istio: istio.io/istio/security/proto Index | Files | Directories

package istio_v1_auth

import "istio.io/istio/security/proto"

go:generate $REPO_ROOT/bin/mixer_codegen.sh -f security/proto/ca_service.proto go:generate $REPO_ROOT/bin/mixer_codegen.sh -f security/proto/workload_service.proto go:generate $REPO_ROOT/bin/mixer_codegen.sh -f security/proto/istioca.proto nolint

Index

Package Files

ca_service.pb.go generate.go istioca.pb.go workload_service.pb.go

Variables

var (
    ErrInvalidLengthCaService = fmt.Errorf("proto: negative length found during unmarshaling")
    ErrIntOverflowCaService   = fmt.Errorf("proto: integer overflow")
)
var (
    ErrInvalidLengthIstioca = fmt.Errorf("proto: negative length found during unmarshaling")
    ErrIntOverflowIstioca   = fmt.Errorf("proto: integer overflow")
)
var (
    ErrInvalidLengthWorkloadService = fmt.Errorf("proto: negative length found during unmarshaling")
    ErrIntOverflowWorkloadService   = fmt.Errorf("proto: integer overflow")
)

func RegisterIstioCAServiceServer Uses

func RegisterIstioCAServiceServer(s *grpc.Server, srv IstioCAServiceServer)

func RegisterIstioCertificateServiceServer Uses

func RegisterIstioCertificateServiceServer(s *grpc.Server, srv IstioCertificateServiceServer)

func RegisterWorkloadServiceServer Uses

func RegisterWorkloadServiceServer(s *grpc.Server, srv WorkloadServiceServer)

type CheckRequest Uses

type CheckRequest struct {
    Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
}

func (*CheckRequest) Descriptor Uses

func (*CheckRequest) Descriptor() ([]byte, []int)

func (*CheckRequest) Equal Uses

func (this *CheckRequest) Equal(that interface{}) bool

func (*CheckRequest) GetName Uses

func (m *CheckRequest) GetName() string

func (*CheckRequest) GoString Uses

func (this *CheckRequest) GoString() string

func (*CheckRequest) Marshal Uses

func (m *CheckRequest) Marshal() (dAtA []byte, err error)

func (*CheckRequest) MarshalTo Uses

func (m *CheckRequest) MarshalTo(dAtA []byte) (int, error)

func (*CheckRequest) MarshalToSizedBuffer Uses

func (m *CheckRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*CheckRequest) ProtoMessage Uses

func (*CheckRequest) ProtoMessage()

func (*CheckRequest) Reset Uses

func (m *CheckRequest) Reset()

func (*CheckRequest) Size Uses

func (m *CheckRequest) Size() (n int)

func (*CheckRequest) String Uses

func (this *CheckRequest) String() string

func (*CheckRequest) Unmarshal Uses

func (m *CheckRequest) Unmarshal(dAtA []byte) error

func (*CheckRequest) XXX_DiscardUnknown Uses

func (m *CheckRequest) XXX_DiscardUnknown()

func (*CheckRequest) XXX_Marshal Uses

func (m *CheckRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*CheckRequest) XXX_Merge Uses

func (m *CheckRequest) XXX_Merge(src proto.Message)

func (*CheckRequest) XXX_Size Uses

func (m *CheckRequest) XXX_Size() int

func (*CheckRequest) XXX_Unmarshal Uses

func (m *CheckRequest) XXX_Unmarshal(b []byte) error

type CheckResponse Uses

type CheckResponse struct {
    Status *rpc.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"`
}

func (*CheckResponse) Descriptor Uses

func (*CheckResponse) Descriptor() ([]byte, []int)

func (*CheckResponse) Equal Uses

func (this *CheckResponse) Equal(that interface{}) bool

func (*CheckResponse) GetStatus Uses

func (m *CheckResponse) GetStatus() *rpc.Status

func (*CheckResponse) GoString Uses

func (this *CheckResponse) GoString() string

func (*CheckResponse) Marshal Uses

func (m *CheckResponse) Marshal() (dAtA []byte, err error)

func (*CheckResponse) MarshalTo Uses

func (m *CheckResponse) MarshalTo(dAtA []byte) (int, error)

func (*CheckResponse) MarshalToSizedBuffer Uses

func (m *CheckResponse) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*CheckResponse) ProtoMessage Uses

func (*CheckResponse) ProtoMessage()

func (*CheckResponse) Reset Uses

func (m *CheckResponse) Reset()

func (*CheckResponse) Size Uses

func (m *CheckResponse) Size() (n int)

func (*CheckResponse) String Uses

func (this *CheckResponse) String() string

func (*CheckResponse) Unmarshal Uses

func (m *CheckResponse) Unmarshal(dAtA []byte) error

func (*CheckResponse) XXX_DiscardUnknown Uses

func (m *CheckResponse) XXX_DiscardUnknown()

func (*CheckResponse) XXX_Marshal Uses

func (m *CheckResponse) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*CheckResponse) XXX_Merge Uses

func (m *CheckResponse) XXX_Merge(src proto.Message)

func (*CheckResponse) XXX_Size Uses

func (m *CheckResponse) XXX_Size() int

func (*CheckResponse) XXX_Unmarshal Uses

func (m *CheckResponse) XXX_Unmarshal(b []byte) error

type CsrRequest Uses

type CsrRequest struct {
    // PEM-encoded certificate signing request
    CsrPem []byte `protobuf:"bytes,1,opt,name=csr_pem,json=csrPem,proto3" json:"csr_pem,omitempty"`
    // opaque credential for node agent
    NodeAgentCredential []byte `protobuf:"bytes,2,opt,name=node_agent_credential,json=nodeAgentCredential,proto3" json:"node_agent_credential,omitempty"`
    // type of the node_agent_credential (aws/gcp/onprem/custom...)
    CredentialType string `protobuf:"bytes,3,opt,name=credential_type,json=credentialType,proto3" json:"credential_type,omitempty"`
    // the requested ttl of the certificate in minutes
    RequestedTtlMinutes int32 `protobuf:"varint,4,opt,name=requested_ttl_minutes,json=requestedTtlMinutes,proto3" json:"requested_ttl_minutes,omitempty"`
}

func (*CsrRequest) Descriptor Uses

func (*CsrRequest) Descriptor() ([]byte, []int)

func (*CsrRequest) Marshal Uses

func (m *CsrRequest) Marshal() (dAtA []byte, err error)

func (*CsrRequest) MarshalTo Uses

func (m *CsrRequest) MarshalTo(dAtA []byte) (int, error)

func (*CsrRequest) MarshalToSizedBuffer Uses

func (m *CsrRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*CsrRequest) ProtoMessage Uses

func (*CsrRequest) ProtoMessage()

func (*CsrRequest) Reset Uses

func (m *CsrRequest) Reset()

func (*CsrRequest) Size Uses

func (m *CsrRequest) Size() (n int)

func (*CsrRequest) String Uses

func (this *CsrRequest) String() string

func (*CsrRequest) Unmarshal Uses

func (m *CsrRequest) Unmarshal(dAtA []byte) error

func (*CsrRequest) XXX_DiscardUnknown Uses

func (m *CsrRequest) XXX_DiscardUnknown()

func (*CsrRequest) XXX_Marshal Uses

func (m *CsrRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*CsrRequest) XXX_Merge Uses

func (m *CsrRequest) XXX_Merge(src proto.Message)

func (*CsrRequest) XXX_Size Uses

func (m *CsrRequest) XXX_Size() int

func (*CsrRequest) XXX_Unmarshal Uses

func (m *CsrRequest) XXX_Unmarshal(b []byte) error

type CsrResponse Uses

type CsrResponse struct {
    // Whether the CSR is approved.
    IsApproved bool        `protobuf:"varint,1,opt,name=is_approved,json=isApproved,proto3" json:"is_approved,omitempty"`
    Status     *rpc.Status `protobuf:"bytes,2,opt,name=status,proto3" json:"status,omitempty"`
    // The signed target cert.
    SignedCert []byte `protobuf:"bytes,3,opt,name=signed_cert,json=signedCert,proto3" json:"signed_cert,omitempty"`
    // The cert chain up to the trusted root cert. It includes all the certs between the
    // newly signed cert and the root cert.
    CertChain []byte `protobuf:"bytes,4,opt,name=cert_chain,json=certChain,proto3" json:"cert_chain,omitempty"`
}

func (*CsrResponse) Descriptor Uses

func (*CsrResponse) Descriptor() ([]byte, []int)

func (*CsrResponse) Marshal Uses

func (m *CsrResponse) Marshal() (dAtA []byte, err error)

func (*CsrResponse) MarshalTo Uses

func (m *CsrResponse) MarshalTo(dAtA []byte) (int, error)

func (*CsrResponse) MarshalToSizedBuffer Uses

func (m *CsrResponse) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*CsrResponse) ProtoMessage Uses

func (*CsrResponse) ProtoMessage()

func (*CsrResponse) Reset Uses

func (m *CsrResponse) Reset()

func (*CsrResponse) Size Uses

func (m *CsrResponse) Size() (n int)

func (*CsrResponse) String Uses

func (this *CsrResponse) String() string

func (*CsrResponse) Unmarshal Uses

func (m *CsrResponse) Unmarshal(dAtA []byte) error

func (*CsrResponse) XXX_DiscardUnknown Uses

func (m *CsrResponse) XXX_DiscardUnknown()

func (*CsrResponse) XXX_Marshal Uses

func (m *CsrResponse) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*CsrResponse) XXX_Merge Uses

func (m *CsrResponse) XXX_Merge(src proto.Message)

func (*CsrResponse) XXX_Size Uses

func (m *CsrResponse) XXX_Size() int

func (*CsrResponse) XXX_Unmarshal Uses

func (m *CsrResponse) XXX_Unmarshal(b []byte) error

type IstioCAServiceClient Uses

type IstioCAServiceClient interface {
    // A request object includes a PEM-encoded certificate signing request that
    // is generated on the Node Agent. Additionally credential can be attached
    // within the request object for a server to authenticate the originating
    // node agent.
    HandleCSR(ctx context.Context, in *CsrRequest, opts ...grpc.CallOption) (*CsrResponse, error)
}

IstioCAServiceClient is the client API for IstioCAService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.

func NewIstioCAServiceClient Uses

func NewIstioCAServiceClient(cc *grpc.ClientConn) IstioCAServiceClient

type IstioCAServiceServer Uses

type IstioCAServiceServer interface {
    // A request object includes a PEM-encoded certificate signing request that
    // is generated on the Node Agent. Additionally credential can be attached
    // within the request object for a server to authenticate the originating
    // node agent.
    HandleCSR(context.Context, *CsrRequest) (*CsrResponse, error)
}

IstioCAServiceServer is the server API for IstioCAService service.

type IstioCertificateRequest Uses

type IstioCertificateRequest struct {
    // PEM-encoded certificate request.
    Csr string `protobuf:"bytes,1,opt,name=csr,proto3" json:"csr,omitempty"`
    // Optional subject ID field.
    SubjectId string `protobuf:"bytes,2,opt,name=subject_id,json=subjectId,proto3" json:"subject_id,omitempty"`
    // Optional: requested certificate validity period, in seconds.
    ValidityDuration int64 `protobuf:"varint,3,opt,name=validity_duration,json=validityDuration,proto3" json:"validity_duration,omitempty"`
}

Certificate request message.

func (*IstioCertificateRequest) Descriptor Uses

func (*IstioCertificateRequest) Descriptor() ([]byte, []int)

func (*IstioCertificateRequest) Equal Uses

func (this *IstioCertificateRequest) Equal(that interface{}) bool

func (*IstioCertificateRequest) GetCsr Uses

func (m *IstioCertificateRequest) GetCsr() string

func (*IstioCertificateRequest) GetSubjectId Uses

func (m *IstioCertificateRequest) GetSubjectId() string

func (*IstioCertificateRequest) GetValidityDuration Uses

func (m *IstioCertificateRequest) GetValidityDuration() int64

func (*IstioCertificateRequest) GoString Uses

func (this *IstioCertificateRequest) GoString() string

func (*IstioCertificateRequest) Marshal Uses

func (m *IstioCertificateRequest) Marshal() (dAtA []byte, err error)

func (*IstioCertificateRequest) MarshalTo Uses

func (m *IstioCertificateRequest) MarshalTo(dAtA []byte) (int, error)

func (*IstioCertificateRequest) MarshalToSizedBuffer Uses

func (m *IstioCertificateRequest) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*IstioCertificateRequest) ProtoMessage Uses

func (*IstioCertificateRequest) ProtoMessage()

func (*IstioCertificateRequest) Reset Uses

func (m *IstioCertificateRequest) Reset()

func (*IstioCertificateRequest) Size Uses

func (m *IstioCertificateRequest) Size() (n int)

func (*IstioCertificateRequest) String Uses

func (this *IstioCertificateRequest) String() string

func (*IstioCertificateRequest) Unmarshal Uses

func (m *IstioCertificateRequest) Unmarshal(dAtA []byte) error

func (*IstioCertificateRequest) XXX_DiscardUnknown Uses

func (m *IstioCertificateRequest) XXX_DiscardUnknown()

func (*IstioCertificateRequest) XXX_Marshal Uses

func (m *IstioCertificateRequest) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*IstioCertificateRequest) XXX_Merge Uses

func (m *IstioCertificateRequest) XXX_Merge(src proto.Message)

func (*IstioCertificateRequest) XXX_Size Uses

func (m *IstioCertificateRequest) XXX_Size() int

func (*IstioCertificateRequest) XXX_Unmarshal Uses

func (m *IstioCertificateRequest) XXX_Unmarshal(b []byte) error

type IstioCertificateResponse Uses

type IstioCertificateResponse struct {
    // PEM-encoded certificate chain.
    // Leaf cert is element '0'. Root cert is element 'n'.
    CertChain []string `protobuf:"bytes,1,rep,name=cert_chain,json=certChain,proto3" json:"cert_chain,omitempty"`
}

Certificate response message.

func (*IstioCertificateResponse) Descriptor Uses

func (*IstioCertificateResponse) Descriptor() ([]byte, []int)

func (*IstioCertificateResponse) Equal Uses

func (this *IstioCertificateResponse) Equal(that interface{}) bool

func (*IstioCertificateResponse) GetCertChain Uses

func (m *IstioCertificateResponse) GetCertChain() []string

func (*IstioCertificateResponse) GoString Uses

func (this *IstioCertificateResponse) GoString() string

func (*IstioCertificateResponse) Marshal Uses

func (m *IstioCertificateResponse) Marshal() (dAtA []byte, err error)

func (*IstioCertificateResponse) MarshalTo Uses

func (m *IstioCertificateResponse) MarshalTo(dAtA []byte) (int, error)

func (*IstioCertificateResponse) MarshalToSizedBuffer Uses

func (m *IstioCertificateResponse) MarshalToSizedBuffer(dAtA []byte) (int, error)

func (*IstioCertificateResponse) ProtoMessage Uses

func (*IstioCertificateResponse) ProtoMessage()

func (*IstioCertificateResponse) Reset Uses

func (m *IstioCertificateResponse) Reset()

func (*IstioCertificateResponse) Size Uses

func (m *IstioCertificateResponse) Size() (n int)

func (*IstioCertificateResponse) String Uses

func (this *IstioCertificateResponse) String() string

func (*IstioCertificateResponse) Unmarshal Uses

func (m *IstioCertificateResponse) Unmarshal(dAtA []byte) error

func (*IstioCertificateResponse) XXX_DiscardUnknown Uses

func (m *IstioCertificateResponse) XXX_DiscardUnknown()

func (*IstioCertificateResponse) XXX_Marshal Uses

func (m *IstioCertificateResponse) XXX_Marshal(b []byte, deterministic bool) ([]byte, error)

func (*IstioCertificateResponse) XXX_Merge Uses

func (m *IstioCertificateResponse) XXX_Merge(src proto.Message)

func (*IstioCertificateResponse) XXX_Size Uses

func (m *IstioCertificateResponse) XXX_Size() int

func (*IstioCertificateResponse) XXX_Unmarshal Uses

func (m *IstioCertificateResponse) XXX_Unmarshal(b []byte) error

type IstioCertificateServiceClient Uses

type IstioCertificateServiceClient interface {
    // Using provided CSR, returns a signed certificate.
    CreateCertificate(ctx context.Context, in *IstioCertificateRequest, opts ...grpc.CallOption) (*IstioCertificateResponse, error)
}

IstioCertificateServiceClient is the client API for IstioCertificateService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.

func NewIstioCertificateServiceClient Uses

func NewIstioCertificateServiceClient(cc *grpc.ClientConn) IstioCertificateServiceClient

type IstioCertificateServiceServer Uses

type IstioCertificateServiceServer interface {
    // Using provided CSR, returns a signed certificate.
    CreateCertificate(context.Context, *IstioCertificateRequest) (*IstioCertificateResponse, error)
}

IstioCertificateServiceServer is the server API for IstioCertificateService service.

type UnimplementedIstioCAServiceServer Uses

type UnimplementedIstioCAServiceServer struct {
}

UnimplementedIstioCAServiceServer can be embedded to have forward compatible implementations.

func (*UnimplementedIstioCAServiceServer) HandleCSR Uses

func (*UnimplementedIstioCAServiceServer) HandleCSR(ctx context.Context, req *CsrRequest) (*CsrResponse, error)

type UnimplementedIstioCertificateServiceServer Uses

type UnimplementedIstioCertificateServiceServer struct {
}

UnimplementedIstioCertificateServiceServer can be embedded to have forward compatible implementations.

func (*UnimplementedIstioCertificateServiceServer) CreateCertificate Uses

func (*UnimplementedIstioCertificateServiceServer) CreateCertificate(ctx context.Context, req *IstioCertificateRequest) (*IstioCertificateResponse, error)

type UnimplementedWorkloadServiceServer Uses

type UnimplementedWorkloadServiceServer struct {
}

UnimplementedWorkloadServiceServer can be embedded to have forward compatible implementations.

func (*UnimplementedWorkloadServiceServer) Check Uses

func (*UnimplementedWorkloadServiceServer) Check(ctx context.Context, req *CheckRequest) (*CheckResponse, error)

type WorkloadServiceClient Uses

type WorkloadServiceClient interface {
    Check(ctx context.Context, in *CheckRequest, opts ...grpc.CallOption) (*CheckResponse, error)
}

WorkloadServiceClient is the client API for WorkloadService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.

func NewWorkloadServiceClient Uses

func NewWorkloadServiceClient(cc *grpc.ClientConn) WorkloadServiceClient

type WorkloadServiceServer Uses

type WorkloadServiceServer interface {
    Check(context.Context, *CheckRequest) (*CheckResponse, error)
}

WorkloadServiceServer is the server API for WorkloadService service.

Directories

PathSynopsis
authentication/v1alpha1
envoy/config/filter/http/alpn/v2alpha1
envoy/config/filter/http/authn/v2alpha1
envoy/config/filter/http/jwt_auth/v2alpha1
providers/google

Package istio_v1_auth imports 13 packages (graph) and is imported by 7 packages. Updated 2019-11-07. Refresh now. Tools for package owners.