issued X.509 certificate such as the distinguished name, subject alternative names, serial number, and lifetime.

func (*CertificateDescription_SubjectDescription) Descriptor Uses

func (*CertificateDescription_SubjectDescription) Descriptor() ([]byte, []int)

Deprecated: Use CertificateDescription_SubjectDescription.ProtoReflect.Descriptor instead.

func (*CertificateDescription_SubjectDescription) GetCommonName Uses

func (x *CertificateDescription_SubjectDescription) GetCommonName() string

func (*CertificateDescription_SubjectDescription) GetHexSerialNumber Uses

func (x *CertificateDescription_SubjectDescription) GetHexSerialNumber() string

func (*CertificateDescription_SubjectDescription) GetLifetime Uses

func (x *CertificateDescription_SubjectDescription) GetLifetime() *durationpb.Duration

func (*CertificateDescription_SubjectDescription) GetNotAfterTime Uses

func (x *CertificateDescription_SubjectDescription) GetNotAfterTime() *timestamppb.Timestamp

func (*CertificateDescription_SubjectDescription) GetNotBeforeTime Uses

func (x *CertificateDescription_SubjectDescription) GetNotBeforeTime() *timestamppb.Timestamp

func (*CertificateDescription_SubjectDescription) GetSubject Uses

func (x *CertificateDescription_SubjectDescription) GetSubject() *Subject

func (*CertificateDescription_SubjectDescription) GetSubjectAltName Uses

func (x *CertificateDescription_SubjectDescription) GetSubjectAltName() *SubjectAltNames

func (*CertificateDescription_SubjectDescription) ProtoMessage Uses

func (*CertificateDescription_SubjectDescription) ProtoMessage()

func (*CertificateDescription_SubjectDescription) ProtoReflect Uses

func (x *CertificateDescription_SubjectDescription) ProtoReflect() protoreflect.Message

func (*CertificateDescription_SubjectDescription) Reset Uses

func (x *CertificateDescription_SubjectDescription) Reset()

func (*CertificateDescription_SubjectDescription) String Uses

func (x *CertificateDescription_SubjectDescription) String() string

type CertificateRevocationList Uses

type CertificateRevocationList struct {

    // Output only. The resource path for this [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] in
    // the format
    // `projects/*/locations/*/certificateAuthorities/*/
    //    certificateRevocationLists/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Output only. The CRL sequence number that appears in pem_crl.
    SequenceNumber int64 `protobuf:"varint,2,opt,name=sequence_number,json=sequenceNumber,proto3" json:"sequence_number,omitempty"`
    // Output only. The revoked serial numbers that appear in pem_crl.
    RevokedCertificates []*CertificateRevocationList_RevokedCertificate `protobuf:"bytes,3,rep,name=revoked_certificates,json=revokedCertificates,proto3" json:"revoked_certificates,omitempty"`
    // Output only. The PEM-encoded X.509 CRL.
    PemCrl string `protobuf:"bytes,4,opt,name=pem_crl,json=pemCrl,proto3" json:"pem_crl,omitempty"`
    // Output only. The location where 'pem_crl' can be accessed.
    AccessUrl string `protobuf:"bytes,5,opt,name=access_url,json=accessUrl,proto3" json:"access_url,omitempty"`
    // Output only. The [State][google.cloud.security.privateca.v1beta1.CertificateRevocationList.State] for this [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    State CertificateRevocationList_State `protobuf:"varint,6,opt,name=state,proto3,enum=google.cloud.security.privateca.v1beta1.CertificateRevocationList_State" json:"state,omitempty"`
    // Output only. The time at which this [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] was created.
    CreateTime *timestamppb.Timestamp `protobuf:"bytes,7,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
    // Output only. The time at which this [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] was updated.
    UpdateTime *timestamppb.Timestamp `protobuf:"bytes,8,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
    // Optional. Labels with user-defined metadata.
    Labels map[string]string `protobuf:"bytes,9,rep,name=labels,proto3" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
    // contains filtered or unexported fields
}

A [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] corresponds to a signed X.509 certificate Revocation List (CRL). A CRL contains the serial numbers of certificates that should no longer be trusted.

func (*CertificateRevocationList) Descriptor Uses

func (*CertificateRevocationList) Descriptor() ([]byte, []int)

Deprecated: Use CertificateRevocationList.ProtoReflect.Descriptor instead.

func (*CertificateRevocationList) GetAccessUrl Uses

func (x *CertificateRevocationList) GetAccessUrl() string

func (*CertificateRevocationList) GetCreateTime Uses

func (x *CertificateRevocationList) GetCreateTime() *timestamppb.Timestamp

func (*CertificateRevocationList) GetLabels Uses

func (x *CertificateRevocationList) GetLabels() map[string]string

func (*CertificateRevocationList) GetName Uses

func (x *CertificateRevocationList) GetName() string

func (*CertificateRevocationList) GetPemCrl Uses

func (x *CertificateRevocationList) GetPemCrl() string

func (*CertificateRevocationList) GetRevokedCertificates Uses

func (x *CertificateRevocationList) GetRevokedCertificates() []*CertificateRevocationList_RevokedCertificate

func (*CertificateRevocationList) GetSequenceNumber Uses

func (x *CertificateRevocationList) GetSequenceNumber() int64

func (*CertificateRevocationList) GetState Uses

func (x *CertificateRevocationList) GetState() CertificateRevocationList_State

func (*CertificateRevocationList) GetUpdateTime Uses

func (x *CertificateRevocationList) GetUpdateTime() *timestamppb.Timestamp

func (*CertificateRevocationList) ProtoMessage Uses

func (*CertificateRevocationList) ProtoMessage()

func (*CertificateRevocationList) ProtoReflect Uses

func (x *CertificateRevocationList) ProtoReflect() protoreflect.Message

func (*CertificateRevocationList) Reset Uses

func (x *CertificateRevocationList) Reset()

func (*CertificateRevocationList) String Uses

func (x *CertificateRevocationList) String() string

type CertificateRevocationList_RevokedCertificate Uses

type CertificateRevocationList_RevokedCertificate struct {

    // The resource path for the [Certificate][google.cloud.security.privateca.v1beta1.Certificate] in the format
    // `projects/*/locations/*/certificateAuthorities/*/certificates/*`.
    Certificate string `protobuf:"bytes,1,opt,name=certificate,proto3" json:"certificate,omitempty"`
    // The serial number of the [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
    HexSerialNumber string `protobuf:"bytes,2,opt,name=hex_serial_number,json=hexSerialNumber,proto3" json:"hex_serial_number,omitempty"`
    // The reason the [Certificate][google.cloud.security.privateca.v1beta1.Certificate] was revoked.
    RevocationReason RevocationReason `protobuf:"varint,3,opt,name=revocation_reason,json=revocationReason,proto3,enum=google.cloud.security.privateca.v1beta1.RevocationReason" json:"revocation_reason,omitempty"`
    // contains filtered or unexported fields
}

Describes a revoked [Certificate][google.cloud.security.privateca.v1beta1.Certificate].

func (*CertificateRevocationList_RevokedCertificate) Descriptor Uses

func (*CertificateRevocationList_RevokedCertificate) Descriptor() ([]byte, []int)

Deprecated: Use CertificateRevocationList_RevokedCertificate.ProtoReflect.Descriptor instead.

func (*CertificateRevocationList_RevokedCertificate) GetCertificate Uses

func (x *CertificateRevocationList_RevokedCertificate) GetCertificate() string

func (*CertificateRevocationList_RevokedCertificate) GetHexSerialNumber Uses

func (x *CertificateRevocationList_RevokedCertificate) GetHexSerialNumber() string

func (*CertificateRevocationList_RevokedCertificate) GetRevocationReason Uses

func (x *CertificateRevocationList_RevokedCertificate) GetRevocationReason() RevocationReason

func (*CertificateRevocationList_RevokedCertificate) ProtoMessage Uses

func (*CertificateRevocationList_RevokedCertificate) ProtoMessage()

func (*CertificateRevocationList_RevokedCertificate) ProtoReflect Uses

func (x *CertificateRevocationList_RevokedCertificate) ProtoReflect() protoreflect.Message

func (*CertificateRevocationList_RevokedCertificate) Reset Uses

func (x *CertificateRevocationList_RevokedCertificate) Reset()

func (*CertificateRevocationList_RevokedCertificate) String Uses

func (x *CertificateRevocationList_RevokedCertificate) String() string

type CertificateRevocationList_State Uses

type CertificateRevocationList_State int32

The state of a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList], indicating if it is current.

const (
    // Not specified.
    CertificateRevocationList_STATE_UNSPECIFIED CertificateRevocationList_State = 0
    // The [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] is up to date.
    CertificateRevocationList_ACTIVE CertificateRevocationList_State = 1
    // The [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] is no longer current.
    CertificateRevocationList_SUPERSEDED CertificateRevocationList_State = 2
)

func (CertificateRevocationList_State) Descriptor Uses

func (CertificateRevocationList_State) Descriptor() protoreflect.EnumDescriptor

func (CertificateRevocationList_State) Enum Uses

func (x CertificateRevocationList_State) Enum() *CertificateRevocationList_State

func (CertificateRevocationList_State) EnumDescriptor Uses

func (CertificateRevocationList_State) EnumDescriptor() ([]byte, []int)

Deprecated: Use CertificateRevocationList_State.Descriptor instead.

func (CertificateRevocationList_State) Number Uses

func (x CertificateRevocationList_State) Number() protoreflect.EnumNumber

func (CertificateRevocationList_State) String Uses

func (x CertificateRevocationList_State) String() string

func (CertificateRevocationList_State) Type Uses

func (CertificateRevocationList_State) Type() protoreflect.EnumType

type Certificate_Config Uses

type Certificate_Config struct {
    // Immutable. A description of the certificate and key that does not require X.509 or
    // ASN.1.
    Config *CertificateConfig `protobuf:"bytes,3,opt,name=config,proto3,oneof"`
}

type Certificate_PemCsr Uses

type Certificate_PemCsr struct {
    // Immutable. A pem-encoded X.509 certificate signing request (CSR).
    PemCsr string `protobuf:"bytes,2,opt,name=pem_csr,json=pemCsr,proto3,oneof"`
}

type Certificate_RevocationDetails Uses

type Certificate_RevocationDetails struct {

    // Indicates why a [Certificate][google.cloud.security.privateca.v1beta1.Certificate] was revoked.
    RevocationState RevocationReason `protobuf:"varint,1,opt,name=revocation_state,json=revocationState,proto3,enum=google.cloud.security.privateca.v1beta1.RevocationReason" json:"revocation_state,omitempty"`
    // The time at which this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] was revoked.
    RevocationTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=revocation_time,json=revocationTime,proto3" json:"revocation_time,omitempty"`
    // contains filtered or unexported fields
}

Describes fields that are relavent to the revocation of a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].

func (*Certificate_RevocationDetails) Descriptor Uses

func (*Certificate_RevocationDetails) Descriptor() ([]byte, []int)

Deprecated: Use Certificate_RevocationDetails.ProtoReflect.Descriptor instead.

func (*Certificate_RevocationDetails) GetRevocationState Uses

func (x *Certificate_RevocationDetails) GetRevocationState() RevocationReason

func (*Certificate_RevocationDetails) GetRevocationTime Uses

func (x *Certificate_RevocationDetails) GetRevocationTime() *timestamppb.Timestamp

func (*Certificate_RevocationDetails) ProtoMessage Uses

func (*Certificate_RevocationDetails) ProtoMessage()

func (*Certificate_RevocationDetails) ProtoReflect Uses

func (x *Certificate_RevocationDetails) ProtoReflect() protoreflect.Message

func (*Certificate_RevocationDetails) Reset Uses

func (x *Certificate_RevocationDetails) Reset()

func (*Certificate_RevocationDetails) String Uses

func (x *Certificate_RevocationDetails) String() string

type CreateCertificateAuthorityRequest Uses

type CreateCertificateAuthorityRequest struct {

    // Required. The resource name of the location associated with the
    // [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority], in the format
    // `projects/*/locations/*`.
    Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
    // Required. It must be unique within a location and match the regular
    // expression `[a-zA-Z0-9_-]{1,63}`
    CertificateAuthorityId string `protobuf:"bytes,2,opt,name=certificate_authority_id,json=certificateAuthorityId,proto3" json:"certificate_authority_id,omitempty"`
    // Required. A [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] with initial field values.
    CertificateAuthority *CertificateAuthority `protobuf:"bytes,3,opt,name=certificate_authority,json=certificateAuthority,proto3" json:"certificate_authority,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,4,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.CreateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.CreateCertificateAuthority].

func (*CreateCertificateAuthorityRequest) Descriptor Uses

func (*CreateCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*CreateCertificateAuthorityRequest) GetCertificateAuthority Uses

func (x *CreateCertificateAuthorityRequest) GetCertificateAuthority() *CertificateAuthority

func (*CreateCertificateAuthorityRequest) GetCertificateAuthorityId Uses

func (x *CreateCertificateAuthorityRequest) GetCertificateAuthorityId() string

func (*CreateCertificateAuthorityRequest) GetParent Uses

func (x *CreateCertificateAuthorityRequest) GetParent() string

func (*CreateCertificateAuthorityRequest) GetRequestId Uses

func (x *CreateCertificateAuthorityRequest) GetRequestId() string

func (*CreateCertificateAuthorityRequest) ProtoMessage Uses

func (*CreateCertificateAuthorityRequest) ProtoMessage()

func (*CreateCertificateAuthorityRequest) ProtoReflect Uses

func (x *CreateCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*CreateCertificateAuthorityRequest) Reset Uses

func (x *CreateCertificateAuthorityRequest) Reset()

func (*CreateCertificateAuthorityRequest) String Uses

func (x *CreateCertificateAuthorityRequest) String() string

type CreateCertificateRequest Uses

type CreateCertificateRequest struct {

    // Required. The resource name of the location and [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
    // associated with the [Certificate][google.cloud.security.privateca.v1beta1.Certificate], in the format
    // `projects/*/locations/*/certificateAuthorities/*`.
    Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
    // Optional. It must be unique within a location and match the regular
    // expression `[a-zA-Z0-9_-]{1,63}`. This field is required when using a
    // [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the Enterprise [CertificateAuthority.Tier][google.cloud.security.privateca.v1beta1.CertificateAuthority.Tier],
    // but is optional and its value is ignored otherwise.
    CertificateId string `protobuf:"bytes,2,opt,name=certificate_id,json=certificateId,proto3" json:"certificate_id,omitempty"`
    // Required. A [Certificate][google.cloud.security.privateca.v1beta1.Certificate] with initial field values.
    Certificate *Certificate `protobuf:"bytes,3,opt,name=certificate,proto3" json:"certificate,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,4,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.CreateCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.CreateCertificate].

func (*CreateCertificateRequest) Descriptor Uses

func (*CreateCertificateRequest) Descriptor() ([]byte, []int)

Deprecated: Use CreateCertificateRequest.ProtoReflect.Descriptor instead.

func (*CreateCertificateRequest) GetCertificate Uses

func (x *CreateCertificateRequest) GetCertificate() *Certificate

func (*CreateCertificateRequest) GetCertificateId Uses

func (x *CreateCertificateRequest) GetCertificateId() string

func (*CreateCertificateRequest) GetParent Uses

func (x *CreateCertificateRequest) GetParent() string

func (*CreateCertificateRequest) GetRequestId Uses

func (x *CreateCertificateRequest) GetRequestId() string

func (*CreateCertificateRequest) ProtoMessage Uses

func (*CreateCertificateRequest) ProtoMessage()

func (*CreateCertificateRequest) ProtoReflect Uses

func (x *CreateCertificateRequest) ProtoReflect() protoreflect.Message

func (*CreateCertificateRequest) Reset Uses

func (x *CreateCertificateRequest) Reset()

func (*CreateCertificateRequest) String Uses

func (x *CreateCertificateRequest) String() string

type DisableCertificateAuthorityRequest Uses

type DisableCertificateAuthorityRequest struct {

    // Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
    // format `projects/*/locations/*/certificateAuthorities/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.DisableCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.DisableCertificateAuthority].

func (*DisableCertificateAuthorityRequest) Descriptor Uses

func (*DisableCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use DisableCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*DisableCertificateAuthorityRequest) GetName Uses

func (x *DisableCertificateAuthorityRequest) GetName() string

func (*DisableCertificateAuthorityRequest) GetRequestId Uses

func (x *DisableCertificateAuthorityRequest) GetRequestId() string

func (*DisableCertificateAuthorityRequest) ProtoMessage Uses

func (*DisableCertificateAuthorityRequest) ProtoMessage()

func (*DisableCertificateAuthorityRequest) ProtoReflect Uses

func (x *DisableCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*DisableCertificateAuthorityRequest) Reset Uses

func (x *DisableCertificateAuthorityRequest) Reset()

func (*DisableCertificateAuthorityRequest) String Uses

func (x *DisableCertificateAuthorityRequest) String() string

type EnableCertificateAuthorityRequest Uses

type EnableCertificateAuthorityRequest struct {

    // Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
    // format `projects/*/locations/*/certificateAuthorities/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.EnableCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.EnableCertificateAuthority].

func (*EnableCertificateAuthorityRequest) Descriptor Uses

func (*EnableCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use EnableCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*EnableCertificateAuthorityRequest) GetName Uses

func (x *EnableCertificateAuthorityRequest) GetName() string

func (*EnableCertificateAuthorityRequest) GetRequestId Uses

func (x *EnableCertificateAuthorityRequest) GetRequestId() string

func (*EnableCertificateAuthorityRequest) ProtoMessage Uses

func (*EnableCertificateAuthorityRequest) ProtoMessage()

func (*EnableCertificateAuthorityRequest) ProtoReflect Uses

func (x *EnableCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*EnableCertificateAuthorityRequest) Reset Uses

func (x *EnableCertificateAuthorityRequest) Reset()

func (*EnableCertificateAuthorityRequest) String Uses

func (x *EnableCertificateAuthorityRequest) String() string

type FetchCertificateAuthorityCsrRequest Uses

type FetchCertificateAuthorityCsrRequest struct {

    // Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
    // format `projects/*/locations/*/certificateAuthorities/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr].

func (*FetchCertificateAuthorityCsrRequest) Descriptor Uses

func (*FetchCertificateAuthorityCsrRequest) Descriptor() ([]byte, []int)

Deprecated: Use FetchCertificateAuthorityCsrRequest.ProtoReflect.Descriptor instead.

func (*FetchCertificateAuthorityCsrRequest) GetName Uses

func (x *FetchCertificateAuthorityCsrRequest) GetName() string

func (*FetchCertificateAuthorityCsrRequest) ProtoMessage Uses

func (*FetchCertificateAuthorityCsrRequest) ProtoMessage()

func (*FetchCertificateAuthorityCsrRequest) ProtoReflect Uses

func (x *FetchCertificateAuthorityCsrRequest) ProtoReflect() protoreflect.Message

func (*FetchCertificateAuthorityCsrRequest) Reset Uses

func (x *FetchCertificateAuthorityCsrRequest) Reset()

func (*FetchCertificateAuthorityCsrRequest) String Uses

func (x *FetchCertificateAuthorityCsrRequest) String() string

type FetchCertificateAuthorityCsrResponse Uses

type FetchCertificateAuthorityCsrResponse struct {

    // Output only. The PEM-encoded signed certificate signing request (CSR).
    PemCsr string `protobuf:"bytes,1,opt,name=pem_csr,json=pemCsr,proto3" json:"pem_csr,omitempty"`
    // contains filtered or unexported fields
}

Response message for [CertificateAuthorityService.FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr].

func (*FetchCertificateAuthorityCsrResponse) Descriptor Uses

func (*FetchCertificateAuthorityCsrResponse) Descriptor() ([]byte, []int)

Deprecated: Use FetchCertificateAuthorityCsrResponse.ProtoReflect.Descriptor instead.

func (*FetchCertificateAuthorityCsrResponse) GetPemCsr Uses

func (x *FetchCertificateAuthorityCsrResponse) GetPemCsr() string

func (*FetchCertificateAuthorityCsrResponse) ProtoMessage Uses

func (*FetchCertificateAuthorityCsrResponse) ProtoMessage()

func (*FetchCertificateAuthorityCsrResponse) ProtoReflect Uses

func (x *FetchCertificateAuthorityCsrResponse) ProtoReflect() protoreflect.Message

func (*FetchCertificateAuthorityCsrResponse) Reset Uses

func (x *FetchCertificateAuthorityCsrResponse) Reset()

func (*FetchCertificateAuthorityCsrResponse) String Uses

func (x *FetchCertificateAuthorityCsrResponse) String() string

type GetCertificateAuthorityRequest Uses

type GetCertificateAuthorityRequest struct {

    // Required. The [name][google.cloud.security.privateca.v1beta1.CertificateAuthority.name] of the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] to
    // get.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.GetCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetCertificateAuthority].

func (*GetCertificateAuthorityRequest) Descriptor Uses

func (*GetCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*GetCertificateAuthorityRequest) GetName Uses

func (x *GetCertificateAuthorityRequest) GetName() string

func (*GetCertificateAuthorityRequest) ProtoMessage Uses

func (*GetCertificateAuthorityRequest) ProtoMessage()

func (*GetCertificateAuthorityRequest) ProtoReflect Uses

func (x *GetCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*GetCertificateAuthorityRequest) Reset Uses

func (x *GetCertificateAuthorityRequest) Reset()

func (*GetCertificateAuthorityRequest) String Uses

func (x *GetCertificateAuthorityRequest) String() string

type GetCertificateRequest Uses

type GetCertificateRequest struct {

    // Required. The [name][google.cloud.security.privateca.v1beta1.Certificate.name] of the [Certificate][google.cloud.security.privateca.v1beta1.Certificate] to get.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.GetCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetCertificate].

func (*GetCertificateRequest) Descriptor Uses

func (*GetCertificateRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetCertificateRequest.ProtoReflect.Descriptor instead.

func (*GetCertificateRequest) GetName Uses

func (x *GetCertificateRequest) GetName() string

func (*GetCertificateRequest) ProtoMessage Uses

func (*GetCertificateRequest) ProtoMessage()

func (*GetCertificateRequest) ProtoReflect Uses

func (x *GetCertificateRequest) ProtoReflect() protoreflect.Message

func (*GetCertificateRequest) Reset Uses

func (x *GetCertificateRequest) Reset()

func (*GetCertificateRequest) String Uses

func (x *GetCertificateRequest) String() string

type GetCertificateRevocationListRequest Uses

type GetCertificateRevocationListRequest struct {

    // Required. The [name][google.cloud.security.privateca.v1beta1.CertificateRevocationList.name] of the
    // [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] to get.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.GetCertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetCertificateRevocationList].

func (*GetCertificateRevocationListRequest) Descriptor Uses

func (*GetCertificateRevocationListRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetCertificateRevocationListRequest.ProtoReflect.Descriptor instead.

func (*GetCertificateRevocationListRequest) GetName Uses

func (x *GetCertificateRevocationListRequest) GetName() string

func (*GetCertificateRevocationListRequest) ProtoMessage Uses

func (*GetCertificateRevocationListRequest) ProtoMessage()

func (*GetCertificateRevocationListRequest) ProtoReflect Uses

func (x *GetCertificateRevocationListRequest) ProtoReflect() protoreflect.Message

func (*GetCertificateRevocationListRequest) Reset Uses

func (x *GetCertificateRevocationListRequest) Reset()

func (*GetCertificateRevocationListRequest) String Uses

func (x *GetCertificateRevocationListRequest) String() string

type GetReusableConfigRequest Uses

type GetReusableConfigRequest struct {

    // Required. The [name][ReusableConfigs.name] of the [ReusableConfigs][] to get.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.GetReusableConfig][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetReusableConfig].

func (*GetReusableConfigRequest) Descriptor Uses

func (*GetReusableConfigRequest) Descriptor() ([]byte, []int)

Deprecated: Use GetReusableConfigRequest.ProtoReflect.Descriptor instead.

func (*GetReusableConfigRequest) GetName Uses

func (x *GetReusableConfigRequest) GetName() string

func (*GetReusableConfigRequest) ProtoMessage Uses

func (*GetReusableConfigRequest) ProtoMessage()

func (*GetReusableConfigRequest) ProtoReflect Uses

func (x *GetReusableConfigRequest) ProtoReflect() protoreflect.Message

func (*GetReusableConfigRequest) Reset Uses

func (x *GetReusableConfigRequest) Reset()

func (*GetReusableConfigRequest) String Uses

func (x *GetReusableConfigRequest) String() string

type KeyUsage Uses

type KeyUsage struct {

    // Describes high-level ways in which a key may be used.
    BaseKeyUsage *KeyUsage_KeyUsageOptions `protobuf:"bytes,1,opt,name=base_key_usage,json=baseKeyUsage,proto3" json:"base_key_usage,omitempty"`
    // Detailed scenarios in which a key may be used.
    ExtendedKeyUsage *KeyUsage_ExtendedKeyUsageOptions `protobuf:"bytes,2,opt,name=extended_key_usage,json=extendedKeyUsage,proto3" json:"extended_key_usage,omitempty"`
    // Used to describe extended key usages that are not listed in the
    // [KeyUsage.ExtendedKeyUsageOptions][google.cloud.security.privateca.v1beta1.KeyUsage.ExtendedKeyUsageOptions] message.
    UnknownExtendedKeyUsages []*ObjectId `protobuf:"bytes,3,rep,name=unknown_extended_key_usages,json=unknownExtendedKeyUsages,proto3" json:"unknown_extended_key_usages,omitempty"`
    // contains filtered or unexported fields
}

A [KeyUsage][google.cloud.security.privateca.v1beta1.KeyUsage] describes key usage values that may appear in an X.509 certificate.

func (*KeyUsage) Descriptor Uses

func (*KeyUsage) Descriptor() ([]byte, []int)

Deprecated: Use KeyUsage.ProtoReflect.Descriptor instead.

func (*KeyUsage) GetBaseKeyUsage Uses

func (x *KeyUsage) GetBaseKeyUsage() *KeyUsage_KeyUsageOptions

func (*KeyUsage) GetExtendedKeyUsage Uses

func (x *KeyUsage) GetExtendedKeyUsage() *KeyUsage_ExtendedKeyUsageOptions

func (*KeyUsage) GetUnknownExtendedKeyUsages Uses

func (x *KeyUsage) GetUnknownExtendedKeyUsages() []*ObjectId

func (*KeyUsage) ProtoMessage Uses

func (*KeyUsage) ProtoMessage()

func (*KeyUsage) ProtoReflect Uses

func (x *KeyUsage) ProtoReflect() protoreflect.Message

func (*KeyUsage) Reset Uses

func (x *KeyUsage) Reset()

func (*KeyUsage) String Uses

func (x *KeyUsage) String() string

type KeyUsage_ExtendedKeyUsageOptions Uses

type KeyUsage_ExtendedKeyUsageOptions struct {

    // Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially described as "TLS WWW
    // server authentication", though regularly used for non-WWW TLS.
    ServerAuth bool `protobuf:"varint,1,opt,name=server_auth,json=serverAuth,proto3" json:"server_auth,omitempty"`
    // Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially described as "TLS WWW
    // client authentication", though regularly used for non-WWW TLS.
    ClientAuth bool `protobuf:"varint,2,opt,name=client_auth,json=clientAuth,proto3" json:"client_auth,omitempty"`
    // Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially described as "Signing of
    // downloadable executable code client authentication".
    CodeSigning bool `protobuf:"varint,3,opt,name=code_signing,json=codeSigning,proto3" json:"code_signing,omitempty"`
    // Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially described as "Email
    // protection".
    EmailProtection bool `protobuf:"varint,4,opt,name=email_protection,json=emailProtection,proto3" json:"email_protection,omitempty"`
    // Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially described as "Binding
    // the hash of an object to a time".
    TimeStamping bool `protobuf:"varint,5,opt,name=time_stamping,json=timeStamping,proto3" json:"time_stamping,omitempty"`
    // Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially described as "Signing
    // OCSP responses".
    OcspSigning bool `protobuf:"varint,6,opt,name=ocsp_signing,json=ocspSigning,proto3" json:"ocsp_signing,omitempty"`
    // contains filtered or unexported fields
}

[KeyUsage.ExtendedKeyUsageOptions][google.cloud.security.privateca.v1beta1.KeyUsage.ExtendedKeyUsageOptions] has fields that correspond to certain common OIDs that could be specified as an extended key usage value.

func (*KeyUsage_ExtendedKeyUsageOptions) Descriptor Uses

func (*KeyUsage_ExtendedKeyUsageOptions) Descriptor() ([]byte, []int)

Deprecated: Use KeyUsage_ExtendedKeyUsageOptions.ProtoReflect.Descriptor instead.

func (*KeyUsage_ExtendedKeyUsageOptions) GetClientAuth Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) GetClientAuth() bool

func (*KeyUsage_ExtendedKeyUsageOptions) GetCodeSigning Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) GetCodeSigning() bool

func (*KeyUsage_ExtendedKeyUsageOptions) GetEmailProtection Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) GetEmailProtection() bool

func (*KeyUsage_ExtendedKeyUsageOptions) GetOcspSigning Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) GetOcspSigning() bool

func (*KeyUsage_ExtendedKeyUsageOptions) GetServerAuth Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) GetServerAuth() bool

func (*KeyUsage_ExtendedKeyUsageOptions) GetTimeStamping Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) GetTimeStamping() bool

func (*KeyUsage_ExtendedKeyUsageOptions) ProtoMessage Uses

func (*KeyUsage_ExtendedKeyUsageOptions) ProtoMessage()

func (*KeyUsage_ExtendedKeyUsageOptions) ProtoReflect Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) ProtoReflect() protoreflect.Message

func (*KeyUsage_ExtendedKeyUsageOptions) Reset Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) Reset()

func (*KeyUsage_ExtendedKeyUsageOptions) String Uses

func (x *KeyUsage_ExtendedKeyUsageOptions) String() string

type KeyUsage_KeyUsageOptions Uses

type KeyUsage_KeyUsageOptions struct {

    // The key may be used for digital signatures.
    DigitalSignature bool `protobuf:"varint,1,opt,name=digital_signature,json=digitalSignature,proto3" json:"digital_signature,omitempty"`
    // The key may be used for cryptographic commitments. Note that this may
    // also be referred to as "non-repudiation".
    ContentCommitment bool `protobuf:"varint,2,opt,name=content_commitment,json=contentCommitment,proto3" json:"content_commitment,omitempty"`
    // The key may be used to encipher other keys.
    KeyEncipherment bool `protobuf:"varint,3,opt,name=key_encipherment,json=keyEncipherment,proto3" json:"key_encipherment,omitempty"`
    // The key may be used to encipher data.
    DataEncipherment bool `protobuf:"varint,4,opt,name=data_encipherment,json=dataEncipherment,proto3" json:"data_encipherment,omitempty"`
    // The key may be used in a key agreement protocol.
    KeyAgreement bool `protobuf:"varint,5,opt,name=key_agreement,json=keyAgreement,proto3" json:"key_agreement,omitempty"`
    // The key may be used to sign certificates.
    CertSign bool `protobuf:"varint,6,opt,name=cert_sign,json=certSign,proto3" json:"cert_sign,omitempty"`
    // The key may be used sign certificate revocation lists.
    CrlSign bool `protobuf:"varint,7,opt,name=crl_sign,json=crlSign,proto3" json:"crl_sign,omitempty"`
    // The key may be used to encipher only.
    EncipherOnly bool `protobuf:"varint,8,opt,name=encipher_only,json=encipherOnly,proto3" json:"encipher_only,omitempty"`
    // The key may be used to decipher only.
    DecipherOnly bool `protobuf:"varint,9,opt,name=decipher_only,json=decipherOnly,proto3" json:"decipher_only,omitempty"`
    // contains filtered or unexported fields
}

[KeyUsage.KeyUsageOptions][google.cloud.security.privateca.v1beta1.KeyUsage.KeyUsageOptions] corresponds to the key usage values described in https://tools.ietf.org/html/rfc5280#section-4.2.1.3.

func (*KeyUsage_KeyUsageOptions) Descriptor Uses

func (*KeyUsage_KeyUsageOptions) Descriptor() ([]byte, []int)

Deprecated: Use KeyUsage_KeyUsageOptions.ProtoReflect.Descriptor instead.

func (*KeyUsage_KeyUsageOptions) GetCertSign Uses

func (x *KeyUsage_KeyUsageOptions) GetCertSign() bool

func (*KeyUsage_KeyUsageOptions) GetContentCommitment Uses

func (x *KeyUsage_KeyUsageOptions) GetContentCommitment() bool

func (*KeyUsage_KeyUsageOptions) GetCrlSign Uses

func (x *KeyUsage_KeyUsageOptions) GetCrlSign() bool

func (*KeyUsage_KeyUsageOptions) GetDataEncipherment Uses

func (x *KeyUsage_KeyUsageOptions) GetDataEncipherment() bool

func (*KeyUsage_KeyUsageOptions) GetDecipherOnly Uses

func (x *KeyUsage_KeyUsageOptions) GetDecipherOnly() bool

func (*KeyUsage_KeyUsageOptions) GetDigitalSignature Uses

func (x *KeyUsage_KeyUsageOptions) GetDigitalSignature() bool

func (*KeyUsage_KeyUsageOptions) GetEncipherOnly Uses

func (x *KeyUsage_KeyUsageOptions) GetEncipherOnly() bool

func (*KeyUsage_KeyUsageOptions) GetKeyAgreement Uses

func (x *KeyUsage_KeyUsageOptions) GetKeyAgreement() bool

func (*KeyUsage_KeyUsageOptions) GetKeyEncipherment Uses

func (x *KeyUsage_KeyUsageOptions) GetKeyEncipherment() bool

func (*KeyUsage_KeyUsageOptions) ProtoMessage Uses

func (*KeyUsage_KeyUsageOptions) ProtoMessage()

func (*KeyUsage_KeyUsageOptions) ProtoReflect Uses

func (x *KeyUsage_KeyUsageOptions) ProtoReflect() protoreflect.Message

func (*KeyUsage_KeyUsageOptions) Reset Uses

func (x *KeyUsage_KeyUsageOptions) Reset()

func (*KeyUsage_KeyUsageOptions) String Uses

func (x *KeyUsage_KeyUsageOptions) String() string

type ListCertificateAuthoritiesRequest Uses

type ListCertificateAuthoritiesRequest struct {

    // Required. The resource name of the location associated with the
    // [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority], in the format
    // `projects/*/locations/*`.
    Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
    // Optional. Limit on the number of [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority] to
    // include in the response.
    // Further [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority] can subsequently be
    // obtained by including the
    // [ListCertificateAuthoritiesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateAuthoritiesResponse.next_page_token] in a subsequent
    // request. If unspecified, the server will pick an appropriate default.
    PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
    // Optional. Pagination token, returned earlier via
    // [ListCertificateAuthoritiesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateAuthoritiesResponse.next_page_token].
    PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
    // Optional. Only include resources that match the filter in the response.
    Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
    // Optional. Specify how the results should be sorted.
    OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.ListCertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateAuthorities].

func (*ListCertificateAuthoritiesRequest) Descriptor Uses

func (*ListCertificateAuthoritiesRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListCertificateAuthoritiesRequest.ProtoReflect.Descriptor instead.

func (*ListCertificateAuthoritiesRequest) GetFilter Uses

func (x *ListCertificateAuthoritiesRequest) GetFilter() string

func (*ListCertificateAuthoritiesRequest) GetOrderBy Uses

func (x *ListCertificateAuthoritiesRequest) GetOrderBy() string

func (*ListCertificateAuthoritiesRequest) GetPageSize Uses

func (x *ListCertificateAuthoritiesRequest) GetPageSize() int32

func (*ListCertificateAuthoritiesRequest) GetPageToken Uses

func (x *ListCertificateAuthoritiesRequest) GetPageToken() string

func (*ListCertificateAuthoritiesRequest) GetParent Uses

func (x *ListCertificateAuthoritiesRequest) GetParent() string

func (*ListCertificateAuthoritiesRequest) ProtoMessage Uses

func (*ListCertificateAuthoritiesRequest) ProtoMessage()

func (*ListCertificateAuthoritiesRequest) ProtoReflect Uses

func (x *ListCertificateAuthoritiesRequest) ProtoReflect() protoreflect.Message

func (*ListCertificateAuthoritiesRequest) Reset Uses

func (x *ListCertificateAuthoritiesRequest) Reset()

func (*ListCertificateAuthoritiesRequest) String Uses

func (x *ListCertificateAuthoritiesRequest) String() string

type ListCertificateAuthoritiesResponse Uses

type ListCertificateAuthoritiesResponse struct {

    // The list of [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority].
    CertificateAuthorities []*CertificateAuthority `protobuf:"bytes,1,rep,name=certificate_authorities,json=certificateAuthorities,proto3" json:"certificate_authorities,omitempty"`
    // A token to retrieve next page of results. Pass this value in
    // [ListCertificateAuthoritiesRequest.next_page_token][] to retrieve the next
    // page of results.
    NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
    // A list of locations (e.g. "us-west1") that could not be reached.
    Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
    // contains filtered or unexported fields
}

Response message for [CertificateAuthorityService.ListCertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateAuthorities].

func (*ListCertificateAuthoritiesResponse) Descriptor Uses

func (*ListCertificateAuthoritiesResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListCertificateAuthoritiesResponse.ProtoReflect.Descriptor instead.

func (*ListCertificateAuthoritiesResponse) GetCertificateAuthorities Uses

func (x *ListCertificateAuthoritiesResponse) GetCertificateAuthorities() []*CertificateAuthority

func (*ListCertificateAuthoritiesResponse) GetNextPageToken Uses

func (x *ListCertificateAuthoritiesResponse) GetNextPageToken() string

func (*ListCertificateAuthoritiesResponse) GetUnreachable Uses

func (x *ListCertificateAuthoritiesResponse) GetUnreachable() []string

func (*ListCertificateAuthoritiesResponse) ProtoMessage Uses

func (*ListCertificateAuthoritiesResponse) ProtoMessage()

func (*ListCertificateAuthoritiesResponse) ProtoReflect Uses

func (x *ListCertificateAuthoritiesResponse) ProtoReflect() protoreflect.Message

func (*ListCertificateAuthoritiesResponse) Reset Uses

func (x *ListCertificateAuthoritiesResponse) Reset()

func (*ListCertificateAuthoritiesResponse) String Uses

func (x *ListCertificateAuthoritiesResponse) String() string

type ListCertificateRevocationListsRequest Uses

type ListCertificateRevocationListsRequest struct {

    // Required. The resource name of the location associated with the
    // [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList], in the format
    // `projects/*/locations/*/certificateauthorities/*`.
    Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
    // Optional. Limit on the number of
    // [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList] to include in the
    // response. Further [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList]
    // can subsequently be obtained by including the
    // [ListCertificateRevocationListsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateRevocationListsResponse.next_page_token] in a subsequent
    // request. If unspecified, the server will pick an appropriate default.
    PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
    // Optional. Pagination token, returned earlier via
    // [ListCertificateRevocationListsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateRevocationListsResponse.next_page_token].
    PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
    // Optional. Only include resources that match the filter in the response.
    Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
    // Optional. Specify how the results should be sorted.
    OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.ListCertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateRevocationLists].

func (*ListCertificateRevocationListsRequest) Descriptor Uses

func (*ListCertificateRevocationListsRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListCertificateRevocationListsRequest.ProtoReflect.Descriptor instead.

func (*ListCertificateRevocationListsRequest) GetFilter Uses

func (x *ListCertificateRevocationListsRequest) GetFilter() string

func (*ListCertificateRevocationListsRequest) GetOrderBy Uses

func (x *ListCertificateRevocationListsRequest) GetOrderBy() string

func (*ListCertificateRevocationListsRequest) GetPageSize Uses

func (x *ListCertificateRevocationListsRequest) GetPageSize() int32

func (*ListCertificateRevocationListsRequest) GetPageToken Uses

func (x *ListCertificateRevocationListsRequest) GetPageToken() string

func (*ListCertificateRevocationListsRequest) GetParent Uses

func (x *ListCertificateRevocationListsRequest) GetParent() string

func (*ListCertificateRevocationListsRequest) ProtoMessage Uses

func (*ListCertificateRevocationListsRequest) ProtoMessage()

func (*ListCertificateRevocationListsRequest) ProtoReflect Uses

func (x *ListCertificateRevocationListsRequest) ProtoReflect() protoreflect.Message

func (*ListCertificateRevocationListsRequest) Reset Uses

func (x *ListCertificateRevocationListsRequest) Reset()

func (*ListCertificateRevocationListsRequest) String Uses

func (x *ListCertificateRevocationListsRequest) String() string

type ListCertificateRevocationListsResponse Uses

type ListCertificateRevocationListsResponse struct {

    // The list of [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
    CertificateRevocationLists []*CertificateRevocationList `protobuf:"bytes,1,rep,name=certificate_revocation_lists,json=certificateRevocationLists,proto3" json:"certificate_revocation_lists,omitempty"`
    // A token to retrieve next page of results. Pass this value in
    // [ListCertificateRevocationListsRequest.next_page_token][] to retrieve the
    // next page of results.
    NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
    // A list of locations (e.g. "us-west1") that could not be reached.
    Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
    // contains filtered or unexported fields
}

Response message for [CertificateAuthorityService.ListCertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateRevocationLists].

func (*ListCertificateRevocationListsResponse) Descriptor Uses

func (*ListCertificateRevocationListsResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListCertificateRevocationListsResponse.ProtoReflect.Descriptor instead.

func (*ListCertificateRevocationListsResponse) GetCertificateRevocationLists Uses

func (x *ListCertificateRevocationListsResponse) GetCertificateRevocationLists() []*CertificateRevocationList

func (*ListCertificateRevocationListsResponse) GetNextPageToken Uses

func (x *ListCertificateRevocationListsResponse) GetNextPageToken() string

func (*ListCertificateRevocationListsResponse) GetUnreachable Uses

func (x *ListCertificateRevocationListsResponse) GetUnreachable() []string

func (*ListCertificateRevocationListsResponse) ProtoMessage Uses

func (*ListCertificateRevocationListsResponse) ProtoMessage()

func (*ListCertificateRevocationListsResponse) ProtoReflect Uses

func (x *ListCertificateRevocationListsResponse) ProtoReflect() protoreflect.Message

func (*ListCertificateRevocationListsResponse) Reset Uses

func (x *ListCertificateRevocationListsResponse) Reset()

func (*ListCertificateRevocationListsResponse) String Uses

func (x *ListCertificateRevocationListsResponse) String() string

type ListCertificatesRequest Uses

type ListCertificatesRequest struct {

    // Required. The resource name of the location associated with the
    // [Certificates][google.cloud.security.privateca.v1beta1.Certificate], in the format
    // `projects/*/locations/*/certificateauthorities/*`.
    Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
    // Optional. Limit on the number of
    // [Certificates][google.cloud.security.privateca.v1beta1.Certificate] to include in the
    // response. Further [Certificates][google.cloud.security.privateca.v1beta1.Certificate] can subsequently be obtained
    // by including the
    // [ListCertificatesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificatesResponse.next_page_token] in a subsequent
    // request. If unspecified, the server will pick an appropriate default.
    PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
    // Optional. Pagination token, returned earlier via
    // [ListCertificatesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificatesResponse.next_page_token].
    PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
    // Optional. Only include resources that match the filter in the response. For details
    // on supported filters and syntax, see [Certificates Filtering
    // documentation](https://cloud.google.com/certificate-authority-service/docs/sorting-filtering-certificates#filtering_support).
    Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
    // Optional. Specify how the results should be sorted. For details on supported fields
    // and syntax, see [Certificates Sorting
    // documentation](https://cloud.google.com/certificate-authority-service/docs/sorting-filtering-certificates#sorting_support).
    OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.ListCertificates][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificates].

func (*ListCertificatesRequest) Descriptor Uses

func (*ListCertificatesRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListCertificatesRequest.ProtoReflect.Descriptor instead.

func (*ListCertificatesRequest) GetFilter Uses

func (x *ListCertificatesRequest) GetFilter() string

func (*ListCertificatesRequest) GetOrderBy Uses

func (x *ListCertificatesRequest) GetOrderBy() string

func (*ListCertificatesRequest) GetPageSize Uses

func (x *ListCertificatesRequest) GetPageSize() int32

func (*ListCertificatesRequest) GetPageToken Uses

func (x *ListCertificatesRequest) GetPageToken() string

func (*ListCertificatesRequest) GetParent Uses

func (x *ListCertificatesRequest) GetParent() string

func (*ListCertificatesRequest) ProtoMessage Uses

func (*ListCertificatesRequest) ProtoMessage()

func (*ListCertificatesRequest) ProtoReflect Uses

func (x *ListCertificatesRequest) ProtoReflect() protoreflect.Message

func (*ListCertificatesRequest) Reset Uses

func (x *ListCertificatesRequest) Reset()

func (*ListCertificatesRequest) String Uses

func (x *ListCertificatesRequest) String() string

type ListCertificatesResponse Uses

type ListCertificatesResponse struct {

    // The list of [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
    Certificates []*Certificate `protobuf:"bytes,1,rep,name=certificates,proto3" json:"certificates,omitempty"`
    // A token to retrieve next page of results. Pass this value in
    // [ListCertificatesRequest.next_page_token][] to retrieve the
    // next page of results.
    NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
    // A list of locations (e.g. "us-west1") that could not be reached.
    Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
    // contains filtered or unexported fields
}

Response message for [CertificateAuthorityService.ListCertificates][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificates].

func (*ListCertificatesResponse) Descriptor Uses

func (*ListCertificatesResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListCertificatesResponse.ProtoReflect.Descriptor instead.

func (*ListCertificatesResponse) GetCertificates Uses

func (x *ListCertificatesResponse) GetCertificates() []*Certificate

func (*ListCertificatesResponse) GetNextPageToken Uses

func (x *ListCertificatesResponse) GetNextPageToken() string

func (*ListCertificatesResponse) GetUnreachable Uses

func (x *ListCertificatesResponse) GetUnreachable() []string

func (*ListCertificatesResponse) ProtoMessage Uses

func (*ListCertificatesResponse) ProtoMessage()

func (*ListCertificatesResponse) ProtoReflect Uses

func (x *ListCertificatesResponse) ProtoReflect() protoreflect.Message

func (*ListCertificatesResponse) Reset Uses

func (x *ListCertificatesResponse) Reset()

func (*ListCertificatesResponse) String Uses

func (x *ListCertificatesResponse) String() string

type ListReusableConfigsRequest Uses

type ListReusableConfigsRequest struct {

    // Required. The resource name of the location associated with the
    // [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig], in the format
    // `projects/*/locations/*`.
    Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
    // Optional. Limit on the number of
    // [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig] to include in the response.
    // Further [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig] can subsequently be
    // obtained by including the
    // [ListReusableConfigsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListReusableConfigsResponse.next_page_token] in a subsequent request. If
    // unspecified, the server will pick an appropriate default.
    PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
    // Optional. Pagination token, returned earlier via
    // [ListReusableConfigsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListReusableConfigsResponse.next_page_token].
    PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
    // Optional. Only include resources that match the filter in the response.
    Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
    // Optional. Specify how the results should be sorted.
    OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.ListReusableConfigs][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListReusableConfigs].

func (*ListReusableConfigsRequest) Descriptor Uses

func (*ListReusableConfigsRequest) Descriptor() ([]byte, []int)

Deprecated: Use ListReusableConfigsRequest.ProtoReflect.Descriptor instead.

func (*ListReusableConfigsRequest) GetFilter Uses

func (x *ListReusableConfigsRequest) GetFilter() string

func (*ListReusableConfigsRequest) GetOrderBy Uses

func (x *ListReusableConfigsRequest) GetOrderBy() string

func (*ListReusableConfigsRequest) GetPageSize Uses

func (x *ListReusableConfigsRequest) GetPageSize() int32

func (*ListReusableConfigsRequest) GetPageToken Uses

func (x *ListReusableConfigsRequest) GetPageToken() string

func (*ListReusableConfigsRequest) GetParent Uses

func (x *ListReusableConfigsRequest) GetParent() string

func (*ListReusableConfigsRequest) ProtoMessage Uses

func (*ListReusableConfigsRequest) ProtoMessage()

func (*ListReusableConfigsRequest) ProtoReflect Uses

func (x *ListReusableConfigsRequest) ProtoReflect() protoreflect.Message

func (*ListReusableConfigsRequest) Reset Uses

func (x *ListReusableConfigsRequest) Reset()

func (*ListReusableConfigsRequest) String Uses

func (x *ListReusableConfigsRequest) String() string

type ListReusableConfigsResponse Uses

type ListReusableConfigsResponse struct {

    // The list of [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig].
    ReusableConfigs []*ReusableConfig `protobuf:"bytes,1,rep,name=reusable_configs,json=reusableConfigs,proto3" json:"reusable_configs,omitempty"`
    // A token to retrieve next page of results. Pass this value in
    // [ListReusableConfigsRequest.next_page_token][] to retrieve
    // the next page of results.
    NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
    // A list of locations (e.g. "us-west1") that could not be reached.
    Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
    // contains filtered or unexported fields
}

Response message for [CertificateAuthorityService.ListReusableConfigs][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListReusableConfigs].

func (*ListReusableConfigsResponse) Descriptor Uses

func (*ListReusableConfigsResponse) Descriptor() ([]byte, []int)

Deprecated: Use ListReusableConfigsResponse.ProtoReflect.Descriptor instead.

func (*ListReusableConfigsResponse) GetNextPageToken Uses

func (x *ListReusableConfigsResponse) GetNextPageToken() string

func (*ListReusableConfigsResponse) GetReusableConfigs Uses

func (x *ListReusableConfigsResponse) GetReusableConfigs() []*ReusableConfig

func (*ListReusableConfigsResponse) GetUnreachable Uses

func (x *ListReusableConfigsResponse) GetUnreachable() []string

func (*ListReusableConfigsResponse) ProtoMessage Uses

func (*ListReusableConfigsResponse) ProtoMessage()

func (*ListReusableConfigsResponse) ProtoReflect Uses

func (x *ListReusableConfigsResponse) ProtoReflect() protoreflect.Message

func (*ListReusableConfigsResponse) Reset Uses

func (x *ListReusableConfigsResponse) Reset()

func (*ListReusableConfigsResponse) String Uses

func (x *ListReusableConfigsResponse) String() string

type ObjectId Uses

type ObjectId struct {

    // Required. The parts of an OID path. The most significant parts of the path come
    // first.
    ObjectIdPath []int32 `protobuf:"varint,1,rep,packed,name=object_id_path,json=objectIdPath,proto3" json:"object_id_path,omitempty"`
    // contains filtered or unexported fields
}

An [ObjectId][google.cloud.security.privateca.v1beta1.ObjectId] specifies an object identifier (OID). These provide context and describe types in ASN.1 messages.

func (*ObjectId) Descriptor Uses

func (*ObjectId) Descriptor() ([]byte, []int)

Deprecated: Use ObjectId.ProtoReflect.Descriptor instead.

func (*ObjectId) GetObjectIdPath Uses

func (x *ObjectId) GetObjectIdPath() []int32

func (*ObjectId) ProtoMessage Uses

func (*ObjectId) ProtoMessage()

func (*ObjectId) ProtoReflect Uses

func (x *ObjectId) ProtoReflect() protoreflect.Message

func (*ObjectId) Reset Uses

func (x *ObjectId) Reset()

func (*ObjectId) String Uses

func (x *ObjectId) String() string

type OperationMetadata Uses

type OperationMetadata struct {

    // Output only. The time the operation was created.
    CreateTime *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
    // Output only. The time the operation finished running.
    EndTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=end_time,json=endTime,proto3" json:"end_time,omitempty"`
    // Output only. Server-defined resource path for the target of the operation.
    Target string `protobuf:"bytes,3,opt,name=target,proto3" json:"target,omitempty"`
    // Output only. Name of the verb executed by the operation.
    Verb string `protobuf:"bytes,4,opt,name=verb,proto3" json:"verb,omitempty"`
    // Output only. Human-readable status of the operation, if any.
    StatusMessage string `protobuf:"bytes,5,opt,name=status_message,json=statusMessage,proto3" json:"status_message,omitempty"`
    // Output only. Identifies whether the user has requested cancellation
    // of the operation. Operations that have successfully been cancelled
    // have [Operation.error][] value with a [google.rpc.Status.code][google.rpc.Status.code] of 1,
    // corresponding to `Code.CANCELLED`.
    RequestedCancellation bool `protobuf:"varint,6,opt,name=requested_cancellation,json=requestedCancellation,proto3" json:"requested_cancellation,omitempty"`
    // Output only. API version used to start the operation.
    ApiVersion string `protobuf:"bytes,7,opt,name=api_version,json=apiVersion,proto3" json:"api_version,omitempty"`
    // contains filtered or unexported fields
}

Represents the metadata of the long-running operation.

func (*OperationMetadata) Descriptor Uses

func (*OperationMetadata) Descriptor() ([]byte, []int)

Deprecated: Use OperationMetadata.ProtoReflect.Descriptor instead.

func (*OperationMetadata) GetApiVersion Uses

func (x *OperationMetadata) GetApiVersion() string

func (*OperationMetadata) GetCreateTime Uses

func (x *OperationMetadata) GetCreateTime() *timestamppb.Timestamp

func (*OperationMetadata) GetEndTime Uses

func (x *OperationMetadata) GetEndTime() *timestamppb.Timestamp

func (*OperationMetadata) GetRequestedCancellation Uses

func (x *OperationMetadata) GetRequestedCancellation() bool

func (*OperationMetadata) GetStatusMessage Uses

func (x *OperationMetadata) GetStatusMessage() string

func (*OperationMetadata) GetTarget Uses

func (x *OperationMetadata) GetTarget() string

func (*OperationMetadata) GetVerb Uses

func (x *OperationMetadata) GetVerb() string

func (*OperationMetadata) ProtoMessage Uses

func (*OperationMetadata) ProtoMessage()

func (*OperationMetadata) ProtoReflect Uses

func (x *OperationMetadata) ProtoReflect() protoreflect.Message

func (*OperationMetadata) Reset Uses

func (x *OperationMetadata) Reset()

func (*OperationMetadata) String Uses

func (x *OperationMetadata) String() string

type PublicKey Uses

type PublicKey struct {

    // Required. The type of public key.
    Type PublicKey_KeyType `protobuf:"varint,1,opt,name=type,proto3,enum=google.cloud.security.privateca.v1beta1.PublicKey_KeyType" json:"type,omitempty"`
    // Required. A public key. Padding and encoding varies by 'KeyType' and is described
    // along with the KeyType values.
    Key []byte `protobuf:"bytes,2,opt,name=key,proto3" json:"key,omitempty"`
    // contains filtered or unexported fields
}

A [PublicKey][google.cloud.security.privateca.v1beta1.PublicKey] describes a public key.

func (*PublicKey) Descriptor Uses

func (*PublicKey) Descriptor() ([]byte, []int)

Deprecated: Use PublicKey.ProtoReflect.Descriptor instead.

func (*PublicKey) GetKey Uses

func (x *PublicKey) GetKey() []byte

func (*PublicKey) GetType Uses

func (x *PublicKey) GetType() PublicKey_KeyType

func (*PublicKey) ProtoMessage Uses

func (*PublicKey) ProtoMessage()

func (*PublicKey) ProtoReflect Uses

func (x *PublicKey) ProtoReflect() protoreflect.Message

func (*PublicKey) Reset Uses

func (x *PublicKey) Reset()

func (*PublicKey) String Uses

func (x *PublicKey) String() string

type PublicKey_KeyType Uses

type PublicKey_KeyType int32

Types of public keys that are supported. At a minimum, we support RSA and ECDSA, for the key sizes or curves listed: https://cloud.google.com/kms/docs/algorithms#asymmetric_signing_algorithms

const (
    // Default unspecified value.
    PublicKey_KEY_TYPE_UNSPECIFIED PublicKey_KeyType = 0
    // A PEM-encoded PKCS#1/RFC 3447 RSAPrivateKey structure.
    PublicKey_PEM_RSA_KEY PublicKey_KeyType = 1
    // A PEM-encoded compressed NIST P-256/secp256r1/prime256v1 or P-384 key.
    PublicKey_PEM_EC_KEY PublicKey_KeyType = 2
)

func (PublicKey_KeyType) Descriptor Uses

func (PublicKey_KeyType) Descriptor() protoreflect.EnumDescriptor

func (PublicKey_KeyType) Enum Uses

func (x PublicKey_KeyType) Enum() *PublicKey_KeyType

func (PublicKey_KeyType) EnumDescriptor Uses

func (PublicKey_KeyType) EnumDescriptor() ([]byte, []int)

Deprecated: Use PublicKey_KeyType.Descriptor instead.

func (PublicKey_KeyType) Number Uses

func (x PublicKey_KeyType) Number() protoreflect.EnumNumber

func (PublicKey_KeyType) String Uses

func (x PublicKey_KeyType) String() string

func (PublicKey_KeyType) Type Uses

func (PublicKey_KeyType) Type() protoreflect.EnumType

type RestoreCertificateAuthorityRequest Uses

type RestoreCertificateAuthorityRequest struct {

    // Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
    // format `projects/*/locations/*/certificateAuthorities/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.RestoreCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.RestoreCertificateAuthority].

func (*RestoreCertificateAuthorityRequest) Descriptor Uses

func (*RestoreCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use RestoreCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*RestoreCertificateAuthorityRequest) GetName Uses

func (x *RestoreCertificateAuthorityRequest) GetName() string

func (*RestoreCertificateAuthorityRequest) GetRequestId Uses

func (x *RestoreCertificateAuthorityRequest) GetRequestId() string

func (*RestoreCertificateAuthorityRequest) ProtoMessage Uses

func (*RestoreCertificateAuthorityRequest) ProtoMessage()

func (*RestoreCertificateAuthorityRequest) ProtoReflect Uses

func (x *RestoreCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*RestoreCertificateAuthorityRequest) Reset Uses

func (x *RestoreCertificateAuthorityRequest) Reset()

func (*RestoreCertificateAuthorityRequest) String Uses

func (x *RestoreCertificateAuthorityRequest) String() string

type ReusableConfig Uses

type ReusableConfig struct {

    // Output only. The resource path for this [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig] in the format
    // `projects/*/locations/*/reusableConfigs/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Required. The config values.
    Values *ReusableConfigValues `protobuf:"bytes,2,opt,name=values,proto3" json:"values,omitempty"`
    // Optional. A human-readable description of scenarios these ReusableConfigValues may be
    // compatible with.
    Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
    // Output only. The time at which this [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig] was created.
    CreateTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
    // Output only. The time at which this [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig] was updated.
    UpdateTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
    // Optional. Labels with user-defined metadata.
    Labels map[string]string `protobuf:"bytes,6,rep,name=labels,proto3" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
    // contains filtered or unexported fields
}

A [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig] refers to a managed [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues]. Those, in turn, are used to describe certain fields of an X.509 certificate, such as the key usage fields, fields specific to CA certificates, certificate policy extensions and custom extensions.

func (*ReusableConfig) Descriptor Uses

func (*ReusableConfig) Descriptor() ([]byte, []int)

Deprecated: Use ReusableConfig.ProtoReflect.Descriptor instead.

func (*ReusableConfig) GetCreateTime Uses

func (x *ReusableConfig) GetCreateTime() *timestamppb.Timestamp

func (*ReusableConfig) GetDescription Uses

func (x *ReusableConfig) GetDescription() string

func (*ReusableConfig) GetLabels Uses

func (x *ReusableConfig) GetLabels() map[string]string

func (*ReusableConfig) GetName Uses

func (x *ReusableConfig) GetName() string

func (*ReusableConfig) GetUpdateTime Uses

func (x *ReusableConfig) GetUpdateTime() *timestamppb.Timestamp

func (*ReusableConfig) GetValues Uses

func (x *ReusableConfig) GetValues() *ReusableConfigValues

func (*ReusableConfig) ProtoMessage Uses

func (*ReusableConfig) ProtoMessage()

func (*ReusableConfig) ProtoReflect Uses

func (x *ReusableConfig) ProtoReflect() protoreflect.Message

func (*ReusableConfig) Reset Uses

func (x *ReusableConfig) Reset()

func (*ReusableConfig) String Uses

func (x *ReusableConfig) String() string

type ReusableConfigValues Uses

type ReusableConfigValues struct {

    // Optional. Indicates the intended use for keys that correspond to a certificate.
    KeyUsage *KeyUsage `protobuf:"bytes,1,opt,name=key_usage,json=keyUsage,proto3" json:"key_usage,omitempty"`
    // Optional. Describes options in this [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues] that are
    // relevant in a CA certificate.
    CaOptions *ReusableConfigValues_CaOptions `protobuf:"bytes,2,opt,name=ca_options,json=caOptions,proto3" json:"ca_options,omitempty"`
    // Optional. Describes the X.509 certificate policy object identifiers, per
    // https://tools.ietf.org/html/rfc5280#section-4.2.1.4.
    PolicyIds []*ObjectId `protobuf:"bytes,3,rep,name=policy_ids,json=policyIds,proto3" json:"policy_ids,omitempty"`
    // Optional. Describes Online Certificate Status Protocol (OCSP) endpoint addresses
    // that appear in the "Authority Information Access" extension in the
    // certificate.
    AiaOcspServers []string `protobuf:"bytes,4,rep,name=aia_ocsp_servers,json=aiaOcspServers,proto3" json:"aia_ocsp_servers,omitempty"`
    // Optional. Describes custom X.509 extensions.
    AdditionalExtensions []*X509Extension `protobuf:"bytes,5,rep,name=additional_extensions,json=additionalExtensions,proto3" json:"additional_extensions,omitempty"`
    // contains filtered or unexported fields
}

A [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues] is used to describe certain fields of an X.509 certificate, such as the key usage fields, fields specific to CA certificates, certificate policy extensions and custom extensions.

func (*ReusableConfigValues) Descriptor Uses

func (*ReusableConfigValues) Descriptor() ([]byte, []int)

Deprecated: Use ReusableConfigValues.ProtoReflect.Descriptor instead.

func (*ReusableConfigValues) GetAdditionalExtensions Uses

func (x *ReusableConfigValues) GetAdditionalExtensions() []*X509Extension

func (*ReusableConfigValues) GetAiaOcspServers Uses

func (x *ReusableConfigValues) GetAiaOcspServers() []string

func (*ReusableConfigValues) GetCaOptions Uses

func (x *ReusableConfigValues) GetCaOptions() *ReusableConfigValues_CaOptions

func (*ReusableConfigValues) GetKeyUsage Uses

func (x *ReusableConfigValues) GetKeyUsage() *KeyUsage

func (*ReusableConfigValues) GetPolicyIds Uses

func (x *ReusableConfigValues) GetPolicyIds() []*ObjectId

func (*ReusableConfigValues) ProtoMessage Uses

func (*ReusableConfigValues) ProtoMessage()

func (*ReusableConfigValues) ProtoReflect Uses

func (x *ReusableConfigValues) ProtoReflect() protoreflect.Message

func (*ReusableConfigValues) Reset Uses

func (x *ReusableConfigValues) Reset()

func (*ReusableConfigValues) String Uses

func (x *ReusableConfigValues) String() string

type ReusableConfigValues_CaOptions Uses

type ReusableConfigValues_CaOptions struct {

    // Optional. Refers to the "CA" X.509 extension, which is a boolean value. When this
    // value is missing, the extension will be omitted from the CA certificate.
    IsCa *wrapperspb.BoolValue `protobuf:"bytes,1,opt,name=is_ca,json=isCa,proto3" json:"is_ca,omitempty"`
    // Optional. Refers to the path length restriction X.509 extension. For a CA
    // certificate, this value describes the depth of subordinate CA
    // certificates that are allowed.
    // If this value is less than 0, the request will fail.
    // If this value is missing, the max path length will be omitted from the
    // CA certificate.
    MaxIssuerPathLength *wrapperspb.Int32Value `protobuf:"bytes,2,opt,name=max_issuer_path_length,json=maxIssuerPathLength,proto3" json:"max_issuer_path_length,omitempty"`
    // contains filtered or unexported fields
}

Describes values that are relevant in a CA certificate.

func (*ReusableConfigValues_CaOptions) Descriptor Uses

func (*ReusableConfigValues_CaOptions) Descriptor() ([]byte, []int)

Deprecated: Use ReusableConfigValues_CaOptions.ProtoReflect.Descriptor instead.

func (*ReusableConfigValues_CaOptions) GetIsCa Uses

func (x *ReusableConfigValues_CaOptions) GetIsCa() *wrapperspb.BoolValue

func (*ReusableConfigValues_CaOptions) GetMaxIssuerPathLength Uses

func (x *ReusableConfigValues_CaOptions) GetMaxIssuerPathLength() *wrapperspb.Int32Value

func (*ReusableConfigValues_CaOptions) ProtoMessage Uses

func (*ReusableConfigValues_CaOptions) ProtoMessage()

func (*ReusableConfigValues_CaOptions) ProtoReflect Uses

func (x *ReusableConfigValues_CaOptions) ProtoReflect() protoreflect.Message

func (*ReusableConfigValues_CaOptions) Reset Uses

func (x *ReusableConfigValues_CaOptions) Reset()

func (*ReusableConfigValues_CaOptions) String Uses

func (x *ReusableConfigValues_CaOptions) String() string

type ReusableConfigWrapper Uses

type ReusableConfigWrapper struct {

    // Reusable or inline config values.
    //
    // Types that are assignable to ConfigValues:
    //	*ReusableConfigWrapper_ReusableConfig
    //	*ReusableConfigWrapper_ReusableConfigValues
    ConfigValues isReusableConfigWrapper_ConfigValues `protobuf_oneof:"config_values"`
    // contains filtered or unexported fields
}

A [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper] describes values that may assist in creating an X.509 certificate, or a reference to a pre-defined set of values.

func (*ReusableConfigWrapper) Descriptor Uses

func (*ReusableConfigWrapper) Descriptor() ([]byte, []int)

Deprecated: Use ReusableConfigWrapper.ProtoReflect.Descriptor instead.

func (*ReusableConfigWrapper) GetConfigValues Uses

func (m *ReusableConfigWrapper) GetConfigValues() isReusableConfigWrapper_ConfigValues

func (*ReusableConfigWrapper) GetReusableConfig Uses

func (x *ReusableConfigWrapper) GetReusableConfig() string

func (*ReusableConfigWrapper) GetReusableConfigValues Uses

func (x *ReusableConfigWrapper) GetReusableConfigValues() *ReusableConfigValues

func (*ReusableConfigWrapper) ProtoMessage Uses

func (*ReusableConfigWrapper) ProtoMessage()

func (*ReusableConfigWrapper) ProtoReflect Uses

func (x *ReusableConfigWrapper) ProtoReflect() protoreflect.Message

func (*ReusableConfigWrapper) Reset Uses

func (x *ReusableConfigWrapper) Reset()

func (*ReusableConfigWrapper) String Uses

func (x *ReusableConfigWrapper) String() string

type ReusableConfigWrapper_ReusableConfig Uses

type ReusableConfigWrapper_ReusableConfig struct {
    // Required. A resource path to a [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig] in the format
    // `projects/*/locations/*/reusableConfigs/*`.
    ReusableConfig string `protobuf:"bytes,1,opt,name=reusable_config,json=reusableConfig,proto3,oneof"`
}

type ReusableConfigWrapper_ReusableConfigValues Uses

type ReusableConfigWrapper_ReusableConfigValues struct {
    // Required. A user-specified inline [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues].
    ReusableConfigValues *ReusableConfigValues `protobuf:"bytes,2,opt,name=reusable_config_values,json=reusableConfigValues,proto3,oneof"`
}

type RevocationReason Uses

type RevocationReason int32

A [RevocationReason][google.cloud.security.privateca.v1beta1.RevocationReason] indicates whether a [Certificate][google.cloud.security.privateca.v1beta1.Certificate] has been revoked, and the reason for revocation. These correspond to standard revocation reasons from RFC 5280. Note that the enum labels and values in this definition are not the same ASN.1 values defined in RFC 5280. These values will be translated to the correct ASN.1 values when a CRL is created.

const (
    // Default unspecified value. This value does indicate that a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]
    // has been revoked, but that a reason has not been recorded.
    RevocationReason_REVOCATION_REASON_UNSPECIFIED RevocationReason = 0
    // Key material for this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] may have leaked.
    RevocationReason_KEY_COMPROMISE RevocationReason = 1
    // The key material for a certificate authority in the issuing path may have
    // leaked.
    RevocationReason_CERTIFICATE_AUTHORITY_COMPROMISE RevocationReason = 2
    // The subject or other attributes in this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] have changed.
    RevocationReason_AFFILIATION_CHANGED RevocationReason = 3
    // This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] has been superseded.
    RevocationReason_SUPERSEDED RevocationReason = 4
    // This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] or entities in the issuing path have ceased to
    // operate.
    RevocationReason_CESSATION_OF_OPERATION RevocationReason = 5
    // This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] should not be considered valid, it is expected that it
    // may become valid in the future.
    RevocationReason_CERTIFICATE_HOLD RevocationReason = 6
    // This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] no longer has permission to assert the listed
    // attributes.
    RevocationReason_PRIVILEGE_WITHDRAWN RevocationReason = 7
    // The authority which determines appropriate attributes for a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]
    // may have been compromised.
    RevocationReason_ATTRIBUTE_AUTHORITY_COMPROMISE RevocationReason = 8
)

func (RevocationReason) Descriptor Uses

func (RevocationReason) Descriptor() protoreflect.EnumDescriptor

func (RevocationReason) Enum Uses

func (x RevocationReason) Enum() *RevocationReason

func (RevocationReason) EnumDescriptor Uses

func (RevocationReason) EnumDescriptor() ([]byte, []int)

Deprecated: Use RevocationReason.Descriptor instead.

func (RevocationReason) Number Uses

func (x RevocationReason) Number() protoreflect.EnumNumber

func (RevocationReason) String Uses

func (x RevocationReason) String() string

func (RevocationReason) Type Uses

func (RevocationReason) Type() protoreflect.EnumType

type RevokeCertificateRequest Uses

type RevokeCertificateRequest struct {

    // Required. The resource name for this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] in the
    // format `projects/*/locations/*/certificateAuthorities/*/certificates/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Required. The [RevocationReason][google.cloud.security.privateca.v1beta1.RevocationReason] for revoking this certificate.
    Reason RevocationReason `protobuf:"varint,2,opt,name=reason,proto3,enum=google.cloud.security.privateca.v1beta1.RevocationReason" json:"reason,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.RevokeCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.RevokeCertificate].

func (*RevokeCertificateRequest) Descriptor Uses

func (*RevokeCertificateRequest) Descriptor() ([]byte, []int)

Deprecated: Use RevokeCertificateRequest.ProtoReflect.Descriptor instead.

func (*RevokeCertificateRequest) GetName Uses

func (x *RevokeCertificateRequest) GetName() string

func (*RevokeCertificateRequest) GetReason Uses

func (x *RevokeCertificateRequest) GetReason() RevocationReason

func (*RevokeCertificateRequest) GetRequestId Uses

func (x *RevokeCertificateRequest) GetRequestId() string

func (*RevokeCertificateRequest) ProtoMessage Uses

func (*RevokeCertificateRequest) ProtoMessage()

func (*RevokeCertificateRequest) ProtoReflect Uses

func (x *RevokeCertificateRequest) ProtoReflect() protoreflect.Message

func (*RevokeCertificateRequest) Reset Uses

func (x *RevokeCertificateRequest) Reset()

func (*RevokeCertificateRequest) String Uses

func (x *RevokeCertificateRequest) String() string

type ScheduleDeleteCertificateAuthorityRequest Uses

type ScheduleDeleteCertificateAuthorityRequest struct {

    // Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
    // format `projects/*/locations/*/certificateAuthorities/*`.
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.ScheduleDeleteCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ScheduleDeleteCertificateAuthority].

func (*ScheduleDeleteCertificateAuthorityRequest) Descriptor Uses

func (*ScheduleDeleteCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use ScheduleDeleteCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*ScheduleDeleteCertificateAuthorityRequest) GetName Uses

func (x *ScheduleDeleteCertificateAuthorityRequest) GetName() string

func (*ScheduleDeleteCertificateAuthorityRequest) GetRequestId Uses

func (x *ScheduleDeleteCertificateAuthorityRequest) GetRequestId() string

func (*ScheduleDeleteCertificateAuthorityRequest) ProtoMessage Uses

func (*ScheduleDeleteCertificateAuthorityRequest) ProtoMessage()

func (*ScheduleDeleteCertificateAuthorityRequest) ProtoReflect Uses

func (x *ScheduleDeleteCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*ScheduleDeleteCertificateAuthorityRequest) Reset Uses

func (x *ScheduleDeleteCertificateAuthorityRequest) Reset()

func (*ScheduleDeleteCertificateAuthorityRequest) String Uses

func (x *ScheduleDeleteCertificateAuthorityRequest) String() string

type Subject Uses

type Subject struct {

    // The country code of the subject.
    CountryCode string `protobuf:"bytes,1,opt,name=country_code,json=countryCode,proto3" json:"country_code,omitempty"`
    // The organization of the subject.
    Organization string `protobuf:"bytes,2,opt,name=organization,proto3" json:"organization,omitempty"`
    // The organizational_unit of the subject.
    OrganizationalUnit string `protobuf:"bytes,3,opt,name=organizational_unit,json=organizationalUnit,proto3" json:"organizational_unit,omitempty"`
    // The locality or city of the subject.
    Locality string `protobuf:"bytes,4,opt,name=locality,proto3" json:"locality,omitempty"`
    // The province, territory, or regional state of the subject.
    Province string `protobuf:"bytes,5,opt,name=province,proto3" json:"province,omitempty"`
    // The street address of the subject.
    StreetAddress string `protobuf:"bytes,6,opt,name=street_address,json=streetAddress,proto3" json:"street_address,omitempty"`
    // The postal code of the subject.
    PostalCode string `protobuf:"bytes,7,opt,name=postal_code,json=postalCode,proto3" json:"postal_code,omitempty"`
    // contains filtered or unexported fields
}

[Subject][google.cloud.security.privateca.v1beta1.Subject] describes parts of a distinguished name that, in turn, describes the subject of the certificate.

func (*Subject) Descriptor Uses

func (*Subject) Descriptor() ([]byte, []int)

Deprecated: Use Subject.ProtoReflect.Descriptor instead.

func (*Subject) GetCountryCode Uses

func (x *Subject) GetCountryCode() string

func (*Subject) GetLocality Uses

func (x *Subject) GetLocality() string

func (*Subject) GetOrganization Uses

func (x *Subject) GetOrganization() string

func (*Subject) GetOrganizationalUnit Uses

func (x *Subject) GetOrganizationalUnit() string

func (*Subject) GetPostalCode Uses

func (x *Subject) GetPostalCode() string

func (*Subject) GetProvince Uses

func (x *Subject) GetProvince() string

func (*Subject) GetStreetAddress Uses

func (x *Subject) GetStreetAddress() string

func (*Subject) ProtoMessage Uses

func (*Subject) ProtoMessage()

func (*Subject) ProtoReflect Uses

func (x *Subject) ProtoReflect() protoreflect.Message

func (*Subject) Reset Uses

func (x *Subject) Reset()

func (*Subject) String Uses

func (x *Subject) String() string

type SubjectAltNames Uses

type SubjectAltNames struct {

    // Contains only valid, fully-qualified host names.
    DnsNames []string `protobuf:"bytes,1,rep,name=dns_names,json=dnsNames,proto3" json:"dns_names,omitempty"`
    // Contains only valid RFC 3986 URIs.
    Uris []string `protobuf:"bytes,2,rep,name=uris,proto3" json:"uris,omitempty"`
    // Contains only valid RFC 2822 E-mail addresses.
    EmailAddresses []string `protobuf:"bytes,3,rep,name=email_addresses,json=emailAddresses,proto3" json:"email_addresses,omitempty"`
    // Contains only valid 32-bit IPv4 addresses or RFC 4291 IPv6 addresses.
    IpAddresses []string `protobuf:"bytes,4,rep,name=ip_addresses,json=ipAddresses,proto3" json:"ip_addresses,omitempty"`
    // Contains additional subject alternative name values.
    CustomSans []*X509Extension `protobuf:"bytes,5,rep,name=custom_sans,json=customSans,proto3" json:"custom_sans,omitempty"`
    // contains filtered or unexported fields
}

[SubjectAltNames][google.cloud.security.privateca.v1beta1.SubjectAltNames] corresponds to a more modern way of listing what the asserted identity is in a certificate (i.e., compared to the "common name" in the distinguished name).

func (*SubjectAltNames) Descriptor Uses

func (*SubjectAltNames) Descriptor() ([]byte, []int)

Deprecated: Use SubjectAltNames.ProtoReflect.Descriptor instead.

func (*SubjectAltNames) GetCustomSans Uses

func (x *SubjectAltNames) GetCustomSans() []*X509Extension

func (*SubjectAltNames) GetDnsNames Uses

func (x *SubjectAltNames) GetDnsNames() []string

func (*SubjectAltNames) GetEmailAddresses Uses

func (x *SubjectAltNames) GetEmailAddresses() []string

func (*SubjectAltNames) GetIpAddresses Uses

func (x *SubjectAltNames) GetIpAddresses() []string

func (*SubjectAltNames) GetUris Uses

func (x *SubjectAltNames) GetUris() []string

func (*SubjectAltNames) ProtoMessage Uses

func (*SubjectAltNames) ProtoMessage()

func (*SubjectAltNames) ProtoReflect Uses

func (x *SubjectAltNames) ProtoReflect() protoreflect.Message

func (*SubjectAltNames) Reset Uses

func (x *SubjectAltNames) Reset()

func (*SubjectAltNames) String Uses

func (x *SubjectAltNames) String() string

type SubordinateConfig Uses

type SubordinateConfig struct {

    // Types that are assignable to SubordinateConfig:
    //	*SubordinateConfig_CertificateAuthority
    //	*SubordinateConfig_PemIssuerChain
    SubordinateConfig isSubordinateConfig_SubordinateConfig `protobuf_oneof:"subordinate_config"`
    // contains filtered or unexported fields
}

Describes a subordinate CA's issuers. This is either a resource path to a known issuing [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], or a PEM issuer certificate chain.

func (*SubordinateConfig) Descriptor Uses

func (*SubordinateConfig) Descriptor() ([]byte, []int)

Deprecated: Use SubordinateConfig.ProtoReflect.Descriptor instead.

func (*SubordinateConfig) GetCertificateAuthority Uses

func (x *SubordinateConfig) GetCertificateAuthority() string

func (*SubordinateConfig) GetPemIssuerChain Uses

func (x *SubordinateConfig) GetPemIssuerChain() *SubordinateConfig_SubordinateConfigChain

func (*SubordinateConfig) GetSubordinateConfig Uses

func (m *SubordinateConfig) GetSubordinateConfig() isSubordinateConfig_SubordinateConfig

func (*SubordinateConfig) ProtoMessage Uses

func (*SubordinateConfig) ProtoMessage()

func (*SubordinateConfig) ProtoReflect Uses

func (x *SubordinateConfig) ProtoReflect() protoreflect.Message

func (*SubordinateConfig) Reset Uses

func (x *SubordinateConfig) Reset()

func (*SubordinateConfig) String Uses

func (x *SubordinateConfig) String() string

type SubordinateConfig_CertificateAuthority Uses

type SubordinateConfig_CertificateAuthority struct {
    // Required. This can refer to a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the same project that
    // was used to create a subordinate [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]. This field
    // is used for information and usability purposes only. The resource name
    // is in the format `projects/*/locations/*/certificateAuthorities/*`.
    CertificateAuthority string `protobuf:"bytes,1,opt,name=certificate_authority,json=certificateAuthority,proto3,oneof"`
}

type SubordinateConfig_PemIssuerChain Uses

type SubordinateConfig_PemIssuerChain struct {
    // Required. Contains the PEM certificate chain for the issuers of this
    // [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], but not pem certificate for this CA itself.
    PemIssuerChain *SubordinateConfig_SubordinateConfigChain `protobuf:"bytes,2,opt,name=pem_issuer_chain,json=pemIssuerChain,proto3,oneof"`
}

type SubordinateConfig_SubordinateConfigChain Uses

type SubordinateConfig_SubordinateConfigChain struct {

    // Required. Expected to be in leaf-to-root order according to RFC 5246.
    PemCertificates []string `protobuf:"bytes,1,rep,name=pem_certificates,json=pemCertificates,proto3" json:"pem_certificates,omitempty"`
    // contains filtered or unexported fields
}

This message describes a subordinate CA's issuer certificate chain. This wrapper exists for compatibility reasons.

func (*SubordinateConfig_SubordinateConfigChain) Descriptor Uses

func (*SubordinateConfig_SubordinateConfigChain) Descriptor() ([]byte, []int)

Deprecated: Use SubordinateConfig_SubordinateConfigChain.ProtoReflect.Descriptor instead.

func (*SubordinateConfig_SubordinateConfigChain) GetPemCertificates Uses

func (x *SubordinateConfig_SubordinateConfigChain) GetPemCertificates() []string

func (*SubordinateConfig_SubordinateConfigChain) ProtoMessage Uses

func (*SubordinateConfig_SubordinateConfigChain) ProtoMessage()

func (*SubordinateConfig_SubordinateConfigChain) ProtoReflect Uses

func (x *SubordinateConfig_SubordinateConfigChain) ProtoReflect() protoreflect.Message

func (*SubordinateConfig_SubordinateConfigChain) Reset Uses

func (x *SubordinateConfig_SubordinateConfigChain) Reset()

func (*SubordinateConfig_SubordinateConfigChain) String Uses

func (x *SubordinateConfig_SubordinateConfigChain) String() string

type UnimplementedCertificateAuthorityServiceServer Uses

type UnimplementedCertificateAuthorityServiceServer struct {
}

UnimplementedCertificateAuthorityServiceServer can be embedded to have forward compatible implementations.

func (*UnimplementedCertificateAuthorityServiceServer) ActivateCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) ActivateCertificateAuthority(context.Context, *ActivateCertificateAuthorityRequest) (*longrunning.Operation, error)

func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificate Uses

func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificate(context.Context, *CreateCertificateRequest) (*Certificate, error)

func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificateAuthority(context.Context, *CreateCertificateAuthorityRequest) (*longrunning.Operation, error)

func (*UnimplementedCertificateAuthorityServiceServer) DisableCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) DisableCertificateAuthority(context.Context, *DisableCertificateAuthorityRequest) (*longrunning.Operation, error)

func (*UnimplementedCertificateAuthorityServiceServer) EnableCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) EnableCertificateAuthority(context.Context, *EnableCertificateAuthorityRequest) (*longrunning.Operation, error)

func (*UnimplementedCertificateAuthorityServiceServer) FetchCertificateAuthorityCsr Uses

func (*UnimplementedCertificateAuthorityServiceServer) FetchCertificateAuthorityCsr(context.Context, *FetchCertificateAuthorityCsrRequest) (*FetchCertificateAuthorityCsrResponse, error)

func (*UnimplementedCertificateAuthorityServiceServer) GetCertificate Uses

func (*UnimplementedCertificateAuthorityServiceServer) GetCertificate(context.Context, *GetCertificateRequest) (*Certificate, error)

func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateAuthority(context.Context, *GetCertificateAuthorityRequest) (*CertificateAuthority, error)

func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateRevocationList Uses

func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateRevocationList(context.Context, *GetCertificateRevocationListRequest) (*CertificateRevocationList, error)

func (*UnimplementedCertificateAuthorityServiceServer) GetReusableConfig Uses

func (*UnimplementedCertificateAuthorityServiceServer) GetReusableConfig(context.Context, *GetReusableConfigRequest) (*ReusableConfig, error)

func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateAuthorities Uses

func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateAuthorities(context.Context, *ListCertificateAuthoritiesRequest) (*ListCertificateAuthoritiesResponse, error)

func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateRevocationLists Uses

func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateRevocationLists(context.Context, *ListCertificateRevocationListsRequest) (*ListCertificateRevocationListsResponse, error)

func (*UnimplementedCertificateAuthorityServiceServer) ListCertificates Uses

func (*UnimplementedCertificateAuthorityServiceServer) ListCertificates(context.Context, *ListCertificatesRequest) (*ListCertificatesResponse, error)

func (*UnimplementedCertificateAuthorityServiceServer) ListReusableConfigs Uses

func (*UnimplementedCertificateAuthorityServiceServer) ListReusableConfigs(context.Context, *ListReusableConfigsRequest) (*ListReusableConfigsResponse, error)

func (*UnimplementedCertificateAuthorityServiceServer) RestoreCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) RestoreCertificateAuthority(context.Context, *RestoreCertificateAuthorityRequest) (*longrunning.Operation, error)

func (*UnimplementedCertificateAuthorityServiceServer) RevokeCertificate Uses

func (*UnimplementedCertificateAuthorityServiceServer) RevokeCertificate(context.Context, *RevokeCertificateRequest) (*Certificate, error)

func (*UnimplementedCertificateAuthorityServiceServer) ScheduleDeleteCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) ScheduleDeleteCertificateAuthority(context.Context, *ScheduleDeleteCertificateAuthorityRequest) (*longrunning.Operation, error)

func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificate Uses

func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificate(context.Context, *UpdateCertificateRequest) (*Certificate, error)

func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateAuthority Uses

func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateAuthority(context.Context, *UpdateCertificateAuthorityRequest) (*longrunning.Operation, error)

func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateRevocationList Uses

func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateRevocationList(context.Context, *UpdateCertificateRevocationListRequest) (*longrunning.Operation, error)

type UpdateCertificateAuthorityRequest Uses

type UpdateCertificateAuthorityRequest struct {

    // Required. [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] with updated values.
    CertificateAuthority *CertificateAuthority `protobuf:"bytes,1,opt,name=certificate_authority,json=certificateAuthority,proto3" json:"certificate_authority,omitempty"`
    // Required. A list of fields to be updated in this request.
    UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.UpdateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.UpdateCertificateAuthority].

func (*UpdateCertificateAuthorityRequest) Descriptor Uses

func (*UpdateCertificateAuthorityRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdateCertificateAuthorityRequest.ProtoReflect.Descriptor instead.

func (*UpdateCertificateAuthorityRequest) GetCertificateAuthority Uses

func (x *UpdateCertificateAuthorityRequest) GetCertificateAuthority() *CertificateAuthority

func (*UpdateCertificateAuthorityRequest) GetRequestId Uses

func (x *UpdateCertificateAuthorityRequest) GetRequestId() string

func (*UpdateCertificateAuthorityRequest) GetUpdateMask Uses

func (x *UpdateCertificateAuthorityRequest) GetUpdateMask() *fieldmaskpb.FieldMask

func (*UpdateCertificateAuthorityRequest) ProtoMessage Uses

func (*UpdateCertificateAuthorityRequest) ProtoMessage()

func (*UpdateCertificateAuthorityRequest) ProtoReflect Uses

func (x *UpdateCertificateAuthorityRequest) ProtoReflect() protoreflect.Message

func (*UpdateCertificateAuthorityRequest) Reset Uses

func (x *UpdateCertificateAuthorityRequest) Reset()

func (*UpdateCertificateAuthorityRequest) String Uses

func (x *UpdateCertificateAuthorityRequest) String() string

type UpdateCertificateRequest Uses

type UpdateCertificateRequest struct {

    // Required. [Certificate][google.cloud.security.privateca.v1beta1.Certificate] with updated values.
    Certificate *Certificate `protobuf:"bytes,1,opt,name=certificate,proto3" json:"certificate,omitempty"`
    // Required. A list of fields to be updated in this request.
    UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.UpdateCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.UpdateCertificate].

func (*UpdateCertificateRequest) Descriptor Uses

func (*UpdateCertificateRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdateCertificateRequest.ProtoReflect.Descriptor instead.

func (*UpdateCertificateRequest) GetCertificate Uses

func (x *UpdateCertificateRequest) GetCertificate() *Certificate

func (*UpdateCertificateRequest) GetRequestId Uses

func (x *UpdateCertificateRequest) GetRequestId() string

func (*UpdateCertificateRequest) GetUpdateMask Uses

func (x *UpdateCertificateRequest) GetUpdateMask() *fieldmaskpb.FieldMask

func (*UpdateCertificateRequest) ProtoMessage Uses

func (*UpdateCertificateRequest) ProtoMessage()

func (*UpdateCertificateRequest) ProtoReflect Uses

func (x *UpdateCertificateRequest) ProtoReflect() protoreflect.Message

func (*UpdateCertificateRequest) Reset Uses

func (x *UpdateCertificateRequest) Reset()

func (*UpdateCertificateRequest) String Uses

func (x *UpdateCertificateRequest) String() string

type UpdateCertificateRevocationListRequest Uses

type UpdateCertificateRevocationListRequest struct {

    // Required. [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] with updated values.
    CertificateRevocationList *CertificateRevocationList `protobuf:"bytes,1,opt,name=certificate_revocation_list,json=certificateRevocationList,proto3" json:"certificate_revocation_list,omitempty"`
    // Required. A list of fields to be updated in this request.
    UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
    // Optional. An ID to identify requests. Specify a unique request ID so that if you must
    // retry your request, the server will know to ignore the request if it has
    // already been completed. The server will guarantee that for at least 60
    // minutes since the first request.
    //
    // For example, consider a situation where you make an initial request and t
    // he request times out. If you make the request again with the same request
    // ID, the server can check if original operation with the same request ID
    // was received, and if so, will ignore the second request. This prevents
    // clients from accidentally creating duplicate commitments.
    //
    // The request ID must be a valid UUID with the exception that zero UUID is
    // not supported (00000000-0000-0000-0000-000000000000).
    RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
    // contains filtered or unexported fields
}

Request message for [CertificateAuthorityService.UpdateCertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.UpdateCertificateRevocationList].

func (*UpdateCertificateRevocationListRequest) Descriptor Uses

func (*UpdateCertificateRevocationListRequest) Descriptor() ([]byte, []int)

Deprecated: Use UpdateCertificateRevocationListRequest.ProtoReflect.Descriptor instead.

func (*UpdateCertificateRevocationListRequest) GetCertificateRevocationList Uses

func (x *UpdateCertificateRevocationListRequest) GetCertificateRevocationList() *CertificateRevocationList

func (*UpdateCertificateRevocationListRequest) GetRequestId Uses

func (x *UpdateCertificateRevocationListRequest) GetRequestId() string

func (*UpdateCertificateRevocationListRequest) GetUpdateMask Uses

func (x *UpdateCertificateRevocationListRequest) GetUpdateMask() *fieldmaskpb.FieldMask

func (*UpdateCertificateRevocationListRequest) ProtoMessage Uses

func (*UpdateCertificateRevocationListRequest) ProtoMessage()

func (*UpdateCertificateRevocationListRequest) ProtoReflect Uses

func (x *UpdateCertificateRevocationListRequest) ProtoReflect() protoreflect.Message

func (*UpdateCertificateRevocationListRequest) Reset Uses

func (x *UpdateCertificateRevocationListRequest) Reset()

func (*UpdateCertificateRevocationListRequest) String Uses

func (x *UpdateCertificateRevocationListRequest) String() string

type X509Extension Uses

type X509Extension struct {

    // Required. The OID for this X.509 extension.
    ObjectId *ObjectId `protobuf:"bytes,1,opt,name=object_id,json=objectId,proto3" json:"object_id,omitempty"`
    // Required. Indicates whether or not this extension is critical (i.e., if the client
    // does not know how to handle this extension, the client should consider this
    // to be an error).
    Critical bool `protobuf:"varint,2,opt,name=critical,proto3" json:"critical,omitempty"`
    // Required. The value of this X.509 extension.
    Value []byte `protobuf:"bytes,3,opt,name=value,proto3" json:"value,omitempty"`
    // contains filtered or unexported fields
}

An [X509Extension][google.cloud.security.privateca.v1beta1.X509Extension] specifies an X.509 extension, which may be used in different parts of X.509 objects like certificates, CSRs, and CRLs.

func (*X509Extension) Descriptor Uses

func (*X509Extension) Descriptor() ([]byte, []int)

Deprecated: Use X509Extension.ProtoReflect.Descriptor instead.

func (*X509Extension) GetCritical Uses

func (x *X509Extension) GetCritical() bool

func (*X509Extension) GetObjectId Uses

func (x *X509Extension) GetObjectId() *ObjectId

func (*X509Extension) GetValue Uses

func (x *X509Extension) GetValue() []byte

func (*X509Extension) ProtoMessage Uses

func (*X509Extension) ProtoMessage()

func (*X509Extension) ProtoReflect Uses

func (x *X509Extension) ProtoReflect() protoreflect.Message

func (*X509Extension) Reset Uses

func (x *X509Extension) Reset()

func (*X509Extension) String Uses

func (x *X509Extension) String() string

Package privateca imports 15 packages (graph) and is imported by 2 packages. Updated 2020-10-15. Refresh now. Tools for package owners.