pax_global_header00006660000000000000000000000064151607132210014510gustar00rootroot0000000000000052 comment=3ecc74b787b2fa493401dd5b874b5322bb12ae0a golang-github-spiffe-spire-api-sdk-1.14.4/000077500000000000000000000000001516071322100202465ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/.github/000077500000000000000000000000001516071322100216065ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/.github/workflows/000077500000000000000000000000001516071322100236435ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/.github/workflows/pr_build.yaml000066400000000000000000000005161516071322100263310ustar00rootroot00000000000000name: PR Build on: pull_request: {} workflow_dispatch: {} jobs: generate-check: runs-on: ubuntu-22.04 steps: - uses: actions/checkout@v4 - uses: actions/setup-go@v5 with: cache: true cache-dependency-path: go.sum go-version-file: go.mod - run: make generate-check golang-github-spiffe-spire-api-sdk-1.14.4/.gitignore000066400000000000000000000000251516071322100222330ustar00rootroot00000000000000.build *.swp .vscode golang-github-spiffe-spire-api-sdk-1.14.4/.go-version000066400000000000000000000000071516071322100223340ustar00rootroot000000000000001.23.0 golang-github-spiffe-spire-api-sdk-1.14.4/CODEOWNERS000066400000000000000000000000751516071322100216430ustar00rootroot00000000000000* @evan2645 @amartinezfayo @sorindumitru @MarcosDY @rturner3 golang-github-spiffe-spire-api-sdk-1.14.4/CONTRIBUTING.md000066400000000000000000000040201516071322100224730ustar00rootroot00000000000000# Contribution Guidelines This document outlines the contribution guidelines for the SPIRE API SDK. This project follows the contribution and governance guidelines from the SPIFFE project (see [CONTRIBUTING](https://github.com/spiffe/spiffe/blob/main/CONTRIBUTING.md) and [GOVERNANCE](https://github.com/spiffe/spiffe/blob/main/GOVERNANCE.md)). ## Prerequisites The [Makefile](/Makefile) in the project is set up to download required dependencies for code generation. ### Updating Dependency Versions The [Makefile](/Makefile) uses internal variables or inspects [go.mod](/go.mod) to determine the versions of various tools in the toolchain. See the [Makefile](/Makefile) for specifics. ## Generating Service Definitions To (re)generate service definitions do the following: ```sh $ make ``` If you are adding a new .proto file, you first need to update the `Makefile` and add the .proto file to the relevant variables. ## Opening PRs All PRs should target the `next` branch. The `next` branch is a staging area for all features under development but not ready for release in an official version of SPIRE. Changes are cherry-picked into `main` from the `next` branch ahead of an official SPIRE release. The commits in `main` are tagged with the supporting SPIRE version. ## Consuming Changes in SPIRE While a new change in this repository is under development, you can use [Go Workspaces](https://go.dev/ref/mod#workspaces) to allow SPIRE to consume the changes before they are merged into this repository. SPIRE's main branch depends on a pseudo-version of this repository based on the `next` branch (see https://golang.org/ref/mod#pseudo-versions). Once changes have been merged into the `next` branch, the pseudo-version dependency in the SPIRE repository can be updated by running `go get github.com/spiffe/spire-api-sdk@next` from the SPIRE repository. Relying on a pseudo versions means that this repository only needs tags for the offically released versions, while still allowing SPIRE to work with unreleased changes during development. golang-github-spiffe-spire-api-sdk-1.14.4/LICENSE000066400000000000000000000261241516071322100212600ustar00rootroot00000000000000 Apache License Version 2.0, January 2004 http://www.apache.org/licenses/ TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION 1. Definitions. "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes of this License, Derivative Works shall not include works that remain separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise designated in writing by the copyright owner as "Not a Contribution." "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by Licensor and subsequently incorporated within the Work. 2. Grant of Copyright License. Subject to the terms and conditions of this License, each Contributor hereby grants to You a perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable copyright license to reproduce, prepare Derivative Works of, publicly display, publicly perform, sublicense, and distribute the Work and such Derivative Works in Source or Object form. 3. Grant of Patent License. Subject to the terms and conditions of this License, each Contributor hereby grants to You a perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable (except as stated in this section) patent license to make, have made, use, offer to sell, sell, import, and otherwise transfer the Work, where such license applies only to those patent claims licensable by such Contributor that are necessarily infringed by their Contribution(s) alone or by combination of their Contribution(s) with the Work to which such Contribution(s) was submitted. If You institute patent litigation against any entity (including a cross-claim or counterclaim in a lawsuit) alleging that the Work or a Contribution incorporated within the Work constitutes direct or contributory patent infringement, then any patent licenses granted to You under this License for that Work shall terminate as of the date such litigation is filed. 4. Redistribution. You may reproduce and distribute copies of the Work or Derivative Works thereof in any medium, with or without modifications, and in Source or Object form, provided that You meet the following conditions: (a) You must give any other recipients of the Work or Derivative Works a copy of this License; and (b) You must cause any modified files to carry prominent notices stating that You changed the files; and (c) You must retain, in the Source form of any Derivative Works that You distribute, all copyright, patent, trademark, and attribution notices from the Source form of the Work, excluding those notices that do not pertain to any part of the Derivative Works; and (d) If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative Works that You distribute must include a readable copy of the attribution notices contained within such NOTICE file, excluding those notices that do not pertain to any part of the Derivative Works, in at least one of the following places: within a NOTICE text file distributed as part of the Derivative Works; within the Source form or documentation, if provided along with the Derivative Works; or, within a display generated by the Derivative Works, if and wherever such third-party notices normally appear. The contents of the NOTICE file are for informational purposes only and do not modify the License. You may add Your own attribution notices within Derivative Works that You distribute, alongside or as an addendum to the NOTICE text from the Work, provided that such additional attribution notices cannot be construed as modifying the License. You may add Your own copyright statement to Your modifications and may provide additional or different license terms and conditions for use, reproduction, or distribution of Your modifications, or for any such Derivative Works as a whole, provided Your use, reproduction, and distribution of the Work otherwise complies with the conditions stated in this License. 5. Submission of Contributions. Unless You explicitly state otherwise, any Contribution intentionally submitted for inclusion in the Work by You to the Licensor shall be under the terms and conditions of this License, without any additional terms or conditions. Notwithstanding the above, nothing herein shall supersede or modify the terms of any separate license agreement you may have executed with Licensor regarding such Contributions. 6. Trademarks. This License does not grant permission to use the trade names, trademarks, service marks, or product names of the Licensor, except as required for reasonable and customary use in describing the origin of the Work and reproducing the content of the NOTICE file. 7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A PARTICULAR PURPOSE. You are solely responsible for determining the appropriateness of using or redistributing the Work and assume any risks associated with Your exercise of permissions under this License. 8. Limitation of Liability. In no event and under no legal theory, whether in tort (including negligence), contract, or otherwise, unless required by applicable law (such as deliberate and grossly negligent acts) or agreed to in writing, shall any Contributor be liable to You for damages, including any direct, indirect, special, incidental, or consequential damages of any character arising as a result of this License or out of the use or inability to use the Work (including but not limited to damages for loss of goodwill, work stoppage, computer failure or malfunction, or any and all other commercial damages or losses), even if such Contributor has been advised of the possibility of such damages. 9. Accepting Warranty or Additional Liability. While redistributing the Work or Derivative Works thereof, You may choose to offer, and charge a fee for, acceptance of support, warranty, indemnity, or other liability obligations and/or rights consistent with this License. However, in accepting such obligations, You may act only on Your own behalf and on Your sole responsibility, not on behalf of any other Contributor, and only if You agree to indemnify, defend, and hold each Contributor harmless for any liability incurred by, or claims asserted against, such Contributor by reason of your accepting any such warranty or additional liability. END OF TERMS AND CONDITIONS APPENDIX: How to apply the Apache License to your work. To apply the Apache License to your work, attach the following boilerplate notice, with the fields enclosed by brackets "[]" replaced with your own identifying information. (Don't include the brackets!) The text should be enclosed in the appropriate comment syntax for the file format. We also recommend that a file or class name and description of purpose be included on the same "printed page" as the copyright notice for easier identification within third-party archives. Copyright The SPIRE Contributors. Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. golang-github-spiffe-spire-api-sdk-1.14.4/MIGRATING.md000066400000000000000000000030761516071322100221170ustar00rootroot00000000000000# Migrating Code Take the following steps to migrate code using the deprecated `github.com/spiffe/spire/proto/spire` Go module. - `go get` the desired version from this repository, e.g. `go get github.com/spiffe/spire-api-sdk@v1.0.0`. - Rename the service package imports: - V1 Agent API - Old: `"github.com/spiffe/spire/proto/spire/api/server/agent/v1"` - New: `agentv1 "github.com/spiffe/spire-api-sdk/proto/spire/api/server/agent/v1"` - V1 Bundle API - Old: `"github.com/spiffe/spire/proto/spire/api/server/bundle/v1"` - New: `bundlev1 "github.com/spiffe/spire-api-sdk/proto/spire/api/server/bundle/v1"` - V1 Debug API - Old: `"github.com/spiffe/spire/proto/spire/api/server/debug/v1"` - New: `debugv1 "github.com/spiffe/spire-api-sdk/proto/spire/api/server/debug/v1"` - V1 Entry API - Old: `"github.com/spiffe/spire/proto/spire/api/server/entry/v1"` - New: `entryv1 "github.com/spiffe/spire-api-sdk/proto/spire/api/server/entry/v1"` - V1 SVID API - Old: `"github.com/spiffe/spire/proto/spire/api/server/svid/v1"` - New: `svidv1 "github.com/spiffe/spire-api-sdk/proto/spire/api/server/svid/v1"` - Rename the types package imports: - Old: `"github.com/spiffe/spire/proto/spire/types"` - New: `"github.com/spiffe/spire-api-sdk/proto/spire/api/types"` Renaming the service package imports will almost certainly require code imports to use the newly named imports unless existing code already named the import for other reasons. This should be a mostly mechanical process and can be aided by a variety of tools available in the Go community. golang-github-spiffe-spire-api-sdk-1.14.4/Makefile000066400000000000000000000165471516071322100217230ustar00rootroot00000000000000.PHONY: default help # There is no reason GOROOT should be set anymore. Unset it so it doesn't mess # with our go toolchain detection/usage. ifneq ($(GOROOT),) export GOROOT= endif default: generate help: @echo "Usage: make " @echo @echo " generate - generate protocol buffer and gRPC stub code (default)" @echo " generate-check - ensure generated code is up to date" protos := \ proto/spire/api/types/agent.proto \ proto/spire/api/types/attestation.proto \ proto/spire/api/types/bundle.proto \ proto/spire/api/types/entry.proto \ proto/spire/api/types/federationrelationship.proto \ proto/spire/api/types/federateswith.proto \ proto/spire/api/types/jointoken.proto \ proto/spire/api/types/jwtsvid.proto \ proto/spire/api/types/logger.proto \ proto/spire/api/types/selector.proto \ proto/spire/api/types/spiffeid.proto \ proto/spire/api/types/status.proto \ proto/spire/api/types/x509svid.proto \ proto/spire/api/types/witsvid.proto \ apiprotos := \ proto/spire/api/agent/debug/v1/debug.proto \ proto/spire/api/agent/delegatedidentity/v1/delegatedidentity.proto \ proto/spire/api/agent/logger/v1/logger.proto \ proto/spire/api/server/agent/v1/agent.proto \ proto/spire/api/server/bundle/v1/bundle.proto \ proto/spire/api/server/debug/v1/debug.proto \ proto/spire/api/server/entry/v1/entry.proto \ proto/spire/api/server/localauthority/v1/localauthority.proto \ proto/spire/api/server/logger/v1/logger.proto \ proto/spire/api/server/trustdomain/v1/trustdomain.proto \ proto/spire/api/server/svid/v1/svid.proto \ # Used to force some rules to run every time FORCE: ; ############################################################################ # OS/ARCH detection ############################################################################ os1=$(shell uname -s) os2= ifeq ($(os1),Darwin) os1=darwin os2=osx else ifeq ($(os1),Linux) os1=linux os2=linux else $(error unsupported OS: $(os1)) endif arch1=$(shell uname -m) ifeq ($(arch1),x86_64) arch2=amd64 else ifeq ($(arch1),aarch64) arch2=arm64 else ifeq ($(arch1),arm64) arch2=arm64 else $(error unsupported ARCH: $(arch1)) endif build_dir := ${CURDIR}/.build/$(os1)-$(arch1) ############################################################################# # Go ############################################################################# go_version_full := $(shell cat .go-version) go_version := $(go_version_full:.0=.0) go_dir := $(build_dir)/go/$(go_version) go_bin_dir := $(go_dir)/bin go_url = https://go.dev/dl/golang/go$(go_version).$(os1)-$(arch2).tar.gz go_path := PATH="$(go_bin_dir):$(PATH)" # go-check checks to see if there is a version of Go available matching the # required version. The build cache is preferred. If not available, it is # downloaded into the build cache. Any rule needing to invoke tools in the go # toolchain should depend on this rule and then prepend $(go_bin_dir) to their # path before invoking go or use $(go_path) go which already has the path prepended. # Note that some tools (e.g. anything that uses golang.org/x/tools/go/packages) # execute on the go binary and also need the right path in order to locate the # correct go binary. go-check: ifneq (go$(go_version), $(shell $(go_path) go version 2>/dev/null | cut -f3 -d' ')) ifeq ($(go_version),) $(error unable to determine go version) endif @echo "go_url:" $(go_url) @echo "Installing go$(go_version)..." @rm -rf $(dir $(go_dir)) @mkdir -p $(go_dir) @curl -sSfL $(go_url) | tar xz -C $(go_dir) --strip-components=1 endif ############################################################################# # protoc ############################################################################# protoc_version = 30.2 ifeq ($(os1),windows) protoc_url = https://github.com/protocolbuffers/protobuf/releases/download/v$(protoc_version)/protoc-$(protoc_version)-win64.zip else ifeq ($(arch1),arm64) protoc_url = https://github.com/protocolbuffers/protobuf/releases/download/v$(protoc_version)/protoc-$(protoc_version)-$(os2)-aarch_64.zip else ifeq ($(arch1),aarch64) protoc_url = https://github.com/protocolbuffers/protobuf/releases/download/v$(protoc_version)/protoc-$(protoc_version)-$(os2)-aarch_64.zip else protoc_url = https://github.com/protocolbuffers/protobuf/releases/download/v$(protoc_version)/protoc-$(protoc_version)-$(os2)-$(arch1).zip endif protoc_dir = $(build_dir)/protoc/$(protoc_version) protoc_bin = $(protoc_dir)/bin/protoc $(protoc_bin): @echo "Installing protoc $(protoc_version)..." @rm -rf $(dir $(protoc_dir)) @mkdir -p $(protoc_dir) @curl -sSfL $(protoc_url) -o $(build_dir)/tmp.zip; unzip -q -d $(protoc_dir) $(build_dir)/tmp.zip; rm $(build_dir)/tmp.zip ############################################################################# # protoc-gen-go ############################################################################# protoc_gen_go_version := $(shell grep google.golang.org/protobuf go.mod | awk '{print $$2}') protoc_gen_go_base_dir := $(build_dir)/protoc-gen-go protoc_gen_go_dir := $(protoc_gen_go_base_dir)/$(protoc_gen_go_version)-go$(go_version) protoc_gen_go_bin := $(protoc_gen_go_dir)/protoc-gen-go $(protoc_gen_go_bin): | go-check @echo "Installing protoc-gen-go $(protoc_gen_go_version)..." @rm -rf $(protoc_gen_go_base_dir) @mkdir -p $(protoc_gen_go_dir) @GOBIN=$(protoc_gen_go_dir) $(go_path) go install google.golang.org/protobuf/cmd/protoc-gen-go@$(protoc_gen_go_version) ############################################################################# # protoc-gen-go-grpc ############################################################################# protoc_gen_go_grpc_version := v1.5.1 protoc_gen_go_grpc_base_dir := $(build_dir)/protoc-gen-go-grpc protoc_gen_go_grpc_dir := $(protoc_gen_go_grpc_base_dir)/$(protoc_gen_go_grpc_version)-go$(go_version) protoc_gen_go_grpc_bin := $(protoc_gen_go_grpc_dir)/protoc-gen-go-grpc $(protoc_gen_go_grpc_bin): | go-check @echo "Installing protoc-gen-go-grpc $(protoc_gen_go_grpc_version)..." @rm -rf $(protoc_gen_go_grpc_base_dir) @mkdir -p $(protoc_gen_go_grpc_dir) @GOBIN=$(protoc_gen_go_grpc_dir) $(go_path) go install google.golang.org/grpc/cmd/protoc-gen-go-grpc@$(protoc_gen_go_grpc_version) ############################################################################# # Code Generation ############################################################################# .PHONY: generate generate: $(protos:.proto=.pb.go) $(apiprotos:.proto=.pb.go) $(apiprotos:.proto=_grpc.pb.go) %_grpc.pb.go: %.proto $(protoc_bin) $(protoc_gen_go_grpc_bin) FORCE @echo "compiling API $<..." @cd proto && \ PATH="$(protoc_gen_go_grpc_dir):$(PATH)" \ $(protoc_bin) \ --go-grpc_out=. --go-grpc_opt=paths=source_relative \ $(<:proto/%=%) %.pb.go: %.proto $(protoc_bin) $(protoc_gen_go_bin) FORCE @echo "compiling $<..." @cd proto && \ PATH="$(protoc_gen_go_dir):$(PATH)" \ $(protoc_bin) \ --go_out=. --go_opt=paths=source_relative \ $(<:proto/%=%) ############################################################################# # Code Generation Checks ############################################################################# git_dirty := $(shell git status -s) .PHONY: generate-check generate-check: ifneq ($(git_dirty),) $(error generate-check must be invoked on a clean repository) endif @$(MAKE) generate @$(MAKE) git-clean-check .PHONY: git-clean-check git-clean-check: ifneq ($(git_dirty),) git diff @echo "Git repository is dirty!" @false else @echo "Git repository is clean." endif golang-github-spiffe-spire-api-sdk-1.14.4/README.md000066400000000000000000000020621516071322100215250ustar00rootroot00000000000000This repository contains the service definitions and code generated stubs for public [SPIRE](https://github.com/spiffe/spire) APIs. ## Versioning This repository is tagged along with SPIRE releases with the same name, even if there are no changes to the APIs between SPIRE versions. This allows consumers to always pick a tag that matches up with their deployment. Even so, SPIRE maintains API compatibility between SPIRE versions. SPIRE will clearly indicate in the CHANGELOG when APIs are deprecated and issue warnings at runtime when they are used well in advance of any removal. ## Migrating Code To migrate existing code that consumed SPIRE service definitions from the github.com/spiffe/spire/proto/spire Go module, see [MIGRATING](/MIGRATING.md). ## Contributing This repository follows the same governance and contribution guidelines as the [SPIRE](https://github.com/spiffe/spire) project. For specifics on getting started, see [CONTRIBUTING](/CONTRIBUTING.md). Please open [Issues](https://github.com/spiffe/spire/issues) to request features or file bugs. golang-github-spiffe-spire-api-sdk-1.14.4/go.mod000066400000000000000000000005351516071322100213570ustar00rootroot00000000000000module github.com/spiffe/spire-api-sdk go 1.23.0 require ( google.golang.org/grpc v1.74.2 google.golang.org/protobuf v1.36.7 ) require ( golang.org/x/net v0.43.0 // indirect golang.org/x/sys v0.35.0 // indirect golang.org/x/text v0.28.0 // indirect google.golang.org/genproto/googleapis/rpc v0.0.0-20250811230008-5f3141c8851a // indirect ) golang-github-spiffe-spire-api-sdk-1.14.4/go.sum000066400000000000000000000333151516071322100214060ustar00rootroot00000000000000cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw= cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw= github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY= github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU= github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs= github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw= github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc= github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk= github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI= github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs= github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs= github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs= github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98= github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk= github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE= github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c= github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04= github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q= github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A= github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw= github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8= github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA= github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs= github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w= github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0= github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8= github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI= github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI= github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk= github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw= github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY= github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M= github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= github.com/google/go-cmp v0.5.6 h1:BKbKCqvP6I+rmFHt06ZmyQtvB8xAkWdhFyr0ZUNZcxQ= github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8= github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw= github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4= github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ= github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME= github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA= github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI= golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w= golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU= golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA= golang.org/x/net v0.0.0-20201021035429-f5854403a974 h1:IX6qOQeG5uLjB/hjjwjedwfjND0hgjPMMyO1RoIXQNI= golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU= golang.org/x/net v0.43.0 h1:lat02VYK2j4aLzMzecihNvTlJNQUq316m2Mr9rnM6YE= golang.org/x/net v0.43.0/go.mod h1:vhO1fvI4dGsIjh73sWfUVjj3N7CA9WkKJNQm2svM6Jg= golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4 h1:myAQVi0cGEoqQVR5POX+8RR2mrocKqNN1hmeMqhX27k= golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.35.0 h1:vz1N37gP5bs89s7He8XuIYXpyY0+QlsKmzipCbUtyxI= golang.org/x/sys v0.35.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.3 h1:cokOdA+Jmi5PJGXLlLllQSgYigAEfHXJAERHVMaCc2k= golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= golang.org/x/text v0.28.0 h1:rhazDwis8INMIwQ4tpjLDzUhx6RlXqZNPEM0huQojng= golang.org/x/text v0.28.0/go.mod h1:U8nCwOR8jO/marOQ0QbDiOngZVEBB7MAiitBuMjXiNU= golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY= golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs= golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q= golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543 h1:E7g+9GITq07hpfrRu66IVDexMakfv52eLZ2CXBWiKr4= golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1NKEZ+0owSTG1fDTci4IqFcE= golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM= google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4= google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc= google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc= google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c= google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013 h1:+kGHl1aib/qcwaRi1CbqBZ1rk19r85MNUf8HaBghugY= google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo= google.golang.org/genproto/googleapis/rpc v0.0.0-20250811230008-5f3141c8851a h1:tPE/Kp+x9dMSwUm/uM0JKK0IfdiJkwAbSMSeZBXXJXc= google.golang.org/genproto/googleapis/rpc v0.0.0-20250811230008-5f3141c8851a/go.mod h1:gw1tLEfykwDz2ET4a12jcXt4couGAm7IwsVaTy0Sflo= google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c= google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg= google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY= google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk= google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0= google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU= google.golang.org/grpc v1.48.0 h1:rQOsyJ/8+ufEDJd/Gdsz7HG220Mh9HAhFHRGnIjda0w= google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk= google.golang.org/grpc v1.74.2 h1:WoosgB65DlWVC9FqI82dGsZhWFNBSLjQ84bjROOpMu4= google.golang.org/grpc v1.74.2/go.mod h1:CtQ+BGjaAIXHs/5YS3i473GqwBBa1zGQNevxdeBEXrM= google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8= google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0= google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM= google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE= google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo= google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c= google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw= google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc= google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc= google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw= google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I= google.golang.org/protobuf v1.36.7 h1:IgrO7UwFQGJdRNXH/sQux4R1Dj1WAKcLElzeeRaXV2A= google.golang.org/protobuf v1.36.7/go.mod h1:jduwjTPXsFjZGTmRluh+L6NjiWu7pchiJ2/5YcXBHnY= gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= golang-github-spiffe-spire-api-sdk-1.14.4/proto/000077500000000000000000000000001516071322100214115ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/000077500000000000000000000000001516071322100225335ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/000077500000000000000000000000001516071322100233045ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/000077500000000000000000000000001516071322100244025ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/debug/000077500000000000000000000000001516071322100254705ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/debug/v1/000077500000000000000000000000001516071322100260165ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/debug/v1/debug.pb.go000066400000000000000000000250371516071322100300420ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/agent/debug/v1/debug.proto package debugv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type GetInfoRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetInfoRequest) Reset() { *x = GetInfoRequest{} mi := &file_spire_api_agent_debug_v1_debug_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetInfoRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetInfoRequest) ProtoMessage() {} func (x *GetInfoRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_debug_v1_debug_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetInfoRequest.ProtoReflect.Descriptor instead. func (*GetInfoRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_debug_v1_debug_proto_rawDescGZIP(), []int{0} } type GetInfoResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Agent SVID chain SvidChain []*GetInfoResponse_Cert `protobuf:"bytes,1,rep,name=svid_chain,json=svidChain,proto3" json:"svid_chain,omitempty"` // Agent uptime in seconds Uptime int32 `protobuf:"varint,2,opt,name=uptime,proto3" json:"uptime,omitempty"` // Number of SVIDs cached in memory // Deprecated in favor of cached_x509_svids_count, cached_jwt_svids_count, and cached_svidstore_x509_svids_count // // Deprecated: Marked as deprecated in spire/api/agent/debug/v1/debug.proto. SvidsCount int32 `protobuf:"varint,3,opt,name=svids_count,json=svidsCount,proto3" json:"svids_count,omitempty"` // last successful sync with server (in seconds since unix epoch) LastSyncSuccess int64 `protobuf:"varint,4,opt,name=last_sync_success,json=lastSyncSuccess,proto3" json:"last_sync_success,omitempty"` // Number of X.509-SVIDs in Agent primary in-memory cache CachedX509SvidsCount int32 `protobuf:"varint,5,opt,name=cached_x509_svids_count,json=cachedX509SvidsCount,proto3" json:"cached_x509_svids_count,omitempty"` // Number of JWT-SVIDs in Agent primary in-memory cache CachedJwtSvidsCount int32 `protobuf:"varint,6,opt,name=cached_jwt_svids_count,json=cachedJwtSvidsCount,proto3" json:"cached_jwt_svids_count,omitempty"` // Number of X.509-SVIDs in Agent svidstore in-memory cache CachedSvidstoreX509SvidsCount int32 `protobuf:"varint,7,opt,name=cached_svidstore_x509_svids_count,json=cachedSvidstoreX509SvidsCount,proto3" json:"cached_svidstore_x509_svids_count,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetInfoResponse) Reset() { *x = GetInfoResponse{} mi := &file_spire_api_agent_debug_v1_debug_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetInfoResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetInfoResponse) ProtoMessage() {} func (x *GetInfoResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_debug_v1_debug_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetInfoResponse.ProtoReflect.Descriptor instead. func (*GetInfoResponse) Descriptor() ([]byte, []int) { return file_spire_api_agent_debug_v1_debug_proto_rawDescGZIP(), []int{1} } func (x *GetInfoResponse) GetSvidChain() []*GetInfoResponse_Cert { if x != nil { return x.SvidChain } return nil } func (x *GetInfoResponse) GetUptime() int32 { if x != nil { return x.Uptime } return 0 } // Deprecated: Marked as deprecated in spire/api/agent/debug/v1/debug.proto. func (x *GetInfoResponse) GetSvidsCount() int32 { if x != nil { return x.SvidsCount } return 0 } func (x *GetInfoResponse) GetLastSyncSuccess() int64 { if x != nil { return x.LastSyncSuccess } return 0 } func (x *GetInfoResponse) GetCachedX509SvidsCount() int32 { if x != nil { return x.CachedX509SvidsCount } return 0 } func (x *GetInfoResponse) GetCachedJwtSvidsCount() int32 { if x != nil { return x.CachedJwtSvidsCount } return 0 } func (x *GetInfoResponse) GetCachedSvidstoreX509SvidsCount() int32 { if x != nil { return x.CachedSvidstoreX509SvidsCount } return 0 } type GetInfoResponse_Cert struct { state protoimpl.MessageState `protogen:"open.v1"` // Cerfificate SPIFFE ID Id *types.SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // Expiration time ExpiresAt int64 `protobuf:"varint,2,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // Subject Subject string `protobuf:"bytes,3,opt,name=subject,proto3" json:"subject,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetInfoResponse_Cert) Reset() { *x = GetInfoResponse_Cert{} mi := &file_spire_api_agent_debug_v1_debug_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetInfoResponse_Cert) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetInfoResponse_Cert) ProtoMessage() {} func (x *GetInfoResponse_Cert) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_debug_v1_debug_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetInfoResponse_Cert.ProtoReflect.Descriptor instead. func (*GetInfoResponse_Cert) Descriptor() ([]byte, []int) { return file_spire_api_agent_debug_v1_debug_proto_rawDescGZIP(), []int{1, 0} } func (x *GetInfoResponse_Cert) GetId() *types.SPIFFEID { if x != nil { return x.Id } return nil } func (x *GetInfoResponse_Cert) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *GetInfoResponse_Cert) GetSubject() string { if x != nil { return x.Subject } return "" } var File_spire_api_agent_debug_v1_debug_proto protoreflect.FileDescriptor const file_spire_api_agent_debug_v1_debug_proto_rawDesc = "" + "\n" + "$spire/api/agent/debug/v1/debug.proto\x12\x14spire.agent.debug.v1\x1a\x1espire/api/types/spiffeid.proto\"\x10\n" + "\x0eGetInfoRequest\"\xe7\x03\n" + "\x0fGetInfoResponse\x12I\n" + "\n" + "svid_chain\x18\x01 \x03(\v2*.spire.agent.debug.v1.GetInfoResponse.CertR\tsvidChain\x12\x16\n" + "\x06uptime\x18\x02 \x01(\x05R\x06uptime\x12#\n" + "\vsvids_count\x18\x03 \x01(\x05B\x02\x18\x01R\n" + "svidsCount\x12*\n" + "\x11last_sync_success\x18\x04 \x01(\x03R\x0flastSyncSuccess\x125\n" + "\x17cached_x509_svids_count\x18\x05 \x01(\x05R\x14cachedX509SvidsCount\x123\n" + "\x16cached_jwt_svids_count\x18\x06 \x01(\x05R\x13cachedJwtSvidsCount\x12H\n" + "!cached_svidstore_x509_svids_count\x18\a \x01(\x05R\x1dcachedSvidstoreX509SvidsCount\x1aj\n" + "\x04Cert\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12\x1d\n" + "\n" + "expires_at\x18\x02 \x01(\x03R\texpiresAt\x12\x18\n" + "\asubject\x18\x03 \x01(\tR\asubject2_\n" + "\x05Debug\x12V\n" + "\aGetInfo\x12$.spire.agent.debug.v1.GetInfoRequest\x1a%.spire.agent.debug.v1.GetInfoResponseBHZFgithub.com/spiffe/spire-api-sdk/proto/spire/api/agent/debug/v1;debugv1b\x06proto3" var ( file_spire_api_agent_debug_v1_debug_proto_rawDescOnce sync.Once file_spire_api_agent_debug_v1_debug_proto_rawDescData []byte ) func file_spire_api_agent_debug_v1_debug_proto_rawDescGZIP() []byte { file_spire_api_agent_debug_v1_debug_proto_rawDescOnce.Do(func() { file_spire_api_agent_debug_v1_debug_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_agent_debug_v1_debug_proto_rawDesc), len(file_spire_api_agent_debug_v1_debug_proto_rawDesc))) }) return file_spire_api_agent_debug_v1_debug_proto_rawDescData } var file_spire_api_agent_debug_v1_debug_proto_msgTypes = make([]protoimpl.MessageInfo, 3) var file_spire_api_agent_debug_v1_debug_proto_goTypes = []any{ (*GetInfoRequest)(nil), // 0: spire.agent.debug.v1.GetInfoRequest (*GetInfoResponse)(nil), // 1: spire.agent.debug.v1.GetInfoResponse (*GetInfoResponse_Cert)(nil), // 2: spire.agent.debug.v1.GetInfoResponse.Cert (*types.SPIFFEID)(nil), // 3: spire.api.types.SPIFFEID } var file_spire_api_agent_debug_v1_debug_proto_depIdxs = []int32{ 2, // 0: spire.agent.debug.v1.GetInfoResponse.svid_chain:type_name -> spire.agent.debug.v1.GetInfoResponse.Cert 3, // 1: spire.agent.debug.v1.GetInfoResponse.Cert.id:type_name -> spire.api.types.SPIFFEID 0, // 2: spire.agent.debug.v1.Debug.GetInfo:input_type -> spire.agent.debug.v1.GetInfoRequest 1, // 3: spire.agent.debug.v1.Debug.GetInfo:output_type -> spire.agent.debug.v1.GetInfoResponse 3, // [3:4] is the sub-list for method output_type 2, // [2:3] is the sub-list for method input_type 2, // [2:2] is the sub-list for extension type_name 2, // [2:2] is the sub-list for extension extendee 0, // [0:2] is the sub-list for field type_name } func init() { file_spire_api_agent_debug_v1_debug_proto_init() } func file_spire_api_agent_debug_v1_debug_proto_init() { if File_spire_api_agent_debug_v1_debug_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_agent_debug_v1_debug_proto_rawDesc), len(file_spire_api_agent_debug_v1_debug_proto_rawDesc)), NumEnums: 0, NumMessages: 3, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_agent_debug_v1_debug_proto_goTypes, DependencyIndexes: file_spire_api_agent_debug_v1_debug_proto_depIdxs, MessageInfos: file_spire_api_agent_debug_v1_debug_proto_msgTypes, }.Build() File_spire_api_agent_debug_v1_debug_proto = out.File file_spire_api_agent_debug_v1_debug_proto_goTypes = nil file_spire_api_agent_debug_v1_debug_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/debug/v1/debug.proto000066400000000000000000000024151516071322100301730ustar00rootroot00000000000000syntax = "proto3"; package spire.agent.debug.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/agent/debug/v1;debugv1"; import "spire/api/types/spiffeid.proto"; service Debug { // Get information about SPIRE agent rpc GetInfo(GetInfoRequest) returns (GetInfoResponse); } message GetInfoRequest { } message GetInfoResponse { message Cert { // Cerfificate SPIFFE ID spire.api.types.SPIFFEID id = 1; // Expiration time int64 expires_at = 2; // Subject string subject = 3; } // Agent SVID chain repeated Cert svid_chain = 1; // Agent uptime in seconds int32 uptime = 2; // Number of SVIDs cached in memory // Deprecated in favor of cached_x509_svids_count, cached_jwt_svids_count, and cached_svidstore_x509_svids_count int32 svids_count = 3 [deprecated=true]; // last successful sync with server (in seconds since unix epoch) int64 last_sync_success = 4; // Number of X.509-SVIDs in Agent primary in-memory cache int32 cached_x509_svids_count = 5; // Number of JWT-SVIDs in Agent primary in-memory cache int32 cached_jwt_svids_count = 6; // Number of X.509-SVIDs in Agent svidstore in-memory cache int32 cached_svidstore_x509_svids_count = 7; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/debug/v1/debug_grpc.pb.go000066400000000000000000000103071516071322100310470ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/agent/debug/v1/debug.proto package debugv1 import ( context "context" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( Debug_GetInfo_FullMethodName = "/spire.agent.debug.v1.Debug/GetInfo" ) // DebugClient is the client API for Debug service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. type DebugClient interface { // Get information about SPIRE agent GetInfo(ctx context.Context, in *GetInfoRequest, opts ...grpc.CallOption) (*GetInfoResponse, error) } type debugClient struct { cc grpc.ClientConnInterface } func NewDebugClient(cc grpc.ClientConnInterface) DebugClient { return &debugClient{cc} } func (c *debugClient) GetInfo(ctx context.Context, in *GetInfoRequest, opts ...grpc.CallOption) (*GetInfoResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(GetInfoResponse) err := c.cc.Invoke(ctx, Debug_GetInfo_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // DebugServer is the server API for Debug service. // All implementations must embed UnimplementedDebugServer // for forward compatibility. type DebugServer interface { // Get information about SPIRE agent GetInfo(context.Context, *GetInfoRequest) (*GetInfoResponse, error) mustEmbedUnimplementedDebugServer() } // UnimplementedDebugServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedDebugServer struct{} func (UnimplementedDebugServer) GetInfo(context.Context, *GetInfoRequest) (*GetInfoResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method GetInfo not implemented") } func (UnimplementedDebugServer) mustEmbedUnimplementedDebugServer() {} func (UnimplementedDebugServer) testEmbeddedByValue() {} // UnsafeDebugServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to DebugServer will // result in compilation errors. type UnsafeDebugServer interface { mustEmbedUnimplementedDebugServer() } func RegisterDebugServer(s grpc.ServiceRegistrar, srv DebugServer) { // If the following call pancis, it indicates UnimplementedDebugServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&Debug_ServiceDesc, srv) } func _Debug_GetInfo_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetInfoRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(DebugServer).GetInfo(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Debug_GetInfo_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(DebugServer).GetInfo(ctx, req.(*GetInfoRequest)) } return interceptor(ctx, in, info, handler) } // Debug_ServiceDesc is the grpc.ServiceDesc for Debug service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var Debug_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.agent.debug.v1.Debug", HandlerType: (*DebugServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "GetInfo", Handler: _Debug_GetInfo_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/agent/debug/v1/debug.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/delegatedidentity/000077500000000000000000000000001516071322100300725ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/delegatedidentity/v1/000077500000000000000000000000001516071322100304205ustar00rootroot00000000000000delegatedidentity.pb.go000066400000000000000000000627041516071322100347710ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/delegatedidentity/v1// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/agent/delegatedidentity/v1/delegatedidentity.proto package delegatedidentityv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // X.509 SPIFFE Verifiable Identity Document with the private key. type X509SVIDWithKey struct { state protoimpl.MessageState `protogen:"open.v1"` // The workload X509-SVID. X509Svid *types.X509SVID `protobuf:"bytes,1,opt,name=x509_svid,json=x509Svid,proto3" json:"x509_svid,omitempty"` // Private key (encoding DER PKCS#8). X509SvidKey []byte `protobuf:"bytes,2,opt,name=x509_svid_key,json=x509SvidKey,proto3" json:"x509_svid_key,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *X509SVIDWithKey) Reset() { *x = X509SVIDWithKey{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *X509SVIDWithKey) String() string { return protoimpl.X.MessageStringOf(x) } func (*X509SVIDWithKey) ProtoMessage() {} func (x *X509SVIDWithKey) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use X509SVIDWithKey.ProtoReflect.Descriptor instead. func (*X509SVIDWithKey) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{0} } func (x *X509SVIDWithKey) GetX509Svid() *types.X509SVID { if x != nil { return x.X509Svid } return nil } func (x *X509SVIDWithKey) GetX509SvidKey() []byte { if x != nil { return x.X509SvidKey } return nil } // SubscribeToX509SVIDsRequest is used by clients to subscribe the set of SVIDs that // any given workload is entitled to. Clients subscribe to a workload's SVIDs by providing // one-of // - a set of selectors describing the workload. // - a PID of a workload process. // // Specifying both at the same time is not allowed. // // Subscribers are expected to ensure that the PID they use is not recycled // for the lifetime of the stream, and in the event that it is, are expected // to immediately close the stream. // // TODO we should use `oneof` here but you currently cannot use `repeated` // in a `oneof` without creating and nesting an intermediate `message` type, which would break // back compat - so we accept both and check for mutual exclusion in the handler type SubscribeToX509SVIDsRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Selectors describing the workload to subscribe to. Mutually exclusive with `pid`. Selectors []*types.Selector `protobuf:"bytes,1,rep,name=selectors,proto3" json:"selectors,omitempty"` // PID for the workload to subscribe to. Mutually exclusive with `selectors` Pid int32 `protobuf:"varint,2,opt,name=pid,proto3" json:"pid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SubscribeToX509SVIDsRequest) Reset() { *x = SubscribeToX509SVIDsRequest{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SubscribeToX509SVIDsRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*SubscribeToX509SVIDsRequest) ProtoMessage() {} func (x *SubscribeToX509SVIDsRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SubscribeToX509SVIDsRequest.ProtoReflect.Descriptor instead. func (*SubscribeToX509SVIDsRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{1} } func (x *SubscribeToX509SVIDsRequest) GetSelectors() []*types.Selector { if x != nil { return x.Selectors } return nil } func (x *SubscribeToX509SVIDsRequest) GetPid() int32 { if x != nil { return x.Pid } return 0 } type SubscribeToX509SVIDsResponse struct { state protoimpl.MessageState `protogen:"open.v1"` X509Svids []*X509SVIDWithKey `protobuf:"bytes,1,rep,name=x509_svids,json=x509Svids,proto3" json:"x509_svids,omitempty"` // Names of the trust domains that this workload should federates with. FederatesWith []string `protobuf:"bytes,2,rep,name=federates_with,json=federatesWith,proto3" json:"federates_with,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SubscribeToX509SVIDsResponse) Reset() { *x = SubscribeToX509SVIDsResponse{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SubscribeToX509SVIDsResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*SubscribeToX509SVIDsResponse) ProtoMessage() {} func (x *SubscribeToX509SVIDsResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SubscribeToX509SVIDsResponse.ProtoReflect.Descriptor instead. func (*SubscribeToX509SVIDsResponse) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{2} } func (x *SubscribeToX509SVIDsResponse) GetX509Svids() []*X509SVIDWithKey { if x != nil { return x.X509Svids } return nil } func (x *SubscribeToX509SVIDsResponse) GetFederatesWith() []string { if x != nil { return x.FederatesWith } return nil } type SubscribeToX509BundlesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SubscribeToX509BundlesRequest) Reset() { *x = SubscribeToX509BundlesRequest{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SubscribeToX509BundlesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*SubscribeToX509BundlesRequest) ProtoMessage() {} func (x *SubscribeToX509BundlesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SubscribeToX509BundlesRequest.ProtoReflect.Descriptor instead. func (*SubscribeToX509BundlesRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{3} } // SubscribeToX509BundlesResponse contains all bundles that the agent is tracking, // including the local bundle. When an update occurs, or bundles are added or removed, // a new response with the full set of bundles is sent. type SubscribeToX509BundlesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // A map keyed by trust domain name, with ASN.1 DER-encoded // X.509 CA certificates as the values CaCertificates map[string][]byte `protobuf:"bytes,1,rep,name=ca_certificates,json=caCertificates,proto3" json:"ca_certificates,omitempty" protobuf_key:"bytes,1,opt,name=key" protobuf_val:"bytes,2,opt,name=value"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SubscribeToX509BundlesResponse) Reset() { *x = SubscribeToX509BundlesResponse{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SubscribeToX509BundlesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*SubscribeToX509BundlesResponse) ProtoMessage() {} func (x *SubscribeToX509BundlesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SubscribeToX509BundlesResponse.ProtoReflect.Descriptor instead. func (*SubscribeToX509BundlesResponse) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{4} } func (x *SubscribeToX509BundlesResponse) GetCaCertificates() map[string][]byte { if x != nil { return x.CaCertificates } return nil } // FetchJWTSVIDsRequest is used by clients to fetch a JWT-SVID for a workload. // Clients may provide one-of // - a set of selectors describing the workload. // - a PID of a workload process. // // Specifying both at the same time is not allowed. // // Callers are expected to ensure that the PID they use is not recycled // until obtaining a response, and in the event that it is, are expected // to discard the response of this call. // // TODO we should use `oneof` here but you currently cannot use `repeated` // in a `oneof` without creating and nesting an intermediate `message` type, which would break // back compat - so we accept both and check for mutual exclusion in the handler type FetchJWTSVIDsRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The audience(s) the workload intends to authenticate against. Audience []string `protobuf:"bytes,1,rep,name=audience,proto3" json:"audience,omitempty"` // Selectors describing the workload to subscribe to. Mutually exclusive with `pid` Selectors []*types.Selector `protobuf:"bytes,2,rep,name=selectors,proto3" json:"selectors,omitempty"` // PID for the workload to subscribe to. Mutually exclusive with `selectors`. Pid int32 `protobuf:"varint,3,opt,name=pid,proto3" json:"pid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *FetchJWTSVIDsRequest) Reset() { *x = FetchJWTSVIDsRequest{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[5] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *FetchJWTSVIDsRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*FetchJWTSVIDsRequest) ProtoMessage() {} func (x *FetchJWTSVIDsRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[5] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use FetchJWTSVIDsRequest.ProtoReflect.Descriptor instead. func (*FetchJWTSVIDsRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{5} } func (x *FetchJWTSVIDsRequest) GetAudience() []string { if x != nil { return x.Audience } return nil } func (x *FetchJWTSVIDsRequest) GetSelectors() []*types.Selector { if x != nil { return x.Selectors } return nil } func (x *FetchJWTSVIDsRequest) GetPid() int32 { if x != nil { return x.Pid } return 0 } // The FetchJWTSVIDsResponse message conveys JWT-SVIDs. type FetchJWTSVIDsResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The list of returned JWT-SVIDs. Svids []*types.JWTSVID `protobuf:"bytes,1,rep,name=svids,proto3" json:"svids,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *FetchJWTSVIDsResponse) Reset() { *x = FetchJWTSVIDsResponse{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[6] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *FetchJWTSVIDsResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*FetchJWTSVIDsResponse) ProtoMessage() {} func (x *FetchJWTSVIDsResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[6] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use FetchJWTSVIDsResponse.ProtoReflect.Descriptor instead. func (*FetchJWTSVIDsResponse) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{6} } func (x *FetchJWTSVIDsResponse) GetSvids() []*types.JWTSVID { if x != nil { return x.Svids } return nil } // The SubscribeToJWTBundlesRequest message conveys parameters for requesting JWKS bundles. // There are currently no such parameters. type SubscribeToJWTBundlesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SubscribeToJWTBundlesRequest) Reset() { *x = SubscribeToJWTBundlesRequest{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[7] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SubscribeToJWTBundlesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*SubscribeToJWTBundlesRequest) ProtoMessage() {} func (x *SubscribeToJWTBundlesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[7] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SubscribeToJWTBundlesRequest.ProtoReflect.Descriptor instead. func (*SubscribeToJWTBundlesRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{7} } // The SubscribeToJWTBundlesReponse conveys JWKS bundles. type SubscribeToJWTBundlesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. JWK encoded JWT bundles, keyed by the SPIFFE ID of the trust // domain. Bundles map[string][]byte `protobuf:"bytes,1,rep,name=bundles,proto3" json:"bundles,omitempty" protobuf_key:"bytes,1,opt,name=key" protobuf_val:"bytes,2,opt,name=value"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SubscribeToJWTBundlesResponse) Reset() { *x = SubscribeToJWTBundlesResponse{} mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[8] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SubscribeToJWTBundlesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*SubscribeToJWTBundlesResponse) ProtoMessage() {} func (x *SubscribeToJWTBundlesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes[8] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SubscribeToJWTBundlesResponse.ProtoReflect.Descriptor instead. func (*SubscribeToJWTBundlesResponse) Descriptor() ([]byte, []int) { return file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDescGZIP(), []int{8} } func (x *SubscribeToJWTBundlesResponse) GetBundles() map[string][]byte { if x != nil { return x.Bundles } return nil } var File_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto protoreflect.FileDescriptor const file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDesc = "" + "\n" + " spire.api.types.X509SVID 12, // 1: spire.api.agent.delegatedidentity.v1.SubscribeToX509SVIDsRequest.selectors:type_name -> spire.api.types.Selector 0, // 2: spire.api.agent.delegatedidentity.v1.SubscribeToX509SVIDsResponse.x509_svids:type_name -> spire.api.agent.delegatedidentity.v1.X509SVIDWithKey 9, // 3: spire.api.agent.delegatedidentity.v1.SubscribeToX509BundlesResponse.ca_certificates:type_name -> spire.api.agent.delegatedidentity.v1.SubscribeToX509BundlesResponse.CaCertificatesEntry 12, // 4: spire.api.agent.delegatedidentity.v1.FetchJWTSVIDsRequest.selectors:type_name -> spire.api.types.Selector 13, // 5: spire.api.agent.delegatedidentity.v1.FetchJWTSVIDsResponse.svids:type_name -> spire.api.types.JWTSVID 10, // 6: spire.api.agent.delegatedidentity.v1.SubscribeToJWTBundlesResponse.bundles:type_name -> spire.api.agent.delegatedidentity.v1.SubscribeToJWTBundlesResponse.BundlesEntry 1, // 7: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.SubscribeToX509SVIDs:input_type -> spire.api.agent.delegatedidentity.v1.SubscribeToX509SVIDsRequest 3, // 8: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.SubscribeToX509Bundles:input_type -> spire.api.agent.delegatedidentity.v1.SubscribeToX509BundlesRequest 5, // 9: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.FetchJWTSVIDs:input_type -> spire.api.agent.delegatedidentity.v1.FetchJWTSVIDsRequest 7, // 10: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.SubscribeToJWTBundles:input_type -> spire.api.agent.delegatedidentity.v1.SubscribeToJWTBundlesRequest 2, // 11: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.SubscribeToX509SVIDs:output_type -> spire.api.agent.delegatedidentity.v1.SubscribeToX509SVIDsResponse 4, // 12: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.SubscribeToX509Bundles:output_type -> spire.api.agent.delegatedidentity.v1.SubscribeToX509BundlesResponse 6, // 13: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.FetchJWTSVIDs:output_type -> spire.api.agent.delegatedidentity.v1.FetchJWTSVIDsResponse 8, // 14: spire.api.agent.delegatedidentity.v1.DelegatedIdentity.SubscribeToJWTBundles:output_type -> spire.api.agent.delegatedidentity.v1.SubscribeToJWTBundlesResponse 11, // [11:15] is the sub-list for method output_type 7, // [7:11] is the sub-list for method input_type 7, // [7:7] is the sub-list for extension type_name 7, // [7:7] is the sub-list for extension extendee 0, // [0:7] is the sub-list for field type_name } func init() { file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_init() } func file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_init() { if File_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDesc), len(file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_rawDesc)), NumEnums: 0, NumMessages: 11, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_goTypes, DependencyIndexes: file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_depIdxs, MessageInfos: file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_msgTypes, }.Build() File_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto = out.File file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_goTypes = nil file_spire_api_agent_delegatedidentity_v1_delegatedidentity_proto_depIdxs = nil } delegatedidentity.proto000066400000000000000000000125341516071322100351230ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/delegatedidentity/v1syntax = "proto3"; package spire.api.agent.delegatedidentity.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/agent/delegatedidentity/v1;delegatedidentityv1"; import "spire/api/types/selector.proto"; import "spire/api/types/x509svid.proto"; import "spire/api/types/jwtsvid.proto"; // The delegatedIdentity service provides an interface to get the SVIDs of other // workloads on the host. This service is intended for use cases where a process // (different than the workload one) should access the workload's SVID to // perform actions on behalf of the workload. One example of is using a single // node instance of Envoy that upgrades TCP connections for different processes // running in such a node. // // The caller must be local and its identity must be listed in the allowed // clients on the spire-agent configuration. service DelegatedIdentity { // Subscribe to get X.509-SVIDs for workloads that match the given selectors. // The lifetime of the subscription aligns to the lifetime of the stream. rpc SubscribeToX509SVIDs(SubscribeToX509SVIDsRequest) returns (stream SubscribeToX509SVIDsResponse); // Subscribe to get local and all federated bundles. // The lifetime of the subscription aligns to the lifetime of the stream. rpc SubscribeToX509Bundles(SubscribeToX509BundlesRequest) returns (stream SubscribeToX509BundlesResponse); // Fetch JWT-SVIDs for workloads that match the given selectors, and // for the requested audience. rpc FetchJWTSVIDs(FetchJWTSVIDsRequest) returns (FetchJWTSVIDsResponse); // Subscribe to get local and all federated JWKS bundles. // The lifetime of the subscription aligns to the lifetime of the stream. rpc SubscribeToJWTBundles(SubscribeToJWTBundlesRequest) returns (stream SubscribeToJWTBundlesResponse); } // X.509 SPIFFE Verifiable Identity Document with the private key. message X509SVIDWithKey { // The workload X509-SVID. spire.api.types.X509SVID x509_svid = 1; // Private key (encoding DER PKCS#8). bytes x509_svid_key = 2; } // SubscribeToX509SVIDsRequest is used by clients to subscribe the set of SVIDs that // any given workload is entitled to. Clients subscribe to a workload's SVIDs by providing // one-of // - a set of selectors describing the workload. // - a PID of a workload process. // Specifying both at the same time is not allowed. // // Subscribers are expected to ensure that the PID they use is not recycled // for the lifetime of the stream, and in the event that it is, are expected // to immediately close the stream. // // TODO we should use `oneof` here but you currently cannot use `repeated` // in a `oneof` without creating and nesting an intermediate `message` type, which would break // back compat - so we accept both and check for mutual exclusion in the handler message SubscribeToX509SVIDsRequest { // Selectors describing the workload to subscribe to. Mutually exclusive with `pid`. repeated spire.api.types.Selector selectors = 1; // PID for the workload to subscribe to. Mutually exclusive with `selectors` int32 pid = 2; } message SubscribeToX509SVIDsResponse { repeated X509SVIDWithKey x509_svids = 1; // Names of the trust domains that this workload should federates with. repeated string federates_with = 2; } message SubscribeToX509BundlesRequest {} // SubscribeToX509BundlesResponse contains all bundles that the agent is tracking, // including the local bundle. When an update occurs, or bundles are added or removed, // a new response with the full set of bundles is sent. message SubscribeToX509BundlesResponse { // A map keyed by trust domain name, with ASN.1 DER-encoded // X.509 CA certificates as the values map ca_certificates = 1; } // FetchJWTSVIDsRequest is used by clients to fetch a JWT-SVID for a workload. // Clients may provide one-of // - a set of selectors describing the workload. // - a PID of a workload process. // Specifying both at the same time is not allowed. // // Callers are expected to ensure that the PID they use is not recycled // until obtaining a response, and in the event that it is, are expected // to discard the response of this call. // // TODO we should use `oneof` here but you currently cannot use `repeated` // in a `oneof` without creating and nesting an intermediate `message` type, which would break // back compat - so we accept both and check for mutual exclusion in the handler message FetchJWTSVIDsRequest { // Required. The audience(s) the workload intends to authenticate against. repeated string audience = 1; // Selectors describing the workload to subscribe to. Mutually exclusive with `pid` repeated spire.api.types.Selector selectors = 2; // PID for the workload to subscribe to. Mutually exclusive with `selectors`. int32 pid = 3; } // The FetchJWTSVIDsResponse message conveys JWT-SVIDs. message FetchJWTSVIDsResponse { // Required. The list of returned JWT-SVIDs. repeated spire.api.types.JWTSVID svids = 1; } // The SubscribeToJWTBundlesRequest message conveys parameters for requesting JWKS bundles. // There are currently no such parameters. message SubscribeToJWTBundlesRequest { } // The SubscribeToJWTBundlesReponse conveys JWKS bundles. message SubscribeToJWTBundlesResponse { // Required. JWK encoded JWT bundles, keyed by the SPIFFE ID of the trust // domain. map bundles = 1; } delegatedidentity_grpc.pb.go000066400000000000000000000341211516071322100357740ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/delegatedidentity/v1// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/agent/delegatedidentity/v1/delegatedidentity.proto package delegatedidentityv1 import ( context "context" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( DelegatedIdentity_SubscribeToX509SVIDs_FullMethodName = "/spire.api.agent.delegatedidentity.v1.DelegatedIdentity/SubscribeToX509SVIDs" DelegatedIdentity_SubscribeToX509Bundles_FullMethodName = "/spire.api.agent.delegatedidentity.v1.DelegatedIdentity/SubscribeToX509Bundles" DelegatedIdentity_FetchJWTSVIDs_FullMethodName = "/spire.api.agent.delegatedidentity.v1.DelegatedIdentity/FetchJWTSVIDs" DelegatedIdentity_SubscribeToJWTBundles_FullMethodName = "/spire.api.agent.delegatedidentity.v1.DelegatedIdentity/SubscribeToJWTBundles" ) // DelegatedIdentityClient is the client API for DelegatedIdentity service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. // // The delegatedIdentity service provides an interface to get the SVIDs of other // workloads on the host. This service is intended for use cases where a process // (different than the workload one) should access the workload's SVID to // perform actions on behalf of the workload. One example of is using a single // node instance of Envoy that upgrades TCP connections for different processes // running in such a node. // // The caller must be local and its identity must be listed in the allowed // clients on the spire-agent configuration. type DelegatedIdentityClient interface { // Subscribe to get X.509-SVIDs for workloads that match the given selectors. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509SVIDs(ctx context.Context, in *SubscribeToX509SVIDsRequest, opts ...grpc.CallOption) (grpc.ServerStreamingClient[SubscribeToX509SVIDsResponse], error) // Subscribe to get local and all federated bundles. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509Bundles(ctx context.Context, in *SubscribeToX509BundlesRequest, opts ...grpc.CallOption) (grpc.ServerStreamingClient[SubscribeToX509BundlesResponse], error) // Fetch JWT-SVIDs for workloads that match the given selectors, and // for the requested audience. FetchJWTSVIDs(ctx context.Context, in *FetchJWTSVIDsRequest, opts ...grpc.CallOption) (*FetchJWTSVIDsResponse, error) // Subscribe to get local and all federated JWKS bundles. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToJWTBundles(ctx context.Context, in *SubscribeToJWTBundlesRequest, opts ...grpc.CallOption) (grpc.ServerStreamingClient[SubscribeToJWTBundlesResponse], error) } type delegatedIdentityClient struct { cc grpc.ClientConnInterface } func NewDelegatedIdentityClient(cc grpc.ClientConnInterface) DelegatedIdentityClient { return &delegatedIdentityClient{cc} } func (c *delegatedIdentityClient) SubscribeToX509SVIDs(ctx context.Context, in *SubscribeToX509SVIDsRequest, opts ...grpc.CallOption) (grpc.ServerStreamingClient[SubscribeToX509SVIDsResponse], error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) stream, err := c.cc.NewStream(ctx, &DelegatedIdentity_ServiceDesc.Streams[0], DelegatedIdentity_SubscribeToX509SVIDs_FullMethodName, cOpts...) if err != nil { return nil, err } x := &grpc.GenericClientStream[SubscribeToX509SVIDsRequest, SubscribeToX509SVIDsResponse]{ClientStream: stream} if err := x.ClientStream.SendMsg(in); err != nil { return nil, err } if err := x.ClientStream.CloseSend(); err != nil { return nil, err } return x, nil } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type DelegatedIdentity_SubscribeToX509SVIDsClient = grpc.ServerStreamingClient[SubscribeToX509SVIDsResponse] func (c *delegatedIdentityClient) SubscribeToX509Bundles(ctx context.Context, in *SubscribeToX509BundlesRequest, opts ...grpc.CallOption) (grpc.ServerStreamingClient[SubscribeToX509BundlesResponse], error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) stream, err := c.cc.NewStream(ctx, &DelegatedIdentity_ServiceDesc.Streams[1], DelegatedIdentity_SubscribeToX509Bundles_FullMethodName, cOpts...) if err != nil { return nil, err } x := &grpc.GenericClientStream[SubscribeToX509BundlesRequest, SubscribeToX509BundlesResponse]{ClientStream: stream} if err := x.ClientStream.SendMsg(in); err != nil { return nil, err } if err := x.ClientStream.CloseSend(); err != nil { return nil, err } return x, nil } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type DelegatedIdentity_SubscribeToX509BundlesClient = grpc.ServerStreamingClient[SubscribeToX509BundlesResponse] func (c *delegatedIdentityClient) FetchJWTSVIDs(ctx context.Context, in *FetchJWTSVIDsRequest, opts ...grpc.CallOption) (*FetchJWTSVIDsResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(FetchJWTSVIDsResponse) err := c.cc.Invoke(ctx, DelegatedIdentity_FetchJWTSVIDs_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *delegatedIdentityClient) SubscribeToJWTBundles(ctx context.Context, in *SubscribeToJWTBundlesRequest, opts ...grpc.CallOption) (grpc.ServerStreamingClient[SubscribeToJWTBundlesResponse], error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) stream, err := c.cc.NewStream(ctx, &DelegatedIdentity_ServiceDesc.Streams[2], DelegatedIdentity_SubscribeToJWTBundles_FullMethodName, cOpts...) if err != nil { return nil, err } x := &grpc.GenericClientStream[SubscribeToJWTBundlesRequest, SubscribeToJWTBundlesResponse]{ClientStream: stream} if err := x.ClientStream.SendMsg(in); err != nil { return nil, err } if err := x.ClientStream.CloseSend(); err != nil { return nil, err } return x, nil } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type DelegatedIdentity_SubscribeToJWTBundlesClient = grpc.ServerStreamingClient[SubscribeToJWTBundlesResponse] // DelegatedIdentityServer is the server API for DelegatedIdentity service. // All implementations must embed UnimplementedDelegatedIdentityServer // for forward compatibility. // // The delegatedIdentity service provides an interface to get the SVIDs of other // workloads on the host. This service is intended for use cases where a process // (different than the workload one) should access the workload's SVID to // perform actions on behalf of the workload. One example of is using a single // node instance of Envoy that upgrades TCP connections for different processes // running in such a node. // // The caller must be local and its identity must be listed in the allowed // clients on the spire-agent configuration. type DelegatedIdentityServer interface { // Subscribe to get X.509-SVIDs for workloads that match the given selectors. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509SVIDs(*SubscribeToX509SVIDsRequest, grpc.ServerStreamingServer[SubscribeToX509SVIDsResponse]) error // Subscribe to get local and all federated bundles. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToX509Bundles(*SubscribeToX509BundlesRequest, grpc.ServerStreamingServer[SubscribeToX509BundlesResponse]) error // Fetch JWT-SVIDs for workloads that match the given selectors, and // for the requested audience. FetchJWTSVIDs(context.Context, *FetchJWTSVIDsRequest) (*FetchJWTSVIDsResponse, error) // Subscribe to get local and all federated JWKS bundles. // The lifetime of the subscription aligns to the lifetime of the stream. SubscribeToJWTBundles(*SubscribeToJWTBundlesRequest, grpc.ServerStreamingServer[SubscribeToJWTBundlesResponse]) error mustEmbedUnimplementedDelegatedIdentityServer() } // UnimplementedDelegatedIdentityServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedDelegatedIdentityServer struct{} func (UnimplementedDelegatedIdentityServer) SubscribeToX509SVIDs(*SubscribeToX509SVIDsRequest, grpc.ServerStreamingServer[SubscribeToX509SVIDsResponse]) error { return status.Errorf(codes.Unimplemented, "method SubscribeToX509SVIDs not implemented") } func (UnimplementedDelegatedIdentityServer) SubscribeToX509Bundles(*SubscribeToX509BundlesRequest, grpc.ServerStreamingServer[SubscribeToX509BundlesResponse]) error { return status.Errorf(codes.Unimplemented, "method SubscribeToX509Bundles not implemented") } func (UnimplementedDelegatedIdentityServer) FetchJWTSVIDs(context.Context, *FetchJWTSVIDsRequest) (*FetchJWTSVIDsResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method FetchJWTSVIDs not implemented") } func (UnimplementedDelegatedIdentityServer) SubscribeToJWTBundles(*SubscribeToJWTBundlesRequest, grpc.ServerStreamingServer[SubscribeToJWTBundlesResponse]) error { return status.Errorf(codes.Unimplemented, "method SubscribeToJWTBundles not implemented") } func (UnimplementedDelegatedIdentityServer) mustEmbedUnimplementedDelegatedIdentityServer() {} func (UnimplementedDelegatedIdentityServer) testEmbeddedByValue() {} // UnsafeDelegatedIdentityServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to DelegatedIdentityServer will // result in compilation errors. type UnsafeDelegatedIdentityServer interface { mustEmbedUnimplementedDelegatedIdentityServer() } func RegisterDelegatedIdentityServer(s grpc.ServiceRegistrar, srv DelegatedIdentityServer) { // If the following call pancis, it indicates UnimplementedDelegatedIdentityServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&DelegatedIdentity_ServiceDesc, srv) } func _DelegatedIdentity_SubscribeToX509SVIDs_Handler(srv interface{}, stream grpc.ServerStream) error { m := new(SubscribeToX509SVIDsRequest) if err := stream.RecvMsg(m); err != nil { return err } return srv.(DelegatedIdentityServer).SubscribeToX509SVIDs(m, &grpc.GenericServerStream[SubscribeToX509SVIDsRequest, SubscribeToX509SVIDsResponse]{ServerStream: stream}) } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type DelegatedIdentity_SubscribeToX509SVIDsServer = grpc.ServerStreamingServer[SubscribeToX509SVIDsResponse] func _DelegatedIdentity_SubscribeToX509Bundles_Handler(srv interface{}, stream grpc.ServerStream) error { m := new(SubscribeToX509BundlesRequest) if err := stream.RecvMsg(m); err != nil { return err } return srv.(DelegatedIdentityServer).SubscribeToX509Bundles(m, &grpc.GenericServerStream[SubscribeToX509BundlesRequest, SubscribeToX509BundlesResponse]{ServerStream: stream}) } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type DelegatedIdentity_SubscribeToX509BundlesServer = grpc.ServerStreamingServer[SubscribeToX509BundlesResponse] func _DelegatedIdentity_FetchJWTSVIDs_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(FetchJWTSVIDsRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(DelegatedIdentityServer).FetchJWTSVIDs(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: DelegatedIdentity_FetchJWTSVIDs_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(DelegatedIdentityServer).FetchJWTSVIDs(ctx, req.(*FetchJWTSVIDsRequest)) } return interceptor(ctx, in, info, handler) } func _DelegatedIdentity_SubscribeToJWTBundles_Handler(srv interface{}, stream grpc.ServerStream) error { m := new(SubscribeToJWTBundlesRequest) if err := stream.RecvMsg(m); err != nil { return err } return srv.(DelegatedIdentityServer).SubscribeToJWTBundles(m, &grpc.GenericServerStream[SubscribeToJWTBundlesRequest, SubscribeToJWTBundlesResponse]{ServerStream: stream}) } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type DelegatedIdentity_SubscribeToJWTBundlesServer = grpc.ServerStreamingServer[SubscribeToJWTBundlesResponse] // DelegatedIdentity_ServiceDesc is the grpc.ServiceDesc for DelegatedIdentity service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var DelegatedIdentity_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.agent.delegatedidentity.v1.DelegatedIdentity", HandlerType: (*DelegatedIdentityServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "FetchJWTSVIDs", Handler: _DelegatedIdentity_FetchJWTSVIDs_Handler, }, }, Streams: []grpc.StreamDesc{ { StreamName: "SubscribeToX509SVIDs", Handler: _DelegatedIdentity_SubscribeToX509SVIDs_Handler, ServerStreams: true, }, { StreamName: "SubscribeToX509Bundles", Handler: _DelegatedIdentity_SubscribeToX509Bundles_Handler, ServerStreams: true, }, { StreamName: "SubscribeToJWTBundles", Handler: _DelegatedIdentity_SubscribeToJWTBundles_Handler, ServerStreams: true, }, }, Metadata: "spire/api/agent/delegatedidentity/v1/delegatedidentity.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/logger/000077500000000000000000000000001516071322100256615ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/logger/v1/000077500000000000000000000000001516071322100262075ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/logger/v1/logger.pb.go000066400000000000000000000201321516071322100304130ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/agent/logger/v1/logger.proto package loggerv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // Empty Get Logger Request message for future extension type GetLoggerRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetLoggerRequest) Reset() { *x = GetLoggerRequest{} mi := &file_spire_api_agent_logger_v1_logger_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetLoggerRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetLoggerRequest) ProtoMessage() {} func (x *GetLoggerRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_logger_v1_logger_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetLoggerRequest.ProtoReflect.Descriptor instead. func (*GetLoggerRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_logger_v1_logger_proto_rawDescGZIP(), []int{0} } // Set Log Level Request message type SetLogLevelRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The new level the logger should assume NewLevel types.LogLevel `protobuf:"varint,1,opt,name=new_level,json=newLevel,proto3,enum=spire.api.types.LogLevel" json:"new_level,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SetLogLevelRequest) Reset() { *x = SetLogLevelRequest{} mi := &file_spire_api_agent_logger_v1_logger_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SetLogLevelRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*SetLogLevelRequest) ProtoMessage() {} func (x *SetLogLevelRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_logger_v1_logger_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SetLogLevelRequest.ProtoReflect.Descriptor instead. func (*SetLogLevelRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_logger_v1_logger_proto_rawDescGZIP(), []int{1} } func (x *SetLogLevelRequest) GetNewLevel() types.LogLevel { if x != nil { return x.NewLevel } return types.LogLevel(0) } // Empty Reset Log Level Request message for future extension type ResetLogLevelRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ResetLogLevelRequest) Reset() { *x = ResetLogLevelRequest{} mi := &file_spire_api_agent_logger_v1_logger_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ResetLogLevelRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ResetLogLevelRequest) ProtoMessage() {} func (x *ResetLogLevelRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_agent_logger_v1_logger_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ResetLogLevelRequest.ProtoReflect.Descriptor instead. func (*ResetLogLevelRequest) Descriptor() ([]byte, []int) { return file_spire_api_agent_logger_v1_logger_proto_rawDescGZIP(), []int{2} } var File_spire_api_agent_logger_v1_logger_proto protoreflect.FileDescriptor const file_spire_api_agent_logger_v1_logger_proto_rawDesc = "" + "\n" + "&spire/api/agent/logger/v1/logger.proto\x12\x19spire.api.agent.logger.v1\x1a\x1cspire/api/types/logger.proto\"\x12\n" + "\x10GetLoggerRequest\"L\n" + "\x12SetLogLevelRequest\x126\n" + "\tnew_level\x18\x01 \x01(\x0e2\x19.spire.api.types.LogLevelR\bnewLevel\"\x16\n" + "\x14ResetLogLevelRequest2\x8d\x02\n" + "\x06Logger\x12Q\n" + "\tGetLogger\x12+.spire.api.agent.logger.v1.GetLoggerRequest\x1a\x17.spire.api.types.Logger\x12U\n" + "\vSetLogLevel\x12-.spire.api.agent.logger.v1.SetLogLevelRequest\x1a\x17.spire.api.types.Logger\x12Y\n" + "\rResetLogLevel\x12/.spire.api.agent.logger.v1.ResetLogLevelRequest\x1a\x17.spire.api.types.LoggerBJZHgithub.com/spiffe/spire-api-sdk/proto/spire/api/agent/logger/v1;loggerv1b\x06proto3" var ( file_spire_api_agent_logger_v1_logger_proto_rawDescOnce sync.Once file_spire_api_agent_logger_v1_logger_proto_rawDescData []byte ) func file_spire_api_agent_logger_v1_logger_proto_rawDescGZIP() []byte { file_spire_api_agent_logger_v1_logger_proto_rawDescOnce.Do(func() { file_spire_api_agent_logger_v1_logger_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_agent_logger_v1_logger_proto_rawDesc), len(file_spire_api_agent_logger_v1_logger_proto_rawDesc))) }) return file_spire_api_agent_logger_v1_logger_proto_rawDescData } var file_spire_api_agent_logger_v1_logger_proto_msgTypes = make([]protoimpl.MessageInfo, 3) var file_spire_api_agent_logger_v1_logger_proto_goTypes = []any{ (*GetLoggerRequest)(nil), // 0: spire.api.agent.logger.v1.GetLoggerRequest (*SetLogLevelRequest)(nil), // 1: spire.api.agent.logger.v1.SetLogLevelRequest (*ResetLogLevelRequest)(nil), // 2: spire.api.agent.logger.v1.ResetLogLevelRequest (types.LogLevel)(0), // 3: spire.api.types.LogLevel (*types.Logger)(nil), // 4: spire.api.types.Logger } var file_spire_api_agent_logger_v1_logger_proto_depIdxs = []int32{ 3, // 0: spire.api.agent.logger.v1.SetLogLevelRequest.new_level:type_name -> spire.api.types.LogLevel 0, // 1: spire.api.agent.logger.v1.Logger.GetLogger:input_type -> spire.api.agent.logger.v1.GetLoggerRequest 1, // 2: spire.api.agent.logger.v1.Logger.SetLogLevel:input_type -> spire.api.agent.logger.v1.SetLogLevelRequest 2, // 3: spire.api.agent.logger.v1.Logger.ResetLogLevel:input_type -> spire.api.agent.logger.v1.ResetLogLevelRequest 4, // 4: spire.api.agent.logger.v1.Logger.GetLogger:output_type -> spire.api.types.Logger 4, // 5: spire.api.agent.logger.v1.Logger.SetLogLevel:output_type -> spire.api.types.Logger 4, // 6: spire.api.agent.logger.v1.Logger.ResetLogLevel:output_type -> spire.api.types.Logger 4, // [4:7] is the sub-list for method output_type 1, // [1:4] is the sub-list for method input_type 1, // [1:1] is the sub-list for extension type_name 1, // [1:1] is the sub-list for extension extendee 0, // [0:1] is the sub-list for field type_name } func init() { file_spire_api_agent_logger_v1_logger_proto_init() } func file_spire_api_agent_logger_v1_logger_proto_init() { if File_spire_api_agent_logger_v1_logger_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_agent_logger_v1_logger_proto_rawDesc), len(file_spire_api_agent_logger_v1_logger_proto_rawDesc)), NumEnums: 0, NumMessages: 3, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_agent_logger_v1_logger_proto_goTypes, DependencyIndexes: file_spire_api_agent_logger_v1_logger_proto_depIdxs, MessageInfos: file_spire_api_agent_logger_v1_logger_proto_msgTypes, }.Build() File_spire_api_agent_logger_v1_logger_proto = out.File file_spire_api_agent_logger_v1_logger_proto_goTypes = nil file_spire_api_agent_logger_v1_logger_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/logger/v1/logger.proto000066400000000000000000000021421516071322100305520ustar00rootroot00000000000000syntax = "proto3"; package spire.api.agent.logger.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/agent/logger/v1;loggerv1"; import "spire/api/types/logger.proto"; service Logger { // Gets the logger level. // // This message is intended for the Agent Admin Socket. rpc GetLogger(GetLoggerRequest) returns (spire.api.types.Logger); // Sets the logger to a specified log level. // // This message is intended for the Agent Admin Socket. rpc SetLogLevel(SetLogLevelRequest) returns (spire.api.types.Logger); // Resets the logger level to the level configured at launch. // // This message is intended for the Agent Admin Socket. rpc ResetLogLevel(ResetLogLevelRequest) returns (spire.api.types.Logger); } // Empty Get Logger Request message for future extension message GetLoggerRequest { } // Set Log Level Request message message SetLogLevelRequest { // The new level the logger should assume spire.api.types.LogLevel new_level = 1; } // Empty Reset Log Level Request message for future extension message ResetLogLevelRequest { } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/agent/logger/v1/logger_grpc.pb.go000066400000000000000000000176571516071322100314500ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/agent/logger/v1/logger.proto package loggerv1 import ( context "context" types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( Logger_GetLogger_FullMethodName = "/spire.api.agent.logger.v1.Logger/GetLogger" Logger_SetLogLevel_FullMethodName = "/spire.api.agent.logger.v1.Logger/SetLogLevel" Logger_ResetLogLevel_FullMethodName = "/spire.api.agent.logger.v1.Logger/ResetLogLevel" ) // LoggerClient is the client API for Logger service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. type LoggerClient interface { // Gets the logger level. // // This message is intended for the Agent Admin Socket. GetLogger(ctx context.Context, in *GetLoggerRequest, opts ...grpc.CallOption) (*types.Logger, error) // Sets the logger to a specified log level. // // This message is intended for the Agent Admin Socket. SetLogLevel(ctx context.Context, in *SetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) // Resets the logger level to the level configured at launch. // // This message is intended for the Agent Admin Socket. ResetLogLevel(ctx context.Context, in *ResetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) } type loggerClient struct { cc grpc.ClientConnInterface } func NewLoggerClient(cc grpc.ClientConnInterface) LoggerClient { return &loggerClient{cc} } func (c *loggerClient) GetLogger(ctx context.Context, in *GetLoggerRequest, opts ...grpc.CallOption) (*types.Logger, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Logger) err := c.cc.Invoke(ctx, Logger_GetLogger_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *loggerClient) SetLogLevel(ctx context.Context, in *SetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Logger) err := c.cc.Invoke(ctx, Logger_SetLogLevel_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *loggerClient) ResetLogLevel(ctx context.Context, in *ResetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Logger) err := c.cc.Invoke(ctx, Logger_ResetLogLevel_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // LoggerServer is the server API for Logger service. // All implementations must embed UnimplementedLoggerServer // for forward compatibility. type LoggerServer interface { // Gets the logger level. // // This message is intended for the Agent Admin Socket. GetLogger(context.Context, *GetLoggerRequest) (*types.Logger, error) // Sets the logger to a specified log level. // // This message is intended for the Agent Admin Socket. SetLogLevel(context.Context, *SetLogLevelRequest) (*types.Logger, error) // Resets the logger level to the level configured at launch. // // This message is intended for the Agent Admin Socket. ResetLogLevel(context.Context, *ResetLogLevelRequest) (*types.Logger, error) mustEmbedUnimplementedLoggerServer() } // UnimplementedLoggerServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedLoggerServer struct{} func (UnimplementedLoggerServer) GetLogger(context.Context, *GetLoggerRequest) (*types.Logger, error) { return nil, status.Errorf(codes.Unimplemented, "method GetLogger not implemented") } func (UnimplementedLoggerServer) SetLogLevel(context.Context, *SetLogLevelRequest) (*types.Logger, error) { return nil, status.Errorf(codes.Unimplemented, "method SetLogLevel not implemented") } func (UnimplementedLoggerServer) ResetLogLevel(context.Context, *ResetLogLevelRequest) (*types.Logger, error) { return nil, status.Errorf(codes.Unimplemented, "method ResetLogLevel not implemented") } func (UnimplementedLoggerServer) mustEmbedUnimplementedLoggerServer() {} func (UnimplementedLoggerServer) testEmbeddedByValue() {} // UnsafeLoggerServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to LoggerServer will // result in compilation errors. type UnsafeLoggerServer interface { mustEmbedUnimplementedLoggerServer() } func RegisterLoggerServer(s grpc.ServiceRegistrar, srv LoggerServer) { // If the following call pancis, it indicates UnimplementedLoggerServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&Logger_ServiceDesc, srv) } func _Logger_GetLogger_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetLoggerRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LoggerServer).GetLogger(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Logger_GetLogger_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LoggerServer).GetLogger(ctx, req.(*GetLoggerRequest)) } return interceptor(ctx, in, info, handler) } func _Logger_SetLogLevel_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(SetLogLevelRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LoggerServer).SetLogLevel(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Logger_SetLogLevel_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LoggerServer).SetLogLevel(ctx, req.(*SetLogLevelRequest)) } return interceptor(ctx, in, info, handler) } func _Logger_ResetLogLevel_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ResetLogLevelRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LoggerServer).ResetLogLevel(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Logger_ResetLogLevel_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LoggerServer).ResetLogLevel(ctx, req.(*ResetLogLevelRequest)) } return interceptor(ctx, in, info, handler) } // Logger_ServiceDesc is the grpc.ServiceDesc for Logger service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var Logger_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.agent.logger.v1.Logger", HandlerType: (*LoggerServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "GetLogger", Handler: _Logger_GetLogger_Handler, }, { MethodName: "SetLogLevel", Handler: _Logger_SetLogLevel_Handler, }, { MethodName: "ResetLogLevel", Handler: _Logger_ResetLogLevel_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/agent/logger/v1/logger.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/000077500000000000000000000000001516071322100246125ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/agent/000077500000000000000000000000001516071322100257105ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/agent/v1/000077500000000000000000000000001516071322100262365ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/agent/v1/agent.pb.go000066400000000000000000001355631516071322100303000ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/agent/v1/agent.proto package agentv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" emptypb "google.golang.org/protobuf/types/known/emptypb" wrapperspb "google.golang.org/protobuf/types/known/wrapperspb" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type CountAgentsRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Filters the agents returned by the list operation. Filter *CountAgentsRequest_Filter `protobuf:"bytes,1,opt,name=filter,proto3" json:"filter,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountAgentsRequest) Reset() { *x = CountAgentsRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountAgentsRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountAgentsRequest) ProtoMessage() {} func (x *CountAgentsRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountAgentsRequest.ProtoReflect.Descriptor instead. func (*CountAgentsRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{0} } func (x *CountAgentsRequest) GetFilter() *CountAgentsRequest_Filter { if x != nil { return x.Filter } return nil } type CountAgentsResponse struct { state protoimpl.MessageState `protogen:"open.v1"` Count int32 `protobuf:"varint,1,opt,name=count,proto3" json:"count,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountAgentsResponse) Reset() { *x = CountAgentsResponse{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountAgentsResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountAgentsResponse) ProtoMessage() {} func (x *CountAgentsResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountAgentsResponse.ProtoReflect.Descriptor instead. func (*CountAgentsResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{1} } func (x *CountAgentsResponse) GetCount() int32 { if x != nil { return x.Count } return 0 } type ListAgentsRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Filters the agents returned by the list operation. Filter *ListAgentsRequest_Filter `protobuf:"bytes,1,opt,name=filter,proto3" json:"filter,omitempty"` // An output mask indicating which agent fields are set in the response. OutputMask *types.AgentMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. PageSize int32 `protobuf:"varint,3,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"` // The next_page_token value returned from a previous request, if any. PageToken string `protobuf:"bytes,4,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListAgentsRequest) Reset() { *x = ListAgentsRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListAgentsRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListAgentsRequest) ProtoMessage() {} func (x *ListAgentsRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListAgentsRequest.ProtoReflect.Descriptor instead. func (*ListAgentsRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{2} } func (x *ListAgentsRequest) GetFilter() *ListAgentsRequest_Filter { if x != nil { return x.Filter } return nil } func (x *ListAgentsRequest) GetOutputMask() *types.AgentMask { if x != nil { return x.OutputMask } return nil } func (x *ListAgentsRequest) GetPageSize() int32 { if x != nil { return x.PageSize } return 0 } func (x *ListAgentsRequest) GetPageToken() string { if x != nil { return x.PageToken } return "" } type ListAgentsResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The agents. Agents []*types.Agent `protobuf:"bytes,1,rep,name=agents,proto3" json:"agents,omitempty"` // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListAgentsResponse) Reset() { *x = ListAgentsResponse{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListAgentsResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListAgentsResponse) ProtoMessage() {} func (x *ListAgentsResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListAgentsResponse.ProtoReflect.Descriptor instead. func (*ListAgentsResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{3} } func (x *ListAgentsResponse) GetAgents() []*types.Agent { if x != nil { return x.Agents } return nil } func (x *ListAgentsResponse) GetNextPageToken() string { if x != nil { return x.NextPageToken } return "" } type GetAgentRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The SPIFFE ID of the agent. Id *types.SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // An output mask indicating which agent fields are set in the response. OutputMask *types.AgentMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetAgentRequest) Reset() { *x = GetAgentRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetAgentRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetAgentRequest) ProtoMessage() {} func (x *GetAgentRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetAgentRequest.ProtoReflect.Descriptor instead. func (*GetAgentRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{4} } func (x *GetAgentRequest) GetId() *types.SPIFFEID { if x != nil { return x.Id } return nil } func (x *GetAgentRequest) GetOutputMask() *types.AgentMask { if x != nil { return x.OutputMask } return nil } type DeleteAgentRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The SPIFFE ID of the agent. Id *types.SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *DeleteAgentRequest) Reset() { *x = DeleteAgentRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[5] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *DeleteAgentRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*DeleteAgentRequest) ProtoMessage() {} func (x *DeleteAgentRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[5] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use DeleteAgentRequest.ProtoReflect.Descriptor instead. func (*DeleteAgentRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{5} } func (x *DeleteAgentRequest) GetId() *types.SPIFFEID { if x != nil { return x.Id } return nil } type BanAgentRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The SPIFFE ID of the agent. Id *types.SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BanAgentRequest) Reset() { *x = BanAgentRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[6] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BanAgentRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BanAgentRequest) ProtoMessage() {} func (x *BanAgentRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[6] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BanAgentRequest.ProtoReflect.Descriptor instead. func (*BanAgentRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{6} } func (x *BanAgentRequest) GetId() *types.SPIFFEID { if x != nil { return x.Id } return nil } type AttestAgentRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The data for the step in the attestation flow. // // Types that are valid to be assigned to Step: // // *AttestAgentRequest_Params_ // *AttestAgentRequest_ChallengeResponse Step isAttestAgentRequest_Step `protobuf_oneof:"step"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AttestAgentRequest) Reset() { *x = AttestAgentRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[7] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AttestAgentRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*AttestAgentRequest) ProtoMessage() {} func (x *AttestAgentRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[7] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AttestAgentRequest.ProtoReflect.Descriptor instead. func (*AttestAgentRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{7} } func (x *AttestAgentRequest) GetStep() isAttestAgentRequest_Step { if x != nil { return x.Step } return nil } func (x *AttestAgentRequest) GetParams() *AttestAgentRequest_Params { if x != nil { if x, ok := x.Step.(*AttestAgentRequest_Params_); ok { return x.Params } } return nil } func (x *AttestAgentRequest) GetChallengeResponse() []byte { if x != nil { if x, ok := x.Step.(*AttestAgentRequest_ChallengeResponse); ok { return x.ChallengeResponse } } return nil } type isAttestAgentRequest_Step interface { isAttestAgentRequest_Step() } type AttestAgentRequest_Params_ struct { // Attestation parameters. These are only sent in the initial request. Params *AttestAgentRequest_Params `protobuf:"bytes,1,opt,name=params,proto3,oneof"` } type AttestAgentRequest_ChallengeResponse struct { // The response to a challenge issued by the attestor. Only sent in // response to a challenge received by the issuer. ChallengeResponse []byte `protobuf:"bytes,2,opt,name=challenge_response,json=challengeResponse,proto3,oneof"` } func (*AttestAgentRequest_Params_) isAttestAgentRequest_Step() {} func (*AttestAgentRequest_ChallengeResponse) isAttestAgentRequest_Step() {} type AttestAgentResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Types that are valid to be assigned to Step: // // *AttestAgentResponse_Result_ // *AttestAgentResponse_Challenge Step isAttestAgentResponse_Step `protobuf_oneof:"step"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AttestAgentResponse) Reset() { *x = AttestAgentResponse{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[8] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AttestAgentResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*AttestAgentResponse) ProtoMessage() {} func (x *AttestAgentResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[8] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AttestAgentResponse.ProtoReflect.Descriptor instead. func (*AttestAgentResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{8} } func (x *AttestAgentResponse) GetStep() isAttestAgentResponse_Step { if x != nil { return x.Step } return nil } func (x *AttestAgentResponse) GetResult() *AttestAgentResponse_Result { if x != nil { if x, ok := x.Step.(*AttestAgentResponse_Result_); ok { return x.Result } } return nil } func (x *AttestAgentResponse) GetChallenge() []byte { if x != nil { if x, ok := x.Step.(*AttestAgentResponse_Challenge); ok { return x.Challenge } } return nil } type isAttestAgentResponse_Step interface { isAttestAgentResponse_Step() } type AttestAgentResponse_Result_ struct { // Attestation results. If set, attestation has completed. Result *AttestAgentResponse_Result `protobuf:"bytes,1,opt,name=result,proto3,oneof"` } type AttestAgentResponse_Challenge struct { // A challenge issued by the attestor. If set, the caller is expected // to send another request on the stream with the challenge response. Challenge []byte `protobuf:"bytes,2,opt,name=challenge,proto3,oneof"` } func (*AttestAgentResponse_Result_) isAttestAgentResponse_Step() {} func (*AttestAgentResponse_Challenge) isAttestAgentResponse_Step() {} type RenewAgentRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. Parameters for the X509-SVID. Params *AgentX509SVIDParams `protobuf:"bytes,1,opt,name=params,proto3" json:"params,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RenewAgentRequest) Reset() { *x = RenewAgentRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[9] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RenewAgentRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*RenewAgentRequest) ProtoMessage() {} func (x *RenewAgentRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[9] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RenewAgentRequest.ProtoReflect.Descriptor instead. func (*RenewAgentRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{9} } func (x *RenewAgentRequest) GetParams() *AgentX509SVIDParams { if x != nil { return x.Params } return nil } type RenewAgentResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The renewed X509-SVID Svid *types.X509SVID `protobuf:"bytes,1,opt,name=svid,proto3" json:"svid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RenewAgentResponse) Reset() { *x = RenewAgentResponse{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[10] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RenewAgentResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*RenewAgentResponse) ProtoMessage() {} func (x *RenewAgentResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[10] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RenewAgentResponse.ProtoReflect.Descriptor instead. func (*RenewAgentResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{10} } func (x *RenewAgentResponse) GetSvid() *types.X509SVID { if x != nil { return x.Svid } return nil } type CreateJoinTokenRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. How long until the token expires (in seconds). Ttl int32 `protobuf:"varint,1,opt,name=ttl,proto3" json:"ttl,omitempty"` // An optional token value to use for the token. Must be unique. If unset, // the server will generate a value. Token string `protobuf:"bytes,2,opt,name=token,proto3" json:"token,omitempty"` // An optional SPIFFE ID to assign to the agent beyond that given by // join token attestation. If set, this results in an entry being created // that maps the attestation assigned agent ID to this ID. AgentId *types.SPIFFEID `protobuf:"bytes,3,opt,name=agent_id,json=agentId,proto3" json:"agent_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CreateJoinTokenRequest) Reset() { *x = CreateJoinTokenRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[11] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CreateJoinTokenRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*CreateJoinTokenRequest) ProtoMessage() {} func (x *CreateJoinTokenRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[11] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CreateJoinTokenRequest.ProtoReflect.Descriptor instead. func (*CreateJoinTokenRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{11} } func (x *CreateJoinTokenRequest) GetTtl() int32 { if x != nil { return x.Ttl } return 0 } func (x *CreateJoinTokenRequest) GetToken() string { if x != nil { return x.Token } return "" } func (x *CreateJoinTokenRequest) GetAgentId() *types.SPIFFEID { if x != nil { return x.AgentId } return nil } type AgentX509SVIDParams struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The ASN.1 DER encoded Certificate Signing Request (CSR). The // CSR is only used to convey the public key; other fields in the CSR are // ignored. The agent X509-SVID attributes are determined by the server. Csr []byte `protobuf:"bytes,1,opt,name=csr,proto3" json:"csr,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AgentX509SVIDParams) Reset() { *x = AgentX509SVIDParams{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[12] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AgentX509SVIDParams) String() string { return protoimpl.X.MessageStringOf(x) } func (*AgentX509SVIDParams) ProtoMessage() {} func (x *AgentX509SVIDParams) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[12] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AgentX509SVIDParams.ProtoReflect.Descriptor instead. func (*AgentX509SVIDParams) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{12} } func (x *AgentX509SVIDParams) GetCsr() []byte { if x != nil { return x.Csr } return nil } type PostStatusRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. Serial number of the bundle currently being served by the agent CurrentBundleSerial uint64 `protobuf:"varint,1,opt,name=current_bundle_serial,json=currentBundleSerial,proto3" json:"current_bundle_serial,omitempty"` // Optional. The version of the agent. AgentVersion string `protobuf:"bytes,2,opt,name=agent_version,json=agentVersion,proto3" json:"agent_version,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PostStatusRequest) Reset() { *x = PostStatusRequest{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[13] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PostStatusRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*PostStatusRequest) ProtoMessage() {} func (x *PostStatusRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[13] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PostStatusRequest.ProtoReflect.Descriptor instead. func (*PostStatusRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{13} } func (x *PostStatusRequest) GetCurrentBundleSerial() uint64 { if x != nil { return x.CurrentBundleSerial } return 0 } func (x *PostStatusRequest) GetAgentVersion() string { if x != nil { return x.AgentVersion } return "" } type PostStatusResponse struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PostStatusResponse) Reset() { *x = PostStatusResponse{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[14] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PostStatusResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*PostStatusResponse) ProtoMessage() {} func (x *PostStatusResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[14] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PostStatusResponse.ProtoReflect.Descriptor instead. func (*PostStatusResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{14} } type CountAgentsRequest_Filter struct { state protoimpl.MessageState `protogen:"open.v1"` // Filters agents to those matching the attestation type. ByAttestationType string `protobuf:"bytes,1,opt,name=by_attestation_type,json=byAttestationType,proto3" json:"by_attestation_type,omitempty"` // Filters agents to those satisfying the selector match. BySelectorMatch *types.SelectorMatch `protobuf:"bytes,2,opt,name=by_selector_match,json=bySelectorMatch,proto3" json:"by_selector_match,omitempty"` // Filters agents to those that are banned. ByBanned *wrapperspb.BoolValue `protobuf:"bytes,3,opt,name=by_banned,json=byBanned,proto3" json:"by_banned,omitempty"` // Filters agents that can re-attest. ByCanReattest *wrapperspb.BoolValue `protobuf:"bytes,4,opt,name=by_can_reattest,json=byCanReattest,proto3" json:"by_can_reattest,omitempty"` // Filters agents by those expires before. ByExpiresBefore string `protobuf:"bytes,5,opt,name=by_expires_before,json=byExpiresBefore,proto3" json:"by_expires_before,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountAgentsRequest_Filter) Reset() { *x = CountAgentsRequest_Filter{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[15] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountAgentsRequest_Filter) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountAgentsRequest_Filter) ProtoMessage() {} func (x *CountAgentsRequest_Filter) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[15] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountAgentsRequest_Filter.ProtoReflect.Descriptor instead. func (*CountAgentsRequest_Filter) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{0, 0} } func (x *CountAgentsRequest_Filter) GetByAttestationType() string { if x != nil { return x.ByAttestationType } return "" } func (x *CountAgentsRequest_Filter) GetBySelectorMatch() *types.SelectorMatch { if x != nil { return x.BySelectorMatch } return nil } func (x *CountAgentsRequest_Filter) GetByBanned() *wrapperspb.BoolValue { if x != nil { return x.ByBanned } return nil } func (x *CountAgentsRequest_Filter) GetByCanReattest() *wrapperspb.BoolValue { if x != nil { return x.ByCanReattest } return nil } func (x *CountAgentsRequest_Filter) GetByExpiresBefore() string { if x != nil { return x.ByExpiresBefore } return "" } type ListAgentsRequest_Filter struct { state protoimpl.MessageState `protogen:"open.v1"` // Filters agents to those matching the attestation type. ByAttestationType string `protobuf:"bytes,1,opt,name=by_attestation_type,json=byAttestationType,proto3" json:"by_attestation_type,omitempty"` // Filters agents to those satisfying the selector match. BySelectorMatch *types.SelectorMatch `protobuf:"bytes,2,opt,name=by_selector_match,json=bySelectorMatch,proto3" json:"by_selector_match,omitempty"` // Filters agents to those that are banned. ByBanned *wrapperspb.BoolValue `protobuf:"bytes,3,opt,name=by_banned,json=byBanned,proto3" json:"by_banned,omitempty"` // Filters agents that can re-attest. ByCanReattest *wrapperspb.BoolValue `protobuf:"bytes,4,opt,name=by_can_reattest,json=byCanReattest,proto3" json:"by_can_reattest,omitempty"` // Filters agents by those expires before. ByExpiresBefore string `protobuf:"bytes,5,opt,name=by_expires_before,json=byExpiresBefore,proto3" json:"by_expires_before,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListAgentsRequest_Filter) Reset() { *x = ListAgentsRequest_Filter{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[16] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListAgentsRequest_Filter) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListAgentsRequest_Filter) ProtoMessage() {} func (x *ListAgentsRequest_Filter) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[16] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListAgentsRequest_Filter.ProtoReflect.Descriptor instead. func (*ListAgentsRequest_Filter) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{2, 0} } func (x *ListAgentsRequest_Filter) GetByAttestationType() string { if x != nil { return x.ByAttestationType } return "" } func (x *ListAgentsRequest_Filter) GetBySelectorMatch() *types.SelectorMatch { if x != nil { return x.BySelectorMatch } return nil } func (x *ListAgentsRequest_Filter) GetByBanned() *wrapperspb.BoolValue { if x != nil { return x.ByBanned } return nil } func (x *ListAgentsRequest_Filter) GetByCanReattest() *wrapperspb.BoolValue { if x != nil { return x.ByCanReattest } return nil } func (x *ListAgentsRequest_Filter) GetByExpiresBefore() string { if x != nil { return x.ByExpiresBefore } return "" } type AttestAgentRequest_Params struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The attestation data. Data *types.AttestationData `protobuf:"bytes,1,opt,name=data,proto3" json:"data,omitempty"` // Required. The X509-SVID parameters. Params *AgentX509SVIDParams `protobuf:"bytes,2,opt,name=params,proto3" json:"params,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AttestAgentRequest_Params) Reset() { *x = AttestAgentRequest_Params{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[17] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AttestAgentRequest_Params) String() string { return protoimpl.X.MessageStringOf(x) } func (*AttestAgentRequest_Params) ProtoMessage() {} func (x *AttestAgentRequest_Params) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[17] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AttestAgentRequest_Params.ProtoReflect.Descriptor instead. func (*AttestAgentRequest_Params) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{7, 0} } func (x *AttestAgentRequest_Params) GetData() *types.AttestationData { if x != nil { return x.Data } return nil } func (x *AttestAgentRequest_Params) GetParams() *AgentX509SVIDParams { if x != nil { return x.Params } return nil } type AttestAgentResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The agent X509-SVID. Svid *types.X509SVID `protobuf:"bytes,1,opt,name=svid,proto3" json:"svid,omitempty"` // Whether or not the attested agent can reattest to renew its X509-SVID Reattestable bool `protobuf:"varint,2,opt,name=reattestable,proto3" json:"reattestable,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AttestAgentResponse_Result) Reset() { *x = AttestAgentResponse_Result{} mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[18] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AttestAgentResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*AttestAgentResponse_Result) ProtoMessage() {} func (x *AttestAgentResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_agent_v1_agent_proto_msgTypes[18] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AttestAgentResponse_Result.ProtoReflect.Descriptor instead. func (*AttestAgentResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_agent_v1_agent_proto_rawDescGZIP(), []int{8, 0} } func (x *AttestAgentResponse_Result) GetSvid() *types.X509SVID { if x != nil { return x.Svid } return nil } func (x *AttestAgentResponse_Result) GetReattestable() bool { if x != nil { return x.Reattestable } return false } var File_spire_api_server_agent_v1_agent_proto protoreflect.FileDescriptor const file_spire_api_server_agent_v1_agent_proto_rawDesc = "" + "\n" + "%spire/api/server/agent/v1/agent.proto\x12\x19spire.api.server.agent.v1\x1a\x1bgoogle/protobuf/empty.proto\x1a\x1egoogle/protobuf/wrappers.proto\x1a\x1bspire/api/types/agent.proto\x1a!spire/api/types/attestation.proto\x1a\x1fspire/api/types/jointoken.proto\x1a\x1espire/api/types/selector.proto\x1a\x1espire/api/types/spiffeid.proto\x1a\x1espire/api/types/x509svid.proto\"\x92\x03\n" + "\x12CountAgentsRequest\x12L\n" + "\x06filter\x18\x01 \x01(\v24.spire.api.server.agent.v1.CountAgentsRequest.FilterR\x06filter\x1a\xad\x02\n" + "\x06Filter\x12.\n" + "\x13by_attestation_type\x18\x01 \x01(\tR\x11byAttestationType\x12J\n" + "\x11by_selector_match\x18\x02 \x01(\v2\x1e.spire.api.types.SelectorMatchR\x0fbySelectorMatch\x127\n" + "\tby_banned\x18\x03 \x01(\v2\x1a.google.protobuf.BoolValueR\bbyBanned\x12B\n" + "\x0fby_can_reattest\x18\x04 \x01(\v2\x1a.google.protobuf.BoolValueR\rbyCanReattest\x12*\n" + "\x11by_expires_before\x18\x05 \x01(\tR\x0fbyExpiresBefore\"+\n" + "\x13CountAgentsResponse\x12\x14\n" + "\x05count\x18\x01 \x01(\x05R\x05count\"\x89\x04\n" + "\x11ListAgentsRequest\x12K\n" + "\x06filter\x18\x01 \x01(\v23.spire.api.server.agent.v1.ListAgentsRequest.FilterR\x06filter\x12;\n" + "\voutput_mask\x18\x02 \x01(\v2\x1a.spire.api.types.AgentMaskR\n" + "outputMask\x12\x1b\n" + "\tpage_size\x18\x03 \x01(\x05R\bpageSize\x12\x1d\n" + "\n" + "page_token\x18\x04 \x01(\tR\tpageToken\x1a\xad\x02\n" + "\x06Filter\x12.\n" + "\x13by_attestation_type\x18\x01 \x01(\tR\x11byAttestationType\x12J\n" + "\x11by_selector_match\x18\x02 \x01(\v2\x1e.spire.api.types.SelectorMatchR\x0fbySelectorMatch\x127\n" + "\tby_banned\x18\x03 \x01(\v2\x1a.google.protobuf.BoolValueR\bbyBanned\x12B\n" + "\x0fby_can_reattest\x18\x04 \x01(\v2\x1a.google.protobuf.BoolValueR\rbyCanReattest\x12*\n" + "\x11by_expires_before\x18\x05 \x01(\tR\x0fbyExpiresBefore\"l\n" + "\x12ListAgentsResponse\x12.\n" + "\x06agents\x18\x01 \x03(\v2\x16.spire.api.types.AgentR\x06agents\x12&\n" + "\x0fnext_page_token\x18\x02 \x01(\tR\rnextPageToken\"y\n" + "\x0fGetAgentRequest\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12;\n" + "\voutput_mask\x18\x02 \x01(\v2\x1a.spire.api.types.AgentMaskR\n" + "outputMask\"?\n" + "\x12DeleteAgentRequest\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\"<\n" + "\x0fBanAgentRequest\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\"\xa6\x02\n" + "\x12AttestAgentRequest\x12N\n" + "\x06params\x18\x01 \x01(\v24.spire.api.server.agent.v1.AttestAgentRequest.ParamsH\x00R\x06params\x12/\n" + "\x12challenge_response\x18\x02 \x01(\fH\x00R\x11challengeResponse\x1a\x86\x01\n" + "\x06Params\x124\n" + "\x04data\x18\x01 \x01(\v2 .spire.api.types.AttestationDataR\x04data\x12F\n" + "\x06params\x18\x02 \x01(\v2..spire.api.server.agent.v1.AgentX509SVIDParamsR\x06paramsB\x06\n" + "\x04step\"\xeb\x01\n" + "\x13AttestAgentResponse\x12O\n" + "\x06result\x18\x01 \x01(\v25.spire.api.server.agent.v1.AttestAgentResponse.ResultH\x00R\x06result\x12\x1e\n" + "\tchallenge\x18\x02 \x01(\fH\x00R\tchallenge\x1a[\n" + "\x06Result\x12-\n" + "\x04svid\x18\x01 \x01(\v2\x19.spire.api.types.X509SVIDR\x04svid\x12\"\n" + "\freattestable\x18\x02 \x01(\bR\freattestableB\x06\n" + "\x04step\"[\n" + "\x11RenewAgentRequest\x12F\n" + "\x06params\x18\x01 \x01(\v2..spire.api.server.agent.v1.AgentX509SVIDParamsR\x06params\"C\n" + "\x12RenewAgentResponse\x12-\n" + "\x04svid\x18\x01 \x01(\v2\x19.spire.api.types.X509SVIDR\x04svid\"v\n" + "\x16CreateJoinTokenRequest\x12\x10\n" + "\x03ttl\x18\x01 \x01(\x05R\x03ttl\x12\x14\n" + "\x05token\x18\x02 \x01(\tR\x05token\x124\n" + "\bagent_id\x18\x03 \x01(\v2\x19.spire.api.types.SPIFFEIDR\aagentId\"'\n" + "\x13AgentX509SVIDParams\x12\x10\n" + "\x03csr\x18\x01 \x01(\fR\x03csr\"l\n" + "\x11PostStatusRequest\x122\n" + "\x15current_bundle_serial\x18\x01 \x01(\x04R\x13currentBundleSerial\x12#\n" + "\ragent_version\x18\x02 \x01(\tR\fagentVersion\"\x14\n" + "\x12PostStatusResponse2\x80\a\n" + "\x05Agent\x12l\n" + "\vCountAgents\x12-.spire.api.server.agent.v1.CountAgentsRequest\x1a..spire.api.server.agent.v1.CountAgentsResponse\x12i\n" + "\n" + "ListAgents\x12,.spire.api.server.agent.v1.ListAgentsRequest\x1a-.spire.api.server.agent.v1.ListAgentsResponse\x12N\n" + "\bGetAgent\x12*.spire.api.server.agent.v1.GetAgentRequest\x1a\x16.spire.api.types.Agent\x12T\n" + "\vDeleteAgent\x12-.spire.api.server.agent.v1.DeleteAgentRequest\x1a\x16.google.protobuf.Empty\x12N\n" + "\bBanAgent\x12*.spire.api.server.agent.v1.BanAgentRequest\x1a\x16.google.protobuf.Empty\x12p\n" + "\vAttestAgent\x12-.spire.api.server.agent.v1.AttestAgentRequest\x1a..spire.api.server.agent.v1.AttestAgentResponse(\x010\x01\x12i\n" + "\n" + "RenewAgent\x12,.spire.api.server.agent.v1.RenewAgentRequest\x1a-.spire.api.server.agent.v1.RenewAgentResponse\x12`\n" + "\x0fCreateJoinToken\x121.spire.api.server.agent.v1.CreateJoinTokenRequest\x1a\x1a.spire.api.types.JoinToken\x12i\n" + "\n" + "PostStatus\x12,.spire.api.server.agent.v1.PostStatusRequest\x1a-.spire.api.server.agent.v1.PostStatusResponseBIZGgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/agent/v1;agentv1b\x06proto3" var ( file_spire_api_server_agent_v1_agent_proto_rawDescOnce sync.Once file_spire_api_server_agent_v1_agent_proto_rawDescData []byte ) func file_spire_api_server_agent_v1_agent_proto_rawDescGZIP() []byte { file_spire_api_server_agent_v1_agent_proto_rawDescOnce.Do(func() { file_spire_api_server_agent_v1_agent_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_agent_v1_agent_proto_rawDesc), len(file_spire_api_server_agent_v1_agent_proto_rawDesc))) }) return file_spire_api_server_agent_v1_agent_proto_rawDescData } var file_spire_api_server_agent_v1_agent_proto_msgTypes = make([]protoimpl.MessageInfo, 19) var file_spire_api_server_agent_v1_agent_proto_goTypes = []any{ (*CountAgentsRequest)(nil), // 0: spire.api.server.agent.v1.CountAgentsRequest (*CountAgentsResponse)(nil), // 1: spire.api.server.agent.v1.CountAgentsResponse (*ListAgentsRequest)(nil), // 2: spire.api.server.agent.v1.ListAgentsRequest (*ListAgentsResponse)(nil), // 3: spire.api.server.agent.v1.ListAgentsResponse (*GetAgentRequest)(nil), // 4: spire.api.server.agent.v1.GetAgentRequest (*DeleteAgentRequest)(nil), // 5: spire.api.server.agent.v1.DeleteAgentRequest (*BanAgentRequest)(nil), // 6: spire.api.server.agent.v1.BanAgentRequest (*AttestAgentRequest)(nil), // 7: spire.api.server.agent.v1.AttestAgentRequest (*AttestAgentResponse)(nil), // 8: spire.api.server.agent.v1.AttestAgentResponse (*RenewAgentRequest)(nil), // 9: spire.api.server.agent.v1.RenewAgentRequest (*RenewAgentResponse)(nil), // 10: spire.api.server.agent.v1.RenewAgentResponse (*CreateJoinTokenRequest)(nil), // 11: spire.api.server.agent.v1.CreateJoinTokenRequest (*AgentX509SVIDParams)(nil), // 12: spire.api.server.agent.v1.AgentX509SVIDParams (*PostStatusRequest)(nil), // 13: spire.api.server.agent.v1.PostStatusRequest (*PostStatusResponse)(nil), // 14: spire.api.server.agent.v1.PostStatusResponse (*CountAgentsRequest_Filter)(nil), // 15: spire.api.server.agent.v1.CountAgentsRequest.Filter (*ListAgentsRequest_Filter)(nil), // 16: spire.api.server.agent.v1.ListAgentsRequest.Filter (*AttestAgentRequest_Params)(nil), // 17: spire.api.server.agent.v1.AttestAgentRequest.Params (*AttestAgentResponse_Result)(nil), // 18: spire.api.server.agent.v1.AttestAgentResponse.Result (*types.AgentMask)(nil), // 19: spire.api.types.AgentMask (*types.Agent)(nil), // 20: spire.api.types.Agent (*types.SPIFFEID)(nil), // 21: spire.api.types.SPIFFEID (*types.X509SVID)(nil), // 22: spire.api.types.X509SVID (*types.SelectorMatch)(nil), // 23: spire.api.types.SelectorMatch (*wrapperspb.BoolValue)(nil), // 24: google.protobuf.BoolValue (*types.AttestationData)(nil), // 25: spire.api.types.AttestationData (*emptypb.Empty)(nil), // 26: google.protobuf.Empty (*types.JoinToken)(nil), // 27: spire.api.types.JoinToken } var file_spire_api_server_agent_v1_agent_proto_depIdxs = []int32{ 15, // 0: spire.api.server.agent.v1.CountAgentsRequest.filter:type_name -> spire.api.server.agent.v1.CountAgentsRequest.Filter 16, // 1: spire.api.server.agent.v1.ListAgentsRequest.filter:type_name -> spire.api.server.agent.v1.ListAgentsRequest.Filter 19, // 2: spire.api.server.agent.v1.ListAgentsRequest.output_mask:type_name -> spire.api.types.AgentMask 20, // 3: spire.api.server.agent.v1.ListAgentsResponse.agents:type_name -> spire.api.types.Agent 21, // 4: spire.api.server.agent.v1.GetAgentRequest.id:type_name -> spire.api.types.SPIFFEID 19, // 5: spire.api.server.agent.v1.GetAgentRequest.output_mask:type_name -> spire.api.types.AgentMask 21, // 6: spire.api.server.agent.v1.DeleteAgentRequest.id:type_name -> spire.api.types.SPIFFEID 21, // 7: spire.api.server.agent.v1.BanAgentRequest.id:type_name -> spire.api.types.SPIFFEID 17, // 8: spire.api.server.agent.v1.AttestAgentRequest.params:type_name -> spire.api.server.agent.v1.AttestAgentRequest.Params 18, // 9: spire.api.server.agent.v1.AttestAgentResponse.result:type_name -> spire.api.server.agent.v1.AttestAgentResponse.Result 12, // 10: spire.api.server.agent.v1.RenewAgentRequest.params:type_name -> spire.api.server.agent.v1.AgentX509SVIDParams 22, // 11: spire.api.server.agent.v1.RenewAgentResponse.svid:type_name -> spire.api.types.X509SVID 21, // 12: spire.api.server.agent.v1.CreateJoinTokenRequest.agent_id:type_name -> spire.api.types.SPIFFEID 23, // 13: spire.api.server.agent.v1.CountAgentsRequest.Filter.by_selector_match:type_name -> spire.api.types.SelectorMatch 24, // 14: spire.api.server.agent.v1.CountAgentsRequest.Filter.by_banned:type_name -> google.protobuf.BoolValue 24, // 15: spire.api.server.agent.v1.CountAgentsRequest.Filter.by_can_reattest:type_name -> google.protobuf.BoolValue 23, // 16: spire.api.server.agent.v1.ListAgentsRequest.Filter.by_selector_match:type_name -> spire.api.types.SelectorMatch 24, // 17: spire.api.server.agent.v1.ListAgentsRequest.Filter.by_banned:type_name -> google.protobuf.BoolValue 24, // 18: spire.api.server.agent.v1.ListAgentsRequest.Filter.by_can_reattest:type_name -> google.protobuf.BoolValue 25, // 19: spire.api.server.agent.v1.AttestAgentRequest.Params.data:type_name -> spire.api.types.AttestationData 12, // 20: spire.api.server.agent.v1.AttestAgentRequest.Params.params:type_name -> spire.api.server.agent.v1.AgentX509SVIDParams 22, // 21: spire.api.server.agent.v1.AttestAgentResponse.Result.svid:type_name -> spire.api.types.X509SVID 0, // 22: spire.api.server.agent.v1.Agent.CountAgents:input_type -> spire.api.server.agent.v1.CountAgentsRequest 2, // 23: spire.api.server.agent.v1.Agent.ListAgents:input_type -> spire.api.server.agent.v1.ListAgentsRequest 4, // 24: spire.api.server.agent.v1.Agent.GetAgent:input_type -> spire.api.server.agent.v1.GetAgentRequest 5, // 25: spire.api.server.agent.v1.Agent.DeleteAgent:input_type -> spire.api.server.agent.v1.DeleteAgentRequest 6, // 26: spire.api.server.agent.v1.Agent.BanAgent:input_type -> spire.api.server.agent.v1.BanAgentRequest 7, // 27: spire.api.server.agent.v1.Agent.AttestAgent:input_type -> spire.api.server.agent.v1.AttestAgentRequest 9, // 28: spire.api.server.agent.v1.Agent.RenewAgent:input_type -> spire.api.server.agent.v1.RenewAgentRequest 11, // 29: spire.api.server.agent.v1.Agent.CreateJoinToken:input_type -> spire.api.server.agent.v1.CreateJoinTokenRequest 13, // 30: spire.api.server.agent.v1.Agent.PostStatus:input_type -> spire.api.server.agent.v1.PostStatusRequest 1, // 31: spire.api.server.agent.v1.Agent.CountAgents:output_type -> spire.api.server.agent.v1.CountAgentsResponse 3, // 32: spire.api.server.agent.v1.Agent.ListAgents:output_type -> spire.api.server.agent.v1.ListAgentsResponse 20, // 33: spire.api.server.agent.v1.Agent.GetAgent:output_type -> spire.api.types.Agent 26, // 34: spire.api.server.agent.v1.Agent.DeleteAgent:output_type -> google.protobuf.Empty 26, // 35: spire.api.server.agent.v1.Agent.BanAgent:output_type -> google.protobuf.Empty 8, // 36: spire.api.server.agent.v1.Agent.AttestAgent:output_type -> spire.api.server.agent.v1.AttestAgentResponse 10, // 37: spire.api.server.agent.v1.Agent.RenewAgent:output_type -> spire.api.server.agent.v1.RenewAgentResponse 27, // 38: spire.api.server.agent.v1.Agent.CreateJoinToken:output_type -> spire.api.types.JoinToken 14, // 39: spire.api.server.agent.v1.Agent.PostStatus:output_type -> spire.api.server.agent.v1.PostStatusResponse 31, // [31:40] is the sub-list for method output_type 22, // [22:31] is the sub-list for method input_type 22, // [22:22] is the sub-list for extension type_name 22, // [22:22] is the sub-list for extension extendee 0, // [0:22] is the sub-list for field type_name } func init() { file_spire_api_server_agent_v1_agent_proto_init() } func file_spire_api_server_agent_v1_agent_proto_init() { if File_spire_api_server_agent_v1_agent_proto != nil { return } file_spire_api_server_agent_v1_agent_proto_msgTypes[7].OneofWrappers = []any{ (*AttestAgentRequest_Params_)(nil), (*AttestAgentRequest_ChallengeResponse)(nil), } file_spire_api_server_agent_v1_agent_proto_msgTypes[8].OneofWrappers = []any{ (*AttestAgentResponse_Result_)(nil), (*AttestAgentResponse_Challenge)(nil), } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_agent_v1_agent_proto_rawDesc), len(file_spire_api_server_agent_v1_agent_proto_rawDesc)), NumEnums: 0, NumMessages: 19, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_agent_v1_agent_proto_goTypes, DependencyIndexes: file_spire_api_server_agent_v1_agent_proto_depIdxs, MessageInfos: file_spire_api_server_agent_v1_agent_proto_msgTypes, }.Build() File_spire_api_server_agent_v1_agent_proto = out.File file_spire_api_server_agent_v1_agent_proto_goTypes = nil file_spire_api_server_agent_v1_agent_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/agent/v1/agent.proto000066400000000000000000000172041516071322100304250ustar00rootroot00000000000000syntax = "proto3"; package spire.api.server.agent.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/agent/v1;agentv1"; import "google/protobuf/empty.proto"; import "google/protobuf/wrappers.proto"; import "spire/api/types/agent.proto"; import "spire/api/types/attestation.proto"; import "spire/api/types/jointoken.proto"; import "spire/api/types/selector.proto"; import "spire/api/types/spiffeid.proto"; import "spire/api/types/x509svid.proto"; service Agent { // Count agents. // // The caller must be local or present an admin X509-SVID. rpc CountAgents(CountAgentsRequest) returns (CountAgentsResponse); // Lists agents. // // The caller must be local or present an admin X509-SVID. rpc ListAgents(ListAgentsRequest) returns (ListAgentsResponse); // Gets an agent. // // The caller must be local or present an admin X509-SVID. rpc GetAgent(GetAgentRequest) returns (spire.api.types.Agent); // Deletes an agent. The agent can come back into the trust domain through // the Issuer AttestAgent RPC. // // The caller must be local or present an admin X509-SVID. rpc DeleteAgent(DeleteAgentRequest) returns (google.protobuf.Empty); // Bans an agent. This evicts the agent and prevents it from rejoining the // trust domain through attestation until the ban is lifted via a call to // DeleteAgent. // // The caller must be local or present an admin X509-SVID. rpc BanAgent(BanAgentRequest) returns (google.protobuf.Empty); // Attests the agent via node attestation, using a bidirectional stream to // faciliate attestation methods that require challenge/response. // // The caller is not authenticated. rpc AttestAgent(stream AttestAgentRequest) returns (stream AttestAgentResponse); // Renews the agent and returns a new X509-SVID. The new SVID is not enabled // on the server side until its first use. // // The caller must present an active agent X509-SVID, i.e. the X509-SVID // returned by the AttestAgent or the most recent RenewAgent call. rpc RenewAgent(RenewAgentRequest) returns (RenewAgentResponse); // Creates an agent join token. The token can be used with `join_token` // attestation to join the trust domain. // // The caller must be local or present an admin X509-SVID. rpc CreateJoinToken(CreateJoinTokenRequest) returns (spire.api.types.JoinToken); // PostStatus post Agent status, informing what's the current // bundle that is being used by the agent. // // The caller must present an active agent X509-SVID, i.e. the X509-SVID // returned by the AttestAgent or the most recent RenewAgent call. rpc PostStatus(PostStatusRequest) returns (PostStatusResponse); } message CountAgentsRequest { message Filter { // Filters agents to those matching the attestation type. string by_attestation_type = 1; // Filters agents to those satisfying the selector match. spire.api.types.SelectorMatch by_selector_match = 2; // Filters agents to those that are banned. google.protobuf.BoolValue by_banned = 3; // Filters agents that can re-attest. google.protobuf.BoolValue by_can_reattest = 4; // Filters agents by those expires before. string by_expires_before = 5; } // Filters the agents returned by the list operation. Filter filter = 1; } message CountAgentsResponse { int32 count = 1; } message ListAgentsRequest { message Filter { // Filters agents to those matching the attestation type. string by_attestation_type = 1; // Filters agents to those satisfying the selector match. spire.api.types.SelectorMatch by_selector_match = 2; // Filters agents to those that are banned. google.protobuf.BoolValue by_banned = 3; // Filters agents that can re-attest. google.protobuf.BoolValue by_can_reattest = 4; // Filters agents by those expires before. string by_expires_before = 5; } // Filters the agents returned by the list operation. Filter filter = 1; // An output mask indicating which agent fields are set in the response. spire.api.types.AgentMask output_mask = 2; // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. int32 page_size = 3; // The next_page_token value returned from a previous request, if any. string page_token = 4; } message ListAgentsResponse { // The agents. repeated spire.api.types.Agent agents = 1; // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). string next_page_token = 2; } message GetAgentRequest { // Required. The SPIFFE ID of the agent. spire.api.types.SPIFFEID id = 1; // An output mask indicating which agent fields are set in the response. spire.api.types.AgentMask output_mask = 2; } message DeleteAgentRequest { // Required. The SPIFFE ID of the agent. spire.api.types.SPIFFEID id = 1; } message BanAgentRequest { // Required. The SPIFFE ID of the agent. spire.api.types.SPIFFEID id = 1; } message AttestAgentRequest { message Params { // Required. The attestation data. spire.api.types.AttestationData data = 1; // Required. The X509-SVID parameters. AgentX509SVIDParams params = 2; } // Required. The data for the step in the attestation flow. oneof step { // Attestation parameters. These are only sent in the initial request. Params params = 1; // The response to a challenge issued by the attestor. Only sent in // response to a challenge received by the issuer. bytes challenge_response = 2; } } message AttestAgentResponse { message Result { // The agent X509-SVID. spire.api.types.X509SVID svid = 1; // Whether or not the attested agent can reattest to renew its X509-SVID bool reattestable = 2; } oneof step { // Attestation results. If set, attestation has completed. Result result = 1; // A challenge issued by the attestor. If set, the caller is expected // to send another request on the stream with the challenge response. bytes challenge = 2; } } message RenewAgentRequest { // Required. Parameters for the X509-SVID. AgentX509SVIDParams params = 1; } message RenewAgentResponse { // The renewed X509-SVID spire.api.types.X509SVID svid = 1; } message CreateJoinTokenRequest { // Required. How long until the token expires (in seconds). int32 ttl = 1; // An optional token value to use for the token. Must be unique. If unset, // the server will generate a value. string token = 2; // An optional SPIFFE ID to assign to the agent beyond that given by // join token attestation. If set, this results in an entry being created // that maps the attestation assigned agent ID to this ID. spire.api.types.SPIFFEID agent_id = 3; } message AgentX509SVIDParams { // Required. The ASN.1 DER encoded Certificate Signing Request (CSR). The // CSR is only used to convey the public key; other fields in the CSR are // ignored. The agent X509-SVID attributes are determined by the server. bytes csr = 1; } message PostStatusRequest { // Required. Serial number of the bundle currently being served by the agent uint64 current_bundle_serial = 1; // Optional. The version of the agent. string agent_version = 2; } message PostStatusResponse { } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/agent/v1/agent_grpc.pb.go000066400000000000000000000471061516071322100313060ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/agent/v1/agent.proto package agentv1 import ( context "context" types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" emptypb "google.golang.org/protobuf/types/known/emptypb" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( Agent_CountAgents_FullMethodName = "/spire.api.server.agent.v1.Agent/CountAgents" Agent_ListAgents_FullMethodName = "/spire.api.server.agent.v1.Agent/ListAgents" Agent_GetAgent_FullMethodName = "/spire.api.server.agent.v1.Agent/GetAgent" Agent_DeleteAgent_FullMethodName = "/spire.api.server.agent.v1.Agent/DeleteAgent" Agent_BanAgent_FullMethodName = "/spire.api.server.agent.v1.Agent/BanAgent" Agent_AttestAgent_FullMethodName = "/spire.api.server.agent.v1.Agent/AttestAgent" Agent_RenewAgent_FullMethodName = "/spire.api.server.agent.v1.Agent/RenewAgent" Agent_CreateJoinToken_FullMethodName = "/spire.api.server.agent.v1.Agent/CreateJoinToken" Agent_PostStatus_FullMethodName = "/spire.api.server.agent.v1.Agent/PostStatus" ) // AgentClient is the client API for Agent service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. type AgentClient interface { // Count agents. // // The caller must be local or present an admin X509-SVID. CountAgents(ctx context.Context, in *CountAgentsRequest, opts ...grpc.CallOption) (*CountAgentsResponse, error) // Lists agents. // // The caller must be local or present an admin X509-SVID. ListAgents(ctx context.Context, in *ListAgentsRequest, opts ...grpc.CallOption) (*ListAgentsResponse, error) // Gets an agent. // // The caller must be local or present an admin X509-SVID. GetAgent(ctx context.Context, in *GetAgentRequest, opts ...grpc.CallOption) (*types.Agent, error) // Deletes an agent. The agent can come back into the trust domain through // the Issuer AttestAgent RPC. // // The caller must be local or present an admin X509-SVID. DeleteAgent(ctx context.Context, in *DeleteAgentRequest, opts ...grpc.CallOption) (*emptypb.Empty, error) // Bans an agent. This evicts the agent and prevents it from rejoining the // trust domain through attestation until the ban is lifted via a call to // DeleteAgent. // // The caller must be local or present an admin X509-SVID. BanAgent(ctx context.Context, in *BanAgentRequest, opts ...grpc.CallOption) (*emptypb.Empty, error) // Attests the agent via node attestation, using a bidirectional stream to // faciliate attestation methods that require challenge/response. // // The caller is not authenticated. AttestAgent(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[AttestAgentRequest, AttestAgentResponse], error) // Renews the agent and returns a new X509-SVID. The new SVID is not enabled // on the server side until its first use. // // The caller must present an active agent X509-SVID, i.e. the X509-SVID // returned by the AttestAgent or the most recent RenewAgent call. RenewAgent(ctx context.Context, in *RenewAgentRequest, opts ...grpc.CallOption) (*RenewAgentResponse, error) // Creates an agent join token. The token can be used with `join_token` // attestation to join the trust domain. // // The caller must be local or present an admin X509-SVID. CreateJoinToken(ctx context.Context, in *CreateJoinTokenRequest, opts ...grpc.CallOption) (*types.JoinToken, error) // PostStatus post Agent status, informing what's the current // bundle that is being used by the agent. // // The caller must present an active agent X509-SVID, i.e. the X509-SVID // returned by the AttestAgent or the most recent RenewAgent call. PostStatus(ctx context.Context, in *PostStatusRequest, opts ...grpc.CallOption) (*PostStatusResponse, error) } type agentClient struct { cc grpc.ClientConnInterface } func NewAgentClient(cc grpc.ClientConnInterface) AgentClient { return &agentClient{cc} } func (c *agentClient) CountAgents(ctx context.Context, in *CountAgentsRequest, opts ...grpc.CallOption) (*CountAgentsResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(CountAgentsResponse) err := c.cc.Invoke(ctx, Agent_CountAgents_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *agentClient) ListAgents(ctx context.Context, in *ListAgentsRequest, opts ...grpc.CallOption) (*ListAgentsResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(ListAgentsResponse) err := c.cc.Invoke(ctx, Agent_ListAgents_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *agentClient) GetAgent(ctx context.Context, in *GetAgentRequest, opts ...grpc.CallOption) (*types.Agent, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Agent) err := c.cc.Invoke(ctx, Agent_GetAgent_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *agentClient) DeleteAgent(ctx context.Context, in *DeleteAgentRequest, opts ...grpc.CallOption) (*emptypb.Empty, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(emptypb.Empty) err := c.cc.Invoke(ctx, Agent_DeleteAgent_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *agentClient) BanAgent(ctx context.Context, in *BanAgentRequest, opts ...grpc.CallOption) (*emptypb.Empty, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(emptypb.Empty) err := c.cc.Invoke(ctx, Agent_BanAgent_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *agentClient) AttestAgent(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[AttestAgentRequest, AttestAgentResponse], error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) stream, err := c.cc.NewStream(ctx, &Agent_ServiceDesc.Streams[0], Agent_AttestAgent_FullMethodName, cOpts...) if err != nil { return nil, err } x := &grpc.GenericClientStream[AttestAgentRequest, AttestAgentResponse]{ClientStream: stream} return x, nil } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type Agent_AttestAgentClient = grpc.BidiStreamingClient[AttestAgentRequest, AttestAgentResponse] func (c *agentClient) RenewAgent(ctx context.Context, in *RenewAgentRequest, opts ...grpc.CallOption) (*RenewAgentResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(RenewAgentResponse) err := c.cc.Invoke(ctx, Agent_RenewAgent_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *agentClient) CreateJoinToken(ctx context.Context, in *CreateJoinTokenRequest, opts ...grpc.CallOption) (*types.JoinToken, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.JoinToken) err := c.cc.Invoke(ctx, Agent_CreateJoinToken_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *agentClient) PostStatus(ctx context.Context, in *PostStatusRequest, opts ...grpc.CallOption) (*PostStatusResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(PostStatusResponse) err := c.cc.Invoke(ctx, Agent_PostStatus_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // AgentServer is the server API for Agent service. // All implementations must embed UnimplementedAgentServer // for forward compatibility. type AgentServer interface { // Count agents. // // The caller must be local or present an admin X509-SVID. CountAgents(context.Context, *CountAgentsRequest) (*CountAgentsResponse, error) // Lists agents. // // The caller must be local or present an admin X509-SVID. ListAgents(context.Context, *ListAgentsRequest) (*ListAgentsResponse, error) // Gets an agent. // // The caller must be local or present an admin X509-SVID. GetAgent(context.Context, *GetAgentRequest) (*types.Agent, error) // Deletes an agent. The agent can come back into the trust domain through // the Issuer AttestAgent RPC. // // The caller must be local or present an admin X509-SVID. DeleteAgent(context.Context, *DeleteAgentRequest) (*emptypb.Empty, error) // Bans an agent. This evicts the agent and prevents it from rejoining the // trust domain through attestation until the ban is lifted via a call to // DeleteAgent. // // The caller must be local or present an admin X509-SVID. BanAgent(context.Context, *BanAgentRequest) (*emptypb.Empty, error) // Attests the agent via node attestation, using a bidirectional stream to // faciliate attestation methods that require challenge/response. // // The caller is not authenticated. AttestAgent(grpc.BidiStreamingServer[AttestAgentRequest, AttestAgentResponse]) error // Renews the agent and returns a new X509-SVID. The new SVID is not enabled // on the server side until its first use. // // The caller must present an active agent X509-SVID, i.e. the X509-SVID // returned by the AttestAgent or the most recent RenewAgent call. RenewAgent(context.Context, *RenewAgentRequest) (*RenewAgentResponse, error) // Creates an agent join token. The token can be used with `join_token` // attestation to join the trust domain. // // The caller must be local or present an admin X509-SVID. CreateJoinToken(context.Context, *CreateJoinTokenRequest) (*types.JoinToken, error) // PostStatus post Agent status, informing what's the current // bundle that is being used by the agent. // // The caller must present an active agent X509-SVID, i.e. the X509-SVID // returned by the AttestAgent or the most recent RenewAgent call. PostStatus(context.Context, *PostStatusRequest) (*PostStatusResponse, error) mustEmbedUnimplementedAgentServer() } // UnimplementedAgentServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedAgentServer struct{} func (UnimplementedAgentServer) CountAgents(context.Context, *CountAgentsRequest) (*CountAgentsResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method CountAgents not implemented") } func (UnimplementedAgentServer) ListAgents(context.Context, *ListAgentsRequest) (*ListAgentsResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method ListAgents not implemented") } func (UnimplementedAgentServer) GetAgent(context.Context, *GetAgentRequest) (*types.Agent, error) { return nil, status.Errorf(codes.Unimplemented, "method GetAgent not implemented") } func (UnimplementedAgentServer) DeleteAgent(context.Context, *DeleteAgentRequest) (*emptypb.Empty, error) { return nil, status.Errorf(codes.Unimplemented, "method DeleteAgent not implemented") } func (UnimplementedAgentServer) BanAgent(context.Context, *BanAgentRequest) (*emptypb.Empty, error) { return nil, status.Errorf(codes.Unimplemented, "method BanAgent not implemented") } func (UnimplementedAgentServer) AttestAgent(grpc.BidiStreamingServer[AttestAgentRequest, AttestAgentResponse]) error { return status.Errorf(codes.Unimplemented, "method AttestAgent not implemented") } func (UnimplementedAgentServer) RenewAgent(context.Context, *RenewAgentRequest) (*RenewAgentResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method RenewAgent not implemented") } func (UnimplementedAgentServer) CreateJoinToken(context.Context, *CreateJoinTokenRequest) (*types.JoinToken, error) { return nil, status.Errorf(codes.Unimplemented, "method CreateJoinToken not implemented") } func (UnimplementedAgentServer) PostStatus(context.Context, *PostStatusRequest) (*PostStatusResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method PostStatus not implemented") } func (UnimplementedAgentServer) mustEmbedUnimplementedAgentServer() {} func (UnimplementedAgentServer) testEmbeddedByValue() {} // UnsafeAgentServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to AgentServer will // result in compilation errors. type UnsafeAgentServer interface { mustEmbedUnimplementedAgentServer() } func RegisterAgentServer(s grpc.ServiceRegistrar, srv AgentServer) { // If the following call pancis, it indicates UnimplementedAgentServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&Agent_ServiceDesc, srv) } func _Agent_CountAgents_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(CountAgentsRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).CountAgents(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_CountAgents_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).CountAgents(ctx, req.(*CountAgentsRequest)) } return interceptor(ctx, in, info, handler) } func _Agent_ListAgents_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ListAgentsRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).ListAgents(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_ListAgents_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).ListAgents(ctx, req.(*ListAgentsRequest)) } return interceptor(ctx, in, info, handler) } func _Agent_GetAgent_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetAgentRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).GetAgent(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_GetAgent_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).GetAgent(ctx, req.(*GetAgentRequest)) } return interceptor(ctx, in, info, handler) } func _Agent_DeleteAgent_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(DeleteAgentRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).DeleteAgent(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_DeleteAgent_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).DeleteAgent(ctx, req.(*DeleteAgentRequest)) } return interceptor(ctx, in, info, handler) } func _Agent_BanAgent_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BanAgentRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).BanAgent(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_BanAgent_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).BanAgent(ctx, req.(*BanAgentRequest)) } return interceptor(ctx, in, info, handler) } func _Agent_AttestAgent_Handler(srv interface{}, stream grpc.ServerStream) error { return srv.(AgentServer).AttestAgent(&grpc.GenericServerStream[AttestAgentRequest, AttestAgentResponse]{ServerStream: stream}) } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type Agent_AttestAgentServer = grpc.BidiStreamingServer[AttestAgentRequest, AttestAgentResponse] func _Agent_RenewAgent_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(RenewAgentRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).RenewAgent(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_RenewAgent_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).RenewAgent(ctx, req.(*RenewAgentRequest)) } return interceptor(ctx, in, info, handler) } func _Agent_CreateJoinToken_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(CreateJoinTokenRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).CreateJoinToken(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_CreateJoinToken_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).CreateJoinToken(ctx, req.(*CreateJoinTokenRequest)) } return interceptor(ctx, in, info, handler) } func _Agent_PostStatus_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(PostStatusRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(AgentServer).PostStatus(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Agent_PostStatus_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(AgentServer).PostStatus(ctx, req.(*PostStatusRequest)) } return interceptor(ctx, in, info, handler) } // Agent_ServiceDesc is the grpc.ServiceDesc for Agent service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var Agent_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.agent.v1.Agent", HandlerType: (*AgentServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "CountAgents", Handler: _Agent_CountAgents_Handler, }, { MethodName: "ListAgents", Handler: _Agent_ListAgents_Handler, }, { MethodName: "GetAgent", Handler: _Agent_GetAgent_Handler, }, { MethodName: "DeleteAgent", Handler: _Agent_DeleteAgent_Handler, }, { MethodName: "BanAgent", Handler: _Agent_BanAgent_Handler, }, { MethodName: "RenewAgent", Handler: _Agent_RenewAgent_Handler, }, { MethodName: "CreateJoinToken", Handler: _Agent_CreateJoinToken_Handler, }, { MethodName: "PostStatus", Handler: _Agent_PostStatus_Handler, }, }, Streams: []grpc.StreamDesc{ { StreamName: "AttestAgent", Handler: _Agent_AttestAgent_Handler, ServerStreams: true, ClientStreams: true, }, }, Metadata: "spire/api/server/agent/v1/agent.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/bundle/000077500000000000000000000000001516071322100260635ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/bundle/v1/000077500000000000000000000000001516071322100264115ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/bundle/v1/bundle.pb.go000066400000000000000000001635131516071322100306220ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/bundle/v1/bundle.proto package bundlev1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // Mode controls the delete behavior if there are other records // associated with the bundle (e.g. registration entries). type BatchDeleteFederatedBundleRequest_Mode int32 const ( // RESTRICT prevents the bundle from being deleted in the presence of associated entries BatchDeleteFederatedBundleRequest_RESTRICT BatchDeleteFederatedBundleRequest_Mode = 0 // DELETE deletes the bundle and associated entries BatchDeleteFederatedBundleRequest_DELETE BatchDeleteFederatedBundleRequest_Mode = 1 // DISSOCIATE deletes the bundle and dissociates associated entries BatchDeleteFederatedBundleRequest_DISSOCIATE BatchDeleteFederatedBundleRequest_Mode = 2 ) // Enum value maps for BatchDeleteFederatedBundleRequest_Mode. var ( BatchDeleteFederatedBundleRequest_Mode_name = map[int32]string{ 0: "RESTRICT", 1: "DELETE", 2: "DISSOCIATE", } BatchDeleteFederatedBundleRequest_Mode_value = map[string]int32{ "RESTRICT": 0, "DELETE": 1, "DISSOCIATE": 2, } ) func (x BatchDeleteFederatedBundleRequest_Mode) Enum() *BatchDeleteFederatedBundleRequest_Mode { p := new(BatchDeleteFederatedBundleRequest_Mode) *p = x return p } func (x BatchDeleteFederatedBundleRequest_Mode) String() string { return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x)) } func (BatchDeleteFederatedBundleRequest_Mode) Descriptor() protoreflect.EnumDescriptor { return file_spire_api_server_bundle_v1_bundle_proto_enumTypes[0].Descriptor() } func (BatchDeleteFederatedBundleRequest_Mode) Type() protoreflect.EnumType { return &file_spire_api_server_bundle_v1_bundle_proto_enumTypes[0] } func (x BatchDeleteFederatedBundleRequest_Mode) Number() protoreflect.EnumNumber { return protoreflect.EnumNumber(x) } // Deprecated: Use BatchDeleteFederatedBundleRequest_Mode.Descriptor instead. func (BatchDeleteFederatedBundleRequest_Mode) EnumDescriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{17, 0} } type CountBundlesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountBundlesRequest) Reset() { *x = CountBundlesRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountBundlesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountBundlesRequest) ProtoMessage() {} func (x *CountBundlesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountBundlesRequest.ProtoReflect.Descriptor instead. func (*CountBundlesRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{0} } type CountBundlesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The total number of bundles, including the server bundle. Count int32 `protobuf:"varint,1,opt,name=count,proto3" json:"count,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountBundlesResponse) Reset() { *x = CountBundlesResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountBundlesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountBundlesResponse) ProtoMessage() {} func (x *CountBundlesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountBundlesResponse.ProtoReflect.Descriptor instead. func (*CountBundlesResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{1} } func (x *CountBundlesResponse) GetCount() int32 { if x != nil { return x.Count } return 0 } type GetBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // An output mask indicating which bundle fields are set in the response. OutputMask *types.BundleMask `protobuf:"bytes,1,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetBundleRequest) Reset() { *x = GetBundleRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetBundleRequest) ProtoMessage() {} func (x *GetBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetBundleRequest.ProtoReflect.Descriptor instead. func (*GetBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{2} } func (x *GetBundleRequest) GetOutputMask() *types.BundleMask { if x != nil { return x.OutputMask } return nil } type AppendBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // X.509 authorities to append. X509Authorities []*types.X509Certificate `protobuf:"bytes,1,rep,name=x509_authorities,json=x509Authorities,proto3" json:"x509_authorities,omitempty"` // JWT authorities to append. JwtAuthorities []*types.JWTKey `protobuf:"bytes,2,rep,name=jwt_authorities,json=jwtAuthorities,proto3" json:"jwt_authorities,omitempty"` // An output mask indicating which bundle fields are set in the response. OutputMask *types.BundleMask `protobuf:"bytes,3,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` // WIT authorities to append. WitAuthorities []*types.WITKey `protobuf:"bytes,4,rep,name=wit_authorities,json=witAuthorities,proto3" json:"wit_authorities,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AppendBundleRequest) Reset() { *x = AppendBundleRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AppendBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*AppendBundleRequest) ProtoMessage() {} func (x *AppendBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AppendBundleRequest.ProtoReflect.Descriptor instead. func (*AppendBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{3} } func (x *AppendBundleRequest) GetX509Authorities() []*types.X509Certificate { if x != nil { return x.X509Authorities } return nil } func (x *AppendBundleRequest) GetJwtAuthorities() []*types.JWTKey { if x != nil { return x.JwtAuthorities } return nil } func (x *AppendBundleRequest) GetOutputMask() *types.BundleMask { if x != nil { return x.OutputMask } return nil } func (x *AppendBundleRequest) GetWitAuthorities() []*types.WITKey { if x != nil { return x.WitAuthorities } return nil } type PublishJWTAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The JWT authority to publish. JwtAuthority *types.JWTKey `protobuf:"bytes,1,opt,name=jwt_authority,json=jwtAuthority,proto3" json:"jwt_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PublishJWTAuthorityRequest) Reset() { *x = PublishJWTAuthorityRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PublishJWTAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*PublishJWTAuthorityRequest) ProtoMessage() {} func (x *PublishJWTAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PublishJWTAuthorityRequest.ProtoReflect.Descriptor instead. func (*PublishJWTAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{4} } func (x *PublishJWTAuthorityRequest) GetJwtAuthority() *types.JWTKey { if x != nil { return x.JwtAuthority } return nil } type PublishJWTAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The JWT authorities for the trust domain. JwtAuthorities []*types.JWTKey `protobuf:"bytes,1,rep,name=jwt_authorities,json=jwtAuthorities,proto3" json:"jwt_authorities,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PublishJWTAuthorityResponse) Reset() { *x = PublishJWTAuthorityResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[5] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PublishJWTAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*PublishJWTAuthorityResponse) ProtoMessage() {} func (x *PublishJWTAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[5] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PublishJWTAuthorityResponse.ProtoReflect.Descriptor instead. func (*PublishJWTAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{5} } func (x *PublishJWTAuthorityResponse) GetJwtAuthorities() []*types.JWTKey { if x != nil { return x.JwtAuthorities } return nil } type PublishWITAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The WIT authority to publish. WitAuthority *types.WITKey `protobuf:"bytes,1,opt,name=wit_authority,json=witAuthority,proto3" json:"wit_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PublishWITAuthorityRequest) Reset() { *x = PublishWITAuthorityRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[6] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PublishWITAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*PublishWITAuthorityRequest) ProtoMessage() {} func (x *PublishWITAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[6] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PublishWITAuthorityRequest.ProtoReflect.Descriptor instead. func (*PublishWITAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{6} } func (x *PublishWITAuthorityRequest) GetWitAuthority() *types.WITKey { if x != nil { return x.WitAuthority } return nil } type PublishWITAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The WIT authorities for the trust domain. WitAuthorities []*types.WITKey `protobuf:"bytes,1,rep,name=wit_authorities,json=witAuthorities,proto3" json:"wit_authorities,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PublishWITAuthorityResponse) Reset() { *x = PublishWITAuthorityResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[7] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PublishWITAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*PublishWITAuthorityResponse) ProtoMessage() {} func (x *PublishWITAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[7] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PublishWITAuthorityResponse.ProtoReflect.Descriptor instead. func (*PublishWITAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{7} } func (x *PublishWITAuthorityResponse) GetWitAuthorities() []*types.WITKey { if x != nil { return x.WitAuthorities } return nil } type ListFederatedBundlesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // An output mask indicating which bundle fields are set in the response. OutputMask *types.BundleMask `protobuf:"bytes,1,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"` // The next_page_token value returned from a previous request, if any. PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListFederatedBundlesRequest) Reset() { *x = ListFederatedBundlesRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[8] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListFederatedBundlesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListFederatedBundlesRequest) ProtoMessage() {} func (x *ListFederatedBundlesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[8] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListFederatedBundlesRequest.ProtoReflect.Descriptor instead. func (*ListFederatedBundlesRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{8} } func (x *ListFederatedBundlesRequest) GetOutputMask() *types.BundleMask { if x != nil { return x.OutputMask } return nil } func (x *ListFederatedBundlesRequest) GetPageSize() int32 { if x != nil { return x.PageSize } return 0 } func (x *ListFederatedBundlesRequest) GetPageToken() string { if x != nil { return x.PageToken } return "" } type ListFederatedBundlesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The bundles. Bundles []*types.Bundle `protobuf:"bytes,1,rep,name=bundles,proto3" json:"bundles,omitempty"` // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListFederatedBundlesResponse) Reset() { *x = ListFederatedBundlesResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[9] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListFederatedBundlesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListFederatedBundlesResponse) ProtoMessage() {} func (x *ListFederatedBundlesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[9] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListFederatedBundlesResponse.ProtoReflect.Descriptor instead. func (*ListFederatedBundlesResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{9} } func (x *ListFederatedBundlesResponse) GetBundles() []*types.Bundle { if x != nil { return x.Bundles } return nil } func (x *ListFederatedBundlesResponse) GetNextPageToken() string { if x != nil { return x.NextPageToken } return "" } type GetFederatedBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The trust domain name of the bundle (e.g., "example.org"). TrustDomain string `protobuf:"bytes,1,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` // An output mask indicating which bundle fields are set in the response. OutputMask *types.BundleMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetFederatedBundleRequest) Reset() { *x = GetFederatedBundleRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[10] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetFederatedBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetFederatedBundleRequest) ProtoMessage() {} func (x *GetFederatedBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[10] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetFederatedBundleRequest.ProtoReflect.Descriptor instead. func (*GetFederatedBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{10} } func (x *GetFederatedBundleRequest) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } func (x *GetFederatedBundleRequest) GetOutputMask() *types.BundleMask { if x != nil { return x.OutputMask } return nil } type BatchCreateFederatedBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The bundles to be created. Bundle []*types.Bundle `protobuf:"bytes,1,rep,name=bundle,proto3" json:"bundle,omitempty"` // An output mask indicating which bundle fields are set in the response. OutputMask *types.BundleMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateFederatedBundleRequest) Reset() { *x = BatchCreateFederatedBundleRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[11] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateFederatedBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateFederatedBundleRequest) ProtoMessage() {} func (x *BatchCreateFederatedBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[11] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateFederatedBundleRequest.ProtoReflect.Descriptor instead. func (*BatchCreateFederatedBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{11} } func (x *BatchCreateFederatedBundleRequest) GetBundle() []*types.Bundle { if x != nil { return x.Bundle } return nil } func (x *BatchCreateFederatedBundleRequest) GetOutputMask() *types.BundleMask { if x != nil { return x.OutputMask } return nil } type BatchCreateFederatedBundleResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each bundle in the request (order is maintained). Results []*BatchCreateFederatedBundleResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateFederatedBundleResponse) Reset() { *x = BatchCreateFederatedBundleResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[12] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateFederatedBundleResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateFederatedBundleResponse) ProtoMessage() {} func (x *BatchCreateFederatedBundleResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[12] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateFederatedBundleResponse.ProtoReflect.Descriptor instead. func (*BatchCreateFederatedBundleResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{12} } func (x *BatchCreateFederatedBundleResponse) GetResults() []*BatchCreateFederatedBundleResponse_Result { if x != nil { return x.Results } return nil } type BatchUpdateFederatedBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The bundles to be updated. Bundle []*types.Bundle `protobuf:"bytes,1,rep,name=bundle,proto3" json:"bundle,omitempty"` // An input mask indicating which bundle fields should be updated. InputMask *types.BundleMask `protobuf:"bytes,2,opt,name=input_mask,json=inputMask,proto3" json:"input_mask,omitempty"` // An output mask indicating which bundle fields are set in the response. OutputMask *types.BundleMask `protobuf:"bytes,3,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateFederatedBundleRequest) Reset() { *x = BatchUpdateFederatedBundleRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[13] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateFederatedBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateFederatedBundleRequest) ProtoMessage() {} func (x *BatchUpdateFederatedBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[13] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateFederatedBundleRequest.ProtoReflect.Descriptor instead. func (*BatchUpdateFederatedBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{13} } func (x *BatchUpdateFederatedBundleRequest) GetBundle() []*types.Bundle { if x != nil { return x.Bundle } return nil } func (x *BatchUpdateFederatedBundleRequest) GetInputMask() *types.BundleMask { if x != nil { return x.InputMask } return nil } func (x *BatchUpdateFederatedBundleRequest) GetOutputMask() *types.BundleMask { if x != nil { return x.OutputMask } return nil } type BatchUpdateFederatedBundleResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each bundle in the request (order is maintained). Results []*BatchUpdateFederatedBundleResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateFederatedBundleResponse) Reset() { *x = BatchUpdateFederatedBundleResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[14] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateFederatedBundleResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateFederatedBundleResponse) ProtoMessage() {} func (x *BatchUpdateFederatedBundleResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[14] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateFederatedBundleResponse.ProtoReflect.Descriptor instead. func (*BatchUpdateFederatedBundleResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{14} } func (x *BatchUpdateFederatedBundleResponse) GetResults() []*BatchUpdateFederatedBundleResponse_Result { if x != nil { return x.Results } return nil } type BatchSetFederatedBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The bundles to be upserted. Bundle []*types.Bundle `protobuf:"bytes,1,rep,name=bundle,proto3" json:"bundle,omitempty"` // An output mask indicating which bundle fields are set in the response. OutputMask *types.BundleMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchSetFederatedBundleRequest) Reset() { *x = BatchSetFederatedBundleRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[15] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchSetFederatedBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchSetFederatedBundleRequest) ProtoMessage() {} func (x *BatchSetFederatedBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[15] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchSetFederatedBundleRequest.ProtoReflect.Descriptor instead. func (*BatchSetFederatedBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{15} } func (x *BatchSetFederatedBundleRequest) GetBundle() []*types.Bundle { if x != nil { return x.Bundle } return nil } func (x *BatchSetFederatedBundleRequest) GetOutputMask() *types.BundleMask { if x != nil { return x.OutputMask } return nil } type BatchSetFederatedBundleResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each bundle in the request (order is maintained). Results []*BatchSetFederatedBundleResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchSetFederatedBundleResponse) Reset() { *x = BatchSetFederatedBundleResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[16] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchSetFederatedBundleResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchSetFederatedBundleResponse) ProtoMessage() {} func (x *BatchSetFederatedBundleResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[16] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchSetFederatedBundleResponse.ProtoReflect.Descriptor instead. func (*BatchSetFederatedBundleResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{16} } func (x *BatchSetFederatedBundleResponse) GetResults() []*BatchSetFederatedBundleResponse_Result { if x != nil { return x.Results } return nil } type BatchDeleteFederatedBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The trust domain names (e.g., "example.org") of the bundles to delete. TrustDomains []string `protobuf:"bytes,1,rep,name=trust_domains,json=trustDomains,proto3" json:"trust_domains,omitempty"` // The deletion mode selected Mode BatchDeleteFederatedBundleRequest_Mode `protobuf:"varint,2,opt,name=mode,proto3,enum=spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest_Mode" json:"mode,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteFederatedBundleRequest) Reset() { *x = BatchDeleteFederatedBundleRequest{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[17] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteFederatedBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteFederatedBundleRequest) ProtoMessage() {} func (x *BatchDeleteFederatedBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[17] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteFederatedBundleRequest.ProtoReflect.Descriptor instead. func (*BatchDeleteFederatedBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{17} } func (x *BatchDeleteFederatedBundleRequest) GetTrustDomains() []string { if x != nil { return x.TrustDomains } return nil } func (x *BatchDeleteFederatedBundleRequest) GetMode() BatchDeleteFederatedBundleRequest_Mode { if x != nil { return x.Mode } return BatchDeleteFederatedBundleRequest_RESTRICT } type BatchDeleteFederatedBundleResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each trust domain name in the request (order is maintained). Results []*BatchDeleteFederatedBundleResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteFederatedBundleResponse) Reset() { *x = BatchDeleteFederatedBundleResponse{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[18] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteFederatedBundleResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteFederatedBundleResponse) ProtoMessage() {} func (x *BatchDeleteFederatedBundleResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[18] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteFederatedBundleResponse.ProtoReflect.Descriptor instead. func (*BatchDeleteFederatedBundleResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{18} } func (x *BatchDeleteFederatedBundleResponse) GetResults() []*BatchDeleteFederatedBundleResponse_Result { if x != nil { return x.Results } return nil } type BatchCreateFederatedBundleResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of creating the bundle. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The bundle that was created. This will be set if the status is OK. Bundle *types.Bundle `protobuf:"bytes,2,opt,name=bundle,proto3" json:"bundle,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateFederatedBundleResponse_Result) Reset() { *x = BatchCreateFederatedBundleResponse_Result{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[19] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateFederatedBundleResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateFederatedBundleResponse_Result) ProtoMessage() {} func (x *BatchCreateFederatedBundleResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[19] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateFederatedBundleResponse_Result.ProtoReflect.Descriptor instead. func (*BatchCreateFederatedBundleResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{12, 0} } func (x *BatchCreateFederatedBundleResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchCreateFederatedBundleResponse_Result) GetBundle() *types.Bundle { if x != nil { return x.Bundle } return nil } type BatchUpdateFederatedBundleResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of updating the bundle. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The bundle that was updated. This will be set if the status is OK. Bundle *types.Bundle `protobuf:"bytes,2,opt,name=bundle,proto3" json:"bundle,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateFederatedBundleResponse_Result) Reset() { *x = BatchUpdateFederatedBundleResponse_Result{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[20] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateFederatedBundleResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateFederatedBundleResponse_Result) ProtoMessage() {} func (x *BatchUpdateFederatedBundleResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[20] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateFederatedBundleResponse_Result.ProtoReflect.Descriptor instead. func (*BatchUpdateFederatedBundleResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{14, 0} } func (x *BatchUpdateFederatedBundleResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchUpdateFederatedBundleResponse_Result) GetBundle() *types.Bundle { if x != nil { return x.Bundle } return nil } type BatchSetFederatedBundleResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of upserting the bundle. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The bundle that was upserted. This will be set if the status is OK. Bundle *types.Bundle `protobuf:"bytes,2,opt,name=bundle,proto3" json:"bundle,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchSetFederatedBundleResponse_Result) Reset() { *x = BatchSetFederatedBundleResponse_Result{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[21] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchSetFederatedBundleResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchSetFederatedBundleResponse_Result) ProtoMessage() {} func (x *BatchSetFederatedBundleResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[21] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchSetFederatedBundleResponse_Result.ProtoReflect.Descriptor instead. func (*BatchSetFederatedBundleResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{16, 0} } func (x *BatchSetFederatedBundleResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchSetFederatedBundleResponse_Result) GetBundle() *types.Bundle { if x != nil { return x.Bundle } return nil } type BatchDeleteFederatedBundleResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of deleting the bundle. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The trust domain name (e.g., "example.org") of the bundle that was // deleted. TrustDomain string `protobuf:"bytes,2,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteFederatedBundleResponse_Result) Reset() { *x = BatchDeleteFederatedBundleResponse_Result{} mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[22] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteFederatedBundleResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteFederatedBundleResponse_Result) ProtoMessage() {} func (x *BatchDeleteFederatedBundleResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_bundle_v1_bundle_proto_msgTypes[22] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteFederatedBundleResponse_Result.ProtoReflect.Descriptor instead. func (*BatchDeleteFederatedBundleResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP(), []int{18, 0} } func (x *BatchDeleteFederatedBundleResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchDeleteFederatedBundleResponse_Result) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } var File_spire_api_server_bundle_v1_bundle_proto protoreflect.FileDescriptor const file_spire_api_server_bundle_v1_bundle_proto_rawDesc = "" + "\n" + "'spire/api/server/bundle/v1/bundle.proto\x12\x1aspire.api.server.bundle.v1\x1a\x1cspire/api/types/bundle.proto\x1a\x1cspire/api/types/status.proto\"\x15\n" + "\x13CountBundlesRequest\",\n" + "\x14CountBundlesResponse\x12\x14\n" + "\x05count\x18\x01 \x01(\x05R\x05count\"P\n" + "\x10GetBundleRequest\x12<\n" + "\voutput_mask\x18\x01 \x01(\v2\x1b.spire.api.types.BundleMaskR\n" + "outputMask\"\xa4\x02\n" + "\x13AppendBundleRequest\x12K\n" + "\x10x509_authorities\x18\x01 \x03(\v2 .spire.api.types.X509CertificateR\x0fx509Authorities\x12@\n" + "\x0fjwt_authorities\x18\x02 \x03(\v2\x17.spire.api.types.JWTKeyR\x0ejwtAuthorities\x12<\n" + "\voutput_mask\x18\x03 \x01(\v2\x1b.spire.api.types.BundleMaskR\n" + "outputMask\x12@\n" + "\x0fwit_authorities\x18\x04 \x03(\v2\x17.spire.api.types.WITKeyR\x0ewitAuthorities\"Z\n" + "\x1aPublishJWTAuthorityRequest\x12<\n" + "\rjwt_authority\x18\x01 \x01(\v2\x17.spire.api.types.JWTKeyR\fjwtAuthority\"_\n" + "\x1bPublishJWTAuthorityResponse\x12@\n" + "\x0fjwt_authorities\x18\x01 \x03(\v2\x17.spire.api.types.JWTKeyR\x0ejwtAuthorities\"Z\n" + "\x1aPublishWITAuthorityRequest\x12<\n" + "\rwit_authority\x18\x01 \x01(\v2\x17.spire.api.types.WITKeyR\fwitAuthority\"_\n" + "\x1bPublishWITAuthorityResponse\x12@\n" + "\x0fwit_authorities\x18\x01 \x03(\v2\x17.spire.api.types.WITKeyR\x0ewitAuthorities\"\x97\x01\n" + "\x1bListFederatedBundlesRequest\x12<\n" + "\voutput_mask\x18\x01 \x01(\v2\x1b.spire.api.types.BundleMaskR\n" + "outputMask\x12\x1b\n" + "\tpage_size\x18\x02 \x01(\x05R\bpageSize\x12\x1d\n" + "\n" + "page_token\x18\x03 \x01(\tR\tpageToken\"y\n" + "\x1cListFederatedBundlesResponse\x121\n" + "\abundles\x18\x01 \x03(\v2\x17.spire.api.types.BundleR\abundles\x12&\n" + "\x0fnext_page_token\x18\x02 \x01(\tR\rnextPageToken\"|\n" + "\x19GetFederatedBundleRequest\x12!\n" + "\ftrust_domain\x18\x01 \x01(\tR\vtrustDomain\x12<\n" + "\voutput_mask\x18\x02 \x01(\v2\x1b.spire.api.types.BundleMaskR\n" + "outputMask\"\x92\x01\n" + "!BatchCreateFederatedBundleRequest\x12/\n" + "\x06bundle\x18\x01 \x03(\v2\x17.spire.api.types.BundleR\x06bundle\x12<\n" + "\voutput_mask\x18\x02 \x01(\v2\x1b.spire.api.types.BundleMaskR\n" + "outputMask\"\xf1\x01\n" + "\"BatchCreateFederatedBundleResponse\x12_\n" + "\aresults\x18\x01 \x03(\v2E.spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse.ResultR\aresults\x1aj\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12/\n" + "\x06bundle\x18\x02 \x01(\v2\x17.spire.api.types.BundleR\x06bundle\"\xce\x01\n" + "!BatchUpdateFederatedBundleRequest\x12/\n" + "\x06bundle\x18\x01 \x03(\v2\x17.spire.api.types.BundleR\x06bundle\x12:\n" + "\n" + "input_mask\x18\x02 \x01(\v2\x1b.spire.api.types.BundleMaskR\tinputMask\x12<\n" + "\voutput_mask\x18\x03 \x01(\v2\x1b.spire.api.types.BundleMaskR\n" + "outputMask\"\xf1\x01\n" + "\"BatchUpdateFederatedBundleResponse\x12_\n" + "\aresults\x18\x01 \x03(\v2E.spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse.ResultR\aresults\x1aj\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12/\n" + "\x06bundle\x18\x02 \x01(\v2\x17.spire.api.types.BundleR\x06bundle\"\x8f\x01\n" + "\x1eBatchSetFederatedBundleRequest\x12/\n" + "\x06bundle\x18\x01 \x03(\v2\x17.spire.api.types.BundleR\x06bundle\x12<\n" + "\voutput_mask\x18\x02 \x01(\v2\x1b.spire.api.types.BundleMaskR\n" + "outputMask\"\xeb\x01\n" + "\x1fBatchSetFederatedBundleResponse\x12\\\n" + "\aresults\x18\x01 \x03(\v2B.spire.api.server.bundle.v1.BatchSetFederatedBundleResponse.ResultR\aresults\x1aj\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12/\n" + "\x06bundle\x18\x02 \x01(\v2\x17.spire.api.types.BundleR\x06bundle\"\xd2\x01\n" + "!BatchDeleteFederatedBundleRequest\x12#\n" + "\rtrust_domains\x18\x01 \x03(\tR\ftrustDomains\x12V\n" + "\x04mode\x18\x02 \x01(\x0e2B.spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest.ModeR\x04mode\"0\n" + "\x04Mode\x12\f\n" + "\bRESTRICT\x10\x00\x12\n" + "\n" + "\x06DELETE\x10\x01\x12\x0e\n" + "\n" + "DISSOCIATE\x10\x02\"\xe3\x01\n" + "\"BatchDeleteFederatedBundleResponse\x12_\n" + "\aresults\x18\x01 \x03(\v2E.spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponse.ResultR\aresults\x1a\\\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12!\n" + "\ftrust_domain\x18\x02 \x01(\tR\vtrustDomain2\x9c\v\n" + "\x06Bundle\x12q\n" + "\fCountBundles\x12/.spire.api.server.bundle.v1.CountBundlesRequest\x1a0.spire.api.server.bundle.v1.CountBundlesResponse\x12R\n" + "\tGetBundle\x12,.spire.api.server.bundle.v1.GetBundleRequest\x1a\x17.spire.api.types.Bundle\x12X\n" + "\fAppendBundle\x12/.spire.api.server.bundle.v1.AppendBundleRequest\x1a\x17.spire.api.types.Bundle\x12\x86\x01\n" + "\x13PublishJWTAuthority\x126.spire.api.server.bundle.v1.PublishJWTAuthorityRequest\x1a7.spire.api.server.bundle.v1.PublishJWTAuthorityResponse\x12\x86\x01\n" + "\x13PublishWITAuthority\x126.spire.api.server.bundle.v1.PublishWITAuthorityRequest\x1a7.spire.api.server.bundle.v1.PublishWITAuthorityResponse\x12\x89\x01\n" + "\x14ListFederatedBundles\x127.spire.api.server.bundle.v1.ListFederatedBundlesRequest\x1a8.spire.api.server.bundle.v1.ListFederatedBundlesResponse\x12d\n" + "\x12GetFederatedBundle\x125.spire.api.server.bundle.v1.GetFederatedBundleRequest\x1a\x17.spire.api.types.Bundle\x12\x9b\x01\n" + "\x1aBatchCreateFederatedBundle\x12=.spire.api.server.bundle.v1.BatchCreateFederatedBundleRequest\x1a>.spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse\x12\x9b\x01\n" + "\x1aBatchUpdateFederatedBundle\x12=.spire.api.server.bundle.v1.BatchUpdateFederatedBundleRequest\x1a>.spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse\x12\x92\x01\n" + "\x17BatchSetFederatedBundle\x12:.spire.api.server.bundle.v1.BatchSetFederatedBundleRequest\x1a;.spire.api.server.bundle.v1.BatchSetFederatedBundleResponse\x12\x9b\x01\n" + "\x1aBatchDeleteFederatedBundle\x12=.spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest\x1a>.spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponseBKZIgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/bundle/v1;bundlev1b\x06proto3" var ( file_spire_api_server_bundle_v1_bundle_proto_rawDescOnce sync.Once file_spire_api_server_bundle_v1_bundle_proto_rawDescData []byte ) func file_spire_api_server_bundle_v1_bundle_proto_rawDescGZIP() []byte { file_spire_api_server_bundle_v1_bundle_proto_rawDescOnce.Do(func() { file_spire_api_server_bundle_v1_bundle_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_bundle_v1_bundle_proto_rawDesc), len(file_spire_api_server_bundle_v1_bundle_proto_rawDesc))) }) return file_spire_api_server_bundle_v1_bundle_proto_rawDescData } var file_spire_api_server_bundle_v1_bundle_proto_enumTypes = make([]protoimpl.EnumInfo, 1) var file_spire_api_server_bundle_v1_bundle_proto_msgTypes = make([]protoimpl.MessageInfo, 23) var file_spire_api_server_bundle_v1_bundle_proto_goTypes = []any{ (BatchDeleteFederatedBundleRequest_Mode)(0), // 0: spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest.Mode (*CountBundlesRequest)(nil), // 1: spire.api.server.bundle.v1.CountBundlesRequest (*CountBundlesResponse)(nil), // 2: spire.api.server.bundle.v1.CountBundlesResponse (*GetBundleRequest)(nil), // 3: spire.api.server.bundle.v1.GetBundleRequest (*AppendBundleRequest)(nil), // 4: spire.api.server.bundle.v1.AppendBundleRequest (*PublishJWTAuthorityRequest)(nil), // 5: spire.api.server.bundle.v1.PublishJWTAuthorityRequest (*PublishJWTAuthorityResponse)(nil), // 6: spire.api.server.bundle.v1.PublishJWTAuthorityResponse (*PublishWITAuthorityRequest)(nil), // 7: spire.api.server.bundle.v1.PublishWITAuthorityRequest (*PublishWITAuthorityResponse)(nil), // 8: spire.api.server.bundle.v1.PublishWITAuthorityResponse (*ListFederatedBundlesRequest)(nil), // 9: spire.api.server.bundle.v1.ListFederatedBundlesRequest (*ListFederatedBundlesResponse)(nil), // 10: spire.api.server.bundle.v1.ListFederatedBundlesResponse (*GetFederatedBundleRequest)(nil), // 11: spire.api.server.bundle.v1.GetFederatedBundleRequest (*BatchCreateFederatedBundleRequest)(nil), // 12: spire.api.server.bundle.v1.BatchCreateFederatedBundleRequest (*BatchCreateFederatedBundleResponse)(nil), // 13: spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse (*BatchUpdateFederatedBundleRequest)(nil), // 14: spire.api.server.bundle.v1.BatchUpdateFederatedBundleRequest (*BatchUpdateFederatedBundleResponse)(nil), // 15: spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse (*BatchSetFederatedBundleRequest)(nil), // 16: spire.api.server.bundle.v1.BatchSetFederatedBundleRequest (*BatchSetFederatedBundleResponse)(nil), // 17: spire.api.server.bundle.v1.BatchSetFederatedBundleResponse (*BatchDeleteFederatedBundleRequest)(nil), // 18: spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest (*BatchDeleteFederatedBundleResponse)(nil), // 19: spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponse (*BatchCreateFederatedBundleResponse_Result)(nil), // 20: spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse.Result (*BatchUpdateFederatedBundleResponse_Result)(nil), // 21: spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse.Result (*BatchSetFederatedBundleResponse_Result)(nil), // 22: spire.api.server.bundle.v1.BatchSetFederatedBundleResponse.Result (*BatchDeleteFederatedBundleResponse_Result)(nil), // 23: spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponse.Result (*types.BundleMask)(nil), // 24: spire.api.types.BundleMask (*types.X509Certificate)(nil), // 25: spire.api.types.X509Certificate (*types.JWTKey)(nil), // 26: spire.api.types.JWTKey (*types.WITKey)(nil), // 27: spire.api.types.WITKey (*types.Bundle)(nil), // 28: spire.api.types.Bundle (*types.Status)(nil), // 29: spire.api.types.Status } var file_spire_api_server_bundle_v1_bundle_proto_depIdxs = []int32{ 24, // 0: spire.api.server.bundle.v1.GetBundleRequest.output_mask:type_name -> spire.api.types.BundleMask 25, // 1: spire.api.server.bundle.v1.AppendBundleRequest.x509_authorities:type_name -> spire.api.types.X509Certificate 26, // 2: spire.api.server.bundle.v1.AppendBundleRequest.jwt_authorities:type_name -> spire.api.types.JWTKey 24, // 3: spire.api.server.bundle.v1.AppendBundleRequest.output_mask:type_name -> spire.api.types.BundleMask 27, // 4: spire.api.server.bundle.v1.AppendBundleRequest.wit_authorities:type_name -> spire.api.types.WITKey 26, // 5: spire.api.server.bundle.v1.PublishJWTAuthorityRequest.jwt_authority:type_name -> spire.api.types.JWTKey 26, // 6: spire.api.server.bundle.v1.PublishJWTAuthorityResponse.jwt_authorities:type_name -> spire.api.types.JWTKey 27, // 7: spire.api.server.bundle.v1.PublishWITAuthorityRequest.wit_authority:type_name -> spire.api.types.WITKey 27, // 8: spire.api.server.bundle.v1.PublishWITAuthorityResponse.wit_authorities:type_name -> spire.api.types.WITKey 24, // 9: spire.api.server.bundle.v1.ListFederatedBundlesRequest.output_mask:type_name -> spire.api.types.BundleMask 28, // 10: spire.api.server.bundle.v1.ListFederatedBundlesResponse.bundles:type_name -> spire.api.types.Bundle 24, // 11: spire.api.server.bundle.v1.GetFederatedBundleRequest.output_mask:type_name -> spire.api.types.BundleMask 28, // 12: spire.api.server.bundle.v1.BatchCreateFederatedBundleRequest.bundle:type_name -> spire.api.types.Bundle 24, // 13: spire.api.server.bundle.v1.BatchCreateFederatedBundleRequest.output_mask:type_name -> spire.api.types.BundleMask 20, // 14: spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse.results:type_name -> spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse.Result 28, // 15: spire.api.server.bundle.v1.BatchUpdateFederatedBundleRequest.bundle:type_name -> spire.api.types.Bundle 24, // 16: spire.api.server.bundle.v1.BatchUpdateFederatedBundleRequest.input_mask:type_name -> spire.api.types.BundleMask 24, // 17: spire.api.server.bundle.v1.BatchUpdateFederatedBundleRequest.output_mask:type_name -> spire.api.types.BundleMask 21, // 18: spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse.results:type_name -> spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse.Result 28, // 19: spire.api.server.bundle.v1.BatchSetFederatedBundleRequest.bundle:type_name -> spire.api.types.Bundle 24, // 20: spire.api.server.bundle.v1.BatchSetFederatedBundleRequest.output_mask:type_name -> spire.api.types.BundleMask 22, // 21: spire.api.server.bundle.v1.BatchSetFederatedBundleResponse.results:type_name -> spire.api.server.bundle.v1.BatchSetFederatedBundleResponse.Result 0, // 22: spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest.mode:type_name -> spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest.Mode 23, // 23: spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponse.results:type_name -> spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponse.Result 29, // 24: spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse.Result.status:type_name -> spire.api.types.Status 28, // 25: spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse.Result.bundle:type_name -> spire.api.types.Bundle 29, // 26: spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse.Result.status:type_name -> spire.api.types.Status 28, // 27: spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse.Result.bundle:type_name -> spire.api.types.Bundle 29, // 28: spire.api.server.bundle.v1.BatchSetFederatedBundleResponse.Result.status:type_name -> spire.api.types.Status 28, // 29: spire.api.server.bundle.v1.BatchSetFederatedBundleResponse.Result.bundle:type_name -> spire.api.types.Bundle 29, // 30: spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponse.Result.status:type_name -> spire.api.types.Status 1, // 31: spire.api.server.bundle.v1.Bundle.CountBundles:input_type -> spire.api.server.bundle.v1.CountBundlesRequest 3, // 32: spire.api.server.bundle.v1.Bundle.GetBundle:input_type -> spire.api.server.bundle.v1.GetBundleRequest 4, // 33: spire.api.server.bundle.v1.Bundle.AppendBundle:input_type -> spire.api.server.bundle.v1.AppendBundleRequest 5, // 34: spire.api.server.bundle.v1.Bundle.PublishJWTAuthority:input_type -> spire.api.server.bundle.v1.PublishJWTAuthorityRequest 7, // 35: spire.api.server.bundle.v1.Bundle.PublishWITAuthority:input_type -> spire.api.server.bundle.v1.PublishWITAuthorityRequest 9, // 36: spire.api.server.bundle.v1.Bundle.ListFederatedBundles:input_type -> spire.api.server.bundle.v1.ListFederatedBundlesRequest 11, // 37: spire.api.server.bundle.v1.Bundle.GetFederatedBundle:input_type -> spire.api.server.bundle.v1.GetFederatedBundleRequest 12, // 38: spire.api.server.bundle.v1.Bundle.BatchCreateFederatedBundle:input_type -> spire.api.server.bundle.v1.BatchCreateFederatedBundleRequest 14, // 39: spire.api.server.bundle.v1.Bundle.BatchUpdateFederatedBundle:input_type -> spire.api.server.bundle.v1.BatchUpdateFederatedBundleRequest 16, // 40: spire.api.server.bundle.v1.Bundle.BatchSetFederatedBundle:input_type -> spire.api.server.bundle.v1.BatchSetFederatedBundleRequest 18, // 41: spire.api.server.bundle.v1.Bundle.BatchDeleteFederatedBundle:input_type -> spire.api.server.bundle.v1.BatchDeleteFederatedBundleRequest 2, // 42: spire.api.server.bundle.v1.Bundle.CountBundles:output_type -> spire.api.server.bundle.v1.CountBundlesResponse 28, // 43: spire.api.server.bundle.v1.Bundle.GetBundle:output_type -> spire.api.types.Bundle 28, // 44: spire.api.server.bundle.v1.Bundle.AppendBundle:output_type -> spire.api.types.Bundle 6, // 45: spire.api.server.bundle.v1.Bundle.PublishJWTAuthority:output_type -> spire.api.server.bundle.v1.PublishJWTAuthorityResponse 8, // 46: spire.api.server.bundle.v1.Bundle.PublishWITAuthority:output_type -> spire.api.server.bundle.v1.PublishWITAuthorityResponse 10, // 47: spire.api.server.bundle.v1.Bundle.ListFederatedBundles:output_type -> spire.api.server.bundle.v1.ListFederatedBundlesResponse 28, // 48: spire.api.server.bundle.v1.Bundle.GetFederatedBundle:output_type -> spire.api.types.Bundle 13, // 49: spire.api.server.bundle.v1.Bundle.BatchCreateFederatedBundle:output_type -> spire.api.server.bundle.v1.BatchCreateFederatedBundleResponse 15, // 50: spire.api.server.bundle.v1.Bundle.BatchUpdateFederatedBundle:output_type -> spire.api.server.bundle.v1.BatchUpdateFederatedBundleResponse 17, // 51: spire.api.server.bundle.v1.Bundle.BatchSetFederatedBundle:output_type -> spire.api.server.bundle.v1.BatchSetFederatedBundleResponse 19, // 52: spire.api.server.bundle.v1.Bundle.BatchDeleteFederatedBundle:output_type -> spire.api.server.bundle.v1.BatchDeleteFederatedBundleResponse 42, // [42:53] is the sub-list for method output_type 31, // [31:42] is the sub-list for method input_type 31, // [31:31] is the sub-list for extension type_name 31, // [31:31] is the sub-list for extension extendee 0, // [0:31] is the sub-list for field type_name } func init() { file_spire_api_server_bundle_v1_bundle_proto_init() } func file_spire_api_server_bundle_v1_bundle_proto_init() { if File_spire_api_server_bundle_v1_bundle_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_bundle_v1_bundle_proto_rawDesc), len(file_spire_api_server_bundle_v1_bundle_proto_rawDesc)), NumEnums: 1, NumMessages: 23, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_bundle_v1_bundle_proto_goTypes, DependencyIndexes: file_spire_api_server_bundle_v1_bundle_proto_depIdxs, EnumInfos: file_spire_api_server_bundle_v1_bundle_proto_enumTypes, MessageInfos: file_spire_api_server_bundle_v1_bundle_proto_msgTypes, }.Build() File_spire_api_server_bundle_v1_bundle_proto = out.File file_spire_api_server_bundle_v1_bundle_proto_goTypes = nil file_spire_api_server_bundle_v1_bundle_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/bundle/v1/bundle.proto000066400000000000000000000217301516071322100307520ustar00rootroot00000000000000syntax = "proto3"; package spire.api.server.bundle.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/bundle/v1;bundlev1"; import "spire/api/types/bundle.proto"; import "spire/api/types/status.proto"; service Bundle { // Count bundles. // // The caller must be local or present an admin X509-SVID. rpc CountBundles(CountBundlesRequest) returns (CountBundlesResponse); // Gets the bundle for the trust domain of the server. // // The RPC does not require authentication. rpc GetBundle(GetBundleRequest) returns (spire.api.types.Bundle); // Append to the bundle. Items specified in the bundle in the request are // appended to the existing bundle. If the bundle does not exist, NOT_FOUND // is returned. This is the only RPC that can be used to update the // bundle for the trust domain of the SPIRE server. // // The caller must be local or present an admin X509-SVID. rpc AppendBundle(AppendBundleRequest) returns (spire.api.types.Bundle); // Publishes a downstream JWT authority to the SPIRE server. If the server // is itself a downstream server (i.e. configured with an UpstreamAuthority // plugin), the JWT authority is published further upstream using the // UpstreamAuthority plugin. If the server is not a downstream server, or // if the UpstreamAuthority does not support publishing JWT authorities, // the server appends the JWT authority to its own bundle. // // The caller must present a downstream X509-SVID. rpc PublishJWTAuthority(PublishJWTAuthorityRequest) returns (PublishJWTAuthorityResponse); // Publishes a downstream WIT authority to the SPIRE server. If the server // is itself a downstream server (i.e. configured with an UpstreamAuthority // plugin), the WIT authority is published further upstream using the // UpstreamAuthority plugin. If the server is not a downstream server, or // if the UpstreamAuthority does not support publishing WIT authorities, // the server appends the WIT authority to its own bundle. // // The caller must present a downstream X509-SVID. rpc PublishWITAuthority(PublishWITAuthorityRequest) returns (PublishWITAuthorityResponse); // Lists federated bundles. // // The caller must be local or present an admin X509-SVID. rpc ListFederatedBundles(ListFederatedBundlesRequest) returns (ListFederatedBundlesResponse); // Gets a federated bundle. If the bundle does not exist, NOT_FOUND is returned. // // The caller must be local or present an admin or an active agent X509-SVID. rpc GetFederatedBundle(GetFederatedBundleRequest) returns (spire.api.types.Bundle); // Batch creates one or more federated bundles. // // The caller must be local or present an admin X509-SVID. rpc BatchCreateFederatedBundle(BatchCreateFederatedBundleRequest) returns (BatchCreateFederatedBundleResponse); // Batch updates one or more federated bundles. // // The caller must be local or present an admin X509-SVID. rpc BatchUpdateFederatedBundle(BatchUpdateFederatedBundleRequest) returns (BatchUpdateFederatedBundleResponse); // Batch upserts one or more federated bundles. // // The caller must be local or present an admin X509-SVID. rpc BatchSetFederatedBundle(BatchSetFederatedBundleRequest) returns (BatchSetFederatedBundleResponse); // Batch deletes one or more federated bundles. // // The caller must be local or present an admin X509-SVID. rpc BatchDeleteFederatedBundle(BatchDeleteFederatedBundleRequest) returns (BatchDeleteFederatedBundleResponse); } message CountBundlesRequest { } message CountBundlesResponse { // The total number of bundles, including the server bundle. int32 count = 1; } message GetBundleRequest { // An output mask indicating which bundle fields are set in the response. spire.api.types.BundleMask output_mask = 1; } message AppendBundleRequest { // X.509 authorities to append. repeated spire.api.types.X509Certificate x509_authorities = 1; // JWT authorities to append. repeated spire.api.types.JWTKey jwt_authorities = 2; // An output mask indicating which bundle fields are set in the response. spire.api.types.BundleMask output_mask = 3; // WIT authorities to append. repeated spire.api.types.WITKey wit_authorities = 4; } message PublishJWTAuthorityRequest { // Required. The JWT authority to publish. spire.api.types.JWTKey jwt_authority = 1; } message PublishJWTAuthorityResponse { // The JWT authorities for the trust domain. repeated spire.api.types.JWTKey jwt_authorities = 1; } message PublishWITAuthorityRequest { // Required. The WIT authority to publish. spire.api.types.WITKey wit_authority = 1; } message PublishWITAuthorityResponse { // The WIT authorities for the trust domain. repeated spire.api.types.WITKey wit_authorities = 1; } message ListFederatedBundlesRequest { // An output mask indicating which bundle fields are set in the response. spire.api.types.BundleMask output_mask = 1; // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. int32 page_size = 2; // The next_page_token value returned from a previous request, if any. string page_token = 3; } message ListFederatedBundlesResponse { // The bundles. repeated spire.api.types.Bundle bundles = 1; // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). string next_page_token = 2; } message GetFederatedBundleRequest { // Required. The trust domain name of the bundle (e.g., "example.org"). string trust_domain = 1; // An output mask indicating which bundle fields are set in the response. spire.api.types.BundleMask output_mask = 2; } message BatchCreateFederatedBundleRequest { // The bundles to be created. repeated spire.api.types.Bundle bundle = 1; // An output mask indicating which bundle fields are set in the response. spire.api.types.BundleMask output_mask = 2; } message BatchCreateFederatedBundleResponse { message Result { // The status of creating the bundle. spire.api.types.Status status = 1; // The bundle that was created. This will be set if the status is OK. spire.api.types.Bundle bundle = 2; } // Result for each bundle in the request (order is maintained). repeated Result results = 1; } message BatchUpdateFederatedBundleRequest { // The bundles to be updated. repeated spire.api.types.Bundle bundle = 1; // An input mask indicating which bundle fields should be updated. spire.api.types.BundleMask input_mask = 2; // An output mask indicating which bundle fields are set in the response. spire.api.types.BundleMask output_mask = 3; } message BatchUpdateFederatedBundleResponse { message Result { // The status of updating the bundle. spire.api.types.Status status = 1; // The bundle that was updated. This will be set if the status is OK. spire.api.types.Bundle bundle = 2; } // Result for each bundle in the request (order is maintained). repeated Result results = 1; } message BatchSetFederatedBundleRequest { // The bundles to be upserted. repeated spire.api.types.Bundle bundle = 1; // An output mask indicating which bundle fields are set in the response. spire.api.types.BundleMask output_mask = 2; } message BatchSetFederatedBundleResponse { message Result { // The status of upserting the bundle. spire.api.types.Status status = 1; // The bundle that was upserted. This will be set if the status is OK. spire.api.types.Bundle bundle = 2; } // Result for each bundle in the request (order is maintained). repeated Result results = 1; } message BatchDeleteFederatedBundleRequest { // Mode controls the delete behavior if there are other records // associated with the bundle (e.g. registration entries). enum Mode { // RESTRICT prevents the bundle from being deleted in the presence of associated entries RESTRICT = 0; // DELETE deletes the bundle and associated entries DELETE = 1; // DISSOCIATE deletes the bundle and dissociates associated entries DISSOCIATE = 2; } // The trust domain names (e.g., "example.org") of the bundles to delete. repeated string trust_domains = 1; // The deletion mode selected Mode mode = 2; } message BatchDeleteFederatedBundleResponse { message Result { // The status of deleting the bundle. spire.api.types.Status status = 1; // The trust domain name (e.g., "example.org") of the bundle that was // deleted. string trust_domain = 2; } // Result for each trust domain name in the request (order is maintained). repeated Result results = 1; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/bundle/v1/bundle_grpc.pb.go000066400000000000000000000641341516071322100316340ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/bundle/v1/bundle.proto package bundlev1 import ( context "context" types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( Bundle_CountBundles_FullMethodName = "/spire.api.server.bundle.v1.Bundle/CountBundles" Bundle_GetBundle_FullMethodName = "/spire.api.server.bundle.v1.Bundle/GetBundle" Bundle_AppendBundle_FullMethodName = "/spire.api.server.bundle.v1.Bundle/AppendBundle" Bundle_PublishJWTAuthority_FullMethodName = "/spire.api.server.bundle.v1.Bundle/PublishJWTAuthority" Bundle_PublishWITAuthority_FullMethodName = "/spire.api.server.bundle.v1.Bundle/PublishWITAuthority" Bundle_ListFederatedBundles_FullMethodName = "/spire.api.server.bundle.v1.Bundle/ListFederatedBundles" Bundle_GetFederatedBundle_FullMethodName = "/spire.api.server.bundle.v1.Bundle/GetFederatedBundle" Bundle_BatchCreateFederatedBundle_FullMethodName = "/spire.api.server.bundle.v1.Bundle/BatchCreateFederatedBundle" Bundle_BatchUpdateFederatedBundle_FullMethodName = "/spire.api.server.bundle.v1.Bundle/BatchUpdateFederatedBundle" Bundle_BatchSetFederatedBundle_FullMethodName = "/spire.api.server.bundle.v1.Bundle/BatchSetFederatedBundle" Bundle_BatchDeleteFederatedBundle_FullMethodName = "/spire.api.server.bundle.v1.Bundle/BatchDeleteFederatedBundle" ) // BundleClient is the client API for Bundle service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. type BundleClient interface { // Count bundles. // // The caller must be local or present an admin X509-SVID. CountBundles(ctx context.Context, in *CountBundlesRequest, opts ...grpc.CallOption) (*CountBundlesResponse, error) // Gets the bundle for the trust domain of the server. // // The RPC does not require authentication. GetBundle(ctx context.Context, in *GetBundleRequest, opts ...grpc.CallOption) (*types.Bundle, error) // Append to the bundle. Items specified in the bundle in the request are // appended to the existing bundle. If the bundle does not exist, NOT_FOUND // is returned. This is the only RPC that can be used to update the // bundle for the trust domain of the SPIRE server. // // The caller must be local or present an admin X509-SVID. AppendBundle(ctx context.Context, in *AppendBundleRequest, opts ...grpc.CallOption) (*types.Bundle, error) // Publishes a downstream JWT authority to the SPIRE server. If the server // is itself a downstream server (i.e. configured with an UpstreamAuthority // plugin), the JWT authority is published further upstream using the // UpstreamAuthority plugin. If the server is not a downstream server, or // if the UpstreamAuthority does not support publishing JWT authorities, // the server appends the JWT authority to its own bundle. // // The caller must present a downstream X509-SVID. PublishJWTAuthority(ctx context.Context, in *PublishJWTAuthorityRequest, opts ...grpc.CallOption) (*PublishJWTAuthorityResponse, error) // Publishes a downstream WIT authority to the SPIRE server. If the server // is itself a downstream server (i.e. configured with an UpstreamAuthority // plugin), the WIT authority is published further upstream using the // UpstreamAuthority plugin. If the server is not a downstream server, or // if the UpstreamAuthority does not support publishing WIT authorities, // the server appends the WIT authority to its own bundle. // // The caller must present a downstream X509-SVID. PublishWITAuthority(ctx context.Context, in *PublishWITAuthorityRequest, opts ...grpc.CallOption) (*PublishWITAuthorityResponse, error) // Lists federated bundles. // // The caller must be local or present an admin X509-SVID. ListFederatedBundles(ctx context.Context, in *ListFederatedBundlesRequest, opts ...grpc.CallOption) (*ListFederatedBundlesResponse, error) // Gets a federated bundle. If the bundle does not exist, NOT_FOUND is returned. // // The caller must be local or present an admin or an active agent X509-SVID. GetFederatedBundle(ctx context.Context, in *GetFederatedBundleRequest, opts ...grpc.CallOption) (*types.Bundle, error) // Batch creates one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchCreateFederatedBundle(ctx context.Context, in *BatchCreateFederatedBundleRequest, opts ...grpc.CallOption) (*BatchCreateFederatedBundleResponse, error) // Batch updates one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchUpdateFederatedBundle(ctx context.Context, in *BatchUpdateFederatedBundleRequest, opts ...grpc.CallOption) (*BatchUpdateFederatedBundleResponse, error) // Batch upserts one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchSetFederatedBundle(ctx context.Context, in *BatchSetFederatedBundleRequest, opts ...grpc.CallOption) (*BatchSetFederatedBundleResponse, error) // Batch deletes one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchDeleteFederatedBundle(ctx context.Context, in *BatchDeleteFederatedBundleRequest, opts ...grpc.CallOption) (*BatchDeleteFederatedBundleResponse, error) } type bundleClient struct { cc grpc.ClientConnInterface } func NewBundleClient(cc grpc.ClientConnInterface) BundleClient { return &bundleClient{cc} } func (c *bundleClient) CountBundles(ctx context.Context, in *CountBundlesRequest, opts ...grpc.CallOption) (*CountBundlesResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(CountBundlesResponse) err := c.cc.Invoke(ctx, Bundle_CountBundles_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) GetBundle(ctx context.Context, in *GetBundleRequest, opts ...grpc.CallOption) (*types.Bundle, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Bundle) err := c.cc.Invoke(ctx, Bundle_GetBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) AppendBundle(ctx context.Context, in *AppendBundleRequest, opts ...grpc.CallOption) (*types.Bundle, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Bundle) err := c.cc.Invoke(ctx, Bundle_AppendBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) PublishJWTAuthority(ctx context.Context, in *PublishJWTAuthorityRequest, opts ...grpc.CallOption) (*PublishJWTAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(PublishJWTAuthorityResponse) err := c.cc.Invoke(ctx, Bundle_PublishJWTAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) PublishWITAuthority(ctx context.Context, in *PublishWITAuthorityRequest, opts ...grpc.CallOption) (*PublishWITAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(PublishWITAuthorityResponse) err := c.cc.Invoke(ctx, Bundle_PublishWITAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) ListFederatedBundles(ctx context.Context, in *ListFederatedBundlesRequest, opts ...grpc.CallOption) (*ListFederatedBundlesResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(ListFederatedBundlesResponse) err := c.cc.Invoke(ctx, Bundle_ListFederatedBundles_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) GetFederatedBundle(ctx context.Context, in *GetFederatedBundleRequest, opts ...grpc.CallOption) (*types.Bundle, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Bundle) err := c.cc.Invoke(ctx, Bundle_GetFederatedBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) BatchCreateFederatedBundle(ctx context.Context, in *BatchCreateFederatedBundleRequest, opts ...grpc.CallOption) (*BatchCreateFederatedBundleResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchCreateFederatedBundleResponse) err := c.cc.Invoke(ctx, Bundle_BatchCreateFederatedBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) BatchUpdateFederatedBundle(ctx context.Context, in *BatchUpdateFederatedBundleRequest, opts ...grpc.CallOption) (*BatchUpdateFederatedBundleResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchUpdateFederatedBundleResponse) err := c.cc.Invoke(ctx, Bundle_BatchUpdateFederatedBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) BatchSetFederatedBundle(ctx context.Context, in *BatchSetFederatedBundleRequest, opts ...grpc.CallOption) (*BatchSetFederatedBundleResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchSetFederatedBundleResponse) err := c.cc.Invoke(ctx, Bundle_BatchSetFederatedBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *bundleClient) BatchDeleteFederatedBundle(ctx context.Context, in *BatchDeleteFederatedBundleRequest, opts ...grpc.CallOption) (*BatchDeleteFederatedBundleResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchDeleteFederatedBundleResponse) err := c.cc.Invoke(ctx, Bundle_BatchDeleteFederatedBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // BundleServer is the server API for Bundle service. // All implementations must embed UnimplementedBundleServer // for forward compatibility. type BundleServer interface { // Count bundles. // // The caller must be local or present an admin X509-SVID. CountBundles(context.Context, *CountBundlesRequest) (*CountBundlesResponse, error) // Gets the bundle for the trust domain of the server. // // The RPC does not require authentication. GetBundle(context.Context, *GetBundleRequest) (*types.Bundle, error) // Append to the bundle. Items specified in the bundle in the request are // appended to the existing bundle. If the bundle does not exist, NOT_FOUND // is returned. This is the only RPC that can be used to update the // bundle for the trust domain of the SPIRE server. // // The caller must be local or present an admin X509-SVID. AppendBundle(context.Context, *AppendBundleRequest) (*types.Bundle, error) // Publishes a downstream JWT authority to the SPIRE server. If the server // is itself a downstream server (i.e. configured with an UpstreamAuthority // plugin), the JWT authority is published further upstream using the // UpstreamAuthority plugin. If the server is not a downstream server, or // if the UpstreamAuthority does not support publishing JWT authorities, // the server appends the JWT authority to its own bundle. // // The caller must present a downstream X509-SVID. PublishJWTAuthority(context.Context, *PublishJWTAuthorityRequest) (*PublishJWTAuthorityResponse, error) // Publishes a downstream WIT authority to the SPIRE server. If the server // is itself a downstream server (i.e. configured with an UpstreamAuthority // plugin), the WIT authority is published further upstream using the // UpstreamAuthority plugin. If the server is not a downstream server, or // if the UpstreamAuthority does not support publishing WIT authorities, // the server appends the WIT authority to its own bundle. // // The caller must present a downstream X509-SVID. PublishWITAuthority(context.Context, *PublishWITAuthorityRequest) (*PublishWITAuthorityResponse, error) // Lists federated bundles. // // The caller must be local or present an admin X509-SVID. ListFederatedBundles(context.Context, *ListFederatedBundlesRequest) (*ListFederatedBundlesResponse, error) // Gets a federated bundle. If the bundle does not exist, NOT_FOUND is returned. // // The caller must be local or present an admin or an active agent X509-SVID. GetFederatedBundle(context.Context, *GetFederatedBundleRequest) (*types.Bundle, error) // Batch creates one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchCreateFederatedBundle(context.Context, *BatchCreateFederatedBundleRequest) (*BatchCreateFederatedBundleResponse, error) // Batch updates one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchUpdateFederatedBundle(context.Context, *BatchUpdateFederatedBundleRequest) (*BatchUpdateFederatedBundleResponse, error) // Batch upserts one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchSetFederatedBundle(context.Context, *BatchSetFederatedBundleRequest) (*BatchSetFederatedBundleResponse, error) // Batch deletes one or more federated bundles. // // The caller must be local or present an admin X509-SVID. BatchDeleteFederatedBundle(context.Context, *BatchDeleteFederatedBundleRequest) (*BatchDeleteFederatedBundleResponse, error) mustEmbedUnimplementedBundleServer() } // UnimplementedBundleServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedBundleServer struct{} func (UnimplementedBundleServer) CountBundles(context.Context, *CountBundlesRequest) (*CountBundlesResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method CountBundles not implemented") } func (UnimplementedBundleServer) GetBundle(context.Context, *GetBundleRequest) (*types.Bundle, error) { return nil, status.Errorf(codes.Unimplemented, "method GetBundle not implemented") } func (UnimplementedBundleServer) AppendBundle(context.Context, *AppendBundleRequest) (*types.Bundle, error) { return nil, status.Errorf(codes.Unimplemented, "method AppendBundle not implemented") } func (UnimplementedBundleServer) PublishJWTAuthority(context.Context, *PublishJWTAuthorityRequest) (*PublishJWTAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method PublishJWTAuthority not implemented") } func (UnimplementedBundleServer) PublishWITAuthority(context.Context, *PublishWITAuthorityRequest) (*PublishWITAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method PublishWITAuthority not implemented") } func (UnimplementedBundleServer) ListFederatedBundles(context.Context, *ListFederatedBundlesRequest) (*ListFederatedBundlesResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method ListFederatedBundles not implemented") } func (UnimplementedBundleServer) GetFederatedBundle(context.Context, *GetFederatedBundleRequest) (*types.Bundle, error) { return nil, status.Errorf(codes.Unimplemented, "method GetFederatedBundle not implemented") } func (UnimplementedBundleServer) BatchCreateFederatedBundle(context.Context, *BatchCreateFederatedBundleRequest) (*BatchCreateFederatedBundleResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchCreateFederatedBundle not implemented") } func (UnimplementedBundleServer) BatchUpdateFederatedBundle(context.Context, *BatchUpdateFederatedBundleRequest) (*BatchUpdateFederatedBundleResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchUpdateFederatedBundle not implemented") } func (UnimplementedBundleServer) BatchSetFederatedBundle(context.Context, *BatchSetFederatedBundleRequest) (*BatchSetFederatedBundleResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchSetFederatedBundle not implemented") } func (UnimplementedBundleServer) BatchDeleteFederatedBundle(context.Context, *BatchDeleteFederatedBundleRequest) (*BatchDeleteFederatedBundleResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchDeleteFederatedBundle not implemented") } func (UnimplementedBundleServer) mustEmbedUnimplementedBundleServer() {} func (UnimplementedBundleServer) testEmbeddedByValue() {} // UnsafeBundleServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to BundleServer will // result in compilation errors. type UnsafeBundleServer interface { mustEmbedUnimplementedBundleServer() } func RegisterBundleServer(s grpc.ServiceRegistrar, srv BundleServer) { // If the following call pancis, it indicates UnimplementedBundleServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&Bundle_ServiceDesc, srv) } func _Bundle_CountBundles_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(CountBundlesRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).CountBundles(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_CountBundles_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).CountBundles(ctx, req.(*CountBundlesRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_GetBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).GetBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_GetBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).GetBundle(ctx, req.(*GetBundleRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_AppendBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(AppendBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).AppendBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_AppendBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).AppendBundle(ctx, req.(*AppendBundleRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_PublishJWTAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(PublishJWTAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).PublishJWTAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_PublishJWTAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).PublishJWTAuthority(ctx, req.(*PublishJWTAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_PublishWITAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(PublishWITAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).PublishWITAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_PublishWITAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).PublishWITAuthority(ctx, req.(*PublishWITAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_ListFederatedBundles_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ListFederatedBundlesRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).ListFederatedBundles(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_ListFederatedBundles_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).ListFederatedBundles(ctx, req.(*ListFederatedBundlesRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_GetFederatedBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetFederatedBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).GetFederatedBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_GetFederatedBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).GetFederatedBundle(ctx, req.(*GetFederatedBundleRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_BatchCreateFederatedBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchCreateFederatedBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).BatchCreateFederatedBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_BatchCreateFederatedBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).BatchCreateFederatedBundle(ctx, req.(*BatchCreateFederatedBundleRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_BatchUpdateFederatedBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchUpdateFederatedBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).BatchUpdateFederatedBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_BatchUpdateFederatedBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).BatchUpdateFederatedBundle(ctx, req.(*BatchUpdateFederatedBundleRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_BatchSetFederatedBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchSetFederatedBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).BatchSetFederatedBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_BatchSetFederatedBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).BatchSetFederatedBundle(ctx, req.(*BatchSetFederatedBundleRequest)) } return interceptor(ctx, in, info, handler) } func _Bundle_BatchDeleteFederatedBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchDeleteFederatedBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(BundleServer).BatchDeleteFederatedBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Bundle_BatchDeleteFederatedBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(BundleServer).BatchDeleteFederatedBundle(ctx, req.(*BatchDeleteFederatedBundleRequest)) } return interceptor(ctx, in, info, handler) } // Bundle_ServiceDesc is the grpc.ServiceDesc for Bundle service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var Bundle_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.bundle.v1.Bundle", HandlerType: (*BundleServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "CountBundles", Handler: _Bundle_CountBundles_Handler, }, { MethodName: "GetBundle", Handler: _Bundle_GetBundle_Handler, }, { MethodName: "AppendBundle", Handler: _Bundle_AppendBundle_Handler, }, { MethodName: "PublishJWTAuthority", Handler: _Bundle_PublishJWTAuthority_Handler, }, { MethodName: "PublishWITAuthority", Handler: _Bundle_PublishWITAuthority_Handler, }, { MethodName: "ListFederatedBundles", Handler: _Bundle_ListFederatedBundles_Handler, }, { MethodName: "GetFederatedBundle", Handler: _Bundle_GetFederatedBundle_Handler, }, { MethodName: "BatchCreateFederatedBundle", Handler: _Bundle_BatchCreateFederatedBundle_Handler, }, { MethodName: "BatchUpdateFederatedBundle", Handler: _Bundle_BatchUpdateFederatedBundle_Handler, }, { MethodName: "BatchSetFederatedBundle", Handler: _Bundle_BatchSetFederatedBundle_Handler, }, { MethodName: "BatchDeleteFederatedBundle", Handler: _Bundle_BatchDeleteFederatedBundle_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/server/bundle/v1/bundle.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/debug/000077500000000000000000000000001516071322100257005ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/debug/v1/000077500000000000000000000000001516071322100262265ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/debug/v1/debug.pb.go000066400000000000000000000225701516071322100302510ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/debug/v1/debug.proto package debugv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type GetInfoRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetInfoRequest) Reset() { *x = GetInfoRequest{} mi := &file_spire_api_server_debug_v1_debug_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetInfoRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetInfoRequest) ProtoMessage() {} func (x *GetInfoRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_debug_v1_debug_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetInfoRequest.ProtoReflect.Descriptor instead. func (*GetInfoRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_debug_v1_debug_proto_rawDescGZIP(), []int{0} } type GetInfoResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Server SVID chain SvidChain []*GetInfoResponse_Cert `protobuf:"bytes,1,rep,name=svid_chain,json=svidChain,proto3" json:"svid_chain,omitempty"` // Server uptime in seconds Uptime int32 `protobuf:"varint,2,opt,name=uptime,proto3" json:"uptime,omitempty"` // Amount of registered agents AgentsCount int32 `protobuf:"varint,3,opt,name=agents_count,json=agentsCount,proto3" json:"agents_count,omitempty"` // Amount of federated bundles FederatedBundlesCount int32 `protobuf:"varint,4,opt,name=federated_bundles_count,json=federatedBundlesCount,proto3" json:"federated_bundles_count,omitempty"` // Amount of registration entries on database EntriesCount int32 `protobuf:"varint,5,opt,name=entries_count,json=entriesCount,proto3" json:"entries_count,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetInfoResponse) Reset() { *x = GetInfoResponse{} mi := &file_spire_api_server_debug_v1_debug_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetInfoResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetInfoResponse) ProtoMessage() {} func (x *GetInfoResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_debug_v1_debug_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetInfoResponse.ProtoReflect.Descriptor instead. func (*GetInfoResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_debug_v1_debug_proto_rawDescGZIP(), []int{1} } func (x *GetInfoResponse) GetSvidChain() []*GetInfoResponse_Cert { if x != nil { return x.SvidChain } return nil } func (x *GetInfoResponse) GetUptime() int32 { if x != nil { return x.Uptime } return 0 } func (x *GetInfoResponse) GetAgentsCount() int32 { if x != nil { return x.AgentsCount } return 0 } func (x *GetInfoResponse) GetFederatedBundlesCount() int32 { if x != nil { return x.FederatedBundlesCount } return 0 } func (x *GetInfoResponse) GetEntriesCount() int32 { if x != nil { return x.EntriesCount } return 0 } type GetInfoResponse_Cert struct { state protoimpl.MessageState `protogen:"open.v1"` // Certificate SPIFFE ID Id *types.SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // Expiration time ExpiresAt int64 `protobuf:"varint,2,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // Subject Subject string `protobuf:"bytes,3,opt,name=subject,proto3" json:"subject,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetInfoResponse_Cert) Reset() { *x = GetInfoResponse_Cert{} mi := &file_spire_api_server_debug_v1_debug_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetInfoResponse_Cert) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetInfoResponse_Cert) ProtoMessage() {} func (x *GetInfoResponse_Cert) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_debug_v1_debug_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetInfoResponse_Cert.ProtoReflect.Descriptor instead. func (*GetInfoResponse_Cert) Descriptor() ([]byte, []int) { return file_spire_api_server_debug_v1_debug_proto_rawDescGZIP(), []int{1, 0} } func (x *GetInfoResponse_Cert) GetId() *types.SPIFFEID { if x != nil { return x.Id } return nil } func (x *GetInfoResponse_Cert) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *GetInfoResponse_Cert) GetSubject() string { if x != nil { return x.Subject } return "" } var File_spire_api_server_debug_v1_debug_proto protoreflect.FileDescriptor const file_spire_api_server_debug_v1_debug_proto_rawDesc = "" + "\n" + "%spire/api/server/debug/v1/debug.proto\x12\x19spire.api.server.debug.v1\x1a\x1espire/api/types/spiffeid.proto\"\x10\n" + "\x0eGetInfoRequest\"\xe5\x02\n" + "\x0fGetInfoResponse\x12N\n" + "\n" + "svid_chain\x18\x01 \x03(\v2/.spire.api.server.debug.v1.GetInfoResponse.CertR\tsvidChain\x12\x16\n" + "\x06uptime\x18\x02 \x01(\x05R\x06uptime\x12!\n" + "\fagents_count\x18\x03 \x01(\x05R\vagentsCount\x126\n" + "\x17federated_bundles_count\x18\x04 \x01(\x05R\x15federatedBundlesCount\x12#\n" + "\rentries_count\x18\x05 \x01(\x05R\fentriesCount\x1aj\n" + "\x04Cert\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12\x1d\n" + "\n" + "expires_at\x18\x02 \x01(\x03R\texpiresAt\x12\x18\n" + "\asubject\x18\x03 \x01(\tR\asubject2i\n" + "\x05Debug\x12`\n" + "\aGetInfo\x12).spire.api.server.debug.v1.GetInfoRequest\x1a*.spire.api.server.debug.v1.GetInfoResponseBIZGgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/debug/v1;debugv1b\x06proto3" var ( file_spire_api_server_debug_v1_debug_proto_rawDescOnce sync.Once file_spire_api_server_debug_v1_debug_proto_rawDescData []byte ) func file_spire_api_server_debug_v1_debug_proto_rawDescGZIP() []byte { file_spire_api_server_debug_v1_debug_proto_rawDescOnce.Do(func() { file_spire_api_server_debug_v1_debug_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_debug_v1_debug_proto_rawDesc), len(file_spire_api_server_debug_v1_debug_proto_rawDesc))) }) return file_spire_api_server_debug_v1_debug_proto_rawDescData } var file_spire_api_server_debug_v1_debug_proto_msgTypes = make([]protoimpl.MessageInfo, 3) var file_spire_api_server_debug_v1_debug_proto_goTypes = []any{ (*GetInfoRequest)(nil), // 0: spire.api.server.debug.v1.GetInfoRequest (*GetInfoResponse)(nil), // 1: spire.api.server.debug.v1.GetInfoResponse (*GetInfoResponse_Cert)(nil), // 2: spire.api.server.debug.v1.GetInfoResponse.Cert (*types.SPIFFEID)(nil), // 3: spire.api.types.SPIFFEID } var file_spire_api_server_debug_v1_debug_proto_depIdxs = []int32{ 2, // 0: spire.api.server.debug.v1.GetInfoResponse.svid_chain:type_name -> spire.api.server.debug.v1.GetInfoResponse.Cert 3, // 1: spire.api.server.debug.v1.GetInfoResponse.Cert.id:type_name -> spire.api.types.SPIFFEID 0, // 2: spire.api.server.debug.v1.Debug.GetInfo:input_type -> spire.api.server.debug.v1.GetInfoRequest 1, // 3: spire.api.server.debug.v1.Debug.GetInfo:output_type -> spire.api.server.debug.v1.GetInfoResponse 3, // [3:4] is the sub-list for method output_type 2, // [2:3] is the sub-list for method input_type 2, // [2:2] is the sub-list for extension type_name 2, // [2:2] is the sub-list for extension extendee 0, // [0:2] is the sub-list for field type_name } func init() { file_spire_api_server_debug_v1_debug_proto_init() } func file_spire_api_server_debug_v1_debug_proto_init() { if File_spire_api_server_debug_v1_debug_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_debug_v1_debug_proto_rawDesc), len(file_spire_api_server_debug_v1_debug_proto_rawDesc)), NumEnums: 0, NumMessages: 3, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_debug_v1_debug_proto_goTypes, DependencyIndexes: file_spire_api_server_debug_v1_debug_proto_depIdxs, MessageInfos: file_spire_api_server_debug_v1_debug_proto_msgTypes, }.Build() File_spire_api_server_debug_v1_debug_proto = out.File file_spire_api_server_debug_v1_debug_proto_goTypes = nil file_spire_api_server_debug_v1_debug_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/debug/v1/debug.proto000066400000000000000000000016061516071322100304040ustar00rootroot00000000000000syntax = "proto3"; package spire.api.server.debug.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/debug/v1;debugv1"; import "spire/api/types/spiffeid.proto"; service Debug { // Get information about SPIRE server rpc GetInfo(GetInfoRequest) returns (GetInfoResponse); } message GetInfoRequest { } message GetInfoResponse { message Cert { // Certificate SPIFFE ID spire.api.types.SPIFFEID id = 1; // Expiration time int64 expires_at = 2; // Subject string subject = 3; } // Server SVID chain repeated Cert svid_chain = 1; // Server uptime in seconds int32 uptime = 2; // Amount of registered agents int32 agents_count = 3; // Amount of federated bundles int32 federated_bundles_count = 4; // Amount of registration entries on database int32 entries_count = 5; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/debug/v1/debug_grpc.pb.go000066400000000000000000000103251516071322100312570ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/debug/v1/debug.proto package debugv1 import ( context "context" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( Debug_GetInfo_FullMethodName = "/spire.api.server.debug.v1.Debug/GetInfo" ) // DebugClient is the client API for Debug service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. type DebugClient interface { // Get information about SPIRE server GetInfo(ctx context.Context, in *GetInfoRequest, opts ...grpc.CallOption) (*GetInfoResponse, error) } type debugClient struct { cc grpc.ClientConnInterface } func NewDebugClient(cc grpc.ClientConnInterface) DebugClient { return &debugClient{cc} } func (c *debugClient) GetInfo(ctx context.Context, in *GetInfoRequest, opts ...grpc.CallOption) (*GetInfoResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(GetInfoResponse) err := c.cc.Invoke(ctx, Debug_GetInfo_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // DebugServer is the server API for Debug service. // All implementations must embed UnimplementedDebugServer // for forward compatibility. type DebugServer interface { // Get information about SPIRE server GetInfo(context.Context, *GetInfoRequest) (*GetInfoResponse, error) mustEmbedUnimplementedDebugServer() } // UnimplementedDebugServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedDebugServer struct{} func (UnimplementedDebugServer) GetInfo(context.Context, *GetInfoRequest) (*GetInfoResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method GetInfo not implemented") } func (UnimplementedDebugServer) mustEmbedUnimplementedDebugServer() {} func (UnimplementedDebugServer) testEmbeddedByValue() {} // UnsafeDebugServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to DebugServer will // result in compilation errors. type UnsafeDebugServer interface { mustEmbedUnimplementedDebugServer() } func RegisterDebugServer(s grpc.ServiceRegistrar, srv DebugServer) { // If the following call pancis, it indicates UnimplementedDebugServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&Debug_ServiceDesc, srv) } func _Debug_GetInfo_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetInfoRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(DebugServer).GetInfo(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Debug_GetInfo_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(DebugServer).GetInfo(ctx, req.(*GetInfoRequest)) } return interceptor(ctx, in, info, handler) } // Debug_ServiceDesc is the grpc.ServiceDesc for Debug service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var Debug_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.debug.v1.Debug", HandlerType: (*DebugServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "GetInfo", Handler: _Debug_GetInfo_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/server/debug/v1/debug.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/entry/000077500000000000000000000000001516071322100257535ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/entry/v1/000077500000000000000000000000001516071322100263015ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/entry/v1/entry.pb.go000066400000000000000000001523241516071322100304000ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/entry/v1/entry.proto package entryv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" wrapperspb "google.golang.org/protobuf/types/known/wrapperspb" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type CountEntriesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Filters the entries returned in the response. Filter *CountEntriesRequest_Filter `protobuf:"bytes,1,opt,name=filter,proto3" json:"filter,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountEntriesRequest) Reset() { *x = CountEntriesRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountEntriesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountEntriesRequest) ProtoMessage() {} func (x *CountEntriesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountEntriesRequest.ProtoReflect.Descriptor instead. func (*CountEntriesRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{0} } func (x *CountEntriesRequest) GetFilter() *CountEntriesRequest_Filter { if x != nil { return x.Filter } return nil } type CountEntriesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` Count int32 `protobuf:"varint,1,opt,name=count,proto3" json:"count,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountEntriesResponse) Reset() { *x = CountEntriesResponse{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountEntriesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountEntriesResponse) ProtoMessage() {} func (x *CountEntriesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountEntriesResponse.ProtoReflect.Descriptor instead. func (*CountEntriesResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{1} } func (x *CountEntriesResponse) GetCount() int32 { if x != nil { return x.Count } return 0 } type ListEntriesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Filters the entries returned in the response. Filter *ListEntriesRequest_Filter `protobuf:"bytes,1,opt,name=filter,proto3" json:"filter,omitempty"` // An output mask indicating the entry fields set in the response. OutputMask *types.EntryMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. PageSize int32 `protobuf:"varint,3,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"` // The next_page_token value returned from a previous request, if any. PageToken string `protobuf:"bytes,4,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListEntriesRequest) Reset() { *x = ListEntriesRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListEntriesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListEntriesRequest) ProtoMessage() {} func (x *ListEntriesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListEntriesRequest.ProtoReflect.Descriptor instead. func (*ListEntriesRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{2} } func (x *ListEntriesRequest) GetFilter() *ListEntriesRequest_Filter { if x != nil { return x.Filter } return nil } func (x *ListEntriesRequest) GetOutputMask() *types.EntryMask { if x != nil { return x.OutputMask } return nil } func (x *ListEntriesRequest) GetPageSize() int32 { if x != nil { return x.PageSize } return 0 } func (x *ListEntriesRequest) GetPageToken() string { if x != nil { return x.PageToken } return "" } type ListEntriesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The list of entries. Entries []*types.Entry `protobuf:"bytes,1,rep,name=entries,proto3" json:"entries,omitempty"` // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListEntriesResponse) Reset() { *x = ListEntriesResponse{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListEntriesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListEntriesResponse) ProtoMessage() {} func (x *ListEntriesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListEntriesResponse.ProtoReflect.Descriptor instead. func (*ListEntriesResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{3} } func (x *ListEntriesResponse) GetEntries() []*types.Entry { if x != nil { return x.Entries } return nil } func (x *ListEntriesResponse) GetNextPageToken() string { if x != nil { return x.NextPageToken } return "" } type GetEntryRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. ID of the entry to get. Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // An output mask indicating the entry fields set in the response. OutputMask *types.EntryMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetEntryRequest) Reset() { *x = GetEntryRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetEntryRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetEntryRequest) ProtoMessage() {} func (x *GetEntryRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetEntryRequest.ProtoReflect.Descriptor instead. func (*GetEntryRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{4} } func (x *GetEntryRequest) GetId() string { if x != nil { return x.Id } return "" } func (x *GetEntryRequest) GetOutputMask() *types.EntryMask { if x != nil { return x.OutputMask } return nil } type BatchCreateEntryRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The entries to be created. If no entry ID is provided, one will be // generated. Entries []*types.Entry `protobuf:"bytes,1,rep,name=entries,proto3" json:"entries,omitempty"` // An output mask indicating the entry fields set in the response. OutputMask *types.EntryMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateEntryRequest) Reset() { *x = BatchCreateEntryRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[5] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateEntryRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateEntryRequest) ProtoMessage() {} func (x *BatchCreateEntryRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[5] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateEntryRequest.ProtoReflect.Descriptor instead. func (*BatchCreateEntryRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{5} } func (x *BatchCreateEntryRequest) GetEntries() []*types.Entry { if x != nil { return x.Entries } return nil } func (x *BatchCreateEntryRequest) GetOutputMask() *types.EntryMask { if x != nil { return x.OutputMask } return nil } type BatchCreateEntryResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each entry in the request (order is maintained). Results []*BatchCreateEntryResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateEntryResponse) Reset() { *x = BatchCreateEntryResponse{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[6] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateEntryResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateEntryResponse) ProtoMessage() {} func (x *BatchCreateEntryResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[6] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateEntryResponse.ProtoReflect.Descriptor instead. func (*BatchCreateEntryResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{6} } func (x *BatchCreateEntryResponse) GetResults() []*BatchCreateEntryResponse_Result { if x != nil { return x.Results } return nil } type BatchUpdateEntryRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The entries to be updated. Entries []*types.Entry `protobuf:"bytes,1,rep,name=entries,proto3" json:"entries,omitempty"` // An input mask indicating what entry fields should be updated. InputMask *types.EntryMask `protobuf:"bytes,2,opt,name=input_mask,json=inputMask,proto3" json:"input_mask,omitempty"` // An output mask indicating what entry fields are set in the response. OutputMask *types.EntryMask `protobuf:"bytes,3,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateEntryRequest) Reset() { *x = BatchUpdateEntryRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[7] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateEntryRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateEntryRequest) ProtoMessage() {} func (x *BatchUpdateEntryRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[7] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateEntryRequest.ProtoReflect.Descriptor instead. func (*BatchUpdateEntryRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{7} } func (x *BatchUpdateEntryRequest) GetEntries() []*types.Entry { if x != nil { return x.Entries } return nil } func (x *BatchUpdateEntryRequest) GetInputMask() *types.EntryMask { if x != nil { return x.InputMask } return nil } func (x *BatchUpdateEntryRequest) GetOutputMask() *types.EntryMask { if x != nil { return x.OutputMask } return nil } type BatchUpdateEntryResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each entry in the request (order is maintained). Results []*BatchUpdateEntryResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateEntryResponse) Reset() { *x = BatchUpdateEntryResponse{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[8] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateEntryResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateEntryResponse) ProtoMessage() {} func (x *BatchUpdateEntryResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[8] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateEntryResponse.ProtoReflect.Descriptor instead. func (*BatchUpdateEntryResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{8} } func (x *BatchUpdateEntryResponse) GetResults() []*BatchUpdateEntryResponse_Result { if x != nil { return x.Results } return nil } type BatchDeleteEntryRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // IDs of the entries to delete. Ids []string `protobuf:"bytes,1,rep,name=ids,proto3" json:"ids,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteEntryRequest) Reset() { *x = BatchDeleteEntryRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[9] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteEntryRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteEntryRequest) ProtoMessage() {} func (x *BatchDeleteEntryRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[9] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteEntryRequest.ProtoReflect.Descriptor instead. func (*BatchDeleteEntryRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{9} } func (x *BatchDeleteEntryRequest) GetIds() []string { if x != nil { return x.Ids } return nil } type BatchDeleteEntryResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each entry ID in the request (order is maintained). Results []*BatchDeleteEntryResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteEntryResponse) Reset() { *x = BatchDeleteEntryResponse{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[10] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteEntryResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteEntryResponse) ProtoMessage() {} func (x *BatchDeleteEntryResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[10] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteEntryResponse.ProtoReflect.Descriptor instead. func (*BatchDeleteEntryResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{10} } func (x *BatchDeleteEntryResponse) GetResults() []*BatchDeleteEntryResponse_Result { if x != nil { return x.Results } return nil } type GetAuthorizedEntriesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // An output mask indicating which fields are set in the response. OutputMask *types.EntryMask `protobuf:"bytes,1,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetAuthorizedEntriesRequest) Reset() { *x = GetAuthorizedEntriesRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[11] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetAuthorizedEntriesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetAuthorizedEntriesRequest) ProtoMessage() {} func (x *GetAuthorizedEntriesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[11] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetAuthorizedEntriesRequest.ProtoReflect.Descriptor instead. func (*GetAuthorizedEntriesRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{11} } func (x *GetAuthorizedEntriesRequest) GetOutputMask() *types.EntryMask { if x != nil { return x.OutputMask } return nil } type GetAuthorizedEntriesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The authorized entries. Entries []*types.Entry `protobuf:"bytes,1,rep,name=entries,proto3" json:"entries,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetAuthorizedEntriesResponse) Reset() { *x = GetAuthorizedEntriesResponse{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[12] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetAuthorizedEntriesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetAuthorizedEntriesResponse) ProtoMessage() {} func (x *GetAuthorizedEntriesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[12] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetAuthorizedEntriesResponse.ProtoReflect.Descriptor instead. func (*GetAuthorizedEntriesResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{12} } func (x *GetAuthorizedEntriesResponse) GetEntries() []*types.Entry { if x != nil { return x.Entries } return nil } type SyncAuthorizedEntriesRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // An output mask indicating which fields are set in the response. OutputMask *types.EntryMask `protobuf:"bytes,1,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` // IDs of the entries to fetch in full. Sent by the client in response to // a sparse entry. Ids []string `protobuf:"bytes,2,rep,name=ids,proto3" json:"ids,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SyncAuthorizedEntriesRequest) Reset() { *x = SyncAuthorizedEntriesRequest{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[13] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SyncAuthorizedEntriesRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*SyncAuthorizedEntriesRequest) ProtoMessage() {} func (x *SyncAuthorizedEntriesRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[13] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SyncAuthorizedEntriesRequest.ProtoReflect.Descriptor instead. func (*SyncAuthorizedEntriesRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{13} } func (x *SyncAuthorizedEntriesRequest) GetOutputMask() *types.EntryMask { if x != nil { return x.OutputMask } return nil } func (x *SyncAuthorizedEntriesRequest) GetIds() []string { if x != nil { return x.Ids } return nil } type SyncAuthorizedEntriesResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The revisions of the authorized entries. This field is set when the // authorized entry list meets or exceeds the server-determined page size. // Callers use it to determine which entries are new/updated that they then // request on the stream. // See SyncAuthorizedEntries for details. EntryRevisions []*EntryRevision `protobuf:"bytes,1,rep,name=entry_revisions,json=entryRevisions,proto3" json:"entry_revisions,omitempty"` // The authorized entries. This field is set either 1) on the initial // response if the number of authorized entries is less than the page size // or 2) in response to the caller requesting the entries after determining // they need to details based on entry revisions provided in a previous // response. // See SyncAuthorizedEntries for details. Entries []*types.Entry `protobuf:"bytes,2,rep,name=entries,proto3" json:"entries,omitempty"` // Whether there are more entries to sync down in this response phase. More bool `protobuf:"varint,3,opt,name=more,proto3" json:"more,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SyncAuthorizedEntriesResponse) Reset() { *x = SyncAuthorizedEntriesResponse{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[14] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SyncAuthorizedEntriesResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*SyncAuthorizedEntriesResponse) ProtoMessage() {} func (x *SyncAuthorizedEntriesResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[14] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SyncAuthorizedEntriesResponse.ProtoReflect.Descriptor instead. func (*SyncAuthorizedEntriesResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{14} } func (x *SyncAuthorizedEntriesResponse) GetEntryRevisions() []*EntryRevision { if x != nil { return x.EntryRevisions } return nil } func (x *SyncAuthorizedEntriesResponse) GetEntries() []*types.Entry { if x != nil { return x.Entries } return nil } func (x *SyncAuthorizedEntriesResponse) GetMore() bool { if x != nil { return x.More } return false } type EntryRevision struct { state protoimpl.MessageState `protogen:"open.v1"` // The entry ID. Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // The entry revision number. RevisionNumber int64 `protobuf:"varint,2,opt,name=revision_number,json=revisionNumber,proto3" json:"revision_number,omitempty"` // When the entry was created (seconds since Unix epoch). CreatedAt int64 `protobuf:"varint,3,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *EntryRevision) Reset() { *x = EntryRevision{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[15] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *EntryRevision) String() string { return protoimpl.X.MessageStringOf(x) } func (*EntryRevision) ProtoMessage() {} func (x *EntryRevision) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[15] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use EntryRevision.ProtoReflect.Descriptor instead. func (*EntryRevision) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{15} } func (x *EntryRevision) GetId() string { if x != nil { return x.Id } return "" } func (x *EntryRevision) GetRevisionNumber() int64 { if x != nil { return x.RevisionNumber } return 0 } func (x *EntryRevision) GetCreatedAt() int64 { if x != nil { return x.CreatedAt } return 0 } type CountEntriesRequest_Filter struct { state protoimpl.MessageState `protogen:"open.v1"` BySpiffeId *types.SPIFFEID `protobuf:"bytes,1,opt,name=by_spiffe_id,json=bySpiffeId,proto3" json:"by_spiffe_id,omitempty"` ByParentId *types.SPIFFEID `protobuf:"bytes,2,opt,name=by_parent_id,json=byParentId,proto3" json:"by_parent_id,omitempty"` BySelectors *types.SelectorMatch `protobuf:"bytes,3,opt,name=by_selectors,json=bySelectors,proto3" json:"by_selectors,omitempty"` ByFederatesWith *types.FederatesWithMatch `protobuf:"bytes,4,opt,name=by_federates_with,json=byFederatesWith,proto3" json:"by_federates_with,omitempty"` ByHint *wrapperspb.StringValue `protobuf:"bytes,5,opt,name=by_hint,json=byHint,proto3" json:"by_hint,omitempty"` ByDownstream *wrapperspb.BoolValue `protobuf:"bytes,6,opt,name=by_downstream,json=byDownstream,proto3" json:"by_downstream,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *CountEntriesRequest_Filter) Reset() { *x = CountEntriesRequest_Filter{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[16] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *CountEntriesRequest_Filter) String() string { return protoimpl.X.MessageStringOf(x) } func (*CountEntriesRequest_Filter) ProtoMessage() {} func (x *CountEntriesRequest_Filter) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[16] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use CountEntriesRequest_Filter.ProtoReflect.Descriptor instead. func (*CountEntriesRequest_Filter) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{0, 0} } func (x *CountEntriesRequest_Filter) GetBySpiffeId() *types.SPIFFEID { if x != nil { return x.BySpiffeId } return nil } func (x *CountEntriesRequest_Filter) GetByParentId() *types.SPIFFEID { if x != nil { return x.ByParentId } return nil } func (x *CountEntriesRequest_Filter) GetBySelectors() *types.SelectorMatch { if x != nil { return x.BySelectors } return nil } func (x *CountEntriesRequest_Filter) GetByFederatesWith() *types.FederatesWithMatch { if x != nil { return x.ByFederatesWith } return nil } func (x *CountEntriesRequest_Filter) GetByHint() *wrapperspb.StringValue { if x != nil { return x.ByHint } return nil } func (x *CountEntriesRequest_Filter) GetByDownstream() *wrapperspb.BoolValue { if x != nil { return x.ByDownstream } return nil } type ListEntriesRequest_Filter struct { state protoimpl.MessageState `protogen:"open.v1"` BySpiffeId *types.SPIFFEID `protobuf:"bytes,1,opt,name=by_spiffe_id,json=bySpiffeId,proto3" json:"by_spiffe_id,omitempty"` ByParentId *types.SPIFFEID `protobuf:"bytes,2,opt,name=by_parent_id,json=byParentId,proto3" json:"by_parent_id,omitempty"` BySelectors *types.SelectorMatch `protobuf:"bytes,3,opt,name=by_selectors,json=bySelectors,proto3" json:"by_selectors,omitempty"` ByFederatesWith *types.FederatesWithMatch `protobuf:"bytes,4,opt,name=by_federates_with,json=byFederatesWith,proto3" json:"by_federates_with,omitempty"` ByHint *wrapperspb.StringValue `protobuf:"bytes,5,opt,name=by_hint,json=byHint,proto3" json:"by_hint,omitempty"` ByDownstream *wrapperspb.BoolValue `protobuf:"bytes,6,opt,name=by_downstream,json=byDownstream,proto3" json:"by_downstream,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListEntriesRequest_Filter) Reset() { *x = ListEntriesRequest_Filter{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[17] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListEntriesRequest_Filter) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListEntriesRequest_Filter) ProtoMessage() {} func (x *ListEntriesRequest_Filter) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[17] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListEntriesRequest_Filter.ProtoReflect.Descriptor instead. func (*ListEntriesRequest_Filter) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{2, 0} } func (x *ListEntriesRequest_Filter) GetBySpiffeId() *types.SPIFFEID { if x != nil { return x.BySpiffeId } return nil } func (x *ListEntriesRequest_Filter) GetByParentId() *types.SPIFFEID { if x != nil { return x.ByParentId } return nil } func (x *ListEntriesRequest_Filter) GetBySelectors() *types.SelectorMatch { if x != nil { return x.BySelectors } return nil } func (x *ListEntriesRequest_Filter) GetByFederatesWith() *types.FederatesWithMatch { if x != nil { return x.ByFederatesWith } return nil } func (x *ListEntriesRequest_Filter) GetByHint() *wrapperspb.StringValue { if x != nil { return x.ByHint } return nil } func (x *ListEntriesRequest_Filter) GetByDownstream() *wrapperspb.BoolValue { if x != nil { return x.ByDownstream } return nil } type BatchCreateEntryResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of creating the entry. If status code will be // ALREADY_EXISTS if a similar entry already exists. An entry is // similar if it has the same spiffe_id, parent_id, and selectors. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The entry that was created (.e.g status code is OK) or that already // exists (i.e. status code is ALREADY_EXISTS). // // If the status code is any other value, this field will not be set. Entry *types.Entry `protobuf:"bytes,2,opt,name=entry,proto3" json:"entry,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateEntryResponse_Result) Reset() { *x = BatchCreateEntryResponse_Result{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[18] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateEntryResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateEntryResponse_Result) ProtoMessage() {} func (x *BatchCreateEntryResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[18] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateEntryResponse_Result.ProtoReflect.Descriptor instead. func (*BatchCreateEntryResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{6, 0} } func (x *BatchCreateEntryResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchCreateEntryResponse_Result) GetEntry() *types.Entry { if x != nil { return x.Entry } return nil } type BatchUpdateEntryResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of creating the entry. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The entry that was updated. If the status is OK, it will be the // entry that was updated. If the status is any other value, this field // will not be set. Entry *types.Entry `protobuf:"bytes,2,opt,name=entry,proto3" json:"entry,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateEntryResponse_Result) Reset() { *x = BatchUpdateEntryResponse_Result{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[19] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateEntryResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateEntryResponse_Result) ProtoMessage() {} func (x *BatchUpdateEntryResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[19] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateEntryResponse_Result.ProtoReflect.Descriptor instead. func (*BatchUpdateEntryResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{8, 0} } func (x *BatchUpdateEntryResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchUpdateEntryResponse_Result) GetEntry() *types.Entry { if x != nil { return x.Entry } return nil } type BatchDeleteEntryResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of creating the entry. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The ID of the entry that was deleted. Id string `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteEntryResponse_Result) Reset() { *x = BatchDeleteEntryResponse_Result{} mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[20] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteEntryResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteEntryResponse_Result) ProtoMessage() {} func (x *BatchDeleteEntryResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_entry_v1_entry_proto_msgTypes[20] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteEntryResponse_Result.ProtoReflect.Descriptor instead. func (*BatchDeleteEntryResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_entry_v1_entry_proto_rawDescGZIP(), []int{10, 0} } func (x *BatchDeleteEntryResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchDeleteEntryResponse_Result) GetId() string { if x != nil { return x.Id } return "" } var File_spire_api_server_entry_v1_entry_proto protoreflect.FileDescriptor const file_spire_api_server_entry_v1_entry_proto_rawDesc = "" + "\n" + "%spire/api/server/entry/v1/entry.proto\x12\x19spire.api.server.entry.v1\x1a\x1bspire/api/types/entry.proto\x1a#spire/api/types/federateswith.proto\x1a\x1espire/api/types/selector.proto\x1a\x1espire/api/types/spiffeid.proto\x1a\x1cspire/api/types/status.proto\x1a\x1egoogle/protobuf/wrappers.proto\"\xf5\x03\n" + "\x13CountEntriesRequest\x12M\n" + "\x06filter\x18\x01 \x01(\v25.spire.api.server.entry.v1.CountEntriesRequest.FilterR\x06filter\x1a\x8e\x03\n" + "\x06Filter\x12;\n" + "\fby_spiffe_id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\n" + "bySpiffeId\x12;\n" + "\fby_parent_id\x18\x02 \x01(\v2\x19.spire.api.types.SPIFFEIDR\n" + "byParentId\x12A\n" + "\fby_selectors\x18\x03 \x01(\v2\x1e.spire.api.types.SelectorMatchR\vbySelectors\x12O\n" + "\x11by_federates_with\x18\x04 \x01(\v2#.spire.api.types.FederatesWithMatchR\x0fbyFederatesWith\x125\n" + "\aby_hint\x18\x05 \x01(\v2\x1c.google.protobuf.StringValueR\x06byHint\x12?\n" + "\rby_downstream\x18\x06 \x01(\v2\x1a.google.protobuf.BoolValueR\fbyDownstream\",\n" + "\x14CountEntriesResponse\x12\x14\n" + "\x05count\x18\x01 \x01(\x05R\x05count\"\xec\x04\n" + "\x12ListEntriesRequest\x12L\n" + "\x06filter\x18\x01 \x01(\v24.spire.api.server.entry.v1.ListEntriesRequest.FilterR\x06filter\x12;\n" + "\voutput_mask\x18\x02 \x01(\v2\x1a.spire.api.types.EntryMaskR\n" + "outputMask\x12\x1b\n" + "\tpage_size\x18\x03 \x01(\x05R\bpageSize\x12\x1d\n" + "\n" + "page_token\x18\x04 \x01(\tR\tpageToken\x1a\x8e\x03\n" + "\x06Filter\x12;\n" + "\fby_spiffe_id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\n" + "bySpiffeId\x12;\n" + "\fby_parent_id\x18\x02 \x01(\v2\x19.spire.api.types.SPIFFEIDR\n" + "byParentId\x12A\n" + "\fby_selectors\x18\x03 \x01(\v2\x1e.spire.api.types.SelectorMatchR\vbySelectors\x12O\n" + "\x11by_federates_with\x18\x04 \x01(\v2#.spire.api.types.FederatesWithMatchR\x0fbyFederatesWith\x125\n" + "\aby_hint\x18\x05 \x01(\v2\x1c.google.protobuf.StringValueR\x06byHint\x12?\n" + "\rby_downstream\x18\x06 \x01(\v2\x1a.google.protobuf.BoolValueR\fbyDownstream\"o\n" + "\x13ListEntriesResponse\x120\n" + "\aentries\x18\x01 \x03(\v2\x16.spire.api.types.EntryR\aentries\x12&\n" + "\x0fnext_page_token\x18\x02 \x01(\tR\rnextPageToken\"^\n" + "\x0fGetEntryRequest\x12\x0e\n" + "\x02id\x18\x01 \x01(\tR\x02id\x12;\n" + "\voutput_mask\x18\x02 \x01(\v2\x1a.spire.api.types.EntryMaskR\n" + "outputMask\"\x88\x01\n" + "\x17BatchCreateEntryRequest\x120\n" + "\aentries\x18\x01 \x03(\v2\x16.spire.api.types.EntryR\aentries\x12;\n" + "\voutput_mask\x18\x02 \x01(\v2\x1a.spire.api.types.EntryMaskR\n" + "outputMask\"\xd9\x01\n" + "\x18BatchCreateEntryResponse\x12T\n" + "\aresults\x18\x01 \x03(\v2:.spire.api.server.entry.v1.BatchCreateEntryResponse.ResultR\aresults\x1ag\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12,\n" + "\x05entry\x18\x02 \x01(\v2\x16.spire.api.types.EntryR\x05entry\"\xc3\x01\n" + "\x17BatchUpdateEntryRequest\x120\n" + "\aentries\x18\x01 \x03(\v2\x16.spire.api.types.EntryR\aentries\x129\n" + "\n" + "input_mask\x18\x02 \x01(\v2\x1a.spire.api.types.EntryMaskR\tinputMask\x12;\n" + "\voutput_mask\x18\x03 \x01(\v2\x1a.spire.api.types.EntryMaskR\n" + "outputMask\"\xd9\x01\n" + "\x18BatchUpdateEntryResponse\x12T\n" + "\aresults\x18\x01 \x03(\v2:.spire.api.server.entry.v1.BatchUpdateEntryResponse.ResultR\aresults\x1ag\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12,\n" + "\x05entry\x18\x02 \x01(\v2\x16.spire.api.types.EntryR\x05entry\"+\n" + "\x17BatchDeleteEntryRequest\x12\x10\n" + "\x03ids\x18\x01 \x03(\tR\x03ids\"\xbb\x01\n" + "\x18BatchDeleteEntryResponse\x12T\n" + "\aresults\x18\x01 \x03(\v2:.spire.api.server.entry.v1.BatchDeleteEntryResponse.ResultR\aresults\x1aI\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12\x0e\n" + "\x02id\x18\x02 \x01(\tR\x02id\"Z\n" + "\x1bGetAuthorizedEntriesRequest\x12;\n" + "\voutput_mask\x18\x01 \x01(\v2\x1a.spire.api.types.EntryMaskR\n" + "outputMask\"P\n" + "\x1cGetAuthorizedEntriesResponse\x120\n" + "\aentries\x18\x01 \x03(\v2\x16.spire.api.types.EntryR\aentries\"m\n" + "\x1cSyncAuthorizedEntriesRequest\x12;\n" + "\voutput_mask\x18\x01 \x01(\v2\x1a.spire.api.types.EntryMaskR\n" + "outputMask\x12\x10\n" + "\x03ids\x18\x02 \x03(\tR\x03ids\"\xb8\x01\n" + "\x1dSyncAuthorizedEntriesResponse\x12Q\n" + "\x0fentry_revisions\x18\x01 \x03(\v2(.spire.api.server.entry.v1.EntryRevisionR\x0eentryRevisions\x120\n" + "\aentries\x18\x02 \x03(\v2\x16.spire.api.types.EntryR\aentries\x12\x12\n" + "\x04more\x18\x03 \x01(\bR\x04more\"g\n" + "\rEntryRevision\x12\x0e\n" + "\x02id\x18\x01 \x01(\tR\x02id\x12'\n" + "\x0frevision_number\x18\x02 \x01(\x03R\x0erevisionNumber\x12\x1d\n" + "\n" + "created_at\x18\x03 \x01(\x03R\tcreatedAt2\xc8\a\n" + "\x05Entry\x12o\n" + "\fCountEntries\x12..spire.api.server.entry.v1.CountEntriesRequest\x1a/.spire.api.server.entry.v1.CountEntriesResponse\x12l\n" + "\vListEntries\x12-.spire.api.server.entry.v1.ListEntriesRequest\x1a..spire.api.server.entry.v1.ListEntriesResponse\x12N\n" + "\bGetEntry\x12*.spire.api.server.entry.v1.GetEntryRequest\x1a\x16.spire.api.types.Entry\x12{\n" + "\x10BatchCreateEntry\x122.spire.api.server.entry.v1.BatchCreateEntryRequest\x1a3.spire.api.server.entry.v1.BatchCreateEntryResponse\x12{\n" + "\x10BatchUpdateEntry\x122.spire.api.server.entry.v1.BatchUpdateEntryRequest\x1a3.spire.api.server.entry.v1.BatchUpdateEntryResponse\x12{\n" + "\x10BatchDeleteEntry\x122.spire.api.server.entry.v1.BatchDeleteEntryRequest\x1a3.spire.api.server.entry.v1.BatchDeleteEntryResponse\x12\x87\x01\n" + "\x14GetAuthorizedEntries\x126.spire.api.server.entry.v1.GetAuthorizedEntriesRequest\x1a7.spire.api.server.entry.v1.GetAuthorizedEntriesResponse\x12\x8e\x01\n" + "\x15SyncAuthorizedEntries\x127.spire.api.server.entry.v1.SyncAuthorizedEntriesRequest\x1a8.spire.api.server.entry.v1.SyncAuthorizedEntriesResponse(\x010\x01BIZGgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/entry/v1;entryv1b\x06proto3" var ( file_spire_api_server_entry_v1_entry_proto_rawDescOnce sync.Once file_spire_api_server_entry_v1_entry_proto_rawDescData []byte ) func file_spire_api_server_entry_v1_entry_proto_rawDescGZIP() []byte { file_spire_api_server_entry_v1_entry_proto_rawDescOnce.Do(func() { file_spire_api_server_entry_v1_entry_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_entry_v1_entry_proto_rawDesc), len(file_spire_api_server_entry_v1_entry_proto_rawDesc))) }) return file_spire_api_server_entry_v1_entry_proto_rawDescData } var file_spire_api_server_entry_v1_entry_proto_msgTypes = make([]protoimpl.MessageInfo, 21) var file_spire_api_server_entry_v1_entry_proto_goTypes = []any{ (*CountEntriesRequest)(nil), // 0: spire.api.server.entry.v1.CountEntriesRequest (*CountEntriesResponse)(nil), // 1: spire.api.server.entry.v1.CountEntriesResponse (*ListEntriesRequest)(nil), // 2: spire.api.server.entry.v1.ListEntriesRequest (*ListEntriesResponse)(nil), // 3: spire.api.server.entry.v1.ListEntriesResponse (*GetEntryRequest)(nil), // 4: spire.api.server.entry.v1.GetEntryRequest (*BatchCreateEntryRequest)(nil), // 5: spire.api.server.entry.v1.BatchCreateEntryRequest (*BatchCreateEntryResponse)(nil), // 6: spire.api.server.entry.v1.BatchCreateEntryResponse (*BatchUpdateEntryRequest)(nil), // 7: spire.api.server.entry.v1.BatchUpdateEntryRequest (*BatchUpdateEntryResponse)(nil), // 8: spire.api.server.entry.v1.BatchUpdateEntryResponse (*BatchDeleteEntryRequest)(nil), // 9: spire.api.server.entry.v1.BatchDeleteEntryRequest (*BatchDeleteEntryResponse)(nil), // 10: spire.api.server.entry.v1.BatchDeleteEntryResponse (*GetAuthorizedEntriesRequest)(nil), // 11: spire.api.server.entry.v1.GetAuthorizedEntriesRequest (*GetAuthorizedEntriesResponse)(nil), // 12: spire.api.server.entry.v1.GetAuthorizedEntriesResponse (*SyncAuthorizedEntriesRequest)(nil), // 13: spire.api.server.entry.v1.SyncAuthorizedEntriesRequest (*SyncAuthorizedEntriesResponse)(nil), // 14: spire.api.server.entry.v1.SyncAuthorizedEntriesResponse (*EntryRevision)(nil), // 15: spire.api.server.entry.v1.EntryRevision (*CountEntriesRequest_Filter)(nil), // 16: spire.api.server.entry.v1.CountEntriesRequest.Filter (*ListEntriesRequest_Filter)(nil), // 17: spire.api.server.entry.v1.ListEntriesRequest.Filter (*BatchCreateEntryResponse_Result)(nil), // 18: spire.api.server.entry.v1.BatchCreateEntryResponse.Result (*BatchUpdateEntryResponse_Result)(nil), // 19: spire.api.server.entry.v1.BatchUpdateEntryResponse.Result (*BatchDeleteEntryResponse_Result)(nil), // 20: spire.api.server.entry.v1.BatchDeleteEntryResponse.Result (*types.EntryMask)(nil), // 21: spire.api.types.EntryMask (*types.Entry)(nil), // 22: spire.api.types.Entry (*types.SPIFFEID)(nil), // 23: spire.api.types.SPIFFEID (*types.SelectorMatch)(nil), // 24: spire.api.types.SelectorMatch (*types.FederatesWithMatch)(nil), // 25: spire.api.types.FederatesWithMatch (*wrapperspb.StringValue)(nil), // 26: google.protobuf.StringValue (*wrapperspb.BoolValue)(nil), // 27: google.protobuf.BoolValue (*types.Status)(nil), // 28: spire.api.types.Status } var file_spire_api_server_entry_v1_entry_proto_depIdxs = []int32{ 16, // 0: spire.api.server.entry.v1.CountEntriesRequest.filter:type_name -> spire.api.server.entry.v1.CountEntriesRequest.Filter 17, // 1: spire.api.server.entry.v1.ListEntriesRequest.filter:type_name -> spire.api.server.entry.v1.ListEntriesRequest.Filter 21, // 2: spire.api.server.entry.v1.ListEntriesRequest.output_mask:type_name -> spire.api.types.EntryMask 22, // 3: spire.api.server.entry.v1.ListEntriesResponse.entries:type_name -> spire.api.types.Entry 21, // 4: spire.api.server.entry.v1.GetEntryRequest.output_mask:type_name -> spire.api.types.EntryMask 22, // 5: spire.api.server.entry.v1.BatchCreateEntryRequest.entries:type_name -> spire.api.types.Entry 21, // 6: spire.api.server.entry.v1.BatchCreateEntryRequest.output_mask:type_name -> spire.api.types.EntryMask 18, // 7: spire.api.server.entry.v1.BatchCreateEntryResponse.results:type_name -> spire.api.server.entry.v1.BatchCreateEntryResponse.Result 22, // 8: spire.api.server.entry.v1.BatchUpdateEntryRequest.entries:type_name -> spire.api.types.Entry 21, // 9: spire.api.server.entry.v1.BatchUpdateEntryRequest.input_mask:type_name -> spire.api.types.EntryMask 21, // 10: spire.api.server.entry.v1.BatchUpdateEntryRequest.output_mask:type_name -> spire.api.types.EntryMask 19, // 11: spire.api.server.entry.v1.BatchUpdateEntryResponse.results:type_name -> spire.api.server.entry.v1.BatchUpdateEntryResponse.Result 20, // 12: spire.api.server.entry.v1.BatchDeleteEntryResponse.results:type_name -> spire.api.server.entry.v1.BatchDeleteEntryResponse.Result 21, // 13: spire.api.server.entry.v1.GetAuthorizedEntriesRequest.output_mask:type_name -> spire.api.types.EntryMask 22, // 14: spire.api.server.entry.v1.GetAuthorizedEntriesResponse.entries:type_name -> spire.api.types.Entry 21, // 15: spire.api.server.entry.v1.SyncAuthorizedEntriesRequest.output_mask:type_name -> spire.api.types.EntryMask 15, // 16: spire.api.server.entry.v1.SyncAuthorizedEntriesResponse.entry_revisions:type_name -> spire.api.server.entry.v1.EntryRevision 22, // 17: spire.api.server.entry.v1.SyncAuthorizedEntriesResponse.entries:type_name -> spire.api.types.Entry 23, // 18: spire.api.server.entry.v1.CountEntriesRequest.Filter.by_spiffe_id:type_name -> spire.api.types.SPIFFEID 23, // 19: spire.api.server.entry.v1.CountEntriesRequest.Filter.by_parent_id:type_name -> spire.api.types.SPIFFEID 24, // 20: spire.api.server.entry.v1.CountEntriesRequest.Filter.by_selectors:type_name -> spire.api.types.SelectorMatch 25, // 21: spire.api.server.entry.v1.CountEntriesRequest.Filter.by_federates_with:type_name -> spire.api.types.FederatesWithMatch 26, // 22: spire.api.server.entry.v1.CountEntriesRequest.Filter.by_hint:type_name -> google.protobuf.StringValue 27, // 23: spire.api.server.entry.v1.CountEntriesRequest.Filter.by_downstream:type_name -> google.protobuf.BoolValue 23, // 24: spire.api.server.entry.v1.ListEntriesRequest.Filter.by_spiffe_id:type_name -> spire.api.types.SPIFFEID 23, // 25: spire.api.server.entry.v1.ListEntriesRequest.Filter.by_parent_id:type_name -> spire.api.types.SPIFFEID 24, // 26: spire.api.server.entry.v1.ListEntriesRequest.Filter.by_selectors:type_name -> spire.api.types.SelectorMatch 25, // 27: spire.api.server.entry.v1.ListEntriesRequest.Filter.by_federates_with:type_name -> spire.api.types.FederatesWithMatch 26, // 28: spire.api.server.entry.v1.ListEntriesRequest.Filter.by_hint:type_name -> google.protobuf.StringValue 27, // 29: spire.api.server.entry.v1.ListEntriesRequest.Filter.by_downstream:type_name -> google.protobuf.BoolValue 28, // 30: spire.api.server.entry.v1.BatchCreateEntryResponse.Result.status:type_name -> spire.api.types.Status 22, // 31: spire.api.server.entry.v1.BatchCreateEntryResponse.Result.entry:type_name -> spire.api.types.Entry 28, // 32: spire.api.server.entry.v1.BatchUpdateEntryResponse.Result.status:type_name -> spire.api.types.Status 22, // 33: spire.api.server.entry.v1.BatchUpdateEntryResponse.Result.entry:type_name -> spire.api.types.Entry 28, // 34: spire.api.server.entry.v1.BatchDeleteEntryResponse.Result.status:type_name -> spire.api.types.Status 0, // 35: spire.api.server.entry.v1.Entry.CountEntries:input_type -> spire.api.server.entry.v1.CountEntriesRequest 2, // 36: spire.api.server.entry.v1.Entry.ListEntries:input_type -> spire.api.server.entry.v1.ListEntriesRequest 4, // 37: spire.api.server.entry.v1.Entry.GetEntry:input_type -> spire.api.server.entry.v1.GetEntryRequest 5, // 38: spire.api.server.entry.v1.Entry.BatchCreateEntry:input_type -> spire.api.server.entry.v1.BatchCreateEntryRequest 7, // 39: spire.api.server.entry.v1.Entry.BatchUpdateEntry:input_type -> spire.api.server.entry.v1.BatchUpdateEntryRequest 9, // 40: spire.api.server.entry.v1.Entry.BatchDeleteEntry:input_type -> spire.api.server.entry.v1.BatchDeleteEntryRequest 11, // 41: spire.api.server.entry.v1.Entry.GetAuthorizedEntries:input_type -> spire.api.server.entry.v1.GetAuthorizedEntriesRequest 13, // 42: spire.api.server.entry.v1.Entry.SyncAuthorizedEntries:input_type -> spire.api.server.entry.v1.SyncAuthorizedEntriesRequest 1, // 43: spire.api.server.entry.v1.Entry.CountEntries:output_type -> spire.api.server.entry.v1.CountEntriesResponse 3, // 44: spire.api.server.entry.v1.Entry.ListEntries:output_type -> spire.api.server.entry.v1.ListEntriesResponse 22, // 45: spire.api.server.entry.v1.Entry.GetEntry:output_type -> spire.api.types.Entry 6, // 46: spire.api.server.entry.v1.Entry.BatchCreateEntry:output_type -> spire.api.server.entry.v1.BatchCreateEntryResponse 8, // 47: spire.api.server.entry.v1.Entry.BatchUpdateEntry:output_type -> spire.api.server.entry.v1.BatchUpdateEntryResponse 10, // 48: spire.api.server.entry.v1.Entry.BatchDeleteEntry:output_type -> spire.api.server.entry.v1.BatchDeleteEntryResponse 12, // 49: spire.api.server.entry.v1.Entry.GetAuthorizedEntries:output_type -> spire.api.server.entry.v1.GetAuthorizedEntriesResponse 14, // 50: spire.api.server.entry.v1.Entry.SyncAuthorizedEntries:output_type -> spire.api.server.entry.v1.SyncAuthorizedEntriesResponse 43, // [43:51] is the sub-list for method output_type 35, // [35:43] is the sub-list for method input_type 35, // [35:35] is the sub-list for extension type_name 35, // [35:35] is the sub-list for extension extendee 0, // [0:35] is the sub-list for field type_name } func init() { file_spire_api_server_entry_v1_entry_proto_init() } func file_spire_api_server_entry_v1_entry_proto_init() { if File_spire_api_server_entry_v1_entry_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_entry_v1_entry_proto_rawDesc), len(file_spire_api_server_entry_v1_entry_proto_rawDesc)), NumEnums: 0, NumMessages: 21, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_entry_v1_entry_proto_goTypes, DependencyIndexes: file_spire_api_server_entry_v1_entry_proto_depIdxs, MessageInfos: file_spire_api_server_entry_v1_entry_proto_msgTypes, }.Build() File_spire_api_server_entry_v1_entry_proto = out.File file_spire_api_server_entry_v1_entry_proto_goTypes = nil file_spire_api_server_entry_v1_entry_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/entry/v1/entry.proto000066400000000000000000000216061516071322100305340ustar00rootroot00000000000000syntax = "proto3"; package spire.api.server.entry.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/entry/v1;entryv1"; import "spire/api/types/entry.proto"; import "spire/api/types/federateswith.proto"; import "spire/api/types/selector.proto"; import "spire/api/types/spiffeid.proto"; import "spire/api/types/status.proto"; import "google/protobuf/wrappers.proto"; // Manages registration entries stored by the SPIRE Server. service Entry { // Count entries. // // The caller must be local or present an admin X509-SVID. rpc CountEntries(CountEntriesRequest) returns (CountEntriesResponse); // Lists entries. // // The caller must be local or present an admin X509-SVID. rpc ListEntries(ListEntriesRequest) returns (ListEntriesResponse); // Gets an entry. If the entry does not exist, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. rpc GetEntry(GetEntryRequest) returns (spire.api.types.Entry); // Batch creates one or more entries. // // The caller must be local or present an admin X509-SVID. rpc BatchCreateEntry(BatchCreateEntryRequest) returns (BatchCreateEntryResponse); // Batch updates one or more entries. // // The caller must be local or present an admin X509-SVID. rpc BatchUpdateEntry(BatchUpdateEntryRequest) returns (BatchUpdateEntryResponse); // Batch deletes one or more entries. // // The caller must be local or present an admin X509-SVID. rpc BatchDeleteEntry(BatchDeleteEntryRequest) returns (BatchDeleteEntryResponse); // Gets the entries the caller is authorized for. // // The caller must present an active agent X509-SVID. See the Agent // AttestAgent/RenewAgent RPCs. rpc GetAuthorizedEntries(GetAuthorizedEntriesRequest) returns (GetAuthorizedEntriesResponse); // Syncs authorized entries down to the caller. The caller controls which // entries the server sends down full details for. The flow is as follows: // 1. Caller opens up sync stream // 2. Server determines authorized entries for caller: // - If there are less entries than a server-determined page size, go to (5). // - Otherwise, go to (3). // 3. Server pages entry revisions to the caller (contains the entry ID and // revision number). The "more" flag set for all pages but the last so // that the caller knows when the server is done. // 4. Client determines which entries are new or updated (based on revision // number) and asks for them by sending a request with the IDs. // 5. Server pages down entries to the caller for each ID identified in (4) // or every entry in (2) if the number of entries was less than the // server-determined page size. The "more" flag set for all pages but // the last so that the caller knows when the server is done. // 6. Steps (4) and (5) are repeated until the caller has synced down the // details for all new/updated entries and closes the stream. rpc SyncAuthorizedEntries(stream SyncAuthorizedEntriesRequest) returns (stream SyncAuthorizedEntriesResponse); } message CountEntriesRequest { message Filter { spire.api.types.SPIFFEID by_spiffe_id = 1; spire.api.types.SPIFFEID by_parent_id = 2; spire.api.types.SelectorMatch by_selectors = 3; spire.api.types.FederatesWithMatch by_federates_with = 4; google.protobuf.StringValue by_hint = 5; google.protobuf.BoolValue by_downstream = 6; } // Filters the entries returned in the response. Filter filter = 1; } message CountEntriesResponse { int32 count = 1; } message ListEntriesRequest { message Filter { spire.api.types.SPIFFEID by_spiffe_id = 1; spire.api.types.SPIFFEID by_parent_id = 2; spire.api.types.SelectorMatch by_selectors = 3; spire.api.types.FederatesWithMatch by_federates_with = 4; google.protobuf.StringValue by_hint = 5; google.protobuf.BoolValue by_downstream = 6; } // Filters the entries returned in the response. Filter filter = 1; // An output mask indicating the entry fields set in the response. spire.api.types.EntryMask output_mask = 2; // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. int32 page_size = 3; // The next_page_token value returned from a previous request, if any. string page_token = 4; } message ListEntriesResponse { // The list of entries. repeated spire.api.types.Entry entries = 1; // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). string next_page_token = 2; } message GetEntryRequest { // Required. ID of the entry to get. string id = 1; // An output mask indicating the entry fields set in the response. spire.api.types.EntryMask output_mask = 2; } message BatchCreateEntryRequest { // The entries to be created. If no entry ID is provided, one will be // generated. repeated spire.api.types.Entry entries = 1; // An output mask indicating the entry fields set in the response. spire.api.types.EntryMask output_mask = 2; } message BatchCreateEntryResponse { message Result { // The status of creating the entry. If status code will be // ALREADY_EXISTS if a similar entry already exists. An entry is // similar if it has the same spiffe_id, parent_id, and selectors. spire.api.types.Status status = 1; // The entry that was created (.e.g status code is OK) or that already // exists (i.e. status code is ALREADY_EXISTS). // // If the status code is any other value, this field will not be set. spire.api.types.Entry entry = 2; } // Result for each entry in the request (order is maintained). repeated Result results = 1; } message BatchUpdateEntryRequest { // The entries to be updated. repeated spire.api.types.Entry entries = 1; // An input mask indicating what entry fields should be updated. spire.api.types.EntryMask input_mask = 2; // An output mask indicating what entry fields are set in the response. spire.api.types.EntryMask output_mask = 3; } message BatchUpdateEntryResponse { message Result { // The status of creating the entry. spire.api.types.Status status = 1; // The entry that was updated. If the status is OK, it will be the // entry that was updated. If the status is any other value, this field // will not be set. spire.api.types.Entry entry = 2; } // Result for each entry in the request (order is maintained). repeated Result results = 1; } message BatchDeleteEntryRequest { // IDs of the entries to delete. repeated string ids = 1; } message BatchDeleteEntryResponse { message Result { // The status of creating the entry. spire.api.types.Status status = 1; // The ID of the entry that was deleted. string id = 2; } // Result for each entry ID in the request (order is maintained). repeated Result results = 1; } message GetAuthorizedEntriesRequest { // An output mask indicating which fields are set in the response. spire.api.types.EntryMask output_mask = 1; } message GetAuthorizedEntriesResponse { // The authorized entries. repeated spire.api.types.Entry entries = 1; } message SyncAuthorizedEntriesRequest { // An output mask indicating which fields are set in the response. spire.api.types.EntryMask output_mask = 1; // IDs of the entries to fetch in full. Sent by the client in response to // a sparse entry. repeated string ids = 2; } message SyncAuthorizedEntriesResponse { // The revisions of the authorized entries. This field is set when the // authorized entry list meets or exceeds the server-determined page size. // Callers use it to determine which entries are new/updated that they then // request on the stream. // See SyncAuthorizedEntries for details. repeated EntryRevision entry_revisions = 1; // The authorized entries. This field is set either 1) on the initial // response if the number of authorized entries is less than the page size // or 2) in response to the caller requesting the entries after determining // they need to details based on entry revisions provided in a previous // response. // See SyncAuthorizedEntries for details. repeated spire.api.types.Entry entries = 2; // Whether there are more entries to sync down in this response phase. bool more = 3; } message EntryRevision { // The entry ID. string id = 1; // The entry revision number. int64 revision_number = 2; // When the entry was created (seconds since Unix epoch). int64 created_at = 3; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/entry/v1/entry_grpc.pb.go000066400000000000000000000476221516071322100314170ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/entry/v1/entry.proto package entryv1 import ( context "context" types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( Entry_CountEntries_FullMethodName = "/spire.api.server.entry.v1.Entry/CountEntries" Entry_ListEntries_FullMethodName = "/spire.api.server.entry.v1.Entry/ListEntries" Entry_GetEntry_FullMethodName = "/spire.api.server.entry.v1.Entry/GetEntry" Entry_BatchCreateEntry_FullMethodName = "/spire.api.server.entry.v1.Entry/BatchCreateEntry" Entry_BatchUpdateEntry_FullMethodName = "/spire.api.server.entry.v1.Entry/BatchUpdateEntry" Entry_BatchDeleteEntry_FullMethodName = "/spire.api.server.entry.v1.Entry/BatchDeleteEntry" Entry_GetAuthorizedEntries_FullMethodName = "/spire.api.server.entry.v1.Entry/GetAuthorizedEntries" Entry_SyncAuthorizedEntries_FullMethodName = "/spire.api.server.entry.v1.Entry/SyncAuthorizedEntries" ) // EntryClient is the client API for Entry service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. // // Manages registration entries stored by the SPIRE Server. type EntryClient interface { // Count entries. // // The caller must be local or present an admin X509-SVID. CountEntries(ctx context.Context, in *CountEntriesRequest, opts ...grpc.CallOption) (*CountEntriesResponse, error) // Lists entries. // // The caller must be local or present an admin X509-SVID. ListEntries(ctx context.Context, in *ListEntriesRequest, opts ...grpc.CallOption) (*ListEntriesResponse, error) // Gets an entry. If the entry does not exist, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. GetEntry(ctx context.Context, in *GetEntryRequest, opts ...grpc.CallOption) (*types.Entry, error) // Batch creates one or more entries. // // The caller must be local or present an admin X509-SVID. BatchCreateEntry(ctx context.Context, in *BatchCreateEntryRequest, opts ...grpc.CallOption) (*BatchCreateEntryResponse, error) // Batch updates one or more entries. // // The caller must be local or present an admin X509-SVID. BatchUpdateEntry(ctx context.Context, in *BatchUpdateEntryRequest, opts ...grpc.CallOption) (*BatchUpdateEntryResponse, error) // Batch deletes one or more entries. // // The caller must be local or present an admin X509-SVID. BatchDeleteEntry(ctx context.Context, in *BatchDeleteEntryRequest, opts ...grpc.CallOption) (*BatchDeleteEntryResponse, error) // Gets the entries the caller is authorized for. // // The caller must present an active agent X509-SVID. See the Agent // AttestAgent/RenewAgent RPCs. GetAuthorizedEntries(ctx context.Context, in *GetAuthorizedEntriesRequest, opts ...grpc.CallOption) (*GetAuthorizedEntriesResponse, error) // Syncs authorized entries down to the caller. The caller controls which // entries the server sends down full details for. The flow is as follows: // 1. Caller opens up sync stream // 2. Server determines authorized entries for caller: // - If there are less entries than a server-determined page size, go to (5). // - Otherwise, go to (3). // 3. Server pages entry revisions to the caller (contains the entry ID and // revision number). The "more" flag set for all pages but the last so // that the caller knows when the server is done. // 4. Client determines which entries are new or updated (based on revision // number) and asks for them by sending a request with the IDs. // 5. Server pages down entries to the caller for each ID identified in (4) // or every entry in (2) if the number of entries was less than the // server-determined page size. The "more" flag set for all pages but // the last so that the caller knows when the server is done. // 6. Steps (4) and (5) are repeated until the caller has synced down the // details for all new/updated entries and closes the stream. SyncAuthorizedEntries(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse], error) } type entryClient struct { cc grpc.ClientConnInterface } func NewEntryClient(cc grpc.ClientConnInterface) EntryClient { return &entryClient{cc} } func (c *entryClient) CountEntries(ctx context.Context, in *CountEntriesRequest, opts ...grpc.CallOption) (*CountEntriesResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(CountEntriesResponse) err := c.cc.Invoke(ctx, Entry_CountEntries_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *entryClient) ListEntries(ctx context.Context, in *ListEntriesRequest, opts ...grpc.CallOption) (*ListEntriesResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(ListEntriesResponse) err := c.cc.Invoke(ctx, Entry_ListEntries_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *entryClient) GetEntry(ctx context.Context, in *GetEntryRequest, opts ...grpc.CallOption) (*types.Entry, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Entry) err := c.cc.Invoke(ctx, Entry_GetEntry_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *entryClient) BatchCreateEntry(ctx context.Context, in *BatchCreateEntryRequest, opts ...grpc.CallOption) (*BatchCreateEntryResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchCreateEntryResponse) err := c.cc.Invoke(ctx, Entry_BatchCreateEntry_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *entryClient) BatchUpdateEntry(ctx context.Context, in *BatchUpdateEntryRequest, opts ...grpc.CallOption) (*BatchUpdateEntryResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchUpdateEntryResponse) err := c.cc.Invoke(ctx, Entry_BatchUpdateEntry_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *entryClient) BatchDeleteEntry(ctx context.Context, in *BatchDeleteEntryRequest, opts ...grpc.CallOption) (*BatchDeleteEntryResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchDeleteEntryResponse) err := c.cc.Invoke(ctx, Entry_BatchDeleteEntry_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *entryClient) GetAuthorizedEntries(ctx context.Context, in *GetAuthorizedEntriesRequest, opts ...grpc.CallOption) (*GetAuthorizedEntriesResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(GetAuthorizedEntriesResponse) err := c.cc.Invoke(ctx, Entry_GetAuthorizedEntries_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *entryClient) SyncAuthorizedEntries(ctx context.Context, opts ...grpc.CallOption) (grpc.BidiStreamingClient[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse], error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) stream, err := c.cc.NewStream(ctx, &Entry_ServiceDesc.Streams[0], Entry_SyncAuthorizedEntries_FullMethodName, cOpts...) if err != nil { return nil, err } x := &grpc.GenericClientStream[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse]{ClientStream: stream} return x, nil } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type Entry_SyncAuthorizedEntriesClient = grpc.BidiStreamingClient[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse] // EntryServer is the server API for Entry service. // All implementations must embed UnimplementedEntryServer // for forward compatibility. // // Manages registration entries stored by the SPIRE Server. type EntryServer interface { // Count entries. // // The caller must be local or present an admin X509-SVID. CountEntries(context.Context, *CountEntriesRequest) (*CountEntriesResponse, error) // Lists entries. // // The caller must be local or present an admin X509-SVID. ListEntries(context.Context, *ListEntriesRequest) (*ListEntriesResponse, error) // Gets an entry. If the entry does not exist, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. GetEntry(context.Context, *GetEntryRequest) (*types.Entry, error) // Batch creates one or more entries. // // The caller must be local or present an admin X509-SVID. BatchCreateEntry(context.Context, *BatchCreateEntryRequest) (*BatchCreateEntryResponse, error) // Batch updates one or more entries. // // The caller must be local or present an admin X509-SVID. BatchUpdateEntry(context.Context, *BatchUpdateEntryRequest) (*BatchUpdateEntryResponse, error) // Batch deletes one or more entries. // // The caller must be local or present an admin X509-SVID. BatchDeleteEntry(context.Context, *BatchDeleteEntryRequest) (*BatchDeleteEntryResponse, error) // Gets the entries the caller is authorized for. // // The caller must present an active agent X509-SVID. See the Agent // AttestAgent/RenewAgent RPCs. GetAuthorizedEntries(context.Context, *GetAuthorizedEntriesRequest) (*GetAuthorizedEntriesResponse, error) // Syncs authorized entries down to the caller. The caller controls which // entries the server sends down full details for. The flow is as follows: // 1. Caller opens up sync stream // 2. Server determines authorized entries for caller: // - If there are less entries than a server-determined page size, go to (5). // - Otherwise, go to (3). // 3. Server pages entry revisions to the caller (contains the entry ID and // revision number). The "more" flag set for all pages but the last so // that the caller knows when the server is done. // 4. Client determines which entries are new or updated (based on revision // number) and asks for them by sending a request with the IDs. // 5. Server pages down entries to the caller for each ID identified in (4) // or every entry in (2) if the number of entries was less than the // server-determined page size. The "more" flag set for all pages but // the last so that the caller knows when the server is done. // 6. Steps (4) and (5) are repeated until the caller has synced down the // details for all new/updated entries and closes the stream. SyncAuthorizedEntries(grpc.BidiStreamingServer[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse]) error mustEmbedUnimplementedEntryServer() } // UnimplementedEntryServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedEntryServer struct{} func (UnimplementedEntryServer) CountEntries(context.Context, *CountEntriesRequest) (*CountEntriesResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method CountEntries not implemented") } func (UnimplementedEntryServer) ListEntries(context.Context, *ListEntriesRequest) (*ListEntriesResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method ListEntries not implemented") } func (UnimplementedEntryServer) GetEntry(context.Context, *GetEntryRequest) (*types.Entry, error) { return nil, status.Errorf(codes.Unimplemented, "method GetEntry not implemented") } func (UnimplementedEntryServer) BatchCreateEntry(context.Context, *BatchCreateEntryRequest) (*BatchCreateEntryResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchCreateEntry not implemented") } func (UnimplementedEntryServer) BatchUpdateEntry(context.Context, *BatchUpdateEntryRequest) (*BatchUpdateEntryResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchUpdateEntry not implemented") } func (UnimplementedEntryServer) BatchDeleteEntry(context.Context, *BatchDeleteEntryRequest) (*BatchDeleteEntryResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchDeleteEntry not implemented") } func (UnimplementedEntryServer) GetAuthorizedEntries(context.Context, *GetAuthorizedEntriesRequest) (*GetAuthorizedEntriesResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method GetAuthorizedEntries not implemented") } func (UnimplementedEntryServer) SyncAuthorizedEntries(grpc.BidiStreamingServer[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse]) error { return status.Errorf(codes.Unimplemented, "method SyncAuthorizedEntries not implemented") } func (UnimplementedEntryServer) mustEmbedUnimplementedEntryServer() {} func (UnimplementedEntryServer) testEmbeddedByValue() {} // UnsafeEntryServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to EntryServer will // result in compilation errors. type UnsafeEntryServer interface { mustEmbedUnimplementedEntryServer() } func RegisterEntryServer(s grpc.ServiceRegistrar, srv EntryServer) { // If the following call pancis, it indicates UnimplementedEntryServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&Entry_ServiceDesc, srv) } func _Entry_CountEntries_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(CountEntriesRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(EntryServer).CountEntries(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Entry_CountEntries_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(EntryServer).CountEntries(ctx, req.(*CountEntriesRequest)) } return interceptor(ctx, in, info, handler) } func _Entry_ListEntries_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ListEntriesRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(EntryServer).ListEntries(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Entry_ListEntries_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(EntryServer).ListEntries(ctx, req.(*ListEntriesRequest)) } return interceptor(ctx, in, info, handler) } func _Entry_GetEntry_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetEntryRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(EntryServer).GetEntry(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Entry_GetEntry_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(EntryServer).GetEntry(ctx, req.(*GetEntryRequest)) } return interceptor(ctx, in, info, handler) } func _Entry_BatchCreateEntry_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchCreateEntryRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(EntryServer).BatchCreateEntry(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Entry_BatchCreateEntry_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(EntryServer).BatchCreateEntry(ctx, req.(*BatchCreateEntryRequest)) } return interceptor(ctx, in, info, handler) } func _Entry_BatchUpdateEntry_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchUpdateEntryRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(EntryServer).BatchUpdateEntry(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Entry_BatchUpdateEntry_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(EntryServer).BatchUpdateEntry(ctx, req.(*BatchUpdateEntryRequest)) } return interceptor(ctx, in, info, handler) } func _Entry_BatchDeleteEntry_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchDeleteEntryRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(EntryServer).BatchDeleteEntry(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Entry_BatchDeleteEntry_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(EntryServer).BatchDeleteEntry(ctx, req.(*BatchDeleteEntryRequest)) } return interceptor(ctx, in, info, handler) } func _Entry_GetAuthorizedEntries_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetAuthorizedEntriesRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(EntryServer).GetAuthorizedEntries(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Entry_GetAuthorizedEntries_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(EntryServer).GetAuthorizedEntries(ctx, req.(*GetAuthorizedEntriesRequest)) } return interceptor(ctx, in, info, handler) } func _Entry_SyncAuthorizedEntries_Handler(srv interface{}, stream grpc.ServerStream) error { return srv.(EntryServer).SyncAuthorizedEntries(&grpc.GenericServerStream[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse]{ServerStream: stream}) } // This type alias is provided for backwards compatibility with existing code that references the prior non-generic stream type by name. type Entry_SyncAuthorizedEntriesServer = grpc.BidiStreamingServer[SyncAuthorizedEntriesRequest, SyncAuthorizedEntriesResponse] // Entry_ServiceDesc is the grpc.ServiceDesc for Entry service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var Entry_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.entry.v1.Entry", HandlerType: (*EntryServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "CountEntries", Handler: _Entry_CountEntries_Handler, }, { MethodName: "ListEntries", Handler: _Entry_ListEntries_Handler, }, { MethodName: "GetEntry", Handler: _Entry_GetEntry_Handler, }, { MethodName: "BatchCreateEntry", Handler: _Entry_BatchCreateEntry_Handler, }, { MethodName: "BatchUpdateEntry", Handler: _Entry_BatchUpdateEntry_Handler, }, { MethodName: "BatchDeleteEntry", Handler: _Entry_BatchDeleteEntry_Handler, }, { MethodName: "GetAuthorizedEntries", Handler: _Entry_GetAuthorizedEntries_Handler, }, }, Streams: []grpc.StreamDesc{ { StreamName: "SyncAuthorizedEntries", Handler: _Entry_SyncAuthorizedEntries_Handler, ServerStreams: true, ClientStreams: true, }, }, Metadata: "spire/api/server/entry/v1/entry.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/localauthority/000077500000000000000000000000001516071322100276555ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/localauthority/v1/000077500000000000000000000000001516071322100302035ustar00rootroot00000000000000localauthority.pb.go000066400000000000000000002266561516071322100341370ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/localauthority/v1// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/localauthority/v1/localauthority.proto package localauthorityv1 import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type GetJWTAuthorityStateRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetJWTAuthorityStateRequest) Reset() { *x = GetJWTAuthorityStateRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetJWTAuthorityStateRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetJWTAuthorityStateRequest) ProtoMessage() {} func (x *GetJWTAuthorityStateRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetJWTAuthorityStateRequest.ProtoReflect.Descriptor instead. func (*GetJWTAuthorityStateRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{0} } type GetJWTAuthorityStateResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Authority currently being used for signing operations. Active *AuthorityState `protobuf:"bytes,1,opt,name=active,proto3" json:"active,omitempty"` // Authority added on bundle but is not used yet. Prepared *AuthorityState `protobuf:"bytes,2,opt,name=prepared,proto3" json:"prepared,omitempty"` // Authority in that was previously used for signing operations, // but it is not longer. Old *AuthorityState `protobuf:"bytes,3,opt,name=old,proto3" json:"old,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetJWTAuthorityStateResponse) Reset() { *x = GetJWTAuthorityStateResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetJWTAuthorityStateResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetJWTAuthorityStateResponse) ProtoMessage() {} func (x *GetJWTAuthorityStateResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetJWTAuthorityStateResponse.ProtoReflect.Descriptor instead. func (*GetJWTAuthorityStateResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{1} } func (x *GetJWTAuthorityStateResponse) GetActive() *AuthorityState { if x != nil { return x.Active } return nil } func (x *GetJWTAuthorityStateResponse) GetPrepared() *AuthorityState { if x != nil { return x.Prepared } return nil } func (x *GetJWTAuthorityStateResponse) GetOld() *AuthorityState { if x != nil { return x.Old } return nil } type PrepareJWTAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PrepareJWTAuthorityRequest) Reset() { *x = PrepareJWTAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PrepareJWTAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*PrepareJWTAuthorityRequest) ProtoMessage() {} func (x *PrepareJWTAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PrepareJWTAuthorityRequest.ProtoReflect.Descriptor instead. func (*PrepareJWTAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{2} } type PrepareJWTAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` PreparedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=prepared_authority,json=preparedAuthority,proto3" json:"prepared_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PrepareJWTAuthorityResponse) Reset() { *x = PrepareJWTAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PrepareJWTAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*PrepareJWTAuthorityResponse) ProtoMessage() {} func (x *PrepareJWTAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PrepareJWTAuthorityResponse.ProtoReflect.Descriptor instead. func (*PrepareJWTAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{3} } func (x *PrepareJWTAuthorityResponse) GetPreparedAuthority() *AuthorityState { if x != nil { return x.PreparedAuthority } return nil } type ActivateJWTAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local authority JWT authority to activate. // This is the JWT Key ID. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ActivateJWTAuthorityRequest) Reset() { *x = ActivateJWTAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ActivateJWTAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ActivateJWTAuthorityRequest) ProtoMessage() {} func (x *ActivateJWTAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ActivateJWTAuthorityRequest.ProtoReflect.Descriptor instead. func (*ActivateJWTAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{4} } func (x *ActivateJWTAuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type ActivateJWTAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` ActivatedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=activated_authority,json=activatedAuthority,proto3" json:"activated_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ActivateJWTAuthorityResponse) Reset() { *x = ActivateJWTAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[5] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ActivateJWTAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*ActivateJWTAuthorityResponse) ProtoMessage() {} func (x *ActivateJWTAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[5] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ActivateJWTAuthorityResponse.ProtoReflect.Descriptor instead. func (*ActivateJWTAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{5} } func (x *ActivateJWTAuthorityResponse) GetActivatedAuthority() *AuthorityState { if x != nil { return x.ActivatedAuthority } return nil } type TaintJWTAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local authority JWT authority to taint. // This is the JWT Key ID. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintJWTAuthorityRequest) Reset() { *x = TaintJWTAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[6] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintJWTAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintJWTAuthorityRequest) ProtoMessage() {} func (x *TaintJWTAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[6] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintJWTAuthorityRequest.ProtoReflect.Descriptor instead. func (*TaintJWTAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{6} } func (x *TaintJWTAuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type TaintJWTAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` TaintedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=tainted_authority,json=taintedAuthority,proto3" json:"tainted_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintJWTAuthorityResponse) Reset() { *x = TaintJWTAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[7] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintJWTAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintJWTAuthorityResponse) ProtoMessage() {} func (x *TaintJWTAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[7] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintJWTAuthorityResponse.ProtoReflect.Descriptor instead. func (*TaintJWTAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{7} } func (x *TaintJWTAuthorityResponse) GetTaintedAuthority() *AuthorityState { if x != nil { return x.TaintedAuthority } return nil } type RevokeJWTAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local authority JWT authority to revoke. // This is the JWT Key ID. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeJWTAuthorityRequest) Reset() { *x = RevokeJWTAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[8] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeJWTAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeJWTAuthorityRequest) ProtoMessage() {} func (x *RevokeJWTAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[8] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeJWTAuthorityRequest.ProtoReflect.Descriptor instead. func (*RevokeJWTAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{8} } func (x *RevokeJWTAuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type RevokeJWTAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` RevokedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=revoked_authority,json=revokedAuthority,proto3" json:"revoked_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeJWTAuthorityResponse) Reset() { *x = RevokeJWTAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[9] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeJWTAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeJWTAuthorityResponse) ProtoMessage() {} func (x *RevokeJWTAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[9] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeJWTAuthorityResponse.ProtoReflect.Descriptor instead. func (*RevokeJWTAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{9} } func (x *RevokeJWTAuthorityResponse) GetRevokedAuthority() *AuthorityState { if x != nil { return x.RevokedAuthority } return nil } type GetX509AuthorityStateRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetX509AuthorityStateRequest) Reset() { *x = GetX509AuthorityStateRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[10] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetX509AuthorityStateRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetX509AuthorityStateRequest) ProtoMessage() {} func (x *GetX509AuthorityStateRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[10] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetX509AuthorityStateRequest.ProtoReflect.Descriptor instead. func (*GetX509AuthorityStateRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{10} } type GetX509AuthorityStateResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Authority currently being used for signing operations. Active *AuthorityState `protobuf:"bytes,1,opt,name=active,proto3" json:"active,omitempty"` // Authority added on bundle but is not used yet. Prepared *AuthorityState `protobuf:"bytes,2,opt,name=prepared,proto3" json:"prepared,omitempty"` // Authority in that was previously used for signing operations, // but it is not longer. Old *AuthorityState `protobuf:"bytes,3,opt,name=old,proto3" json:"old,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetX509AuthorityStateResponse) Reset() { *x = GetX509AuthorityStateResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[11] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetX509AuthorityStateResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetX509AuthorityStateResponse) ProtoMessage() {} func (x *GetX509AuthorityStateResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[11] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetX509AuthorityStateResponse.ProtoReflect.Descriptor instead. func (*GetX509AuthorityStateResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{11} } func (x *GetX509AuthorityStateResponse) GetActive() *AuthorityState { if x != nil { return x.Active } return nil } func (x *GetX509AuthorityStateResponse) GetPrepared() *AuthorityState { if x != nil { return x.Prepared } return nil } func (x *GetX509AuthorityStateResponse) GetOld() *AuthorityState { if x != nil { return x.Old } return nil } type PrepareX509AuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PrepareX509AuthorityRequest) Reset() { *x = PrepareX509AuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[12] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PrepareX509AuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*PrepareX509AuthorityRequest) ProtoMessage() {} func (x *PrepareX509AuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[12] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PrepareX509AuthorityRequest.ProtoReflect.Descriptor instead. func (*PrepareX509AuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{12} } type PrepareX509AuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` PreparedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=prepared_authority,json=preparedAuthority,proto3" json:"prepared_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PrepareX509AuthorityResponse) Reset() { *x = PrepareX509AuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[13] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PrepareX509AuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*PrepareX509AuthorityResponse) ProtoMessage() {} func (x *PrepareX509AuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[13] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PrepareX509AuthorityResponse.ProtoReflect.Descriptor instead. func (*PrepareX509AuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{13} } func (x *PrepareX509AuthorityResponse) GetPreparedAuthority() *AuthorityState { if x != nil { return x.PreparedAuthority } return nil } type ActivateX509AuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local X.509 authority to activate. // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate, which is calculated by doing a // SHA-1 hash over the ASN.1 encoding of the public key. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ActivateX509AuthorityRequest) Reset() { *x = ActivateX509AuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[14] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ActivateX509AuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ActivateX509AuthorityRequest) ProtoMessage() {} func (x *ActivateX509AuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[14] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ActivateX509AuthorityRequest.ProtoReflect.Descriptor instead. func (*ActivateX509AuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{14} } func (x *ActivateX509AuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type ActivateX509AuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` ActivatedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=activated_authority,json=activatedAuthority,proto3" json:"activated_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ActivateX509AuthorityResponse) Reset() { *x = ActivateX509AuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[15] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ActivateX509AuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*ActivateX509AuthorityResponse) ProtoMessage() {} func (x *ActivateX509AuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[15] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ActivateX509AuthorityResponse.ProtoReflect.Descriptor instead. func (*ActivateX509AuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{15} } func (x *ActivateX509AuthorityResponse) GetActivatedAuthority() *AuthorityState { if x != nil { return x.ActivatedAuthority } return nil } type TaintX509AuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local X.509 authority to taint. // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate, which is calculated by doing a // SHA-1 hash over the ASN.1 encoding of the public key. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintX509AuthorityRequest) Reset() { *x = TaintX509AuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[16] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintX509AuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintX509AuthorityRequest) ProtoMessage() {} func (x *TaintX509AuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[16] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintX509AuthorityRequest.ProtoReflect.Descriptor instead. func (*TaintX509AuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{16} } func (x *TaintX509AuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type TaintX509AuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` TaintedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=tainted_authority,json=taintedAuthority,proto3" json:"tainted_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintX509AuthorityResponse) Reset() { *x = TaintX509AuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[17] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintX509AuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintX509AuthorityResponse) ProtoMessage() {} func (x *TaintX509AuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[17] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintX509AuthorityResponse.ProtoReflect.Descriptor instead. func (*TaintX509AuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{17} } func (x *TaintX509AuthorityResponse) GetTaintedAuthority() *AuthorityState { if x != nil { return x.TaintedAuthority } return nil } type TaintX509UpstreamAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate of the upstream X.509 authority to taint. SubjectKeyId string `protobuf:"bytes,1,opt,name=subject_key_id,json=subjectKeyId,proto3" json:"subject_key_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintX509UpstreamAuthorityRequest) Reset() { *x = TaintX509UpstreamAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[18] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintX509UpstreamAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintX509UpstreamAuthorityRequest) ProtoMessage() {} func (x *TaintX509UpstreamAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[18] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintX509UpstreamAuthorityRequest.ProtoReflect.Descriptor instead. func (*TaintX509UpstreamAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{18} } func (x *TaintX509UpstreamAuthorityRequest) GetSubjectKeyId() string { if x != nil { return x.SubjectKeyId } return "" } type TaintX509UpstreamAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The Subject Key Identifier (or SKID) of the upstream authority // tainted. UpstreamAuthoritySubjectKeyId string `protobuf:"bytes,1,opt,name=upstream_authority_subject_key_id,json=upstreamAuthoritySubjectKeyId,proto3" json:"upstream_authority_subject_key_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintX509UpstreamAuthorityResponse) Reset() { *x = TaintX509UpstreamAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[19] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintX509UpstreamAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintX509UpstreamAuthorityResponse) ProtoMessage() {} func (x *TaintX509UpstreamAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[19] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintX509UpstreamAuthorityResponse.ProtoReflect.Descriptor instead. func (*TaintX509UpstreamAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{19} } func (x *TaintX509UpstreamAuthorityResponse) GetUpstreamAuthoritySubjectKeyId() string { if x != nil { return x.UpstreamAuthoritySubjectKeyId } return "" } type RevokeX509UpstreamAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate of the upstream X.509 authority to revoke. SubjectKeyId string `protobuf:"bytes,1,opt,name=subject_key_id,json=subjectKeyId,proto3" json:"subject_key_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeX509UpstreamAuthorityRequest) Reset() { *x = RevokeX509UpstreamAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[20] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeX509UpstreamAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeX509UpstreamAuthorityRequest) ProtoMessage() {} func (x *RevokeX509UpstreamAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[20] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeX509UpstreamAuthorityRequest.ProtoReflect.Descriptor instead. func (*RevokeX509UpstreamAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{20} } func (x *RevokeX509UpstreamAuthorityRequest) GetSubjectKeyId() string { if x != nil { return x.SubjectKeyId } return "" } type RevokeX509UpstreamAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The Subject Key Identifier (or SKID) of the upstream authority // revoked. UpstreamAuthoritySubjectKeyId string `protobuf:"bytes,1,opt,name=upstream_authority_subject_key_id,json=upstreamAuthoritySubjectKeyId,proto3" json:"upstream_authority_subject_key_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeX509UpstreamAuthorityResponse) Reset() { *x = RevokeX509UpstreamAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[21] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeX509UpstreamAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeX509UpstreamAuthorityResponse) ProtoMessage() {} func (x *RevokeX509UpstreamAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[21] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeX509UpstreamAuthorityResponse.ProtoReflect.Descriptor instead. func (*RevokeX509UpstreamAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{21} } func (x *RevokeX509UpstreamAuthorityResponse) GetUpstreamAuthoritySubjectKeyId() string { if x != nil { return x.UpstreamAuthoritySubjectKeyId } return "" } type RevokeX509AuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local X.509 authority to revoke. // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate, which is calculated by doing a // SHA-1 hash over the ASN.1 encoding of the public key. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeX509AuthorityRequest) Reset() { *x = RevokeX509AuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[22] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeX509AuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeX509AuthorityRequest) ProtoMessage() {} func (x *RevokeX509AuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[22] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeX509AuthorityRequest.ProtoReflect.Descriptor instead. func (*RevokeX509AuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{22} } func (x *RevokeX509AuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type RevokeX509AuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` RevokedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=revoked_authority,json=revokedAuthority,proto3" json:"revoked_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeX509AuthorityResponse) Reset() { *x = RevokeX509AuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[23] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeX509AuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeX509AuthorityResponse) ProtoMessage() {} func (x *RevokeX509AuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[23] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeX509AuthorityResponse.ProtoReflect.Descriptor instead. func (*RevokeX509AuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{23} } func (x *RevokeX509AuthorityResponse) GetRevokedAuthority() *AuthorityState { if x != nil { return x.RevokedAuthority } return nil } type GetWITAuthorityStateRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetWITAuthorityStateRequest) Reset() { *x = GetWITAuthorityStateRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[24] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetWITAuthorityStateRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetWITAuthorityStateRequest) ProtoMessage() {} func (x *GetWITAuthorityStateRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[24] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetWITAuthorityStateRequest.ProtoReflect.Descriptor instead. func (*GetWITAuthorityStateRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{24} } type GetWITAuthorityStateResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Authority currently being used for signing operations. Active *AuthorityState `protobuf:"bytes,1,opt,name=active,proto3" json:"active,omitempty"` // Authority added on bundle but is not used yet. Prepared *AuthorityState `protobuf:"bytes,2,opt,name=prepared,proto3" json:"prepared,omitempty"` // Authority in that was previously used for signing operations, // but it is not longer. Old *AuthorityState `protobuf:"bytes,3,opt,name=old,proto3" json:"old,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetWITAuthorityStateResponse) Reset() { *x = GetWITAuthorityStateResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[25] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetWITAuthorityStateResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetWITAuthorityStateResponse) ProtoMessage() {} func (x *GetWITAuthorityStateResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[25] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetWITAuthorityStateResponse.ProtoReflect.Descriptor instead. func (*GetWITAuthorityStateResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{25} } func (x *GetWITAuthorityStateResponse) GetActive() *AuthorityState { if x != nil { return x.Active } return nil } func (x *GetWITAuthorityStateResponse) GetPrepared() *AuthorityState { if x != nil { return x.Prepared } return nil } func (x *GetWITAuthorityStateResponse) GetOld() *AuthorityState { if x != nil { return x.Old } return nil } type PrepareWITAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PrepareWITAuthorityRequest) Reset() { *x = PrepareWITAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[26] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PrepareWITAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*PrepareWITAuthorityRequest) ProtoMessage() {} func (x *PrepareWITAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[26] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PrepareWITAuthorityRequest.ProtoReflect.Descriptor instead. func (*PrepareWITAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{26} } type PrepareWITAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` PreparedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=prepared_authority,json=preparedAuthority,proto3" json:"prepared_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PrepareWITAuthorityResponse) Reset() { *x = PrepareWITAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[27] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PrepareWITAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*PrepareWITAuthorityResponse) ProtoMessage() {} func (x *PrepareWITAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[27] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PrepareWITAuthorityResponse.ProtoReflect.Descriptor instead. func (*PrepareWITAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{27} } func (x *PrepareWITAuthorityResponse) GetPreparedAuthority() *AuthorityState { if x != nil { return x.PreparedAuthority } return nil } type ActivateWITAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local authority WIT authority to activate. // This is the WIT Key ID. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ActivateWITAuthorityRequest) Reset() { *x = ActivateWITAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[28] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ActivateWITAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ActivateWITAuthorityRequest) ProtoMessage() {} func (x *ActivateWITAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[28] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ActivateWITAuthorityRequest.ProtoReflect.Descriptor instead. func (*ActivateWITAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{28} } func (x *ActivateWITAuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type ActivateWITAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` ActivatedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=activated_authority,json=activatedAuthority,proto3" json:"activated_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ActivateWITAuthorityResponse) Reset() { *x = ActivateWITAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[29] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ActivateWITAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*ActivateWITAuthorityResponse) ProtoMessage() {} func (x *ActivateWITAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[29] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ActivateWITAuthorityResponse.ProtoReflect.Descriptor instead. func (*ActivateWITAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{29} } func (x *ActivateWITAuthorityResponse) GetActivatedAuthority() *AuthorityState { if x != nil { return x.ActivatedAuthority } return nil } type TaintWITAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local authority WIT authority to taint. // This is the WIT Key ID. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintWITAuthorityRequest) Reset() { *x = TaintWITAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[30] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintWITAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintWITAuthorityRequest) ProtoMessage() {} func (x *TaintWITAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[30] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintWITAuthorityRequest.ProtoReflect.Descriptor instead. func (*TaintWITAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{30} } func (x *TaintWITAuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type TaintWITAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` TaintedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=tainted_authority,json=taintedAuthority,proto3" json:"tainted_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *TaintWITAuthorityResponse) Reset() { *x = TaintWITAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[31] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *TaintWITAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*TaintWITAuthorityResponse) ProtoMessage() {} func (x *TaintWITAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[31] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use TaintWITAuthorityResponse.ProtoReflect.Descriptor instead. func (*TaintWITAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{31} } func (x *TaintWITAuthorityResponse) GetTaintedAuthority() *AuthorityState { if x != nil { return x.TaintedAuthority } return nil } type RevokeWITAuthorityRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID of the local authority WIT authority to revoke. // This is the WIT Key ID. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeWITAuthorityRequest) Reset() { *x = RevokeWITAuthorityRequest{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[32] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeWITAuthorityRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeWITAuthorityRequest) ProtoMessage() {} func (x *RevokeWITAuthorityRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[32] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeWITAuthorityRequest.ProtoReflect.Descriptor instead. func (*RevokeWITAuthorityRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{32} } func (x *RevokeWITAuthorityRequest) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } type RevokeWITAuthorityResponse struct { state protoimpl.MessageState `protogen:"open.v1"` RevokedAuthority *AuthorityState `protobuf:"bytes,1,opt,name=revoked_authority,json=revokedAuthority,proto3" json:"revoked_authority,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RevokeWITAuthorityResponse) Reset() { *x = RevokeWITAuthorityResponse{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[33] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RevokeWITAuthorityResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*RevokeWITAuthorityResponse) ProtoMessage() {} func (x *RevokeWITAuthorityResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[33] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RevokeWITAuthorityResponse.ProtoReflect.Descriptor instead. func (*RevokeWITAuthorityResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{33} } func (x *RevokeWITAuthorityResponse) GetRevokedAuthority() *AuthorityState { if x != nil { return x.RevokedAuthority } return nil } type AuthorityState struct { state protoimpl.MessageState `protogen:"open.v1"` // The authority ID. AuthorityId string `protobuf:"bytes,1,opt,name=authority_id,json=authorityId,proto3" json:"authority_id,omitempty"` // Expiration timestamp (seconds since Unix epoch). ExpiresAt int64 `protobuf:"varint,2,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // The Subject Key Identifier (or SKID) of the upstream authority, // applicable only for X.509 authorities. UpstreamAuthoritySubjectKeyId string `protobuf:"bytes,3,opt,name=upstream_authority_subject_key_id,json=upstreamAuthoritySubjectKeyId,proto3" json:"upstream_authority_subject_key_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AuthorityState) Reset() { *x = AuthorityState{} mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[34] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AuthorityState) String() string { return protoimpl.X.MessageStringOf(x) } func (*AuthorityState) ProtoMessage() {} func (x *AuthorityState) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes[34] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AuthorityState.ProtoReflect.Descriptor instead. func (*AuthorityState) Descriptor() ([]byte, []int) { return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP(), []int{34} } func (x *AuthorityState) GetAuthorityId() string { if x != nil { return x.AuthorityId } return "" } func (x *AuthorityState) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *AuthorityState) GetUpstreamAuthoritySubjectKeyId() string { if x != nil { return x.UpstreamAuthoritySubjectKeyId } return "" } var File_spire_api_server_localauthority_v1_localauthority_proto protoreflect.FileDescriptor const file_spire_api_server_localauthority_v1_localauthority_proto_rawDesc = "" + "\n" + "7spire/api/server/localauthority/v1/localauthority.proto\x12\"spire.api.server.localauthority.v1\"\x1d\n" + "\x1bGetJWTAuthorityStateRequest\"\x80\x02\n" + "\x1cGetJWTAuthorityStateResponse\x12J\n" + "\x06active\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x06active\x12N\n" + "\bprepared\x18\x02 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\bprepared\x12D\n" + "\x03old\x18\x03 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x03old\"\x1c\n" + "\x1aPrepareJWTAuthorityRequest\"\x80\x01\n" + "\x1bPrepareJWTAuthorityResponse\x12a\n" + "\x12prepared_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x11preparedAuthority\"@\n" + "\x1bActivateJWTAuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"\x83\x01\n" + "\x1cActivateJWTAuthorityResponse\x12c\n" + "\x13activated_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x12activatedAuthority\"=\n" + "\x18TaintJWTAuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"|\n" + "\x19TaintJWTAuthorityResponse\x12_\n" + "\x11tainted_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x10taintedAuthority\">\n" + "\x19RevokeJWTAuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"}\n" + "\x1aRevokeJWTAuthorityResponse\x12_\n" + "\x11revoked_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x10revokedAuthority\"\x1e\n" + "\x1cGetX509AuthorityStateRequest\"\x81\x02\n" + "\x1dGetX509AuthorityStateResponse\x12J\n" + "\x06active\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x06active\x12N\n" + "\bprepared\x18\x02 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\bprepared\x12D\n" + "\x03old\x18\x03 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x03old\"\x1d\n" + "\x1bPrepareX509AuthorityRequest\"\x81\x01\n" + "\x1cPrepareX509AuthorityResponse\x12a\n" + "\x12prepared_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x11preparedAuthority\"A\n" + "\x1cActivateX509AuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"\x84\x01\n" + "\x1dActivateX509AuthorityResponse\x12c\n" + "\x13activated_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x12activatedAuthority\">\n" + "\x19TaintX509AuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"}\n" + "\x1aTaintX509AuthorityResponse\x12_\n" + "\x11tainted_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x10taintedAuthority\"I\n" + "!TaintX509UpstreamAuthorityRequest\x12$\n" + "\x0esubject_key_id\x18\x01 \x01(\tR\fsubjectKeyId\"n\n" + "\"TaintX509UpstreamAuthorityResponse\x12H\n" + "!upstream_authority_subject_key_id\x18\x01 \x01(\tR\x1dupstreamAuthoritySubjectKeyId\"J\n" + "\"RevokeX509UpstreamAuthorityRequest\x12$\n" + "\x0esubject_key_id\x18\x01 \x01(\tR\fsubjectKeyId\"o\n" + "#RevokeX509UpstreamAuthorityResponse\x12H\n" + "!upstream_authority_subject_key_id\x18\x01 \x01(\tR\x1dupstreamAuthoritySubjectKeyId\"?\n" + "\x1aRevokeX509AuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"~\n" + "\x1bRevokeX509AuthorityResponse\x12_\n" + "\x11revoked_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x10revokedAuthority\"\x1d\n" + "\x1bGetWITAuthorityStateRequest\"\x80\x02\n" + "\x1cGetWITAuthorityStateResponse\x12J\n" + "\x06active\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x06active\x12N\n" + "\bprepared\x18\x02 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\bprepared\x12D\n" + "\x03old\x18\x03 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x03old\"\x1c\n" + "\x1aPrepareWITAuthorityRequest\"\x80\x01\n" + "\x1bPrepareWITAuthorityResponse\x12a\n" + "\x12prepared_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x11preparedAuthority\"@\n" + "\x1bActivateWITAuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"\x83\x01\n" + "\x1cActivateWITAuthorityResponse\x12c\n" + "\x13activated_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x12activatedAuthority\"=\n" + "\x18TaintWITAuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"|\n" + "\x19TaintWITAuthorityResponse\x12_\n" + "\x11tainted_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x10taintedAuthority\">\n" + "\x19RevokeWITAuthorityRequest\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\"}\n" + "\x1aRevokeWITAuthorityResponse\x12_\n" + "\x11revoked_authority\x18\x01 \x01(\v22.spire.api.server.localauthority.v1.AuthorityStateR\x10revokedAuthority\"\x9c\x01\n" + "\x0eAuthorityState\x12!\n" + "\fauthority_id\x18\x01 \x01(\tR\vauthorityId\x12\x1d\n" + "\n" + "expires_at\x18\x02 \x01(\x03R\texpiresAt\x12H\n" + "!upstream_authority_subject_key_id\x18\x03 \x01(\tR\x1dupstreamAuthoritySubjectKeyId2\xec\x14\n" + "\x0eLocalAuthority\x12\x99\x01\n" + "\x14GetJWTAuthorityState\x12?.spire.api.server.localauthority.v1.GetJWTAuthorityStateRequest\x1a@.spire.api.server.localauthority.v1.GetJWTAuthorityStateResponse\x12\x96\x01\n" + "\x13PrepareJWTAuthority\x12>.spire.api.server.localauthority.v1.PrepareJWTAuthorityRequest\x1a?.spire.api.server.localauthority.v1.PrepareJWTAuthorityResponse\x12\x99\x01\n" + "\x14ActivateJWTAuthority\x12?.spire.api.server.localauthority.v1.ActivateJWTAuthorityRequest\x1a@.spire.api.server.localauthority.v1.ActivateJWTAuthorityResponse\x12\x90\x01\n" + "\x11TaintJWTAuthority\x12<.spire.api.server.localauthority.v1.TaintJWTAuthorityRequest\x1a=.spire.api.server.localauthority.v1.TaintJWTAuthorityResponse\x12\x93\x01\n" + "\x12RevokeJWTAuthority\x12=.spire.api.server.localauthority.v1.RevokeJWTAuthorityRequest\x1a>.spire.api.server.localauthority.v1.RevokeJWTAuthorityResponse\x12\x9c\x01\n" + "\x15GetX509AuthorityState\x12@.spire.api.server.localauthority.v1.GetX509AuthorityStateRequest\x1aA.spire.api.server.localauthority.v1.GetX509AuthorityStateResponse\x12\x99\x01\n" + "\x14PrepareX509Authority\x12?.spire.api.server.localauthority.v1.PrepareX509AuthorityRequest\x1a@.spire.api.server.localauthority.v1.PrepareX509AuthorityResponse\x12\x9c\x01\n" + "\x15ActivateX509Authority\x12@.spire.api.server.localauthority.v1.ActivateX509AuthorityRequest\x1aA.spire.api.server.localauthority.v1.ActivateX509AuthorityResponse\x12\x93\x01\n" + "\x12TaintX509Authority\x12=.spire.api.server.localauthority.v1.TaintX509AuthorityRequest\x1a>.spire.api.server.localauthority.v1.TaintX509AuthorityResponse\x12\xab\x01\n" + "\x1aTaintX509UpstreamAuthority\x12E.spire.api.server.localauthority.v1.TaintX509UpstreamAuthorityRequest\x1aF.spire.api.server.localauthority.v1.TaintX509UpstreamAuthorityResponse\x12\x96\x01\n" + "\x13RevokeX509Authority\x12>.spire.api.server.localauthority.v1.RevokeX509AuthorityRequest\x1a?.spire.api.server.localauthority.v1.RevokeX509AuthorityResponse\x12\xae\x01\n" + "\x1bRevokeX509UpstreamAuthority\x12F.spire.api.server.localauthority.v1.RevokeX509UpstreamAuthorityRequest\x1aG.spire.api.server.localauthority.v1.RevokeX509UpstreamAuthorityResponse\x12\x99\x01\n" + "\x14GetWITAuthorityState\x12?.spire.api.server.localauthority.v1.GetWITAuthorityStateRequest\x1a@.spire.api.server.localauthority.v1.GetWITAuthorityStateResponse\x12\x96\x01\n" + "\x13PrepareWITAuthority\x12>.spire.api.server.localauthority.v1.PrepareWITAuthorityRequest\x1a?.spire.api.server.localauthority.v1.PrepareWITAuthorityResponse\x12\x99\x01\n" + "\x14ActivateWITAuthority\x12?.spire.api.server.localauthority.v1.ActivateWITAuthorityRequest\x1a@.spire.api.server.localauthority.v1.ActivateWITAuthorityResponse\x12\x90\x01\n" + "\x11TaintWITAuthority\x12<.spire.api.server.localauthority.v1.TaintWITAuthorityRequest\x1a=.spire.api.server.localauthority.v1.TaintWITAuthorityResponse\x12\x93\x01\n" + "\x12RevokeWITAuthority\x12=.spire.api.server.localauthority.v1.RevokeWITAuthorityRequest\x1a>.spire.api.server.localauthority.v1.RevokeWITAuthorityResponseB[ZYgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/localauthority/v1;localauthorityv1b\x06proto3" var ( file_spire_api_server_localauthority_v1_localauthority_proto_rawDescOnce sync.Once file_spire_api_server_localauthority_v1_localauthority_proto_rawDescData []byte ) func file_spire_api_server_localauthority_v1_localauthority_proto_rawDescGZIP() []byte { file_spire_api_server_localauthority_v1_localauthority_proto_rawDescOnce.Do(func() { file_spire_api_server_localauthority_v1_localauthority_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_localauthority_v1_localauthority_proto_rawDesc), len(file_spire_api_server_localauthority_v1_localauthority_proto_rawDesc))) }) return file_spire_api_server_localauthority_v1_localauthority_proto_rawDescData } var file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes = make([]protoimpl.MessageInfo, 35) var file_spire_api_server_localauthority_v1_localauthority_proto_goTypes = []any{ (*GetJWTAuthorityStateRequest)(nil), // 0: spire.api.server.localauthority.v1.GetJWTAuthorityStateRequest (*GetJWTAuthorityStateResponse)(nil), // 1: spire.api.server.localauthority.v1.GetJWTAuthorityStateResponse (*PrepareJWTAuthorityRequest)(nil), // 2: spire.api.server.localauthority.v1.PrepareJWTAuthorityRequest (*PrepareJWTAuthorityResponse)(nil), // 3: spire.api.server.localauthority.v1.PrepareJWTAuthorityResponse (*ActivateJWTAuthorityRequest)(nil), // 4: spire.api.server.localauthority.v1.ActivateJWTAuthorityRequest (*ActivateJWTAuthorityResponse)(nil), // 5: spire.api.server.localauthority.v1.ActivateJWTAuthorityResponse (*TaintJWTAuthorityRequest)(nil), // 6: spire.api.server.localauthority.v1.TaintJWTAuthorityRequest (*TaintJWTAuthorityResponse)(nil), // 7: spire.api.server.localauthority.v1.TaintJWTAuthorityResponse (*RevokeJWTAuthorityRequest)(nil), // 8: spire.api.server.localauthority.v1.RevokeJWTAuthorityRequest (*RevokeJWTAuthorityResponse)(nil), // 9: spire.api.server.localauthority.v1.RevokeJWTAuthorityResponse (*GetX509AuthorityStateRequest)(nil), // 10: spire.api.server.localauthority.v1.GetX509AuthorityStateRequest (*GetX509AuthorityStateResponse)(nil), // 11: spire.api.server.localauthority.v1.GetX509AuthorityStateResponse (*PrepareX509AuthorityRequest)(nil), // 12: spire.api.server.localauthority.v1.PrepareX509AuthorityRequest (*PrepareX509AuthorityResponse)(nil), // 13: spire.api.server.localauthority.v1.PrepareX509AuthorityResponse (*ActivateX509AuthorityRequest)(nil), // 14: spire.api.server.localauthority.v1.ActivateX509AuthorityRequest (*ActivateX509AuthorityResponse)(nil), // 15: spire.api.server.localauthority.v1.ActivateX509AuthorityResponse (*TaintX509AuthorityRequest)(nil), // 16: spire.api.server.localauthority.v1.TaintX509AuthorityRequest (*TaintX509AuthorityResponse)(nil), // 17: spire.api.server.localauthority.v1.TaintX509AuthorityResponse (*TaintX509UpstreamAuthorityRequest)(nil), // 18: spire.api.server.localauthority.v1.TaintX509UpstreamAuthorityRequest (*TaintX509UpstreamAuthorityResponse)(nil), // 19: spire.api.server.localauthority.v1.TaintX509UpstreamAuthorityResponse (*RevokeX509UpstreamAuthorityRequest)(nil), // 20: spire.api.server.localauthority.v1.RevokeX509UpstreamAuthorityRequest (*RevokeX509UpstreamAuthorityResponse)(nil), // 21: spire.api.server.localauthority.v1.RevokeX509UpstreamAuthorityResponse (*RevokeX509AuthorityRequest)(nil), // 22: spire.api.server.localauthority.v1.RevokeX509AuthorityRequest (*RevokeX509AuthorityResponse)(nil), // 23: spire.api.server.localauthority.v1.RevokeX509AuthorityResponse (*GetWITAuthorityStateRequest)(nil), // 24: spire.api.server.localauthority.v1.GetWITAuthorityStateRequest (*GetWITAuthorityStateResponse)(nil), // 25: spire.api.server.localauthority.v1.GetWITAuthorityStateResponse (*PrepareWITAuthorityRequest)(nil), // 26: spire.api.server.localauthority.v1.PrepareWITAuthorityRequest (*PrepareWITAuthorityResponse)(nil), // 27: spire.api.server.localauthority.v1.PrepareWITAuthorityResponse (*ActivateWITAuthorityRequest)(nil), // 28: spire.api.server.localauthority.v1.ActivateWITAuthorityRequest (*ActivateWITAuthorityResponse)(nil), // 29: spire.api.server.localauthority.v1.ActivateWITAuthorityResponse (*TaintWITAuthorityRequest)(nil), // 30: spire.api.server.localauthority.v1.TaintWITAuthorityRequest (*TaintWITAuthorityResponse)(nil), // 31: spire.api.server.localauthority.v1.TaintWITAuthorityResponse (*RevokeWITAuthorityRequest)(nil), // 32: spire.api.server.localauthority.v1.RevokeWITAuthorityRequest (*RevokeWITAuthorityResponse)(nil), // 33: spire.api.server.localauthority.v1.RevokeWITAuthorityResponse (*AuthorityState)(nil), // 34: spire.api.server.localauthority.v1.AuthorityState } var file_spire_api_server_localauthority_v1_localauthority_proto_depIdxs = []int32{ 34, // 0: spire.api.server.localauthority.v1.GetJWTAuthorityStateResponse.active:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 1: spire.api.server.localauthority.v1.GetJWTAuthorityStateResponse.prepared:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 2: spire.api.server.localauthority.v1.GetJWTAuthorityStateResponse.old:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 3: spire.api.server.localauthority.v1.PrepareJWTAuthorityResponse.prepared_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 4: spire.api.server.localauthority.v1.ActivateJWTAuthorityResponse.activated_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 5: spire.api.server.localauthority.v1.TaintJWTAuthorityResponse.tainted_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 6: spire.api.server.localauthority.v1.RevokeJWTAuthorityResponse.revoked_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 7: spire.api.server.localauthority.v1.GetX509AuthorityStateResponse.active:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 8: spire.api.server.localauthority.v1.GetX509AuthorityStateResponse.prepared:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 9: spire.api.server.localauthority.v1.GetX509AuthorityStateResponse.old:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 10: spire.api.server.localauthority.v1.PrepareX509AuthorityResponse.prepared_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 11: spire.api.server.localauthority.v1.ActivateX509AuthorityResponse.activated_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 12: spire.api.server.localauthority.v1.TaintX509AuthorityResponse.tainted_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 13: spire.api.server.localauthority.v1.RevokeX509AuthorityResponse.revoked_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 14: spire.api.server.localauthority.v1.GetWITAuthorityStateResponse.active:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 15: spire.api.server.localauthority.v1.GetWITAuthorityStateResponse.prepared:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 16: spire.api.server.localauthority.v1.GetWITAuthorityStateResponse.old:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 17: spire.api.server.localauthority.v1.PrepareWITAuthorityResponse.prepared_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 18: spire.api.server.localauthority.v1.ActivateWITAuthorityResponse.activated_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 19: spire.api.server.localauthority.v1.TaintWITAuthorityResponse.tainted_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 34, // 20: spire.api.server.localauthority.v1.RevokeWITAuthorityResponse.revoked_authority:type_name -> spire.api.server.localauthority.v1.AuthorityState 0, // 21: spire.api.server.localauthority.v1.LocalAuthority.GetJWTAuthorityState:input_type -> spire.api.server.localauthority.v1.GetJWTAuthorityStateRequest 2, // 22: spire.api.server.localauthority.v1.LocalAuthority.PrepareJWTAuthority:input_type -> spire.api.server.localauthority.v1.PrepareJWTAuthorityRequest 4, // 23: spire.api.server.localauthority.v1.LocalAuthority.ActivateJWTAuthority:input_type -> spire.api.server.localauthority.v1.ActivateJWTAuthorityRequest 6, // 24: spire.api.server.localauthority.v1.LocalAuthority.TaintJWTAuthority:input_type -> spire.api.server.localauthority.v1.TaintJWTAuthorityRequest 8, // 25: spire.api.server.localauthority.v1.LocalAuthority.RevokeJWTAuthority:input_type -> spire.api.server.localauthority.v1.RevokeJWTAuthorityRequest 10, // 26: spire.api.server.localauthority.v1.LocalAuthority.GetX509AuthorityState:input_type -> spire.api.server.localauthority.v1.GetX509AuthorityStateRequest 12, // 27: spire.api.server.localauthority.v1.LocalAuthority.PrepareX509Authority:input_type -> spire.api.server.localauthority.v1.PrepareX509AuthorityRequest 14, // 28: spire.api.server.localauthority.v1.LocalAuthority.ActivateX509Authority:input_type -> spire.api.server.localauthority.v1.ActivateX509AuthorityRequest 16, // 29: spire.api.server.localauthority.v1.LocalAuthority.TaintX509Authority:input_type -> spire.api.server.localauthority.v1.TaintX509AuthorityRequest 18, // 30: spire.api.server.localauthority.v1.LocalAuthority.TaintX509UpstreamAuthority:input_type -> spire.api.server.localauthority.v1.TaintX509UpstreamAuthorityRequest 22, // 31: spire.api.server.localauthority.v1.LocalAuthority.RevokeX509Authority:input_type -> spire.api.server.localauthority.v1.RevokeX509AuthorityRequest 20, // 32: spire.api.server.localauthority.v1.LocalAuthority.RevokeX509UpstreamAuthority:input_type -> spire.api.server.localauthority.v1.RevokeX509UpstreamAuthorityRequest 24, // 33: spire.api.server.localauthority.v1.LocalAuthority.GetWITAuthorityState:input_type -> spire.api.server.localauthority.v1.GetWITAuthorityStateRequest 26, // 34: spire.api.server.localauthority.v1.LocalAuthority.PrepareWITAuthority:input_type -> spire.api.server.localauthority.v1.PrepareWITAuthorityRequest 28, // 35: spire.api.server.localauthority.v1.LocalAuthority.ActivateWITAuthority:input_type -> spire.api.server.localauthority.v1.ActivateWITAuthorityRequest 30, // 36: spire.api.server.localauthority.v1.LocalAuthority.TaintWITAuthority:input_type -> spire.api.server.localauthority.v1.TaintWITAuthorityRequest 32, // 37: spire.api.server.localauthority.v1.LocalAuthority.RevokeWITAuthority:input_type -> spire.api.server.localauthority.v1.RevokeWITAuthorityRequest 1, // 38: spire.api.server.localauthority.v1.LocalAuthority.GetJWTAuthorityState:output_type -> spire.api.server.localauthority.v1.GetJWTAuthorityStateResponse 3, // 39: spire.api.server.localauthority.v1.LocalAuthority.PrepareJWTAuthority:output_type -> spire.api.server.localauthority.v1.PrepareJWTAuthorityResponse 5, // 40: spire.api.server.localauthority.v1.LocalAuthority.ActivateJWTAuthority:output_type -> spire.api.server.localauthority.v1.ActivateJWTAuthorityResponse 7, // 41: spire.api.server.localauthority.v1.LocalAuthority.TaintJWTAuthority:output_type -> spire.api.server.localauthority.v1.TaintJWTAuthorityResponse 9, // 42: spire.api.server.localauthority.v1.LocalAuthority.RevokeJWTAuthority:output_type -> spire.api.server.localauthority.v1.RevokeJWTAuthorityResponse 11, // 43: spire.api.server.localauthority.v1.LocalAuthority.GetX509AuthorityState:output_type -> spire.api.server.localauthority.v1.GetX509AuthorityStateResponse 13, // 44: spire.api.server.localauthority.v1.LocalAuthority.PrepareX509Authority:output_type -> spire.api.server.localauthority.v1.PrepareX509AuthorityResponse 15, // 45: spire.api.server.localauthority.v1.LocalAuthority.ActivateX509Authority:output_type -> spire.api.server.localauthority.v1.ActivateX509AuthorityResponse 17, // 46: spire.api.server.localauthority.v1.LocalAuthority.TaintX509Authority:output_type -> spire.api.server.localauthority.v1.TaintX509AuthorityResponse 19, // 47: spire.api.server.localauthority.v1.LocalAuthority.TaintX509UpstreamAuthority:output_type -> spire.api.server.localauthority.v1.TaintX509UpstreamAuthorityResponse 23, // 48: spire.api.server.localauthority.v1.LocalAuthority.RevokeX509Authority:output_type -> spire.api.server.localauthority.v1.RevokeX509AuthorityResponse 21, // 49: spire.api.server.localauthority.v1.LocalAuthority.RevokeX509UpstreamAuthority:output_type -> spire.api.server.localauthority.v1.RevokeX509UpstreamAuthorityResponse 25, // 50: spire.api.server.localauthority.v1.LocalAuthority.GetWITAuthorityState:output_type -> spire.api.server.localauthority.v1.GetWITAuthorityStateResponse 27, // 51: spire.api.server.localauthority.v1.LocalAuthority.PrepareWITAuthority:output_type -> spire.api.server.localauthority.v1.PrepareWITAuthorityResponse 29, // 52: spire.api.server.localauthority.v1.LocalAuthority.ActivateWITAuthority:output_type -> spire.api.server.localauthority.v1.ActivateWITAuthorityResponse 31, // 53: spire.api.server.localauthority.v1.LocalAuthority.TaintWITAuthority:output_type -> spire.api.server.localauthority.v1.TaintWITAuthorityResponse 33, // 54: spire.api.server.localauthority.v1.LocalAuthority.RevokeWITAuthority:output_type -> spire.api.server.localauthority.v1.RevokeWITAuthorityResponse 38, // [38:55] is the sub-list for method output_type 21, // [21:38] is the sub-list for method input_type 21, // [21:21] is the sub-list for extension type_name 21, // [21:21] is the sub-list for extension extendee 0, // [0:21] is the sub-list for field type_name } func init() { file_spire_api_server_localauthority_v1_localauthority_proto_init() } func file_spire_api_server_localauthority_v1_localauthority_proto_init() { if File_spire_api_server_localauthority_v1_localauthority_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_localauthority_v1_localauthority_proto_rawDesc), len(file_spire_api_server_localauthority_v1_localauthority_proto_rawDesc)), NumEnums: 0, NumMessages: 35, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_localauthority_v1_localauthority_proto_goTypes, DependencyIndexes: file_spire_api_server_localauthority_v1_localauthority_proto_depIdxs, MessageInfos: file_spire_api_server_localauthority_v1_localauthority_proto_msgTypes, }.Build() File_spire_api_server_localauthority_v1_localauthority_proto = out.File file_spire_api_server_localauthority_v1_localauthority_proto_goTypes = nil file_spire_api_server_localauthority_v1_localauthority_proto_depIdxs = nil } localauthority.proto000066400000000000000000000341151516071322100342600ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/localauthority/v1syntax = "proto3"; package spire.api.server.localauthority.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/localauthority/v1;localauthorityv1"; // The LocalAuthority service provides a way to manage the signing keys (and // related material) of the SPIRE Server exposing it. service LocalAuthority { // GetJWTAuthorityState returns the state of all locally configured // JWT authorities. rpc GetJWTAuthorityState(GetJWTAuthorityStateRequest) returns (GetJWTAuthorityStateResponse); // PrepareJWTAuthority prepares a new JWT authority for use by // generating a new key and injecting it into the bundle. This action // will propagate the new public key cluster-wide. rpc PrepareJWTAuthority(PrepareJWTAuthorityRequest) returns (PrepareJWTAuthorityResponse); // ActivateJWTAuthority activates a prepared JWT authority for use, // which will cause it to be used for all JWT signing operations // serviced by this server going forward. If a new JWT authority has // not already been prepared, a FailedPrecondition error will be returned. rpc ActivateJWTAuthority(ActivateJWTAuthorityRequest) returns (ActivateJWTAuthorityResponse); // TaintJWTAuthority marks the previously active JWT authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // It can receive the Authority ID of an old JWT authority. // // If a previously active JWT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. rpc TaintJWTAuthority(TaintJWTAuthorityRequest) returns (TaintJWTAuthorityResponse); // RevokeJWTAuthority revokes the previously active JWT authority by // removing it from the bundle and propagating this update throughout // the cluster. // It can receive the Authority ID of an old JWT authority. // // If a previously active JWT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. rpc RevokeJWTAuthority(RevokeJWTAuthorityRequest) returns (RevokeJWTAuthorityResponse); // GetX509AuthorityState returns the state of all locally configured // X.509 authorities. rpc GetX509AuthorityState(GetX509AuthorityStateRequest) returns (GetX509AuthorityStateResponse); // PrepareX509Authority prepares a new X.509 authority for use by // generating a new key and injecting the resulting CA certificate into // the bundle. This action will propagate the new CA cluster-wide. rpc PrepareX509Authority(PrepareX509AuthorityRequest) returns (PrepareX509AuthorityResponse); // ActivateX509Authority activates a prepared X.509 authority for use, // which will cause it to be used for all X.509 signing operations // serviced by this server going forward. If a new X.509 authority has // not already been prepared, a FailedPrecondition error will be returned. rpc ActivateX509Authority(ActivateX509AuthorityRequest) returns (ActivateX509AuthorityResponse); // TaintX509Authority marks the previously active X.509 authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // The X.509 authority to taint is identified using the provided X.509 Subject Key // // If an upstream authority is configured then local authorities cannot be tainted, // and a FailedPrecondition error will be returned. // // If a previously active X.509 authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. rpc TaintX509Authority(TaintX509AuthorityRequest) returns (TaintX509AuthorityResponse); // TaintX509UpstreamAuthority marks the provided upstream authority as // being tainted. SPIRE Agents observing a tainted authority // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // It is important to change to a new active upstream authority before tainting the old one, // since tainting will force the rotation of any bundle that is using // the old upstream authority. // The X.509 authority to taint is identified using the provided X.509 Subject Key // Identifier (or SKID) of the old X.509 authority. // // If an X.509 upstream authority is not configured, or the identified upstream // X.509 authority is active, a FailedPrecondition error will be returned. rpc TaintX509UpstreamAuthority(TaintX509UpstreamAuthorityRequest) returns (TaintX509UpstreamAuthorityResponse); // RevokeX509Authority revokes the previously active X.509 authority by // removing it from the bundle and propagating this update throughout // the cluster. // It can receive the public key of an old X.509 authority. // // If a previously active X.509 authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. rpc RevokeX509Authority(RevokeX509AuthorityRequest) returns (RevokeX509AuthorityResponse); // RevokeX509UpstreamAuthority revokes the previously active X.509 upstream authority by // removing it from the bundle and propagating this update throughout // the cluster. // The X.509 authority to revoke is identified using the provided subject key ID of // the authority's CA certificate. // // If a previously active X.509 upstream authority does not exist, a FailedPrecondition // error will be returned. rpc RevokeX509UpstreamAuthority(RevokeX509UpstreamAuthorityRequest) returns (RevokeX509UpstreamAuthorityResponse); // GetWITAuthorityState returns the state of all locally configured // WIT authorities. rpc GetWITAuthorityState(GetWITAuthorityStateRequest) returns (GetWITAuthorityStateResponse); // PrepareWITAuthority prepares a new WIT authority for use by // generating a new key and injecting it into the bundle. This action // will propagate the new public key cluster-wide. rpc PrepareWITAuthority(PrepareWITAuthorityRequest) returns (PrepareWITAuthorityResponse); // ActivateWITAuthority activates a prepared WIT authority for use, // which will cause it to be used for all WIT signing operations // serviced by this server going forward. If a new WIT authority has // not already been prepared, a FailedPrecondition error will be returned. rpc ActivateWITAuthority(ActivateWITAuthorityRequest) returns (ActivateWITAuthorityResponse); // TaintWITAuthority marks the previously active WIT authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // The WIT authority to taint is identified using the authority ID of // the old WIT authority. // // If a previously active WIT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. rpc TaintWITAuthority(TaintWITAuthorityRequest) returns (TaintWITAuthorityResponse); // RevokeWITAuthority revokes the previously active WIT authority by // removing it from the bundle and propagating this update throughout // the cluster. // The WIT authority to revoke is identified using the authority ID of // the old WIT authority. // // If a previously active WIT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. rpc RevokeWITAuthority(RevokeWITAuthorityRequest) returns (RevokeWITAuthorityResponse); } message GetJWTAuthorityStateRequest {} message GetJWTAuthorityStateResponse { // Authority currently being used for signing operations. AuthorityState active = 1; // Authority added on bundle but is not used yet. AuthorityState prepared = 2; // Authority in that was previously used for signing operations, // but it is not longer. AuthorityState old = 3; } message PrepareJWTAuthorityRequest {} message PrepareJWTAuthorityResponse { AuthorityState prepared_authority = 1; } message ActivateJWTAuthorityRequest { // The authority ID of the local authority JWT authority to activate. // This is the JWT Key ID. string authority_id = 1; } message ActivateJWTAuthorityResponse { AuthorityState activated_authority = 1; } message TaintJWTAuthorityRequest { // The authority ID of the local authority JWT authority to taint. // This is the JWT Key ID. string authority_id = 1; } message TaintJWTAuthorityResponse { AuthorityState tainted_authority = 1; } message RevokeJWTAuthorityRequest { // The authority ID of the local authority JWT authority to revoke. // This is the JWT Key ID. string authority_id = 1; } message RevokeJWTAuthorityResponse { AuthorityState revoked_authority = 1; } message GetX509AuthorityStateRequest {} message GetX509AuthorityStateResponse { // Authority currently being used for signing operations. AuthorityState active = 1; // Authority added on bundle but is not used yet. AuthorityState prepared = 2; // Authority in that was previously used for signing operations, // but it is not longer. AuthorityState old = 3; } message PrepareX509AuthorityRequest {} message PrepareX509AuthorityResponse { AuthorityState prepared_authority = 1; } message ActivateX509AuthorityRequest { // The authority ID of the local X.509 authority to activate. // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate, which is calculated by doing a // SHA-1 hash over the ASN.1 encoding of the public key. string authority_id = 1; } message ActivateX509AuthorityResponse { AuthorityState activated_authority = 1; } message TaintX509AuthorityRequest { // The authority ID of the local X.509 authority to taint. // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate, which is calculated by doing a // SHA-1 hash over the ASN.1 encoding of the public key. string authority_id = 1; } message TaintX509AuthorityResponse { AuthorityState tainted_authority = 1; } message TaintX509UpstreamAuthorityRequest { // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate of the upstream X.509 authority to taint. string subject_key_id = 1; } message TaintX509UpstreamAuthorityResponse { // The Subject Key Identifier (or SKID) of the upstream authority // tainted. string upstream_authority_subject_key_id = 1; } message RevokeX509UpstreamAuthorityRequest { // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate of the upstream X.509 authority to revoke. string subject_key_id = 1; } message RevokeX509UpstreamAuthorityResponse { // The Subject Key Identifier (or SKID) of the upstream authority // revoked. string upstream_authority_subject_key_id = 1; } message RevokeX509AuthorityRequest { // The authority ID of the local X.509 authority to revoke. // This is the X.509 Subject Key Identifier (or SKID) of the // authority's CA certificate, which is calculated by doing a // SHA-1 hash over the ASN.1 encoding of the public key. string authority_id = 1; } message RevokeX509AuthorityResponse { AuthorityState revoked_authority = 1; } message GetWITAuthorityStateRequest {} message GetWITAuthorityStateResponse { // Authority currently being used for signing operations. AuthorityState active = 1; // Authority added on bundle but is not used yet. AuthorityState prepared = 2; // Authority in that was previously used for signing operations, // but it is not longer. AuthorityState old = 3; } message PrepareWITAuthorityRequest {} message PrepareWITAuthorityResponse { AuthorityState prepared_authority = 1; } message ActivateWITAuthorityRequest { // The authority ID of the local authority WIT authority to activate. // This is the WIT Key ID. string authority_id = 1; } message ActivateWITAuthorityResponse { AuthorityState activated_authority = 1; } message TaintWITAuthorityRequest { // The authority ID of the local authority WIT authority to taint. // This is the WIT Key ID. string authority_id = 1; } message TaintWITAuthorityResponse { AuthorityState tainted_authority = 1; } message RevokeWITAuthorityRequest { // The authority ID of the local authority WIT authority to revoke. // This is the WIT Key ID. string authority_id = 1; } message RevokeWITAuthorityResponse { AuthorityState revoked_authority = 1; } message AuthorityState { // The authority ID. string authority_id = 1; // Expiration timestamp (seconds since Unix epoch). int64 expires_at = 2; // The Subject Key Identifier (or SKID) of the upstream authority, // applicable only for X.509 authorities. string upstream_authority_subject_key_id = 3; } localauthority_grpc.pb.go000066400000000000000000001342111516071322100351330ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/localauthority/v1// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/localauthority/v1/localauthority.proto package localauthorityv1 import ( context "context" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( LocalAuthority_GetJWTAuthorityState_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/GetJWTAuthorityState" LocalAuthority_PrepareJWTAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/PrepareJWTAuthority" LocalAuthority_ActivateJWTAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/ActivateJWTAuthority" LocalAuthority_TaintJWTAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/TaintJWTAuthority" LocalAuthority_RevokeJWTAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/RevokeJWTAuthority" LocalAuthority_GetX509AuthorityState_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/GetX509AuthorityState" LocalAuthority_PrepareX509Authority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/PrepareX509Authority" LocalAuthority_ActivateX509Authority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/ActivateX509Authority" LocalAuthority_TaintX509Authority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/TaintX509Authority" LocalAuthority_TaintX509UpstreamAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/TaintX509UpstreamAuthority" LocalAuthority_RevokeX509Authority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/RevokeX509Authority" LocalAuthority_RevokeX509UpstreamAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/RevokeX509UpstreamAuthority" LocalAuthority_GetWITAuthorityState_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/GetWITAuthorityState" LocalAuthority_PrepareWITAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/PrepareWITAuthority" LocalAuthority_ActivateWITAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/ActivateWITAuthority" LocalAuthority_TaintWITAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/TaintWITAuthority" LocalAuthority_RevokeWITAuthority_FullMethodName = "/spire.api.server.localauthority.v1.LocalAuthority/RevokeWITAuthority" ) // LocalAuthorityClient is the client API for LocalAuthority service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. // // The LocalAuthority service provides a way to manage the signing keys (and // related material) of the SPIRE Server exposing it. type LocalAuthorityClient interface { // GetJWTAuthorityState returns the state of all locally configured // JWT authorities. GetJWTAuthorityState(ctx context.Context, in *GetJWTAuthorityStateRequest, opts ...grpc.CallOption) (*GetJWTAuthorityStateResponse, error) // PrepareJWTAuthority prepares a new JWT authority for use by // generating a new key and injecting it into the bundle. This action // will propagate the new public key cluster-wide. PrepareJWTAuthority(ctx context.Context, in *PrepareJWTAuthorityRequest, opts ...grpc.CallOption) (*PrepareJWTAuthorityResponse, error) // ActivateJWTAuthority activates a prepared JWT authority for use, // which will cause it to be used for all JWT signing operations // serviced by this server going forward. If a new JWT authority has // not already been prepared, a FailedPrecondition error will be returned. ActivateJWTAuthority(ctx context.Context, in *ActivateJWTAuthorityRequest, opts ...grpc.CallOption) (*ActivateJWTAuthorityResponse, error) // TaintJWTAuthority marks the previously active JWT authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // It can receive the Authority ID of an old JWT authority. // // If a previously active JWT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. TaintJWTAuthority(ctx context.Context, in *TaintJWTAuthorityRequest, opts ...grpc.CallOption) (*TaintJWTAuthorityResponse, error) // RevokeJWTAuthority revokes the previously active JWT authority by // removing it from the bundle and propagating this update throughout // the cluster. // It can receive the Authority ID of an old JWT authority. // // If a previously active JWT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. RevokeJWTAuthority(ctx context.Context, in *RevokeJWTAuthorityRequest, opts ...grpc.CallOption) (*RevokeJWTAuthorityResponse, error) // GetX509AuthorityState returns the state of all locally configured // X.509 authorities. GetX509AuthorityState(ctx context.Context, in *GetX509AuthorityStateRequest, opts ...grpc.CallOption) (*GetX509AuthorityStateResponse, error) // PrepareX509Authority prepares a new X.509 authority for use by // generating a new key and injecting the resulting CA certificate into // the bundle. This action will propagate the new CA cluster-wide. PrepareX509Authority(ctx context.Context, in *PrepareX509AuthorityRequest, opts ...grpc.CallOption) (*PrepareX509AuthorityResponse, error) // ActivateX509Authority activates a prepared X.509 authority for use, // which will cause it to be used for all X.509 signing operations // serviced by this server going forward. If a new X.509 authority has // not already been prepared, a FailedPrecondition error will be returned. ActivateX509Authority(ctx context.Context, in *ActivateX509AuthorityRequest, opts ...grpc.CallOption) (*ActivateX509AuthorityResponse, error) // TaintX509Authority marks the previously active X.509 authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // The X.509 authority to taint is identified using the provided X.509 Subject Key // // If an upstream authority is configured then local authorities cannot be tainted, // and a FailedPrecondition error will be returned. // // If a previously active X.509 authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. TaintX509Authority(ctx context.Context, in *TaintX509AuthorityRequest, opts ...grpc.CallOption) (*TaintX509AuthorityResponse, error) // TaintX509UpstreamAuthority marks the provided upstream authority as // being tainted. SPIRE Agents observing a tainted authority // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // It is important to change to a new active upstream authority before tainting the old one, // since tainting will force the rotation of any bundle that is using // the old upstream authority. // The X.509 authority to taint is identified using the provided X.509 Subject Key // Identifier (or SKID) of the old X.509 authority. // // If an X.509 upstream authority is not configured, or the identified upstream // X.509 authority is active, a FailedPrecondition error will be returned. TaintX509UpstreamAuthority(ctx context.Context, in *TaintX509UpstreamAuthorityRequest, opts ...grpc.CallOption) (*TaintX509UpstreamAuthorityResponse, error) // RevokeX509Authority revokes the previously active X.509 authority by // removing it from the bundle and propagating this update throughout // the cluster. // It can receive the public key of an old X.509 authority. // // If a previously active X.509 authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. RevokeX509Authority(ctx context.Context, in *RevokeX509AuthorityRequest, opts ...grpc.CallOption) (*RevokeX509AuthorityResponse, error) // RevokeX509UpstreamAuthority revokes the previously active X.509 upstream authority by // removing it from the bundle and propagating this update throughout // the cluster. // The X.509 authority to revoke is identified using the provided subject key ID of // the authority's CA certificate. // // If a previously active X.509 upstream authority does not exist, a FailedPrecondition // error will be returned. RevokeX509UpstreamAuthority(ctx context.Context, in *RevokeX509UpstreamAuthorityRequest, opts ...grpc.CallOption) (*RevokeX509UpstreamAuthorityResponse, error) // GetWITAuthorityState returns the state of all locally configured // WIT authorities. GetWITAuthorityState(ctx context.Context, in *GetWITAuthorityStateRequest, opts ...grpc.CallOption) (*GetWITAuthorityStateResponse, error) // PrepareWITAuthority prepares a new WIT authority for use by // generating a new key and injecting it into the bundle. This action // will propagate the new public key cluster-wide. PrepareWITAuthority(ctx context.Context, in *PrepareWITAuthorityRequest, opts ...grpc.CallOption) (*PrepareWITAuthorityResponse, error) // ActivateWITAuthority activates a prepared WIT authority for use, // which will cause it to be used for all WIT signing operations // serviced by this server going forward. If a new WIT authority has // not already been prepared, a FailedPrecondition error will be returned. ActivateWITAuthority(ctx context.Context, in *ActivateWITAuthorityRequest, opts ...grpc.CallOption) (*ActivateWITAuthorityResponse, error) // TaintWITAuthority marks the previously active WIT authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // The WIT authority to taint is identified using the authority ID of // the old WIT authority. // // If a previously active WIT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. TaintWITAuthority(ctx context.Context, in *TaintWITAuthorityRequest, opts ...grpc.CallOption) (*TaintWITAuthorityResponse, error) // RevokeWITAuthority revokes the previously active WIT authority by // removing it from the bundle and propagating this update throughout // the cluster. // The WIT authority to revoke is identified using the authority ID of // the old WIT authority. // // If a previously active WIT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. RevokeWITAuthority(ctx context.Context, in *RevokeWITAuthorityRequest, opts ...grpc.CallOption) (*RevokeWITAuthorityResponse, error) } type localAuthorityClient struct { cc grpc.ClientConnInterface } func NewLocalAuthorityClient(cc grpc.ClientConnInterface) LocalAuthorityClient { return &localAuthorityClient{cc} } func (c *localAuthorityClient) GetJWTAuthorityState(ctx context.Context, in *GetJWTAuthorityStateRequest, opts ...grpc.CallOption) (*GetJWTAuthorityStateResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(GetJWTAuthorityStateResponse) err := c.cc.Invoke(ctx, LocalAuthority_GetJWTAuthorityState_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) PrepareJWTAuthority(ctx context.Context, in *PrepareJWTAuthorityRequest, opts ...grpc.CallOption) (*PrepareJWTAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(PrepareJWTAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_PrepareJWTAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) ActivateJWTAuthority(ctx context.Context, in *ActivateJWTAuthorityRequest, opts ...grpc.CallOption) (*ActivateJWTAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(ActivateJWTAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_ActivateJWTAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) TaintJWTAuthority(ctx context.Context, in *TaintJWTAuthorityRequest, opts ...grpc.CallOption) (*TaintJWTAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(TaintJWTAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_TaintJWTAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) RevokeJWTAuthority(ctx context.Context, in *RevokeJWTAuthorityRequest, opts ...grpc.CallOption) (*RevokeJWTAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(RevokeJWTAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_RevokeJWTAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) GetX509AuthorityState(ctx context.Context, in *GetX509AuthorityStateRequest, opts ...grpc.CallOption) (*GetX509AuthorityStateResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(GetX509AuthorityStateResponse) err := c.cc.Invoke(ctx, LocalAuthority_GetX509AuthorityState_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) PrepareX509Authority(ctx context.Context, in *PrepareX509AuthorityRequest, opts ...grpc.CallOption) (*PrepareX509AuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(PrepareX509AuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_PrepareX509Authority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) ActivateX509Authority(ctx context.Context, in *ActivateX509AuthorityRequest, opts ...grpc.CallOption) (*ActivateX509AuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(ActivateX509AuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_ActivateX509Authority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) TaintX509Authority(ctx context.Context, in *TaintX509AuthorityRequest, opts ...grpc.CallOption) (*TaintX509AuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(TaintX509AuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_TaintX509Authority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) TaintX509UpstreamAuthority(ctx context.Context, in *TaintX509UpstreamAuthorityRequest, opts ...grpc.CallOption) (*TaintX509UpstreamAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(TaintX509UpstreamAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_TaintX509UpstreamAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) RevokeX509Authority(ctx context.Context, in *RevokeX509AuthorityRequest, opts ...grpc.CallOption) (*RevokeX509AuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(RevokeX509AuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_RevokeX509Authority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) RevokeX509UpstreamAuthority(ctx context.Context, in *RevokeX509UpstreamAuthorityRequest, opts ...grpc.CallOption) (*RevokeX509UpstreamAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(RevokeX509UpstreamAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_RevokeX509UpstreamAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) GetWITAuthorityState(ctx context.Context, in *GetWITAuthorityStateRequest, opts ...grpc.CallOption) (*GetWITAuthorityStateResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(GetWITAuthorityStateResponse) err := c.cc.Invoke(ctx, LocalAuthority_GetWITAuthorityState_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) PrepareWITAuthority(ctx context.Context, in *PrepareWITAuthorityRequest, opts ...grpc.CallOption) (*PrepareWITAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(PrepareWITAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_PrepareWITAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) ActivateWITAuthority(ctx context.Context, in *ActivateWITAuthorityRequest, opts ...grpc.CallOption) (*ActivateWITAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(ActivateWITAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_ActivateWITAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) TaintWITAuthority(ctx context.Context, in *TaintWITAuthorityRequest, opts ...grpc.CallOption) (*TaintWITAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(TaintWITAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_TaintWITAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *localAuthorityClient) RevokeWITAuthority(ctx context.Context, in *RevokeWITAuthorityRequest, opts ...grpc.CallOption) (*RevokeWITAuthorityResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(RevokeWITAuthorityResponse) err := c.cc.Invoke(ctx, LocalAuthority_RevokeWITAuthority_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // LocalAuthorityServer is the server API for LocalAuthority service. // All implementations must embed UnimplementedLocalAuthorityServer // for forward compatibility. // // The LocalAuthority service provides a way to manage the signing keys (and // related material) of the SPIRE Server exposing it. type LocalAuthorityServer interface { // GetJWTAuthorityState returns the state of all locally configured // JWT authorities. GetJWTAuthorityState(context.Context, *GetJWTAuthorityStateRequest) (*GetJWTAuthorityStateResponse, error) // PrepareJWTAuthority prepares a new JWT authority for use by // generating a new key and injecting it into the bundle. This action // will propagate the new public key cluster-wide. PrepareJWTAuthority(context.Context, *PrepareJWTAuthorityRequest) (*PrepareJWTAuthorityResponse, error) // ActivateJWTAuthority activates a prepared JWT authority for use, // which will cause it to be used for all JWT signing operations // serviced by this server going forward. If a new JWT authority has // not already been prepared, a FailedPrecondition error will be returned. ActivateJWTAuthority(context.Context, *ActivateJWTAuthorityRequest) (*ActivateJWTAuthorityResponse, error) // TaintJWTAuthority marks the previously active JWT authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // It can receive the Authority ID of an old JWT authority. // // If a previously active JWT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. TaintJWTAuthority(context.Context, *TaintJWTAuthorityRequest) (*TaintJWTAuthorityResponse, error) // RevokeJWTAuthority revokes the previously active JWT authority by // removing it from the bundle and propagating this update throughout // the cluster. // It can receive the Authority ID of an old JWT authority. // // If a previously active JWT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. RevokeJWTAuthority(context.Context, *RevokeJWTAuthorityRequest) (*RevokeJWTAuthorityResponse, error) // GetX509AuthorityState returns the state of all locally configured // X.509 authorities. GetX509AuthorityState(context.Context, *GetX509AuthorityStateRequest) (*GetX509AuthorityStateResponse, error) // PrepareX509Authority prepares a new X.509 authority for use by // generating a new key and injecting the resulting CA certificate into // the bundle. This action will propagate the new CA cluster-wide. PrepareX509Authority(context.Context, *PrepareX509AuthorityRequest) (*PrepareX509AuthorityResponse, error) // ActivateX509Authority activates a prepared X.509 authority for use, // which will cause it to be used for all X.509 signing operations // serviced by this server going forward. If a new X.509 authority has // not already been prepared, a FailedPrecondition error will be returned. ActivateX509Authority(context.Context, *ActivateX509AuthorityRequest) (*ActivateX509AuthorityResponse, error) // TaintX509Authority marks the previously active X.509 authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // The X.509 authority to taint is identified using the provided X.509 Subject Key // // If an upstream authority is configured then local authorities cannot be tainted, // and a FailedPrecondition error will be returned. // // If a previously active X.509 authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. TaintX509Authority(context.Context, *TaintX509AuthorityRequest) (*TaintX509AuthorityResponse, error) // TaintX509UpstreamAuthority marks the provided upstream authority as // being tainted. SPIRE Agents observing a tainted authority // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // It is important to change to a new active upstream authority before tainting the old one, // since tainting will force the rotation of any bundle that is using // the old upstream authority. // The X.509 authority to taint is identified using the provided X.509 Subject Key // Identifier (or SKID) of the old X.509 authority. // // If an X.509 upstream authority is not configured, or the identified upstream // X.509 authority is active, a FailedPrecondition error will be returned. TaintX509UpstreamAuthority(context.Context, *TaintX509UpstreamAuthorityRequest) (*TaintX509UpstreamAuthorityResponse, error) // RevokeX509Authority revokes the previously active X.509 authority by // removing it from the bundle and propagating this update throughout // the cluster. // It can receive the public key of an old X.509 authority. // // If a previously active X.509 authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. RevokeX509Authority(context.Context, *RevokeX509AuthorityRequest) (*RevokeX509AuthorityResponse, error) // RevokeX509UpstreamAuthority revokes the previously active X.509 upstream authority by // removing it from the bundle and propagating this update throughout // the cluster. // The X.509 authority to revoke is identified using the provided subject key ID of // the authority's CA certificate. // // If a previously active X.509 upstream authority does not exist, a FailedPrecondition // error will be returned. RevokeX509UpstreamAuthority(context.Context, *RevokeX509UpstreamAuthorityRequest) (*RevokeX509UpstreamAuthorityResponse, error) // GetWITAuthorityState returns the state of all locally configured // WIT authorities. GetWITAuthorityState(context.Context, *GetWITAuthorityStateRequest) (*GetWITAuthorityStateResponse, error) // PrepareWITAuthority prepares a new WIT authority for use by // generating a new key and injecting it into the bundle. This action // will propagate the new public key cluster-wide. PrepareWITAuthority(context.Context, *PrepareWITAuthorityRequest) (*PrepareWITAuthorityResponse, error) // ActivateWITAuthority activates a prepared WIT authority for use, // which will cause it to be used for all WIT signing operations // serviced by this server going forward. If a new WIT authority has // not already been prepared, a FailedPrecondition error will be returned. ActivateWITAuthority(context.Context, *ActivateWITAuthorityRequest) (*ActivateWITAuthorityResponse, error) // TaintWITAuthority marks the previously active WIT authority as // being tainted. SPIRE Agents observing an authority to be tainted // will perform proactive rotations of any key material related to // the tainted authority. The result of this action will be observed // cluster-wide. // The WIT authority to taint is identified using the authority ID of // the old WIT authority. // // If a previously active WIT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. TaintWITAuthority(context.Context, *TaintWITAuthorityRequest) (*TaintWITAuthorityResponse, error) // RevokeWITAuthority revokes the previously active WIT authority by // removing it from the bundle and propagating this update throughout // the cluster. // The WIT authority to revoke is identified using the authority ID of // the old WIT authority. // // If a previously active WIT authority does not exist (e.g. if one // has been prepared but not activated yet), a FailedPrecondition // error will be returned. RevokeWITAuthority(context.Context, *RevokeWITAuthorityRequest) (*RevokeWITAuthorityResponse, error) mustEmbedUnimplementedLocalAuthorityServer() } // UnimplementedLocalAuthorityServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedLocalAuthorityServer struct{} func (UnimplementedLocalAuthorityServer) GetJWTAuthorityState(context.Context, *GetJWTAuthorityStateRequest) (*GetJWTAuthorityStateResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method GetJWTAuthorityState not implemented") } func (UnimplementedLocalAuthorityServer) PrepareJWTAuthority(context.Context, *PrepareJWTAuthorityRequest) (*PrepareJWTAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method PrepareJWTAuthority not implemented") } func (UnimplementedLocalAuthorityServer) ActivateJWTAuthority(context.Context, *ActivateJWTAuthorityRequest) (*ActivateJWTAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method ActivateJWTAuthority not implemented") } func (UnimplementedLocalAuthorityServer) TaintJWTAuthority(context.Context, *TaintJWTAuthorityRequest) (*TaintJWTAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method TaintJWTAuthority not implemented") } func (UnimplementedLocalAuthorityServer) RevokeJWTAuthority(context.Context, *RevokeJWTAuthorityRequest) (*RevokeJWTAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method RevokeJWTAuthority not implemented") } func (UnimplementedLocalAuthorityServer) GetX509AuthorityState(context.Context, *GetX509AuthorityStateRequest) (*GetX509AuthorityStateResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method GetX509AuthorityState not implemented") } func (UnimplementedLocalAuthorityServer) PrepareX509Authority(context.Context, *PrepareX509AuthorityRequest) (*PrepareX509AuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method PrepareX509Authority not implemented") } func (UnimplementedLocalAuthorityServer) ActivateX509Authority(context.Context, *ActivateX509AuthorityRequest) (*ActivateX509AuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method ActivateX509Authority not implemented") } func (UnimplementedLocalAuthorityServer) TaintX509Authority(context.Context, *TaintX509AuthorityRequest) (*TaintX509AuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method TaintX509Authority not implemented") } func (UnimplementedLocalAuthorityServer) TaintX509UpstreamAuthority(context.Context, *TaintX509UpstreamAuthorityRequest) (*TaintX509UpstreamAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method TaintX509UpstreamAuthority not implemented") } func (UnimplementedLocalAuthorityServer) RevokeX509Authority(context.Context, *RevokeX509AuthorityRequest) (*RevokeX509AuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method RevokeX509Authority not implemented") } func (UnimplementedLocalAuthorityServer) RevokeX509UpstreamAuthority(context.Context, *RevokeX509UpstreamAuthorityRequest) (*RevokeX509UpstreamAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method RevokeX509UpstreamAuthority not implemented") } func (UnimplementedLocalAuthorityServer) GetWITAuthorityState(context.Context, *GetWITAuthorityStateRequest) (*GetWITAuthorityStateResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method GetWITAuthorityState not implemented") } func (UnimplementedLocalAuthorityServer) PrepareWITAuthority(context.Context, *PrepareWITAuthorityRequest) (*PrepareWITAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method PrepareWITAuthority not implemented") } func (UnimplementedLocalAuthorityServer) ActivateWITAuthority(context.Context, *ActivateWITAuthorityRequest) (*ActivateWITAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method ActivateWITAuthority not implemented") } func (UnimplementedLocalAuthorityServer) TaintWITAuthority(context.Context, *TaintWITAuthorityRequest) (*TaintWITAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method TaintWITAuthority not implemented") } func (UnimplementedLocalAuthorityServer) RevokeWITAuthority(context.Context, *RevokeWITAuthorityRequest) (*RevokeWITAuthorityResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method RevokeWITAuthority not implemented") } func (UnimplementedLocalAuthorityServer) mustEmbedUnimplementedLocalAuthorityServer() {} func (UnimplementedLocalAuthorityServer) testEmbeddedByValue() {} // UnsafeLocalAuthorityServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to LocalAuthorityServer will // result in compilation errors. type UnsafeLocalAuthorityServer interface { mustEmbedUnimplementedLocalAuthorityServer() } func RegisterLocalAuthorityServer(s grpc.ServiceRegistrar, srv LocalAuthorityServer) { // If the following call pancis, it indicates UnimplementedLocalAuthorityServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&LocalAuthority_ServiceDesc, srv) } func _LocalAuthority_GetJWTAuthorityState_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetJWTAuthorityStateRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).GetJWTAuthorityState(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_GetJWTAuthorityState_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).GetJWTAuthorityState(ctx, req.(*GetJWTAuthorityStateRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_PrepareJWTAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(PrepareJWTAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).PrepareJWTAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_PrepareJWTAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).PrepareJWTAuthority(ctx, req.(*PrepareJWTAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_ActivateJWTAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ActivateJWTAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).ActivateJWTAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_ActivateJWTAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).ActivateJWTAuthority(ctx, req.(*ActivateJWTAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_TaintJWTAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(TaintJWTAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).TaintJWTAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_TaintJWTAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).TaintJWTAuthority(ctx, req.(*TaintJWTAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_RevokeJWTAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(RevokeJWTAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).RevokeJWTAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_RevokeJWTAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).RevokeJWTAuthority(ctx, req.(*RevokeJWTAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_GetX509AuthorityState_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetX509AuthorityStateRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).GetX509AuthorityState(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_GetX509AuthorityState_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).GetX509AuthorityState(ctx, req.(*GetX509AuthorityStateRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_PrepareX509Authority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(PrepareX509AuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).PrepareX509Authority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_PrepareX509Authority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).PrepareX509Authority(ctx, req.(*PrepareX509AuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_ActivateX509Authority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ActivateX509AuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).ActivateX509Authority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_ActivateX509Authority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).ActivateX509Authority(ctx, req.(*ActivateX509AuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_TaintX509Authority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(TaintX509AuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).TaintX509Authority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_TaintX509Authority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).TaintX509Authority(ctx, req.(*TaintX509AuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_TaintX509UpstreamAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(TaintX509UpstreamAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).TaintX509UpstreamAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_TaintX509UpstreamAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).TaintX509UpstreamAuthority(ctx, req.(*TaintX509UpstreamAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_RevokeX509Authority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(RevokeX509AuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).RevokeX509Authority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_RevokeX509Authority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).RevokeX509Authority(ctx, req.(*RevokeX509AuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_RevokeX509UpstreamAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(RevokeX509UpstreamAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).RevokeX509UpstreamAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_RevokeX509UpstreamAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).RevokeX509UpstreamAuthority(ctx, req.(*RevokeX509UpstreamAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_GetWITAuthorityState_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetWITAuthorityStateRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).GetWITAuthorityState(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_GetWITAuthorityState_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).GetWITAuthorityState(ctx, req.(*GetWITAuthorityStateRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_PrepareWITAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(PrepareWITAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).PrepareWITAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_PrepareWITAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).PrepareWITAuthority(ctx, req.(*PrepareWITAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_ActivateWITAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ActivateWITAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).ActivateWITAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_ActivateWITAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).ActivateWITAuthority(ctx, req.(*ActivateWITAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_TaintWITAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(TaintWITAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).TaintWITAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_TaintWITAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).TaintWITAuthority(ctx, req.(*TaintWITAuthorityRequest)) } return interceptor(ctx, in, info, handler) } func _LocalAuthority_RevokeWITAuthority_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(RevokeWITAuthorityRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LocalAuthorityServer).RevokeWITAuthority(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: LocalAuthority_RevokeWITAuthority_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LocalAuthorityServer).RevokeWITAuthority(ctx, req.(*RevokeWITAuthorityRequest)) } return interceptor(ctx, in, info, handler) } // LocalAuthority_ServiceDesc is the grpc.ServiceDesc for LocalAuthority service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var LocalAuthority_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.localauthority.v1.LocalAuthority", HandlerType: (*LocalAuthorityServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "GetJWTAuthorityState", Handler: _LocalAuthority_GetJWTAuthorityState_Handler, }, { MethodName: "PrepareJWTAuthority", Handler: _LocalAuthority_PrepareJWTAuthority_Handler, }, { MethodName: "ActivateJWTAuthority", Handler: _LocalAuthority_ActivateJWTAuthority_Handler, }, { MethodName: "TaintJWTAuthority", Handler: _LocalAuthority_TaintJWTAuthority_Handler, }, { MethodName: "RevokeJWTAuthority", Handler: _LocalAuthority_RevokeJWTAuthority_Handler, }, { MethodName: "GetX509AuthorityState", Handler: _LocalAuthority_GetX509AuthorityState_Handler, }, { MethodName: "PrepareX509Authority", Handler: _LocalAuthority_PrepareX509Authority_Handler, }, { MethodName: "ActivateX509Authority", Handler: _LocalAuthority_ActivateX509Authority_Handler, }, { MethodName: "TaintX509Authority", Handler: _LocalAuthority_TaintX509Authority_Handler, }, { MethodName: "TaintX509UpstreamAuthority", Handler: _LocalAuthority_TaintX509UpstreamAuthority_Handler, }, { MethodName: "RevokeX509Authority", Handler: _LocalAuthority_RevokeX509Authority_Handler, }, { MethodName: "RevokeX509UpstreamAuthority", Handler: _LocalAuthority_RevokeX509UpstreamAuthority_Handler, }, { MethodName: "GetWITAuthorityState", Handler: _LocalAuthority_GetWITAuthorityState_Handler, }, { MethodName: "PrepareWITAuthority", Handler: _LocalAuthority_PrepareWITAuthority_Handler, }, { MethodName: "ActivateWITAuthority", Handler: _LocalAuthority_ActivateWITAuthority_Handler, }, { MethodName: "TaintWITAuthority", Handler: _LocalAuthority_TaintWITAuthority_Handler, }, { MethodName: "RevokeWITAuthority", Handler: _LocalAuthority_RevokeWITAuthority_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/server/localauthority/v1/localauthority.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/logger/000077500000000000000000000000001516071322100260715ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/logger/v1/000077500000000000000000000000001516071322100264175ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/logger/v1/logger.pb.go000066400000000000000000000202171516071322100306270ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/logger/v1/logger.proto package loggerv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // Empty Get Logger Request message for future extension type GetLoggerRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetLoggerRequest) Reset() { *x = GetLoggerRequest{} mi := &file_spire_api_server_logger_v1_logger_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetLoggerRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetLoggerRequest) ProtoMessage() {} func (x *GetLoggerRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_logger_v1_logger_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetLoggerRequest.ProtoReflect.Descriptor instead. func (*GetLoggerRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_logger_v1_logger_proto_rawDescGZIP(), []int{0} } // Set Log Level Request message type SetLogLevelRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The new level the logger should assume NewLevel types.LogLevel `protobuf:"varint,1,opt,name=new_level,json=newLevel,proto3,enum=spire.api.types.LogLevel" json:"new_level,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SetLogLevelRequest) Reset() { *x = SetLogLevelRequest{} mi := &file_spire_api_server_logger_v1_logger_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SetLogLevelRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*SetLogLevelRequest) ProtoMessage() {} func (x *SetLogLevelRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_logger_v1_logger_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SetLogLevelRequest.ProtoReflect.Descriptor instead. func (*SetLogLevelRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_logger_v1_logger_proto_rawDescGZIP(), []int{1} } func (x *SetLogLevelRequest) GetNewLevel() types.LogLevel { if x != nil { return x.NewLevel } return types.LogLevel(0) } // Empty Reset Log Level Request message for future extension type ResetLogLevelRequest struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ResetLogLevelRequest) Reset() { *x = ResetLogLevelRequest{} mi := &file_spire_api_server_logger_v1_logger_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ResetLogLevelRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ResetLogLevelRequest) ProtoMessage() {} func (x *ResetLogLevelRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_logger_v1_logger_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ResetLogLevelRequest.ProtoReflect.Descriptor instead. func (*ResetLogLevelRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_logger_v1_logger_proto_rawDescGZIP(), []int{2} } var File_spire_api_server_logger_v1_logger_proto protoreflect.FileDescriptor const file_spire_api_server_logger_v1_logger_proto_rawDesc = "" + "\n" + "'spire/api/server/logger/v1/logger.proto\x12\x1aspire.api.server.logger.v1\x1a\x1cspire/api/types/logger.proto\"\x12\n" + "\x10GetLoggerRequest\"L\n" + "\x12SetLogLevelRequest\x126\n" + "\tnew_level\x18\x01 \x01(\x0e2\x19.spire.api.types.LogLevelR\bnewLevel\"\x16\n" + "\x14ResetLogLevelRequest2\x90\x02\n" + "\x06Logger\x12R\n" + "\tGetLogger\x12,.spire.api.server.logger.v1.GetLoggerRequest\x1a\x17.spire.api.types.Logger\x12V\n" + "\vSetLogLevel\x12..spire.api.server.logger.v1.SetLogLevelRequest\x1a\x17.spire.api.types.Logger\x12Z\n" + "\rResetLogLevel\x120.spire.api.server.logger.v1.ResetLogLevelRequest\x1a\x17.spire.api.types.LoggerBKZIgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/logger/v1;loggerv1b\x06proto3" var ( file_spire_api_server_logger_v1_logger_proto_rawDescOnce sync.Once file_spire_api_server_logger_v1_logger_proto_rawDescData []byte ) func file_spire_api_server_logger_v1_logger_proto_rawDescGZIP() []byte { file_spire_api_server_logger_v1_logger_proto_rawDescOnce.Do(func() { file_spire_api_server_logger_v1_logger_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_logger_v1_logger_proto_rawDesc), len(file_spire_api_server_logger_v1_logger_proto_rawDesc))) }) return file_spire_api_server_logger_v1_logger_proto_rawDescData } var file_spire_api_server_logger_v1_logger_proto_msgTypes = make([]protoimpl.MessageInfo, 3) var file_spire_api_server_logger_v1_logger_proto_goTypes = []any{ (*GetLoggerRequest)(nil), // 0: spire.api.server.logger.v1.GetLoggerRequest (*SetLogLevelRequest)(nil), // 1: spire.api.server.logger.v1.SetLogLevelRequest (*ResetLogLevelRequest)(nil), // 2: spire.api.server.logger.v1.ResetLogLevelRequest (types.LogLevel)(0), // 3: spire.api.types.LogLevel (*types.Logger)(nil), // 4: spire.api.types.Logger } var file_spire_api_server_logger_v1_logger_proto_depIdxs = []int32{ 3, // 0: spire.api.server.logger.v1.SetLogLevelRequest.new_level:type_name -> spire.api.types.LogLevel 0, // 1: spire.api.server.logger.v1.Logger.GetLogger:input_type -> spire.api.server.logger.v1.GetLoggerRequest 1, // 2: spire.api.server.logger.v1.Logger.SetLogLevel:input_type -> spire.api.server.logger.v1.SetLogLevelRequest 2, // 3: spire.api.server.logger.v1.Logger.ResetLogLevel:input_type -> spire.api.server.logger.v1.ResetLogLevelRequest 4, // 4: spire.api.server.logger.v1.Logger.GetLogger:output_type -> spire.api.types.Logger 4, // 5: spire.api.server.logger.v1.Logger.SetLogLevel:output_type -> spire.api.types.Logger 4, // 6: spire.api.server.logger.v1.Logger.ResetLogLevel:output_type -> spire.api.types.Logger 4, // [4:7] is the sub-list for method output_type 1, // [1:4] is the sub-list for method input_type 1, // [1:1] is the sub-list for extension type_name 1, // [1:1] is the sub-list for extension extendee 0, // [0:1] is the sub-list for field type_name } func init() { file_spire_api_server_logger_v1_logger_proto_init() } func file_spire_api_server_logger_v1_logger_proto_init() { if File_spire_api_server_logger_v1_logger_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_logger_v1_logger_proto_rawDesc), len(file_spire_api_server_logger_v1_logger_proto_rawDesc)), NumEnums: 0, NumMessages: 3, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_logger_v1_logger_proto_goTypes, DependencyIndexes: file_spire_api_server_logger_v1_logger_proto_depIdxs, MessageInfos: file_spire_api_server_logger_v1_logger_proto_msgTypes, }.Build() File_spire_api_server_logger_v1_logger_proto = out.File file_spire_api_server_logger_v1_logger_proto_goTypes = nil file_spire_api_server_logger_v1_logger_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/logger/v1/logger.proto000066400000000000000000000021551516071322100307660ustar00rootroot00000000000000syntax = "proto3"; package spire.api.server.logger.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/logger/v1;loggerv1"; import "spire/api/types/logger.proto"; service Logger { // Gets the logger level. // // The caller must be local or present an admin X509-SVID. rpc GetLogger(GetLoggerRequest) returns (spire.api.types.Logger); // Sets the logger to a specified log level. // // The caller must be local or present an admin X509-SVID. rpc SetLogLevel(SetLogLevelRequest) returns (spire.api.types.Logger); // Resets the logger level to the level configured at launch. // // The caller must be local or present an admin X509-SVID. rpc ResetLogLevel(ResetLogLevelRequest) returns (spire.api.types.Logger); } // Empty Get Logger Request message for future extension message GetLoggerRequest { } // Set Log Level Request message message SetLogLevelRequest { // The new level the logger should assume spire.api.types.LogLevel new_level = 1; } // Empty Reset Log Level Request message for future extension message ResetLogLevelRequest { } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/logger/v1/logger_grpc.pb.go000066400000000000000000000177071516071322100316540ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/logger/v1/logger.proto package loggerv1 import ( context "context" types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( Logger_GetLogger_FullMethodName = "/spire.api.server.logger.v1.Logger/GetLogger" Logger_SetLogLevel_FullMethodName = "/spire.api.server.logger.v1.Logger/SetLogLevel" Logger_ResetLogLevel_FullMethodName = "/spire.api.server.logger.v1.Logger/ResetLogLevel" ) // LoggerClient is the client API for Logger service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. type LoggerClient interface { // Gets the logger level. // // The caller must be local or present an admin X509-SVID. GetLogger(ctx context.Context, in *GetLoggerRequest, opts ...grpc.CallOption) (*types.Logger, error) // Sets the logger to a specified log level. // // The caller must be local or present an admin X509-SVID. SetLogLevel(ctx context.Context, in *SetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) // Resets the logger level to the level configured at launch. // // The caller must be local or present an admin X509-SVID. ResetLogLevel(ctx context.Context, in *ResetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) } type loggerClient struct { cc grpc.ClientConnInterface } func NewLoggerClient(cc grpc.ClientConnInterface) LoggerClient { return &loggerClient{cc} } func (c *loggerClient) GetLogger(ctx context.Context, in *GetLoggerRequest, opts ...grpc.CallOption) (*types.Logger, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Logger) err := c.cc.Invoke(ctx, Logger_GetLogger_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *loggerClient) SetLogLevel(ctx context.Context, in *SetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Logger) err := c.cc.Invoke(ctx, Logger_SetLogLevel_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *loggerClient) ResetLogLevel(ctx context.Context, in *ResetLogLevelRequest, opts ...grpc.CallOption) (*types.Logger, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.Logger) err := c.cc.Invoke(ctx, Logger_ResetLogLevel_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // LoggerServer is the server API for Logger service. // All implementations must embed UnimplementedLoggerServer // for forward compatibility. type LoggerServer interface { // Gets the logger level. // // The caller must be local or present an admin X509-SVID. GetLogger(context.Context, *GetLoggerRequest) (*types.Logger, error) // Sets the logger to a specified log level. // // The caller must be local or present an admin X509-SVID. SetLogLevel(context.Context, *SetLogLevelRequest) (*types.Logger, error) // Resets the logger level to the level configured at launch. // // The caller must be local or present an admin X509-SVID. ResetLogLevel(context.Context, *ResetLogLevelRequest) (*types.Logger, error) mustEmbedUnimplementedLoggerServer() } // UnimplementedLoggerServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedLoggerServer struct{} func (UnimplementedLoggerServer) GetLogger(context.Context, *GetLoggerRequest) (*types.Logger, error) { return nil, status.Errorf(codes.Unimplemented, "method GetLogger not implemented") } func (UnimplementedLoggerServer) SetLogLevel(context.Context, *SetLogLevelRequest) (*types.Logger, error) { return nil, status.Errorf(codes.Unimplemented, "method SetLogLevel not implemented") } func (UnimplementedLoggerServer) ResetLogLevel(context.Context, *ResetLogLevelRequest) (*types.Logger, error) { return nil, status.Errorf(codes.Unimplemented, "method ResetLogLevel not implemented") } func (UnimplementedLoggerServer) mustEmbedUnimplementedLoggerServer() {} func (UnimplementedLoggerServer) testEmbeddedByValue() {} // UnsafeLoggerServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to LoggerServer will // result in compilation errors. type UnsafeLoggerServer interface { mustEmbedUnimplementedLoggerServer() } func RegisterLoggerServer(s grpc.ServiceRegistrar, srv LoggerServer) { // If the following call pancis, it indicates UnimplementedLoggerServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&Logger_ServiceDesc, srv) } func _Logger_GetLogger_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetLoggerRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LoggerServer).GetLogger(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Logger_GetLogger_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LoggerServer).GetLogger(ctx, req.(*GetLoggerRequest)) } return interceptor(ctx, in, info, handler) } func _Logger_SetLogLevel_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(SetLogLevelRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LoggerServer).SetLogLevel(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Logger_SetLogLevel_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LoggerServer).SetLogLevel(ctx, req.(*SetLogLevelRequest)) } return interceptor(ctx, in, info, handler) } func _Logger_ResetLogLevel_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ResetLogLevelRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(LoggerServer).ResetLogLevel(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: Logger_ResetLogLevel_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(LoggerServer).ResetLogLevel(ctx, req.(*ResetLogLevelRequest)) } return interceptor(ctx, in, info, handler) } // Logger_ServiceDesc is the grpc.ServiceDesc for Logger service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var Logger_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.logger.v1.Logger", HandlerType: (*LoggerServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "GetLogger", Handler: _Logger_GetLogger_Handler, }, { MethodName: "SetLogLevel", Handler: _Logger_SetLogLevel_Handler, }, { MethodName: "ResetLogLevel", Handler: _Logger_ResetLogLevel_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/server/logger/v1/logger.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/svid/000077500000000000000000000000001516071322100255575ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/svid/v1/000077500000000000000000000000001516071322100261055ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/svid/v1/svid.pb.go000066400000000000000000001201411516071322100300000ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/svid/v1/svid.proto package svidv1 import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type MintX509SVIDRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. ASN.1 DER encoded CSR. The CSR is used to convey the public // key and the SPIFFE ID (via the URI SAN). Only one URI SAN can be set. // Optionally, the subject and any number of DNS SANs can also be set. Csr []byte `protobuf:"bytes,1,opt,name=csr,proto3" json:"csr,omitempty"` // The desired TTL of the X509-SVID, in seconds. The server default will be // used if unset. The TTL is advisory only. The actual lifetime of the // X509-SVID may be lower depending on the remaining lifetime of the active // SPIRE Server CA. Ttl int32 `protobuf:"varint,2,opt,name=ttl,proto3" json:"ttl,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *MintX509SVIDRequest) Reset() { *x = MintX509SVIDRequest{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *MintX509SVIDRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*MintX509SVIDRequest) ProtoMessage() {} func (x *MintX509SVIDRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use MintX509SVIDRequest.ProtoReflect.Descriptor instead. func (*MintX509SVIDRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{0} } func (x *MintX509SVIDRequest) GetCsr() []byte { if x != nil { return x.Csr } return nil } func (x *MintX509SVIDRequest) GetTtl() int32 { if x != nil { return x.Ttl } return 0 } type MintX509SVIDResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The newly issued X509-SVID. Svid *types.X509SVID `protobuf:"bytes,1,opt,name=svid,proto3" json:"svid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *MintX509SVIDResponse) Reset() { *x = MintX509SVIDResponse{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *MintX509SVIDResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*MintX509SVIDResponse) ProtoMessage() {} func (x *MintX509SVIDResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use MintX509SVIDResponse.ProtoReflect.Descriptor instead. func (*MintX509SVIDResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{1} } func (x *MintX509SVIDResponse) GetSvid() *types.X509SVID { if x != nil { return x.Svid } return nil } type MintWITSVIDRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. SPIFFE ID of the WIT-SVID. Id *types.SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // Required. The ASN.1 DER encoded public key. PublicKey []byte `protobuf:"bytes,2,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"` // Desired TTL of the WIT-SVID, in seconds. The server default will be used // if unset. The TTL is advisory only. The actual lifetime of the WIT-SVID // may be lower depending on the remaining lifetime of the active SPIRE // Server CA. Ttl int32 `protobuf:"varint,3,opt,name=ttl,proto3" json:"ttl,omitempty"` // Required. The signing algorithm to specify in the key. This must be one // of the values supported by the WIT-SVID specification. SigningAlgorithm string `protobuf:"bytes,4,opt,name=signing_algorithm,json=signingAlgorithm,proto3" json:"signing_algorithm,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *MintWITSVIDRequest) Reset() { *x = MintWITSVIDRequest{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *MintWITSVIDRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*MintWITSVIDRequest) ProtoMessage() {} func (x *MintWITSVIDRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use MintWITSVIDRequest.ProtoReflect.Descriptor instead. func (*MintWITSVIDRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{2} } func (x *MintWITSVIDRequest) GetId() *types.SPIFFEID { if x != nil { return x.Id } return nil } func (x *MintWITSVIDRequest) GetPublicKey() []byte { if x != nil { return x.PublicKey } return nil } func (x *MintWITSVIDRequest) GetTtl() int32 { if x != nil { return x.Ttl } return 0 } func (x *MintWITSVIDRequest) GetSigningAlgorithm() string { if x != nil { return x.SigningAlgorithm } return "" } type MintWITSVIDResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The newly issued WIT-SVID. Svid *types.WITSVID `protobuf:"bytes,1,opt,name=svid,proto3" json:"svid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *MintWITSVIDResponse) Reset() { *x = MintWITSVIDResponse{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *MintWITSVIDResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*MintWITSVIDResponse) ProtoMessage() {} func (x *MintWITSVIDResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use MintWITSVIDResponse.ProtoReflect.Descriptor instead. func (*MintWITSVIDResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{3} } func (x *MintWITSVIDResponse) GetSvid() *types.WITSVID { if x != nil { return x.Svid } return nil } type MintJWTSVIDRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. SPIFFE ID of the JWT-SVID. Id *types.SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // Required. List of audience claims to include in the JWT-SVID. At least one must // be set. Audience []string `protobuf:"bytes,2,rep,name=audience,proto3" json:"audience,omitempty"` // Desired TTL of the JWT-SVID, in seconds. The server default will be used // if unset. The TTL is advisory only. The actual lifetime of the JWT-SVID // may be lower depending on the remaining lifetime of the active SPIRE // Server CA. Ttl int32 `protobuf:"varint,3,opt,name=ttl,proto3" json:"ttl,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *MintJWTSVIDRequest) Reset() { *x = MintJWTSVIDRequest{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *MintJWTSVIDRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*MintJWTSVIDRequest) ProtoMessage() {} func (x *MintJWTSVIDRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use MintJWTSVIDRequest.ProtoReflect.Descriptor instead. func (*MintJWTSVIDRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{4} } func (x *MintJWTSVIDRequest) GetId() *types.SPIFFEID { if x != nil { return x.Id } return nil } func (x *MintJWTSVIDRequest) GetAudience() []string { if x != nil { return x.Audience } return nil } func (x *MintJWTSVIDRequest) GetTtl() int32 { if x != nil { return x.Ttl } return 0 } type MintJWTSVIDResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The newly issued JWT-SVID. Svid *types.JWTSVID `protobuf:"bytes,1,opt,name=svid,proto3" json:"svid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *MintJWTSVIDResponse) Reset() { *x = MintJWTSVIDResponse{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[5] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *MintJWTSVIDResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*MintJWTSVIDResponse) ProtoMessage() {} func (x *MintJWTSVIDResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[5] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use MintJWTSVIDResponse.ProtoReflect.Descriptor instead. func (*MintJWTSVIDResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{5} } func (x *MintJWTSVIDResponse) GetSvid() *types.JWTSVID { if x != nil { return x.Svid } return nil } type BatchNewX509SVIDRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. One or more X509-SVID parameters for X509-SVID entries to // be signed. Params []*NewX509SVIDParams `protobuf:"bytes,1,rep,name=params,proto3" json:"params,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchNewX509SVIDRequest) Reset() { *x = BatchNewX509SVIDRequest{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[6] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchNewX509SVIDRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchNewX509SVIDRequest) ProtoMessage() {} func (x *BatchNewX509SVIDRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[6] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchNewX509SVIDRequest.ProtoReflect.Descriptor instead. func (*BatchNewX509SVIDRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{6} } func (x *BatchNewX509SVIDRequest) GetParams() []*NewX509SVIDParams { if x != nil { return x.Params } return nil } type BatchNewX509SVIDResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each X509-SVID requested (order is maintained). Results []*BatchNewX509SVIDResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchNewX509SVIDResponse) Reset() { *x = BatchNewX509SVIDResponse{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[7] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchNewX509SVIDResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchNewX509SVIDResponse) ProtoMessage() {} func (x *BatchNewX509SVIDResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[7] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchNewX509SVIDResponse.ProtoReflect.Descriptor instead. func (*BatchNewX509SVIDResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{7} } func (x *BatchNewX509SVIDResponse) GetResults() []*BatchNewX509SVIDResponse_Result { if x != nil { return x.Results } return nil } type NewJWTSVIDRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The entry ID of the identity being requested. EntryId string `protobuf:"bytes,1,opt,name=entry_id,json=entryId,proto3" json:"entry_id,omitempty"` // Required. List of audience claims to include in the JWT-SVID. At least // one must be set. Audience []string `protobuf:"bytes,2,rep,name=audience,proto3" json:"audience,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *NewJWTSVIDRequest) Reset() { *x = NewJWTSVIDRequest{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[8] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *NewJWTSVIDRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*NewJWTSVIDRequest) ProtoMessage() {} func (x *NewJWTSVIDRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[8] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use NewJWTSVIDRequest.ProtoReflect.Descriptor instead. func (*NewJWTSVIDRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{8} } func (x *NewJWTSVIDRequest) GetEntryId() string { if x != nil { return x.EntryId } return "" } func (x *NewJWTSVIDRequest) GetAudience() []string { if x != nil { return x.Audience } return nil } type BatchNewWITSVIDRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. One or more WIT-SVID parameters for WIT-SVID entries to // be signed. Params []*NewWITSVIDParams `protobuf:"bytes,1,rep,name=params,proto3" json:"params,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchNewWITSVIDRequest) Reset() { *x = BatchNewWITSVIDRequest{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[9] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchNewWITSVIDRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchNewWITSVIDRequest) ProtoMessage() {} func (x *BatchNewWITSVIDRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[9] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchNewWITSVIDRequest.ProtoReflect.Descriptor instead. func (*BatchNewWITSVIDRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{9} } func (x *BatchNewWITSVIDRequest) GetParams() []*NewWITSVIDParams { if x != nil { return x.Params } return nil } type BatchNewWITSVIDResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each WIT-SVID requested (order is maintained). Results []*BatchNewWITSVIDResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchNewWITSVIDResponse) Reset() { *x = BatchNewWITSVIDResponse{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[10] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchNewWITSVIDResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchNewWITSVIDResponse) ProtoMessage() {} func (x *BatchNewWITSVIDResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[10] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchNewWITSVIDResponse.ProtoReflect.Descriptor instead. func (*BatchNewWITSVIDResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{10} } func (x *BatchNewWITSVIDResponse) GetResults() []*BatchNewWITSVIDResponse_Result { if x != nil { return x.Results } return nil } type NewJWTSVIDResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The newly issued JWT-SVID Svid *types.JWTSVID `protobuf:"bytes,1,opt,name=svid,proto3" json:"svid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *NewJWTSVIDResponse) Reset() { *x = NewJWTSVIDResponse{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[11] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *NewJWTSVIDResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*NewJWTSVIDResponse) ProtoMessage() {} func (x *NewJWTSVIDResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[11] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use NewJWTSVIDResponse.ProtoReflect.Descriptor instead. func (*NewJWTSVIDResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{11} } func (x *NewJWTSVIDResponse) GetSvid() *types.JWTSVID { if x != nil { return x.Svid } return nil } type NewDownstreamX509CARequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The ASN.1 DER encoded Certificate Signing Request (CSR). The // CSR is only used to convey the public key; other fields in the CSR are // ignored. The X509-SVID attributes are determined by the downstream entry. Csr []byte `protobuf:"bytes,1,opt,name=csr,proto3" json:"csr,omitempty"` // Optional. The TTL preferred by the downstream SPIRE Server for the // signed intermediate CA. If zero, the upstream SPIRE Server will use its // own default. PreferredTtl int32 `protobuf:"varint,2,opt,name=preferred_ttl,json=preferredTtl,proto3" json:"preferred_ttl,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *NewDownstreamX509CARequest) Reset() { *x = NewDownstreamX509CARequest{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[12] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *NewDownstreamX509CARequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*NewDownstreamX509CARequest) ProtoMessage() {} func (x *NewDownstreamX509CARequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[12] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use NewDownstreamX509CARequest.ProtoReflect.Descriptor instead. func (*NewDownstreamX509CARequest) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{12} } func (x *NewDownstreamX509CARequest) GetCsr() []byte { if x != nil { return x.Csr } return nil } func (x *NewDownstreamX509CARequest) GetPreferredTtl() int32 { if x != nil { return x.PreferredTtl } return 0 } type NewDownstreamX509CAResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // CA certificate and any intermediates required to form a chain of trust // back to the X.509 authorities (DER encoded). The CA certificate is the // first. CaCertChain [][]byte `protobuf:"bytes,1,rep,name=ca_cert_chain,json=caCertChain,proto3" json:"ca_cert_chain,omitempty"` // X.509 authorities (DER encoded). X509Authorities [][]byte `protobuf:"bytes,2,rep,name=x509_authorities,json=x509Authorities,proto3" json:"x509_authorities,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *NewDownstreamX509CAResponse) Reset() { *x = NewDownstreamX509CAResponse{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[13] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *NewDownstreamX509CAResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*NewDownstreamX509CAResponse) ProtoMessage() {} func (x *NewDownstreamX509CAResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[13] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use NewDownstreamX509CAResponse.ProtoReflect.Descriptor instead. func (*NewDownstreamX509CAResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{13} } func (x *NewDownstreamX509CAResponse) GetCaCertChain() [][]byte { if x != nil { return x.CaCertChain } return nil } func (x *NewDownstreamX509CAResponse) GetX509Authorities() [][]byte { if x != nil { return x.X509Authorities } return nil } type NewX509SVIDParams struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The entry ID for the identity being requested. EntryId string `protobuf:"bytes,1,opt,name=entry_id,json=entryId,proto3" json:"entry_id,omitempty"` // Required. The ASN.1 DER encoded Certificate Signing Request (CSR). The // CSR is only used to convey the public key; other fields in the CSR are // ignored. The X509-SVID attributes are determined by the entry. Csr []byte `protobuf:"bytes,2,opt,name=csr,proto3" json:"csr,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *NewX509SVIDParams) Reset() { *x = NewX509SVIDParams{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[14] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *NewX509SVIDParams) String() string { return protoimpl.X.MessageStringOf(x) } func (*NewX509SVIDParams) ProtoMessage() {} func (x *NewX509SVIDParams) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[14] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use NewX509SVIDParams.ProtoReflect.Descriptor instead. func (*NewX509SVIDParams) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{14} } func (x *NewX509SVIDParams) GetEntryId() string { if x != nil { return x.EntryId } return "" } func (x *NewX509SVIDParams) GetCsr() []byte { if x != nil { return x.Csr } return nil } type NewWITSVIDParams struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The entry ID for the identity being requested. EntryId string `protobuf:"bytes,1,opt,name=entry_id,json=entryId,proto3" json:"entry_id,omitempty"` // Required. The ASN.1 DER encoded public key. PublicKey []byte `protobuf:"bytes,2,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"` // Required. The signing algorithm to specify in the key. This must be one // of the values supported by the WIT-SVID specification. SigningAlgorithm string `protobuf:"bytes,3,opt,name=signing_algorithm,json=signingAlgorithm,proto3" json:"signing_algorithm,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *NewWITSVIDParams) Reset() { *x = NewWITSVIDParams{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[15] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *NewWITSVIDParams) String() string { return protoimpl.X.MessageStringOf(x) } func (*NewWITSVIDParams) ProtoMessage() {} func (x *NewWITSVIDParams) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[15] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use NewWITSVIDParams.ProtoReflect.Descriptor instead. func (*NewWITSVIDParams) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{15} } func (x *NewWITSVIDParams) GetEntryId() string { if x != nil { return x.EntryId } return "" } func (x *NewWITSVIDParams) GetPublicKey() []byte { if x != nil { return x.PublicKey } return nil } func (x *NewWITSVIDParams) GetSigningAlgorithm() string { if x != nil { return x.SigningAlgorithm } return "" } type BatchNewX509SVIDResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of creating the X509-SVID. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The newly created X509-SVID. This will be set if the status is OK. Svid *types.X509SVID `protobuf:"bytes,2,opt,name=svid,proto3" json:"svid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchNewX509SVIDResponse_Result) Reset() { *x = BatchNewX509SVIDResponse_Result{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[16] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchNewX509SVIDResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchNewX509SVIDResponse_Result) ProtoMessage() {} func (x *BatchNewX509SVIDResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[16] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchNewX509SVIDResponse_Result.ProtoReflect.Descriptor instead. func (*BatchNewX509SVIDResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{7, 0} } func (x *BatchNewX509SVIDResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchNewX509SVIDResponse_Result) GetSvid() *types.X509SVID { if x != nil { return x.Svid } return nil } type BatchNewWITSVIDResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of creating the WIT-SVID. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The newly created WIT-SVID. This will be set if the status is OK. Svid *types.WITSVID `protobuf:"bytes,2,opt,name=svid,proto3" json:"svid,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchNewWITSVIDResponse_Result) Reset() { *x = BatchNewWITSVIDResponse_Result{} mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[17] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchNewWITSVIDResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchNewWITSVIDResponse_Result) ProtoMessage() {} func (x *BatchNewWITSVIDResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_svid_v1_svid_proto_msgTypes[17] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchNewWITSVIDResponse_Result.ProtoReflect.Descriptor instead. func (*BatchNewWITSVIDResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_svid_v1_svid_proto_rawDescGZIP(), []int{10, 0} } func (x *BatchNewWITSVIDResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchNewWITSVIDResponse_Result) GetSvid() *types.WITSVID { if x != nil { return x.Svid } return nil } var File_spire_api_server_svid_v1_svid_proto protoreflect.FileDescriptor const file_spire_api_server_svid_v1_svid_proto_rawDesc = "" + "\n" + "#spire/api/server/svid/v1/svid.proto\x12\x18spire.api.server.svid.v1\x1a\x1dspire/api/types/jwtsvid.proto\x1a\x1espire/api/types/spiffeid.proto\x1a\x1cspire/api/types/status.proto\x1a\x1espire/api/types/x509svid.proto\x1a\x1dspire/api/types/witsvid.proto\"9\n" + "\x13MintX509SVIDRequest\x12\x10\n" + "\x03csr\x18\x01 \x01(\fR\x03csr\x12\x10\n" + "\x03ttl\x18\x02 \x01(\x05R\x03ttl\"E\n" + "\x14MintX509SVIDResponse\x12-\n" + "\x04svid\x18\x01 \x01(\v2\x19.spire.api.types.X509SVIDR\x04svid\"\x9d\x01\n" + "\x12MintWITSVIDRequest\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12\x1d\n" + "\n" + "public_key\x18\x02 \x01(\fR\tpublicKey\x12\x10\n" + "\x03ttl\x18\x03 \x01(\x05R\x03ttl\x12+\n" + "\x11signing_algorithm\x18\x04 \x01(\tR\x10signingAlgorithm\"C\n" + "\x13MintWITSVIDResponse\x12,\n" + "\x04svid\x18\x01 \x01(\v2\x18.spire.api.types.WITSVIDR\x04svid\"m\n" + "\x12MintJWTSVIDRequest\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12\x1a\n" + "\baudience\x18\x02 \x03(\tR\baudience\x12\x10\n" + "\x03ttl\x18\x03 \x01(\x05R\x03ttl\"C\n" + "\x13MintJWTSVIDResponse\x12,\n" + "\x04svid\x18\x01 \x01(\v2\x18.spire.api.types.JWTSVIDR\x04svid\"^\n" + "\x17BatchNewX509SVIDRequest\x12C\n" + "\x06params\x18\x01 \x03(\v2+.spire.api.server.svid.v1.NewX509SVIDParamsR\x06params\"\xd9\x01\n" + "\x18BatchNewX509SVIDResponse\x12S\n" + "\aresults\x18\x01 \x03(\v29.spire.api.server.svid.v1.BatchNewX509SVIDResponse.ResultR\aresults\x1ah\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12-\n" + "\x04svid\x18\x02 \x01(\v2\x19.spire.api.types.X509SVIDR\x04svid\"J\n" + "\x11NewJWTSVIDRequest\x12\x19\n" + "\bentry_id\x18\x01 \x01(\tR\aentryId\x12\x1a\n" + "\baudience\x18\x02 \x03(\tR\baudience\"\\\n" + "\x16BatchNewWITSVIDRequest\x12B\n" + "\x06params\x18\x01 \x03(\v2*.spire.api.server.svid.v1.NewWITSVIDParamsR\x06params\"\xd6\x01\n" + "\x17BatchNewWITSVIDResponse\x12R\n" + "\aresults\x18\x01 \x03(\v28.spire.api.server.svid.v1.BatchNewWITSVIDResponse.ResultR\aresults\x1ag\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12,\n" + "\x04svid\x18\x02 \x01(\v2\x18.spire.api.types.WITSVIDR\x04svid\"B\n" + "\x12NewJWTSVIDResponse\x12,\n" + "\x04svid\x18\x01 \x01(\v2\x18.spire.api.types.JWTSVIDR\x04svid\"S\n" + "\x1aNewDownstreamX509CARequest\x12\x10\n" + "\x03csr\x18\x01 \x01(\fR\x03csr\x12#\n" + "\rpreferred_ttl\x18\x02 \x01(\x05R\fpreferredTtl\"l\n" + "\x1bNewDownstreamX509CAResponse\x12\"\n" + "\rca_cert_chain\x18\x01 \x03(\fR\vcaCertChain\x12)\n" + "\x10x509_authorities\x18\x02 \x03(\fR\x0fx509Authorities\"@\n" + "\x11NewX509SVIDParams\x12\x19\n" + "\bentry_id\x18\x01 \x01(\tR\aentryId\x12\x10\n" + "\x03csr\x18\x02 \x01(\fR\x03csr\"y\n" + "\x10NewWITSVIDParams\x12\x19\n" + "\bentry_id\x18\x01 \x01(\tR\aentryId\x12\x1d\n" + "\n" + "public_key\x18\x02 \x01(\fR\tpublicKey\x12+\n" + "\x11signing_algorithm\x18\x03 \x01(\tR\x10signingAlgorithm2\xae\x06\n" + "\x04SVID\x12m\n" + "\fMintX509SVID\x12-.spire.api.server.svid.v1.MintX509SVIDRequest\x1a..spire.api.server.svid.v1.MintX509SVIDResponse\x12j\n" + "\vMintJWTSVID\x12,.spire.api.server.svid.v1.MintJWTSVIDRequest\x1a-.spire.api.server.svid.v1.MintJWTSVIDResponse\x12j\n" + "\vMintWITSVID\x12,.spire.api.server.svid.v1.MintWITSVIDRequest\x1a-.spire.api.server.svid.v1.MintWITSVIDResponse\x12y\n" + "\x10BatchNewX509SVID\x121.spire.api.server.svid.v1.BatchNewX509SVIDRequest\x1a2.spire.api.server.svid.v1.BatchNewX509SVIDResponse\x12g\n" + "\n" + "NewJWTSVID\x12+.spire.api.server.svid.v1.NewJWTSVIDRequest\x1a,.spire.api.server.svid.v1.NewJWTSVIDResponse\x12v\n" + "\x0fBatchNewWITSVID\x120.spire.api.server.svid.v1.BatchNewWITSVIDRequest\x1a1.spire.api.server.svid.v1.BatchNewWITSVIDResponse\x12\x82\x01\n" + "\x13NewDownstreamX509CA\x124.spire.api.server.svid.v1.NewDownstreamX509CARequest\x1a5.spire.api.server.svid.v1.NewDownstreamX509CAResponseBGZEgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/svid/v1;svidv1b\x06proto3" var ( file_spire_api_server_svid_v1_svid_proto_rawDescOnce sync.Once file_spire_api_server_svid_v1_svid_proto_rawDescData []byte ) func file_spire_api_server_svid_v1_svid_proto_rawDescGZIP() []byte { file_spire_api_server_svid_v1_svid_proto_rawDescOnce.Do(func() { file_spire_api_server_svid_v1_svid_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_svid_v1_svid_proto_rawDesc), len(file_spire_api_server_svid_v1_svid_proto_rawDesc))) }) return file_spire_api_server_svid_v1_svid_proto_rawDescData } var file_spire_api_server_svid_v1_svid_proto_msgTypes = make([]protoimpl.MessageInfo, 18) var file_spire_api_server_svid_v1_svid_proto_goTypes = []any{ (*MintX509SVIDRequest)(nil), // 0: spire.api.server.svid.v1.MintX509SVIDRequest (*MintX509SVIDResponse)(nil), // 1: spire.api.server.svid.v1.MintX509SVIDResponse (*MintWITSVIDRequest)(nil), // 2: spire.api.server.svid.v1.MintWITSVIDRequest (*MintWITSVIDResponse)(nil), // 3: spire.api.server.svid.v1.MintWITSVIDResponse (*MintJWTSVIDRequest)(nil), // 4: spire.api.server.svid.v1.MintJWTSVIDRequest (*MintJWTSVIDResponse)(nil), // 5: spire.api.server.svid.v1.MintJWTSVIDResponse (*BatchNewX509SVIDRequest)(nil), // 6: spire.api.server.svid.v1.BatchNewX509SVIDRequest (*BatchNewX509SVIDResponse)(nil), // 7: spire.api.server.svid.v1.BatchNewX509SVIDResponse (*NewJWTSVIDRequest)(nil), // 8: spire.api.server.svid.v1.NewJWTSVIDRequest (*BatchNewWITSVIDRequest)(nil), // 9: spire.api.server.svid.v1.BatchNewWITSVIDRequest (*BatchNewWITSVIDResponse)(nil), // 10: spire.api.server.svid.v1.BatchNewWITSVIDResponse (*NewJWTSVIDResponse)(nil), // 11: spire.api.server.svid.v1.NewJWTSVIDResponse (*NewDownstreamX509CARequest)(nil), // 12: spire.api.server.svid.v1.NewDownstreamX509CARequest (*NewDownstreamX509CAResponse)(nil), // 13: spire.api.server.svid.v1.NewDownstreamX509CAResponse (*NewX509SVIDParams)(nil), // 14: spire.api.server.svid.v1.NewX509SVIDParams (*NewWITSVIDParams)(nil), // 15: spire.api.server.svid.v1.NewWITSVIDParams (*BatchNewX509SVIDResponse_Result)(nil), // 16: spire.api.server.svid.v1.BatchNewX509SVIDResponse.Result (*BatchNewWITSVIDResponse_Result)(nil), // 17: spire.api.server.svid.v1.BatchNewWITSVIDResponse.Result (*types.X509SVID)(nil), // 18: spire.api.types.X509SVID (*types.SPIFFEID)(nil), // 19: spire.api.types.SPIFFEID (*types.WITSVID)(nil), // 20: spire.api.types.WITSVID (*types.JWTSVID)(nil), // 21: spire.api.types.JWTSVID (*types.Status)(nil), // 22: spire.api.types.Status } var file_spire_api_server_svid_v1_svid_proto_depIdxs = []int32{ 18, // 0: spire.api.server.svid.v1.MintX509SVIDResponse.svid:type_name -> spire.api.types.X509SVID 19, // 1: spire.api.server.svid.v1.MintWITSVIDRequest.id:type_name -> spire.api.types.SPIFFEID 20, // 2: spire.api.server.svid.v1.MintWITSVIDResponse.svid:type_name -> spire.api.types.WITSVID 19, // 3: spire.api.server.svid.v1.MintJWTSVIDRequest.id:type_name -> spire.api.types.SPIFFEID 21, // 4: spire.api.server.svid.v1.MintJWTSVIDResponse.svid:type_name -> spire.api.types.JWTSVID 14, // 5: spire.api.server.svid.v1.BatchNewX509SVIDRequest.params:type_name -> spire.api.server.svid.v1.NewX509SVIDParams 16, // 6: spire.api.server.svid.v1.BatchNewX509SVIDResponse.results:type_name -> spire.api.server.svid.v1.BatchNewX509SVIDResponse.Result 15, // 7: spire.api.server.svid.v1.BatchNewWITSVIDRequest.params:type_name -> spire.api.server.svid.v1.NewWITSVIDParams 17, // 8: spire.api.server.svid.v1.BatchNewWITSVIDResponse.results:type_name -> spire.api.server.svid.v1.BatchNewWITSVIDResponse.Result 21, // 9: spire.api.server.svid.v1.NewJWTSVIDResponse.svid:type_name -> spire.api.types.JWTSVID 22, // 10: spire.api.server.svid.v1.BatchNewX509SVIDResponse.Result.status:type_name -> spire.api.types.Status 18, // 11: spire.api.server.svid.v1.BatchNewX509SVIDResponse.Result.svid:type_name -> spire.api.types.X509SVID 22, // 12: spire.api.server.svid.v1.BatchNewWITSVIDResponse.Result.status:type_name -> spire.api.types.Status 20, // 13: spire.api.server.svid.v1.BatchNewWITSVIDResponse.Result.svid:type_name -> spire.api.types.WITSVID 0, // 14: spire.api.server.svid.v1.SVID.MintX509SVID:input_type -> spire.api.server.svid.v1.MintX509SVIDRequest 4, // 15: spire.api.server.svid.v1.SVID.MintJWTSVID:input_type -> spire.api.server.svid.v1.MintJWTSVIDRequest 2, // 16: spire.api.server.svid.v1.SVID.MintWITSVID:input_type -> spire.api.server.svid.v1.MintWITSVIDRequest 6, // 17: spire.api.server.svid.v1.SVID.BatchNewX509SVID:input_type -> spire.api.server.svid.v1.BatchNewX509SVIDRequest 8, // 18: spire.api.server.svid.v1.SVID.NewJWTSVID:input_type -> spire.api.server.svid.v1.NewJWTSVIDRequest 9, // 19: spire.api.server.svid.v1.SVID.BatchNewWITSVID:input_type -> spire.api.server.svid.v1.BatchNewWITSVIDRequest 12, // 20: spire.api.server.svid.v1.SVID.NewDownstreamX509CA:input_type -> spire.api.server.svid.v1.NewDownstreamX509CARequest 1, // 21: spire.api.server.svid.v1.SVID.MintX509SVID:output_type -> spire.api.server.svid.v1.MintX509SVIDResponse 5, // 22: spire.api.server.svid.v1.SVID.MintJWTSVID:output_type -> spire.api.server.svid.v1.MintJWTSVIDResponse 3, // 23: spire.api.server.svid.v1.SVID.MintWITSVID:output_type -> spire.api.server.svid.v1.MintWITSVIDResponse 7, // 24: spire.api.server.svid.v1.SVID.BatchNewX509SVID:output_type -> spire.api.server.svid.v1.BatchNewX509SVIDResponse 11, // 25: spire.api.server.svid.v1.SVID.NewJWTSVID:output_type -> spire.api.server.svid.v1.NewJWTSVIDResponse 10, // 26: spire.api.server.svid.v1.SVID.BatchNewWITSVID:output_type -> spire.api.server.svid.v1.BatchNewWITSVIDResponse 13, // 27: spire.api.server.svid.v1.SVID.NewDownstreamX509CA:output_type -> spire.api.server.svid.v1.NewDownstreamX509CAResponse 21, // [21:28] is the sub-list for method output_type 14, // [14:21] is the sub-list for method input_type 14, // [14:14] is the sub-list for extension type_name 14, // [14:14] is the sub-list for extension extendee 0, // [0:14] is the sub-list for field type_name } func init() { file_spire_api_server_svid_v1_svid_proto_init() } func file_spire_api_server_svid_v1_svid_proto_init() { if File_spire_api_server_svid_v1_svid_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_svid_v1_svid_proto_rawDesc), len(file_spire_api_server_svid_v1_svid_proto_rawDesc)), NumEnums: 0, NumMessages: 18, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_svid_v1_svid_proto_goTypes, DependencyIndexes: file_spire_api_server_svid_v1_svid_proto_depIdxs, MessageInfos: file_spire_api_server_svid_v1_svid_proto_msgTypes, }.Build() File_spire_api_server_svid_v1_svid_proto = out.File file_spire_api_server_svid_v1_svid_proto_goTypes = nil file_spire_api_server_svid_v1_svid_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/svid/v1/svid.proto000066400000000000000000000162371516071322100301500ustar00rootroot00000000000000syntax = "proto3"; package spire.api.server.svid.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/svid/v1;svidv1"; import "spire/api/types/jwtsvid.proto"; import "spire/api/types/spiffeid.proto"; import "spire/api/types/status.proto"; import "spire/api/types/x509svid.proto"; import "spire/api/types/witsvid.proto"; service SVID { // Mints a one-off X509-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. rpc MintX509SVID(MintX509SVIDRequest) returns (MintX509SVIDResponse); // Mints a one-off JWT-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. rpc MintJWTSVID(MintJWTSVIDRequest) returns (MintJWTSVIDResponse); // Mints a one-off WIT-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. rpc MintWITSVID(MintWITSVIDRequest) returns (MintWITSVIDResponse); // Creates one or more X509-SVIDs from registration entries. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entries. See the Entry GetAuthorizedEntries RPC. rpc BatchNewX509SVID(BatchNewX509SVIDRequest) returns (BatchNewX509SVIDResponse); // Creates an JWT-SVID from a registration entry. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entry. See the Entry GetAuthorizedEntries RPC. rpc NewJWTSVID(NewJWTSVIDRequest) returns (NewJWTSVIDResponse); // Creates one or more WIT-SVIDs from registration entries. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entries. See the Entry GetAuthorizedEntries/SyncA RPC. rpc BatchNewWITSVID(BatchNewWITSVIDRequest) returns (BatchNewWITSVIDResponse); // Creates an X509 CA certificate appropriate for use by a downstream // entity to mint X509-SVIDs. // // The caller must present a downstream X509-SVID. rpc NewDownstreamX509CA(NewDownstreamX509CARequest) returns (NewDownstreamX509CAResponse); } message MintX509SVIDRequest { // Required. ASN.1 DER encoded CSR. The CSR is used to convey the public // key and the SPIFFE ID (via the URI SAN). Only one URI SAN can be set. // Optionally, the subject and any number of DNS SANs can also be set. bytes csr = 1; // The desired TTL of the X509-SVID, in seconds. The server default will be // used if unset. The TTL is advisory only. The actual lifetime of the // X509-SVID may be lower depending on the remaining lifetime of the active // SPIRE Server CA. int32 ttl = 2; } message MintX509SVIDResponse { // The newly issued X509-SVID. spire.api.types.X509SVID svid = 1; } message MintWITSVIDRequest { // Required. SPIFFE ID of the WIT-SVID. spire.api.types.SPIFFEID id = 1; // Required. The ASN.1 DER encoded public key. bytes public_key = 2; // Desired TTL of the WIT-SVID, in seconds. The server default will be used // if unset. The TTL is advisory only. The actual lifetime of the WIT-SVID // may be lower depending on the remaining lifetime of the active SPIRE // Server CA. int32 ttl = 3; // Required. The signing algorithm to specify in the key. This must be one // of the values supported by the WIT-SVID specification. string signing_algorithm = 4; } message MintWITSVIDResponse { // The newly issued WIT-SVID. spire.api.types.WITSVID svid = 1; } message MintJWTSVIDRequest { // Required. SPIFFE ID of the JWT-SVID. spire.api.types.SPIFFEID id = 1; // Required. List of audience claims to include in the JWT-SVID. At least one must // be set. repeated string audience = 2; // Desired TTL of the JWT-SVID, in seconds. The server default will be used // if unset. The TTL is advisory only. The actual lifetime of the JWT-SVID // may be lower depending on the remaining lifetime of the active SPIRE // Server CA. int32 ttl = 3; } message MintJWTSVIDResponse { // The newly issued JWT-SVID. spire.api.types.JWTSVID svid = 1; } message BatchNewX509SVIDRequest { // Required. One or more X509-SVID parameters for X509-SVID entries to // be signed. repeated NewX509SVIDParams params = 1; } message BatchNewX509SVIDResponse { message Result { // The status of creating the X509-SVID. spire.api.types.Status status = 1; // The newly created X509-SVID. This will be set if the status is OK. spire.api.types.X509SVID svid = 2; } // Result for each X509-SVID requested (order is maintained). repeated Result results = 1; } message NewJWTSVIDRequest { // Required. The entry ID of the identity being requested. string entry_id = 1; // Required. List of audience claims to include in the JWT-SVID. At least // one must be set. repeated string audience = 2; } message BatchNewWITSVIDRequest { // Required. One or more WIT-SVID parameters for WIT-SVID entries to // be signed. repeated NewWITSVIDParams params = 1; } message BatchNewWITSVIDResponse { message Result { // The status of creating the WIT-SVID. spire.api.types.Status status = 1; // The newly created WIT-SVID. This will be set if the status is OK. spire.api.types.WITSVID svid = 2; } // Result for each WIT-SVID requested (order is maintained). repeated Result results = 1; } message NewJWTSVIDResponse { // The newly issued JWT-SVID spire.api.types.JWTSVID svid = 1; } message NewDownstreamX509CARequest { // Required. The ASN.1 DER encoded Certificate Signing Request (CSR). The // CSR is only used to convey the public key; other fields in the CSR are // ignored. The X509-SVID attributes are determined by the downstream entry. bytes csr = 1; // Optional. The TTL preferred by the downstream SPIRE Server for the // signed intermediate CA. If zero, the upstream SPIRE Server will use its // own default. int32 preferred_ttl = 2; } message NewDownstreamX509CAResponse { // CA certificate and any intermediates required to form a chain of trust // back to the X.509 authorities (DER encoded). The CA certificate is the // first. repeated bytes ca_cert_chain = 1; // X.509 authorities (DER encoded). repeated bytes x509_authorities = 2; } message NewX509SVIDParams { // Required. The entry ID for the identity being requested. string entry_id = 1; // Required. The ASN.1 DER encoded Certificate Signing Request (CSR). The // CSR is only used to convey the public key; other fields in the CSR are // ignored. The X509-SVID attributes are determined by the entry. bytes csr = 2; } message NewWITSVIDParams { // Required. The entry ID for the identity being requested. string entry_id = 1; // Required. The ASN.1 DER encoded public key. bytes public_key = 2; // Required. The signing algorithm to specify in the key. This must be one // of the values supported by the WIT-SVID specification. string signing_algorithm = 3; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/svid/v1/svid_grpc.pb.go000066400000000000000000000402331516071322100310160ustar00rootroot00000000000000// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/svid/v1/svid.proto package svidv1 import ( context "context" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( SVID_MintX509SVID_FullMethodName = "/spire.api.server.svid.v1.SVID/MintX509SVID" SVID_MintJWTSVID_FullMethodName = "/spire.api.server.svid.v1.SVID/MintJWTSVID" SVID_MintWITSVID_FullMethodName = "/spire.api.server.svid.v1.SVID/MintWITSVID" SVID_BatchNewX509SVID_FullMethodName = "/spire.api.server.svid.v1.SVID/BatchNewX509SVID" SVID_NewJWTSVID_FullMethodName = "/spire.api.server.svid.v1.SVID/NewJWTSVID" SVID_BatchNewWITSVID_FullMethodName = "/spire.api.server.svid.v1.SVID/BatchNewWITSVID" SVID_NewDownstreamX509CA_FullMethodName = "/spire.api.server.svid.v1.SVID/NewDownstreamX509CA" ) // SVIDClient is the client API for SVID service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. type SVIDClient interface { // Mints a one-off X509-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. MintX509SVID(ctx context.Context, in *MintX509SVIDRequest, opts ...grpc.CallOption) (*MintX509SVIDResponse, error) // Mints a one-off JWT-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. MintJWTSVID(ctx context.Context, in *MintJWTSVIDRequest, opts ...grpc.CallOption) (*MintJWTSVIDResponse, error) // Mints a one-off WIT-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. MintWITSVID(ctx context.Context, in *MintWITSVIDRequest, opts ...grpc.CallOption) (*MintWITSVIDResponse, error) // Creates one or more X509-SVIDs from registration entries. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entries. See the Entry GetAuthorizedEntries RPC. BatchNewX509SVID(ctx context.Context, in *BatchNewX509SVIDRequest, opts ...grpc.CallOption) (*BatchNewX509SVIDResponse, error) // Creates an JWT-SVID from a registration entry. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entry. See the Entry GetAuthorizedEntries RPC. NewJWTSVID(ctx context.Context, in *NewJWTSVIDRequest, opts ...grpc.CallOption) (*NewJWTSVIDResponse, error) // Creates one or more WIT-SVIDs from registration entries. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entries. See the Entry GetAuthorizedEntries/SyncA RPC. BatchNewWITSVID(ctx context.Context, in *BatchNewWITSVIDRequest, opts ...grpc.CallOption) (*BatchNewWITSVIDResponse, error) // Creates an X509 CA certificate appropriate for use by a downstream // entity to mint X509-SVIDs. // // The caller must present a downstream X509-SVID. NewDownstreamX509CA(ctx context.Context, in *NewDownstreamX509CARequest, opts ...grpc.CallOption) (*NewDownstreamX509CAResponse, error) } type sVIDClient struct { cc grpc.ClientConnInterface } func NewSVIDClient(cc grpc.ClientConnInterface) SVIDClient { return &sVIDClient{cc} } func (c *sVIDClient) MintX509SVID(ctx context.Context, in *MintX509SVIDRequest, opts ...grpc.CallOption) (*MintX509SVIDResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(MintX509SVIDResponse) err := c.cc.Invoke(ctx, SVID_MintX509SVID_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *sVIDClient) MintJWTSVID(ctx context.Context, in *MintJWTSVIDRequest, opts ...grpc.CallOption) (*MintJWTSVIDResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(MintJWTSVIDResponse) err := c.cc.Invoke(ctx, SVID_MintJWTSVID_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *sVIDClient) MintWITSVID(ctx context.Context, in *MintWITSVIDRequest, opts ...grpc.CallOption) (*MintWITSVIDResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(MintWITSVIDResponse) err := c.cc.Invoke(ctx, SVID_MintWITSVID_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *sVIDClient) BatchNewX509SVID(ctx context.Context, in *BatchNewX509SVIDRequest, opts ...grpc.CallOption) (*BatchNewX509SVIDResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchNewX509SVIDResponse) err := c.cc.Invoke(ctx, SVID_BatchNewX509SVID_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *sVIDClient) NewJWTSVID(ctx context.Context, in *NewJWTSVIDRequest, opts ...grpc.CallOption) (*NewJWTSVIDResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(NewJWTSVIDResponse) err := c.cc.Invoke(ctx, SVID_NewJWTSVID_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *sVIDClient) BatchNewWITSVID(ctx context.Context, in *BatchNewWITSVIDRequest, opts ...grpc.CallOption) (*BatchNewWITSVIDResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchNewWITSVIDResponse) err := c.cc.Invoke(ctx, SVID_BatchNewWITSVID_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *sVIDClient) NewDownstreamX509CA(ctx context.Context, in *NewDownstreamX509CARequest, opts ...grpc.CallOption) (*NewDownstreamX509CAResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(NewDownstreamX509CAResponse) err := c.cc.Invoke(ctx, SVID_NewDownstreamX509CA_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // SVIDServer is the server API for SVID service. // All implementations must embed UnimplementedSVIDServer // for forward compatibility. type SVIDServer interface { // Mints a one-off X509-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. MintX509SVID(context.Context, *MintX509SVIDRequest) (*MintX509SVIDResponse, error) // Mints a one-off JWT-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. MintJWTSVID(context.Context, *MintJWTSVIDRequest) (*MintJWTSVIDResponse, error) // Mints a one-off WIT-SVID outside of the normal node/workload // registration process. // // The caller must be local or present an admin X509-SVID. MintWITSVID(context.Context, *MintWITSVIDRequest) (*MintWITSVIDResponse, error) // Creates one or more X509-SVIDs from registration entries. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entries. See the Entry GetAuthorizedEntries RPC. BatchNewX509SVID(context.Context, *BatchNewX509SVIDRequest) (*BatchNewX509SVIDResponse, error) // Creates an JWT-SVID from a registration entry. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entry. See the Entry GetAuthorizedEntries RPC. NewJWTSVID(context.Context, *NewJWTSVIDRequest) (*NewJWTSVIDResponse, error) // Creates one or more WIT-SVIDs from registration entries. // // The caller must present an active agent X509-SVID that is authorized // to mint the requested entries. See the Entry GetAuthorizedEntries/SyncA RPC. BatchNewWITSVID(context.Context, *BatchNewWITSVIDRequest) (*BatchNewWITSVIDResponse, error) // Creates an X509 CA certificate appropriate for use by a downstream // entity to mint X509-SVIDs. // // The caller must present a downstream X509-SVID. NewDownstreamX509CA(context.Context, *NewDownstreamX509CARequest) (*NewDownstreamX509CAResponse, error) mustEmbedUnimplementedSVIDServer() } // UnimplementedSVIDServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedSVIDServer struct{} func (UnimplementedSVIDServer) MintX509SVID(context.Context, *MintX509SVIDRequest) (*MintX509SVIDResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method MintX509SVID not implemented") } func (UnimplementedSVIDServer) MintJWTSVID(context.Context, *MintJWTSVIDRequest) (*MintJWTSVIDResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method MintJWTSVID not implemented") } func (UnimplementedSVIDServer) MintWITSVID(context.Context, *MintWITSVIDRequest) (*MintWITSVIDResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method MintWITSVID not implemented") } func (UnimplementedSVIDServer) BatchNewX509SVID(context.Context, *BatchNewX509SVIDRequest) (*BatchNewX509SVIDResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchNewX509SVID not implemented") } func (UnimplementedSVIDServer) NewJWTSVID(context.Context, *NewJWTSVIDRequest) (*NewJWTSVIDResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method NewJWTSVID not implemented") } func (UnimplementedSVIDServer) BatchNewWITSVID(context.Context, *BatchNewWITSVIDRequest) (*BatchNewWITSVIDResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchNewWITSVID not implemented") } func (UnimplementedSVIDServer) NewDownstreamX509CA(context.Context, *NewDownstreamX509CARequest) (*NewDownstreamX509CAResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method NewDownstreamX509CA not implemented") } func (UnimplementedSVIDServer) mustEmbedUnimplementedSVIDServer() {} func (UnimplementedSVIDServer) testEmbeddedByValue() {} // UnsafeSVIDServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to SVIDServer will // result in compilation errors. type UnsafeSVIDServer interface { mustEmbedUnimplementedSVIDServer() } func RegisterSVIDServer(s grpc.ServiceRegistrar, srv SVIDServer) { // If the following call pancis, it indicates UnimplementedSVIDServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&SVID_ServiceDesc, srv) } func _SVID_MintX509SVID_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(MintX509SVIDRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(SVIDServer).MintX509SVID(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: SVID_MintX509SVID_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(SVIDServer).MintX509SVID(ctx, req.(*MintX509SVIDRequest)) } return interceptor(ctx, in, info, handler) } func _SVID_MintJWTSVID_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(MintJWTSVIDRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(SVIDServer).MintJWTSVID(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: SVID_MintJWTSVID_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(SVIDServer).MintJWTSVID(ctx, req.(*MintJWTSVIDRequest)) } return interceptor(ctx, in, info, handler) } func _SVID_MintWITSVID_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(MintWITSVIDRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(SVIDServer).MintWITSVID(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: SVID_MintWITSVID_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(SVIDServer).MintWITSVID(ctx, req.(*MintWITSVIDRequest)) } return interceptor(ctx, in, info, handler) } func _SVID_BatchNewX509SVID_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchNewX509SVIDRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(SVIDServer).BatchNewX509SVID(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: SVID_BatchNewX509SVID_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(SVIDServer).BatchNewX509SVID(ctx, req.(*BatchNewX509SVIDRequest)) } return interceptor(ctx, in, info, handler) } func _SVID_NewJWTSVID_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(NewJWTSVIDRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(SVIDServer).NewJWTSVID(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: SVID_NewJWTSVID_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(SVIDServer).NewJWTSVID(ctx, req.(*NewJWTSVIDRequest)) } return interceptor(ctx, in, info, handler) } func _SVID_BatchNewWITSVID_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchNewWITSVIDRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(SVIDServer).BatchNewWITSVID(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: SVID_BatchNewWITSVID_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(SVIDServer).BatchNewWITSVID(ctx, req.(*BatchNewWITSVIDRequest)) } return interceptor(ctx, in, info, handler) } func _SVID_NewDownstreamX509CA_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(NewDownstreamX509CARequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(SVIDServer).NewDownstreamX509CA(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: SVID_NewDownstreamX509CA_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(SVIDServer).NewDownstreamX509CA(ctx, req.(*NewDownstreamX509CARequest)) } return interceptor(ctx, in, info, handler) } // SVID_ServiceDesc is the grpc.ServiceDesc for SVID service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var SVID_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.svid.v1.SVID", HandlerType: (*SVIDServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "MintX509SVID", Handler: _SVID_MintX509SVID_Handler, }, { MethodName: "MintJWTSVID", Handler: _SVID_MintJWTSVID_Handler, }, { MethodName: "MintWITSVID", Handler: _SVID_MintWITSVID_Handler, }, { MethodName: "BatchNewX509SVID", Handler: _SVID_BatchNewX509SVID_Handler, }, { MethodName: "NewJWTSVID", Handler: _SVID_NewJWTSVID_Handler, }, { MethodName: "BatchNewWITSVID", Handler: _SVID_BatchNewWITSVID_Handler, }, { MethodName: "NewDownstreamX509CA", Handler: _SVID_NewDownstreamX509CA_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/server/svid/v1/svid.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/trustdomain/000077500000000000000000000000001516071322100271635ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/trustdomain/v1/000077500000000000000000000000001516071322100275115ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/trustdomain/v1/trustdomain.pb.go000066400000000000000000001140271516071322100330160ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/server/trustdomain/v1/trustdomain.proto package trustdomain import ( types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" emptypb "google.golang.org/protobuf/types/known/emptypb" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type ListFederationRelationshipsRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // An output mask indicating which federation replationship fields // are set in the response. OutputMask *types.FederationRelationshipMask `protobuf:"bytes,1,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"` // The next_page_token value returned from a previous request, if any. PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListFederationRelationshipsRequest) Reset() { *x = ListFederationRelationshipsRequest{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListFederationRelationshipsRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListFederationRelationshipsRequest) ProtoMessage() {} func (x *ListFederationRelationshipsRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListFederationRelationshipsRequest.ProtoReflect.Descriptor instead. func (*ListFederationRelationshipsRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{0} } func (x *ListFederationRelationshipsRequest) GetOutputMask() *types.FederationRelationshipMask { if x != nil { return x.OutputMask } return nil } func (x *ListFederationRelationshipsRequest) GetPageSize() int32 { if x != nil { return x.PageSize } return 0 } func (x *ListFederationRelationshipsRequest) GetPageToken() string { if x != nil { return x.PageToken } return "" } type ListFederationRelationshipsResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // The federation relationships with foreign trust domains. FederationRelationships []*types.FederationRelationship `protobuf:"bytes,1,rep,name=federation_relationships,json=federationRelationships,proto3" json:"federation_relationships,omitempty"` // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *ListFederationRelationshipsResponse) Reset() { *x = ListFederationRelationshipsResponse{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *ListFederationRelationshipsResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*ListFederationRelationshipsResponse) ProtoMessage() {} func (x *ListFederationRelationshipsResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use ListFederationRelationshipsResponse.ProtoReflect.Descriptor instead. func (*ListFederationRelationshipsResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{1} } func (x *ListFederationRelationshipsResponse) GetFederationRelationships() []*types.FederationRelationship { if x != nil { return x.FederationRelationships } return nil } func (x *ListFederationRelationshipsResponse) GetNextPageToken() string { if x != nil { return x.NextPageToken } return "" } type GetFederationRelationshipRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The trust domain name of the federation relationship // (e.g., "example.org"). TrustDomain string `protobuf:"bytes,1,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` // An output mask indicating which federation relationship fields // are set in the response. OutputMask *types.FederationRelationshipMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *GetFederationRelationshipRequest) Reset() { *x = GetFederationRelationshipRequest{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *GetFederationRelationshipRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*GetFederationRelationshipRequest) ProtoMessage() {} func (x *GetFederationRelationshipRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use GetFederationRelationshipRequest.ProtoReflect.Descriptor instead. func (*GetFederationRelationshipRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{2} } func (x *GetFederationRelationshipRequest) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } func (x *GetFederationRelationshipRequest) GetOutputMask() *types.FederationRelationshipMask { if x != nil { return x.OutputMask } return nil } type BatchCreateFederationRelationshipRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The federation relationships to be created. FederationRelationships []*types.FederationRelationship `protobuf:"bytes,1,rep,name=federation_relationships,json=federationRelationships,proto3" json:"federation_relationships,omitempty"` // An output mask indicating the federation relationship fields set in the response. OutputMask *types.FederationRelationshipMask `protobuf:"bytes,2,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateFederationRelationshipRequest) Reset() { *x = BatchCreateFederationRelationshipRequest{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateFederationRelationshipRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateFederationRelationshipRequest) ProtoMessage() {} func (x *BatchCreateFederationRelationshipRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateFederationRelationshipRequest.ProtoReflect.Descriptor instead. func (*BatchCreateFederationRelationshipRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{3} } func (x *BatchCreateFederationRelationshipRequest) GetFederationRelationships() []*types.FederationRelationship { if x != nil { return x.FederationRelationships } return nil } func (x *BatchCreateFederationRelationshipRequest) GetOutputMask() *types.FederationRelationshipMask { if x != nil { return x.OutputMask } return nil } type BatchCreateFederationRelationshipResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each federation relationship in the request (order is maintained). Results []*BatchCreateFederationRelationshipResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateFederationRelationshipResponse) Reset() { *x = BatchCreateFederationRelationshipResponse{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateFederationRelationshipResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateFederationRelationshipResponse) ProtoMessage() {} func (x *BatchCreateFederationRelationshipResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateFederationRelationshipResponse.ProtoReflect.Descriptor instead. func (*BatchCreateFederationRelationshipResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{4} } func (x *BatchCreateFederationRelationshipResponse) GetResults() []*BatchCreateFederationRelationshipResponse_Result { if x != nil { return x.Results } return nil } type BatchUpdateFederationRelationshipRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // The federation relationships to be updated. FederationRelationships []*types.FederationRelationship `protobuf:"bytes,1,rep,name=federation_relationships,json=federationRelationships,proto3" json:"federation_relationships,omitempty"` // An input mask indicating what federation relationship fields should be updated. InputMask *types.FederationRelationshipMask `protobuf:"bytes,2,opt,name=input_mask,json=inputMask,proto3" json:"input_mask,omitempty"` // An output mask indicating what federation relationship fields are set in the response. OutputMask *types.FederationRelationshipMask `protobuf:"bytes,3,opt,name=output_mask,json=outputMask,proto3" json:"output_mask,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateFederationRelationshipRequest) Reset() { *x = BatchUpdateFederationRelationshipRequest{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[5] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateFederationRelationshipRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateFederationRelationshipRequest) ProtoMessage() {} func (x *BatchUpdateFederationRelationshipRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[5] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateFederationRelationshipRequest.ProtoReflect.Descriptor instead. func (*BatchUpdateFederationRelationshipRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{5} } func (x *BatchUpdateFederationRelationshipRequest) GetFederationRelationships() []*types.FederationRelationship { if x != nil { return x.FederationRelationships } return nil } func (x *BatchUpdateFederationRelationshipRequest) GetInputMask() *types.FederationRelationshipMask { if x != nil { return x.InputMask } return nil } func (x *BatchUpdateFederationRelationshipRequest) GetOutputMask() *types.FederationRelationshipMask { if x != nil { return x.OutputMask } return nil } type BatchUpdateFederationRelationshipResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each federation relationship in the request (order is maintained). Results []*BatchUpdateFederationRelationshipResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateFederationRelationshipResponse) Reset() { *x = BatchUpdateFederationRelationshipResponse{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[6] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateFederationRelationshipResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateFederationRelationshipResponse) ProtoMessage() {} func (x *BatchUpdateFederationRelationshipResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[6] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateFederationRelationshipResponse.ProtoReflect.Descriptor instead. func (*BatchUpdateFederationRelationshipResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{6} } func (x *BatchUpdateFederationRelationshipResponse) GetResults() []*BatchUpdateFederationRelationshipResponse_Result { if x != nil { return x.Results } return nil } type BatchDeleteFederationRelationshipRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The trust domain names of the federation relationships // to delete. TrustDomains []string `protobuf:"bytes,1,rep,name=trust_domains,json=trustDomains,proto3" json:"trust_domains,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteFederationRelationshipRequest) Reset() { *x = BatchDeleteFederationRelationshipRequest{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[7] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteFederationRelationshipRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteFederationRelationshipRequest) ProtoMessage() {} func (x *BatchDeleteFederationRelationshipRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[7] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteFederationRelationshipRequest.ProtoReflect.Descriptor instead. func (*BatchDeleteFederationRelationshipRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{7} } func (x *BatchDeleteFederationRelationshipRequest) GetTrustDomains() []string { if x != nil { return x.TrustDomains } return nil } type BatchDeleteFederationRelationshipResponse struct { state protoimpl.MessageState `protogen:"open.v1"` // Result for each trust domain name in the request (order is maintained). Results []*BatchDeleteFederationRelationshipResponse_Result `protobuf:"bytes,1,rep,name=results,proto3" json:"results,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteFederationRelationshipResponse) Reset() { *x = BatchDeleteFederationRelationshipResponse{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[8] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteFederationRelationshipResponse) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteFederationRelationshipResponse) ProtoMessage() {} func (x *BatchDeleteFederationRelationshipResponse) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[8] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteFederationRelationshipResponse.ProtoReflect.Descriptor instead. func (*BatchDeleteFederationRelationshipResponse) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{8} } func (x *BatchDeleteFederationRelationshipResponse) GetResults() []*BatchDeleteFederationRelationshipResponse_Result { if x != nil { return x.Results } return nil } type RefreshBundleRequest struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The federated trust domain name of the // bundle to refresh (e.g., "example.org"). TrustDomain string `protobuf:"bytes,1,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *RefreshBundleRequest) Reset() { *x = RefreshBundleRequest{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[9] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *RefreshBundleRequest) String() string { return protoimpl.X.MessageStringOf(x) } func (*RefreshBundleRequest) ProtoMessage() {} func (x *RefreshBundleRequest) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[9] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use RefreshBundleRequest.ProtoReflect.Descriptor instead. func (*RefreshBundleRequest) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{9} } func (x *RefreshBundleRequest) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } type BatchCreateFederationRelationshipResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of creating the federation relationship. // Status code will be ALREADY_EXISTS if there is already a // federation relationship with the specified trust domain. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The federation relationship that was created. // This will be set if the status is OK. FederationRelationship *types.FederationRelationship `protobuf:"bytes,2,opt,name=federation_relationship,json=federationRelationship,proto3" json:"federation_relationship,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchCreateFederationRelationshipResponse_Result) Reset() { *x = BatchCreateFederationRelationshipResponse_Result{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[10] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchCreateFederationRelationshipResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchCreateFederationRelationshipResponse_Result) ProtoMessage() {} func (x *BatchCreateFederationRelationshipResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[10] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchCreateFederationRelationshipResponse_Result.ProtoReflect.Descriptor instead. func (*BatchCreateFederationRelationshipResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{4, 0} } func (x *BatchCreateFederationRelationshipResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchCreateFederationRelationshipResponse_Result) GetFederationRelationship() *types.FederationRelationship { if x != nil { return x.FederationRelationship } return nil } type BatchUpdateFederationRelationshipResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of updating the federation relationship. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The federation relationship that was updated. // This will be set if the status is OK. FederationRelationship *types.FederationRelationship `protobuf:"bytes,2,opt,name=federation_relationship,json=federationRelationship,proto3" json:"federation_relationship,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchUpdateFederationRelationshipResponse_Result) Reset() { *x = BatchUpdateFederationRelationshipResponse_Result{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[11] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchUpdateFederationRelationshipResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchUpdateFederationRelationshipResponse_Result) ProtoMessage() {} func (x *BatchUpdateFederationRelationshipResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[11] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchUpdateFederationRelationshipResponse_Result.ProtoReflect.Descriptor instead. func (*BatchUpdateFederationRelationshipResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{6, 0} } func (x *BatchUpdateFederationRelationshipResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchUpdateFederationRelationshipResponse_Result) GetFederationRelationship() *types.FederationRelationship { if x != nil { return x.FederationRelationship } return nil } type BatchDeleteFederationRelationshipResponse_Result struct { state protoimpl.MessageState `protogen:"open.v1"` // The status of delating the federation relationship. Status *types.Status `protobuf:"bytes,1,opt,name=status,proto3" json:"status,omitempty"` // The trust domain name of the federation relationship // that was deleted. TrustDomain string `protobuf:"bytes,2,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BatchDeleteFederationRelationshipResponse_Result) Reset() { *x = BatchDeleteFederationRelationshipResponse_Result{} mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[12] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BatchDeleteFederationRelationshipResponse_Result) String() string { return protoimpl.X.MessageStringOf(x) } func (*BatchDeleteFederationRelationshipResponse_Result) ProtoMessage() {} func (x *BatchDeleteFederationRelationshipResponse_Result) ProtoReflect() protoreflect.Message { mi := &file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes[12] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BatchDeleteFederationRelationshipResponse_Result.ProtoReflect.Descriptor instead. func (*BatchDeleteFederationRelationshipResponse_Result) Descriptor() ([]byte, []int) { return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP(), []int{8, 0} } func (x *BatchDeleteFederationRelationshipResponse_Result) GetStatus() *types.Status { if x != nil { return x.Status } return nil } func (x *BatchDeleteFederationRelationshipResponse_Result) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } var File_spire_api_server_trustdomain_v1_trustdomain_proto protoreflect.FileDescriptor const file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDesc = "" + "\n" + "1spire/api/server/trustdomain/v1/trustdomain.proto\x12\x1fspire.api.server.trustdomain.v1\x1a\x1bgoogle/protobuf/empty.proto\x1a,spire/api/types/federationrelationship.proto\x1a\x1cspire/api/types/status.proto\"\xae\x01\n" + "\"ListFederationRelationshipsRequest\x12L\n" + "\voutput_mask\x18\x01 \x01(\v2+.spire.api.types.FederationRelationshipMaskR\n" + "outputMask\x12\x1b\n" + "\tpage_size\x18\x02 \x01(\x05R\bpageSize\x12\x1d\n" + "\n" + "page_token\x18\x03 \x01(\tR\tpageToken\"\xb1\x01\n" + "#ListFederationRelationshipsResponse\x12b\n" + "\x18federation_relationships\x18\x01 \x03(\v2'.spire.api.types.FederationRelationshipR\x17federationRelationships\x12&\n" + "\x0fnext_page_token\x18\x02 \x01(\tR\rnextPageToken\"\x93\x01\n" + " GetFederationRelationshipRequest\x12!\n" + "\ftrust_domain\x18\x01 \x01(\tR\vtrustDomain\x12L\n" + "\voutput_mask\x18\x02 \x01(\v2+.spire.api.types.FederationRelationshipMaskR\n" + "outputMask\"\xdc\x01\n" + "(BatchCreateFederationRelationshipRequest\x12b\n" + "\x18federation_relationships\x18\x01 \x03(\v2'.spire.api.types.FederationRelationshipR\x17federationRelationships\x12L\n" + "\voutput_mask\x18\x02 \x01(\v2+.spire.api.types.FederationRelationshipMaskR\n" + "outputMask\"\xb6\x02\n" + ")BatchCreateFederationRelationshipResponse\x12k\n" + "\aresults\x18\x01 \x03(\v2Q.spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse.ResultR\aresults\x1a\x9b\x01\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12`\n" + "\x17federation_relationship\x18\x02 \x01(\v2'.spire.api.types.FederationRelationshipR\x16federationRelationship\"\xa8\x02\n" + "(BatchUpdateFederationRelationshipRequest\x12b\n" + "\x18federation_relationships\x18\x01 \x03(\v2'.spire.api.types.FederationRelationshipR\x17federationRelationships\x12J\n" + "\n" + "input_mask\x18\x02 \x01(\v2+.spire.api.types.FederationRelationshipMaskR\tinputMask\x12L\n" + "\voutput_mask\x18\x03 \x01(\v2+.spire.api.types.FederationRelationshipMaskR\n" + "outputMask\"\xb6\x02\n" + ")BatchUpdateFederationRelationshipResponse\x12k\n" + "\aresults\x18\x01 \x03(\v2Q.spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse.ResultR\aresults\x1a\x9b\x01\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12`\n" + "\x17federation_relationship\x18\x02 \x01(\v2'.spire.api.types.FederationRelationshipR\x16federationRelationship\"O\n" + "(BatchDeleteFederationRelationshipRequest\x12#\n" + "\rtrust_domains\x18\x01 \x03(\tR\ftrustDomains\"\xf6\x01\n" + ")BatchDeleteFederationRelationshipResponse\x12k\n" + "\aresults\x18\x01 \x03(\v2Q.spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse.ResultR\aresults\x1a\\\n" + "\x06Result\x12/\n" + "\x06status\x18\x01 \x01(\v2\x17.spire.api.types.StatusR\x06status\x12!\n" + "\ftrust_domain\x18\x02 \x01(\tR\vtrustDomain\"9\n" + "\x14RefreshBundleRequest\x12!\n" + "\ftrust_domain\x18\x01 \x01(\tR\vtrustDomain2\xd9\a\n" + "\vTrustDomain\x12\xa8\x01\n" + "\x1bListFederationRelationships\x12C.spire.api.server.trustdomain.v1.ListFederationRelationshipsRequest\x1aD.spire.api.server.trustdomain.v1.ListFederationRelationshipsResponse\x12\x87\x01\n" + "\x19GetFederationRelationship\x12A.spire.api.server.trustdomain.v1.GetFederationRelationshipRequest\x1a'.spire.api.types.FederationRelationship\x12\xba\x01\n" + "!BatchCreateFederationRelationship\x12I.spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipRequest\x1aJ.spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse\x12\xba\x01\n" + "!BatchUpdateFederationRelationship\x12I.spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipRequest\x1aJ.spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse\x12\xba\x01\n" + "!BatchDeleteFederationRelationship\x12I.spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipRequest\x1aJ.spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse\x12^\n" + "\rRefreshBundle\x125.spire.api.server.trustdomain.v1.RefreshBundleRequest\x1a\x16.google.protobuf.EmptyBSZQgithub.com/spiffe/spire-api-sdk/proto/spire/api/server/trustdomain/v1;trustdomainb\x06proto3" var ( file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescOnce sync.Once file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescData []byte ) func file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescGZIP() []byte { file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescOnce.Do(func() { file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDesc), len(file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDesc))) }) return file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDescData } var file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes = make([]protoimpl.MessageInfo, 13) var file_spire_api_server_trustdomain_v1_trustdomain_proto_goTypes = []any{ (*ListFederationRelationshipsRequest)(nil), // 0: spire.api.server.trustdomain.v1.ListFederationRelationshipsRequest (*ListFederationRelationshipsResponse)(nil), // 1: spire.api.server.trustdomain.v1.ListFederationRelationshipsResponse (*GetFederationRelationshipRequest)(nil), // 2: spire.api.server.trustdomain.v1.GetFederationRelationshipRequest (*BatchCreateFederationRelationshipRequest)(nil), // 3: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipRequest (*BatchCreateFederationRelationshipResponse)(nil), // 4: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse (*BatchUpdateFederationRelationshipRequest)(nil), // 5: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipRequest (*BatchUpdateFederationRelationshipResponse)(nil), // 6: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse (*BatchDeleteFederationRelationshipRequest)(nil), // 7: spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipRequest (*BatchDeleteFederationRelationshipResponse)(nil), // 8: spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse (*RefreshBundleRequest)(nil), // 9: spire.api.server.trustdomain.v1.RefreshBundleRequest (*BatchCreateFederationRelationshipResponse_Result)(nil), // 10: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse.Result (*BatchUpdateFederationRelationshipResponse_Result)(nil), // 11: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse.Result (*BatchDeleteFederationRelationshipResponse_Result)(nil), // 12: spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse.Result (*types.FederationRelationshipMask)(nil), // 13: spire.api.types.FederationRelationshipMask (*types.FederationRelationship)(nil), // 14: spire.api.types.FederationRelationship (*types.Status)(nil), // 15: spire.api.types.Status (*emptypb.Empty)(nil), // 16: google.protobuf.Empty } var file_spire_api_server_trustdomain_v1_trustdomain_proto_depIdxs = []int32{ 13, // 0: spire.api.server.trustdomain.v1.ListFederationRelationshipsRequest.output_mask:type_name -> spire.api.types.FederationRelationshipMask 14, // 1: spire.api.server.trustdomain.v1.ListFederationRelationshipsResponse.federation_relationships:type_name -> spire.api.types.FederationRelationship 13, // 2: spire.api.server.trustdomain.v1.GetFederationRelationshipRequest.output_mask:type_name -> spire.api.types.FederationRelationshipMask 14, // 3: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipRequest.federation_relationships:type_name -> spire.api.types.FederationRelationship 13, // 4: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipRequest.output_mask:type_name -> spire.api.types.FederationRelationshipMask 10, // 5: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse.results:type_name -> spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse.Result 14, // 6: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipRequest.federation_relationships:type_name -> spire.api.types.FederationRelationship 13, // 7: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipRequest.input_mask:type_name -> spire.api.types.FederationRelationshipMask 13, // 8: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipRequest.output_mask:type_name -> spire.api.types.FederationRelationshipMask 11, // 9: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse.results:type_name -> spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse.Result 12, // 10: spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse.results:type_name -> spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse.Result 15, // 11: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse.Result.status:type_name -> spire.api.types.Status 14, // 12: spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse.Result.federation_relationship:type_name -> spire.api.types.FederationRelationship 15, // 13: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse.Result.status:type_name -> spire.api.types.Status 14, // 14: spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse.Result.federation_relationship:type_name -> spire.api.types.FederationRelationship 15, // 15: spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse.Result.status:type_name -> spire.api.types.Status 0, // 16: spire.api.server.trustdomain.v1.TrustDomain.ListFederationRelationships:input_type -> spire.api.server.trustdomain.v1.ListFederationRelationshipsRequest 2, // 17: spire.api.server.trustdomain.v1.TrustDomain.GetFederationRelationship:input_type -> spire.api.server.trustdomain.v1.GetFederationRelationshipRequest 3, // 18: spire.api.server.trustdomain.v1.TrustDomain.BatchCreateFederationRelationship:input_type -> spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipRequest 5, // 19: spire.api.server.trustdomain.v1.TrustDomain.BatchUpdateFederationRelationship:input_type -> spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipRequest 7, // 20: spire.api.server.trustdomain.v1.TrustDomain.BatchDeleteFederationRelationship:input_type -> spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipRequest 9, // 21: spire.api.server.trustdomain.v1.TrustDomain.RefreshBundle:input_type -> spire.api.server.trustdomain.v1.RefreshBundleRequest 1, // 22: spire.api.server.trustdomain.v1.TrustDomain.ListFederationRelationships:output_type -> spire.api.server.trustdomain.v1.ListFederationRelationshipsResponse 14, // 23: spire.api.server.trustdomain.v1.TrustDomain.GetFederationRelationship:output_type -> spire.api.types.FederationRelationship 4, // 24: spire.api.server.trustdomain.v1.TrustDomain.BatchCreateFederationRelationship:output_type -> spire.api.server.trustdomain.v1.BatchCreateFederationRelationshipResponse 6, // 25: spire.api.server.trustdomain.v1.TrustDomain.BatchUpdateFederationRelationship:output_type -> spire.api.server.trustdomain.v1.BatchUpdateFederationRelationshipResponse 8, // 26: spire.api.server.trustdomain.v1.TrustDomain.BatchDeleteFederationRelationship:output_type -> spire.api.server.trustdomain.v1.BatchDeleteFederationRelationshipResponse 16, // 27: spire.api.server.trustdomain.v1.TrustDomain.RefreshBundle:output_type -> google.protobuf.Empty 22, // [22:28] is the sub-list for method output_type 16, // [16:22] is the sub-list for method input_type 16, // [16:16] is the sub-list for extension type_name 16, // [16:16] is the sub-list for extension extendee 0, // [0:16] is the sub-list for field type_name } func init() { file_spire_api_server_trustdomain_v1_trustdomain_proto_init() } func file_spire_api_server_trustdomain_v1_trustdomain_proto_init() { if File_spire_api_server_trustdomain_v1_trustdomain_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDesc), len(file_spire_api_server_trustdomain_v1_trustdomain_proto_rawDesc)), NumEnums: 0, NumMessages: 13, NumExtensions: 0, NumServices: 1, }, GoTypes: file_spire_api_server_trustdomain_v1_trustdomain_proto_goTypes, DependencyIndexes: file_spire_api_server_trustdomain_v1_trustdomain_proto_depIdxs, MessageInfos: file_spire_api_server_trustdomain_v1_trustdomain_proto_msgTypes, }.Build() File_spire_api_server_trustdomain_v1_trustdomain_proto = out.File file_spire_api_server_trustdomain_v1_trustdomain_proto_goTypes = nil file_spire_api_server_trustdomain_v1_trustdomain_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/trustdomain/v1/trustdomain.proto000066400000000000000000000141371516071322100331550ustar00rootroot00000000000000syntax = "proto3"; package spire.api.server.trustdomain.v1; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/server/trustdomain/v1;trustdomain"; import "google/protobuf/empty.proto"; import "spire/api/types/federationrelationship.proto"; import "spire/api/types/status.proto"; // Manages the federation relationships with foreign trust domains. service TrustDomain { // Lists federation relationships with foreign trust domains. // // The caller must be local or present an admin X509-SVID. rpc ListFederationRelationships(ListFederationRelationshipsRequest) returns (ListFederationRelationshipsResponse); // Gets a federation relationship with a foreign trust domain. // If there is no federation relationship with the specified // trust domain, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. rpc GetFederationRelationship(GetFederationRelationshipRequest) returns (spire.api.types.FederationRelationship); // Batch creates one or more federation relationships with // foreign trust domains. // // The caller must be local or present an admin X509-SVID. rpc BatchCreateFederationRelationship(BatchCreateFederationRelationshipRequest) returns (BatchCreateFederationRelationshipResponse); // Batch updates one or more federation relationships with // foreign trust domains. // // The caller must be local or present an admin X509-SVID. rpc BatchUpdateFederationRelationship(BatchUpdateFederationRelationshipRequest) returns (BatchUpdateFederationRelationshipResponse); // Batch deletes federation relationships with foreign trust domains. // // The caller must be local or present an admin X509-SVID. rpc BatchDeleteFederationRelationship(BatchDeleteFederationRelationshipRequest) returns (BatchDeleteFederationRelationshipResponse); // Refreshes the bundle from the specified federated trust domain. // If there is not a federation relationship configured with the // specified trust domain, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. rpc RefreshBundle(RefreshBundleRequest) returns (google.protobuf.Empty); } message ListFederationRelationshipsRequest { // An output mask indicating which federation replationship fields // are set in the response. spire.api.types.FederationRelationshipMask output_mask = 1; // The maximum number of results to return. The server may further // constrain this value, or if zero, choose its own. int32 page_size = 2; // The next_page_token value returned from a previous request, if any. string page_token = 3; } message ListFederationRelationshipsResponse { // The federation relationships with foreign trust domains. repeated spire.api.types.FederationRelationship federation_relationships = 1; // The page token for the next request. Empty if there are no more results. // This field should be checked by clients even when a page_size was not // requested, since the server may choose its own (see page_size). string next_page_token = 2; } message GetFederationRelationshipRequest { // Required. The trust domain name of the federation relationship // (e.g., "example.org"). string trust_domain = 1; // An output mask indicating which federation relationship fields // are set in the response. spire.api.types.FederationRelationshipMask output_mask = 2; } message BatchCreateFederationRelationshipRequest { // The federation relationships to be created. repeated spire.api.types.FederationRelationship federation_relationships = 1; // An output mask indicating the federation relationship fields set in the response. spire.api.types.FederationRelationshipMask output_mask = 2; } message BatchCreateFederationRelationshipResponse { message Result { // The status of creating the federation relationship. // Status code will be ALREADY_EXISTS if there is already a // federation relationship with the specified trust domain. spire.api.types.Status status = 1; // The federation relationship that was created. // This will be set if the status is OK. spire.api.types.FederationRelationship federation_relationship = 2; } // Result for each federation relationship in the request (order is maintained). repeated Result results = 1; } message BatchUpdateFederationRelationshipRequest { // The federation relationships to be updated. repeated spire.api.types.FederationRelationship federation_relationships = 1; // An input mask indicating what federation relationship fields should be updated. spire.api.types.FederationRelationshipMask input_mask = 2; // An output mask indicating what federation relationship fields are set in the response. spire.api.types.FederationRelationshipMask output_mask = 3; } message BatchUpdateFederationRelationshipResponse { message Result { // The status of updating the federation relationship. spire.api.types.Status status = 1; // The federation relationship that was updated. // This will be set if the status is OK. spire.api.types.FederationRelationship federation_relationship = 2; } // Result for each federation relationship in the request (order is maintained). repeated Result results = 1; } message BatchDeleteFederationRelationshipRequest { // Required. The trust domain names of the federation relationships // to delete. repeated string trust_domains = 1; } message BatchDeleteFederationRelationshipResponse { message Result { // The status of delating the federation relationship. spire.api.types.Status status = 1; // The trust domain name of the federation relationship // that was deleted. string trust_domain = 2; } // Result for each trust domain name in the request (order is maintained). repeated Result results = 1; } message RefreshBundleRequest { // Required. The federated trust domain name of the // bundle to refresh (e.g., "example.org"). string trust_domain = 1; } trustdomain_grpc.pb.go000066400000000000000000000421361516071322100337530ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/server/trustdomain/v1// Code generated by protoc-gen-go-grpc. DO NOT EDIT. // versions: // - protoc-gen-go-grpc v1.5.1 // - protoc v6.30.2 // source: spire/api/server/trustdomain/v1/trustdomain.proto package trustdomain import ( context "context" types "github.com/spiffe/spire-api-sdk/proto/spire/api/types" grpc "google.golang.org/grpc" codes "google.golang.org/grpc/codes" status "google.golang.org/grpc/status" emptypb "google.golang.org/protobuf/types/known/emptypb" ) // This is a compile-time assertion to ensure that this generated file // is compatible with the grpc package it is being compiled against. // Requires gRPC-Go v1.64.0 or later. const _ = grpc.SupportPackageIsVersion9 const ( TrustDomain_ListFederationRelationships_FullMethodName = "/spire.api.server.trustdomain.v1.TrustDomain/ListFederationRelationships" TrustDomain_GetFederationRelationship_FullMethodName = "/spire.api.server.trustdomain.v1.TrustDomain/GetFederationRelationship" TrustDomain_BatchCreateFederationRelationship_FullMethodName = "/spire.api.server.trustdomain.v1.TrustDomain/BatchCreateFederationRelationship" TrustDomain_BatchUpdateFederationRelationship_FullMethodName = "/spire.api.server.trustdomain.v1.TrustDomain/BatchUpdateFederationRelationship" TrustDomain_BatchDeleteFederationRelationship_FullMethodName = "/spire.api.server.trustdomain.v1.TrustDomain/BatchDeleteFederationRelationship" TrustDomain_RefreshBundle_FullMethodName = "/spire.api.server.trustdomain.v1.TrustDomain/RefreshBundle" ) // TrustDomainClient is the client API for TrustDomain service. // // For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream. // // Manages the federation relationships with foreign trust domains. type TrustDomainClient interface { // Lists federation relationships with foreign trust domains. // // The caller must be local or present an admin X509-SVID. ListFederationRelationships(ctx context.Context, in *ListFederationRelationshipsRequest, opts ...grpc.CallOption) (*ListFederationRelationshipsResponse, error) // Gets a federation relationship with a foreign trust domain. // If there is no federation relationship with the specified // trust domain, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. GetFederationRelationship(ctx context.Context, in *GetFederationRelationshipRequest, opts ...grpc.CallOption) (*types.FederationRelationship, error) // Batch creates one or more federation relationships with // foreign trust domains. // // The caller must be local or present an admin X509-SVID. BatchCreateFederationRelationship(ctx context.Context, in *BatchCreateFederationRelationshipRequest, opts ...grpc.CallOption) (*BatchCreateFederationRelationshipResponse, error) // Batch updates one or more federation relationships with // foreign trust domains. // // The caller must be local or present an admin X509-SVID. BatchUpdateFederationRelationship(ctx context.Context, in *BatchUpdateFederationRelationshipRequest, opts ...grpc.CallOption) (*BatchUpdateFederationRelationshipResponse, error) // Batch deletes federation relationships with foreign trust domains. // // The caller must be local or present an admin X509-SVID. BatchDeleteFederationRelationship(ctx context.Context, in *BatchDeleteFederationRelationshipRequest, opts ...grpc.CallOption) (*BatchDeleteFederationRelationshipResponse, error) // Refreshes the bundle from the specified federated trust domain. // If there is not a federation relationship configured with the // specified trust domain, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. RefreshBundle(ctx context.Context, in *RefreshBundleRequest, opts ...grpc.CallOption) (*emptypb.Empty, error) } type trustDomainClient struct { cc grpc.ClientConnInterface } func NewTrustDomainClient(cc grpc.ClientConnInterface) TrustDomainClient { return &trustDomainClient{cc} } func (c *trustDomainClient) ListFederationRelationships(ctx context.Context, in *ListFederationRelationshipsRequest, opts ...grpc.CallOption) (*ListFederationRelationshipsResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(ListFederationRelationshipsResponse) err := c.cc.Invoke(ctx, TrustDomain_ListFederationRelationships_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *trustDomainClient) GetFederationRelationship(ctx context.Context, in *GetFederationRelationshipRequest, opts ...grpc.CallOption) (*types.FederationRelationship, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(types.FederationRelationship) err := c.cc.Invoke(ctx, TrustDomain_GetFederationRelationship_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *trustDomainClient) BatchCreateFederationRelationship(ctx context.Context, in *BatchCreateFederationRelationshipRequest, opts ...grpc.CallOption) (*BatchCreateFederationRelationshipResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchCreateFederationRelationshipResponse) err := c.cc.Invoke(ctx, TrustDomain_BatchCreateFederationRelationship_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *trustDomainClient) BatchUpdateFederationRelationship(ctx context.Context, in *BatchUpdateFederationRelationshipRequest, opts ...grpc.CallOption) (*BatchUpdateFederationRelationshipResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchUpdateFederationRelationshipResponse) err := c.cc.Invoke(ctx, TrustDomain_BatchUpdateFederationRelationship_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *trustDomainClient) BatchDeleteFederationRelationship(ctx context.Context, in *BatchDeleteFederationRelationshipRequest, opts ...grpc.CallOption) (*BatchDeleteFederationRelationshipResponse, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(BatchDeleteFederationRelationshipResponse) err := c.cc.Invoke(ctx, TrustDomain_BatchDeleteFederationRelationship_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } func (c *trustDomainClient) RefreshBundle(ctx context.Context, in *RefreshBundleRequest, opts ...grpc.CallOption) (*emptypb.Empty, error) { cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...) out := new(emptypb.Empty) err := c.cc.Invoke(ctx, TrustDomain_RefreshBundle_FullMethodName, in, out, cOpts...) if err != nil { return nil, err } return out, nil } // TrustDomainServer is the server API for TrustDomain service. // All implementations must embed UnimplementedTrustDomainServer // for forward compatibility. // // Manages the federation relationships with foreign trust domains. type TrustDomainServer interface { // Lists federation relationships with foreign trust domains. // // The caller must be local or present an admin X509-SVID. ListFederationRelationships(context.Context, *ListFederationRelationshipsRequest) (*ListFederationRelationshipsResponse, error) // Gets a federation relationship with a foreign trust domain. // If there is no federation relationship with the specified // trust domain, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. GetFederationRelationship(context.Context, *GetFederationRelationshipRequest) (*types.FederationRelationship, error) // Batch creates one or more federation relationships with // foreign trust domains. // // The caller must be local or present an admin X509-SVID. BatchCreateFederationRelationship(context.Context, *BatchCreateFederationRelationshipRequest) (*BatchCreateFederationRelationshipResponse, error) // Batch updates one or more federation relationships with // foreign trust domains. // // The caller must be local or present an admin X509-SVID. BatchUpdateFederationRelationship(context.Context, *BatchUpdateFederationRelationshipRequest) (*BatchUpdateFederationRelationshipResponse, error) // Batch deletes federation relationships with foreign trust domains. // // The caller must be local or present an admin X509-SVID. BatchDeleteFederationRelationship(context.Context, *BatchDeleteFederationRelationshipRequest) (*BatchDeleteFederationRelationshipResponse, error) // Refreshes the bundle from the specified federated trust domain. // If there is not a federation relationship configured with the // specified trust domain, NOT_FOUND is returned. // // The caller must be local or present an admin X509-SVID. RefreshBundle(context.Context, *RefreshBundleRequest) (*emptypb.Empty, error) mustEmbedUnimplementedTrustDomainServer() } // UnimplementedTrustDomainServer must be embedded to have // forward compatible implementations. // // NOTE: this should be embedded by value instead of pointer to avoid a nil // pointer dereference when methods are called. type UnimplementedTrustDomainServer struct{} func (UnimplementedTrustDomainServer) ListFederationRelationships(context.Context, *ListFederationRelationshipsRequest) (*ListFederationRelationshipsResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method ListFederationRelationships not implemented") } func (UnimplementedTrustDomainServer) GetFederationRelationship(context.Context, *GetFederationRelationshipRequest) (*types.FederationRelationship, error) { return nil, status.Errorf(codes.Unimplemented, "method GetFederationRelationship not implemented") } func (UnimplementedTrustDomainServer) BatchCreateFederationRelationship(context.Context, *BatchCreateFederationRelationshipRequest) (*BatchCreateFederationRelationshipResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchCreateFederationRelationship not implemented") } func (UnimplementedTrustDomainServer) BatchUpdateFederationRelationship(context.Context, *BatchUpdateFederationRelationshipRequest) (*BatchUpdateFederationRelationshipResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchUpdateFederationRelationship not implemented") } func (UnimplementedTrustDomainServer) BatchDeleteFederationRelationship(context.Context, *BatchDeleteFederationRelationshipRequest) (*BatchDeleteFederationRelationshipResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method BatchDeleteFederationRelationship not implemented") } func (UnimplementedTrustDomainServer) RefreshBundle(context.Context, *RefreshBundleRequest) (*emptypb.Empty, error) { return nil, status.Errorf(codes.Unimplemented, "method RefreshBundle not implemented") } func (UnimplementedTrustDomainServer) mustEmbedUnimplementedTrustDomainServer() {} func (UnimplementedTrustDomainServer) testEmbeddedByValue() {} // UnsafeTrustDomainServer may be embedded to opt out of forward compatibility for this service. // Use of this interface is not recommended, as added methods to TrustDomainServer will // result in compilation errors. type UnsafeTrustDomainServer interface { mustEmbedUnimplementedTrustDomainServer() } func RegisterTrustDomainServer(s grpc.ServiceRegistrar, srv TrustDomainServer) { // If the following call pancis, it indicates UnimplementedTrustDomainServer was // embedded by pointer and is nil. This will cause panics if an // unimplemented method is ever invoked, so we test this at initialization // time to prevent it from happening at runtime later due to I/O. if t, ok := srv.(interface{ testEmbeddedByValue() }); ok { t.testEmbeddedByValue() } s.RegisterService(&TrustDomain_ServiceDesc, srv) } func _TrustDomain_ListFederationRelationships_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(ListFederationRelationshipsRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(TrustDomainServer).ListFederationRelationships(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: TrustDomain_ListFederationRelationships_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(TrustDomainServer).ListFederationRelationships(ctx, req.(*ListFederationRelationshipsRequest)) } return interceptor(ctx, in, info, handler) } func _TrustDomain_GetFederationRelationship_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(GetFederationRelationshipRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(TrustDomainServer).GetFederationRelationship(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: TrustDomain_GetFederationRelationship_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(TrustDomainServer).GetFederationRelationship(ctx, req.(*GetFederationRelationshipRequest)) } return interceptor(ctx, in, info, handler) } func _TrustDomain_BatchCreateFederationRelationship_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchCreateFederationRelationshipRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(TrustDomainServer).BatchCreateFederationRelationship(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: TrustDomain_BatchCreateFederationRelationship_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(TrustDomainServer).BatchCreateFederationRelationship(ctx, req.(*BatchCreateFederationRelationshipRequest)) } return interceptor(ctx, in, info, handler) } func _TrustDomain_BatchUpdateFederationRelationship_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchUpdateFederationRelationshipRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(TrustDomainServer).BatchUpdateFederationRelationship(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: TrustDomain_BatchUpdateFederationRelationship_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(TrustDomainServer).BatchUpdateFederationRelationship(ctx, req.(*BatchUpdateFederationRelationshipRequest)) } return interceptor(ctx, in, info, handler) } func _TrustDomain_BatchDeleteFederationRelationship_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(BatchDeleteFederationRelationshipRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(TrustDomainServer).BatchDeleteFederationRelationship(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: TrustDomain_BatchDeleteFederationRelationship_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(TrustDomainServer).BatchDeleteFederationRelationship(ctx, req.(*BatchDeleteFederationRelationshipRequest)) } return interceptor(ctx, in, info, handler) } func _TrustDomain_RefreshBundle_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { in := new(RefreshBundleRequest) if err := dec(in); err != nil { return nil, err } if interceptor == nil { return srv.(TrustDomainServer).RefreshBundle(ctx, in) } info := &grpc.UnaryServerInfo{ Server: srv, FullMethod: TrustDomain_RefreshBundle_FullMethodName, } handler := func(ctx context.Context, req interface{}) (interface{}, error) { return srv.(TrustDomainServer).RefreshBundle(ctx, req.(*RefreshBundleRequest)) } return interceptor(ctx, in, info, handler) } // TrustDomain_ServiceDesc is the grpc.ServiceDesc for TrustDomain service. // It's only intended for direct use with grpc.RegisterService, // and not to be introspected or modified (even as a copy) var TrustDomain_ServiceDesc = grpc.ServiceDesc{ ServiceName: "spire.api.server.trustdomain.v1.TrustDomain", HandlerType: (*TrustDomainServer)(nil), Methods: []grpc.MethodDesc{ { MethodName: "ListFederationRelationships", Handler: _TrustDomain_ListFederationRelationships_Handler, }, { MethodName: "GetFederationRelationship", Handler: _TrustDomain_GetFederationRelationship_Handler, }, { MethodName: "BatchCreateFederationRelationship", Handler: _TrustDomain_BatchCreateFederationRelationship_Handler, }, { MethodName: "BatchUpdateFederationRelationship", Handler: _TrustDomain_BatchUpdateFederationRelationship_Handler, }, { MethodName: "BatchDeleteFederationRelationship", Handler: _TrustDomain_BatchDeleteFederationRelationship_Handler, }, { MethodName: "RefreshBundle", Handler: _TrustDomain_RefreshBundle_Handler, }, }, Streams: []grpc.StreamDesc{}, Metadata: "spire/api/server/trustdomain/v1/trustdomain.proto", } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/000077500000000000000000000000001516071322100244505ustar00rootroot00000000000000golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/agent.pb.go000066400000000000000000000235541516071322100265060ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/agent.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" _ "google.golang.org/protobuf/types/known/wrapperspb" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type Agent struct { state protoimpl.MessageState `protogen:"open.v1"` // Output only. SPIFFE ID of the agent. Id *SPIFFEID `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // Output only. The method by which the agent attested. AttestationType string `protobuf:"bytes,2,opt,name=attestation_type,json=attestationType,proto3" json:"attestation_type,omitempty"` // Output only. The X509-SVID serial number. X509SvidSerialNumber string `protobuf:"bytes,3,opt,name=x509svid_serial_number,json=x509svidSerialNumber,proto3" json:"x509svid_serial_number,omitempty"` // Output only. The X509-SVID expiration (seconds since Unix epoch). X509SvidExpiresAt int64 `protobuf:"varint,4,opt,name=x509svid_expires_at,json=x509svidExpiresAt,proto3" json:"x509svid_expires_at,omitempty"` // Output only. The selectors attributed to the agent during attestation. Selectors []*Selector `protobuf:"bytes,5,rep,name=selectors,proto3" json:"selectors,omitempty"` // Output only. Whether or not the agent is banned. Banned bool `protobuf:"varint,6,opt,name=banned,proto3" json:"banned,omitempty"` // Output only. Whether or not the agent can re-attest. CanReattest bool `protobuf:"varint,7,opt,name=can_reattest,json=canReattest,proto3" json:"can_reattest,omitempty"` // Output only. Optional. The version of the agent. AgentVersion string `protobuf:"bytes,8,opt,name=agent_version,json=agentVersion,proto3" json:"agent_version,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *Agent) Reset() { *x = Agent{} mi := &file_spire_api_types_agent_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *Agent) String() string { return protoimpl.X.MessageStringOf(x) } func (*Agent) ProtoMessage() {} func (x *Agent) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_agent_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use Agent.ProtoReflect.Descriptor instead. func (*Agent) Descriptor() ([]byte, []int) { return file_spire_api_types_agent_proto_rawDescGZIP(), []int{0} } func (x *Agent) GetId() *SPIFFEID { if x != nil { return x.Id } return nil } func (x *Agent) GetAttestationType() string { if x != nil { return x.AttestationType } return "" } func (x *Agent) GetX509SvidSerialNumber() string { if x != nil { return x.X509SvidSerialNumber } return "" } func (x *Agent) GetX509SvidExpiresAt() int64 { if x != nil { return x.X509SvidExpiresAt } return 0 } func (x *Agent) GetSelectors() []*Selector { if x != nil { return x.Selectors } return nil } func (x *Agent) GetBanned() bool { if x != nil { return x.Banned } return false } func (x *Agent) GetCanReattest() bool { if x != nil { return x.CanReattest } return false } func (x *Agent) GetAgentVersion() string { if x != nil { return x.AgentVersion } return "" } type AgentMask struct { state protoimpl.MessageState `protogen:"open.v1"` // attestation_type field mask AttestationType bool `protobuf:"varint,2,opt,name=attestation_type,json=attestationType,proto3" json:"attestation_type,omitempty"` // x509svid_serial_number field mask X509SvidSerialNumber bool `protobuf:"varint,3,opt,name=x509svid_serial_number,json=x509svidSerialNumber,proto3" json:"x509svid_serial_number,omitempty"` // x509svid_expires_at field mask X509SvidExpiresAt bool `protobuf:"varint,4,opt,name=x509svid_expires_at,json=x509svidExpiresAt,proto3" json:"x509svid_expires_at,omitempty"` // selectors field mask Selectors bool `protobuf:"varint,5,opt,name=selectors,proto3" json:"selectors,omitempty"` // banned field mask Banned bool `protobuf:"varint,6,opt,name=banned,proto3" json:"banned,omitempty"` // can_reattest field mask CanReattest bool `protobuf:"varint,7,opt,name=can_reattest,json=canReattest,proto3" json:"can_reattest,omitempty"` // agent_version field mask AgentVersion bool `protobuf:"varint,8,opt,name=agent_version,json=agentVersion,proto3" json:"agent_version,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AgentMask) Reset() { *x = AgentMask{} mi := &file_spire_api_types_agent_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AgentMask) String() string { return protoimpl.X.MessageStringOf(x) } func (*AgentMask) ProtoMessage() {} func (x *AgentMask) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_agent_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AgentMask.ProtoReflect.Descriptor instead. func (*AgentMask) Descriptor() ([]byte, []int) { return file_spire_api_types_agent_proto_rawDescGZIP(), []int{1} } func (x *AgentMask) GetAttestationType() bool { if x != nil { return x.AttestationType } return false } func (x *AgentMask) GetX509SvidSerialNumber() bool { if x != nil { return x.X509SvidSerialNumber } return false } func (x *AgentMask) GetX509SvidExpiresAt() bool { if x != nil { return x.X509SvidExpiresAt } return false } func (x *AgentMask) GetSelectors() bool { if x != nil { return x.Selectors } return false } func (x *AgentMask) GetBanned() bool { if x != nil { return x.Banned } return false } func (x *AgentMask) GetCanReattest() bool { if x != nil { return x.CanReattest } return false } func (x *AgentMask) GetAgentVersion() bool { if x != nil { return x.AgentVersion } return false } var File_spire_api_types_agent_proto protoreflect.FileDescriptor const file_spire_api_types_agent_proto_rawDesc = "" + "\n" + "\x1bspire/api/types/agent.proto\x12\x0fspire.api.types\x1a\x1espire/api/types/selector.proto\x1a\x1espire/api/types/spiffeid.proto\x1a\x1egoogle/protobuf/wrappers.proto\"\xdc\x02\n" + "\x05Agent\x12)\n" + "\x02id\x18\x01 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12)\n" + "\x10attestation_type\x18\x02 \x01(\tR\x0fattestationType\x124\n" + "\x16x509svid_serial_number\x18\x03 \x01(\tR\x14x509svidSerialNumber\x12.\n" + "\x13x509svid_expires_at\x18\x04 \x01(\x03R\x11x509svidExpiresAt\x127\n" + "\tselectors\x18\x05 \x03(\v2\x19.spire.api.types.SelectorR\tselectors\x12\x16\n" + "\x06banned\x18\x06 \x01(\bR\x06banned\x12!\n" + "\fcan_reattest\x18\a \x01(\bR\vcanReattest\x12#\n" + "\ragent_version\x18\b \x01(\tR\fagentVersion\"\x9a\x02\n" + "\tAgentMask\x12)\n" + "\x10attestation_type\x18\x02 \x01(\bR\x0fattestationType\x124\n" + "\x16x509svid_serial_number\x18\x03 \x01(\bR\x14x509svidSerialNumber\x12.\n" + "\x13x509svid_expires_at\x18\x04 \x01(\bR\x11x509svidExpiresAt\x12\x1c\n" + "\tselectors\x18\x05 \x01(\bR\tselectors\x12\x16\n" + "\x06banned\x18\x06 \x01(\bR\x06banned\x12!\n" + "\fcan_reattest\x18\a \x01(\bR\vcanReattest\x12#\n" + "\ragent_version\x18\b \x01(\bR\fagentVersionB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_agent_proto_rawDescOnce sync.Once file_spire_api_types_agent_proto_rawDescData []byte ) func file_spire_api_types_agent_proto_rawDescGZIP() []byte { file_spire_api_types_agent_proto_rawDescOnce.Do(func() { file_spire_api_types_agent_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_agent_proto_rawDesc), len(file_spire_api_types_agent_proto_rawDesc))) }) return file_spire_api_types_agent_proto_rawDescData } var file_spire_api_types_agent_proto_msgTypes = make([]protoimpl.MessageInfo, 2) var file_spire_api_types_agent_proto_goTypes = []any{ (*Agent)(nil), // 0: spire.api.types.Agent (*AgentMask)(nil), // 1: spire.api.types.AgentMask (*SPIFFEID)(nil), // 2: spire.api.types.SPIFFEID (*Selector)(nil), // 3: spire.api.types.Selector } var file_spire_api_types_agent_proto_depIdxs = []int32{ 2, // 0: spire.api.types.Agent.id:type_name -> spire.api.types.SPIFFEID 3, // 1: spire.api.types.Agent.selectors:type_name -> spire.api.types.Selector 2, // [2:2] is the sub-list for method output_type 2, // [2:2] is the sub-list for method input_type 2, // [2:2] is the sub-list for extension type_name 2, // [2:2] is the sub-list for extension extendee 0, // [0:2] is the sub-list for field type_name } func init() { file_spire_api_types_agent_proto_init() } func file_spire_api_types_agent_proto_init() { if File_spire_api_types_agent_proto != nil { return } file_spire_api_types_selector_proto_init() file_spire_api_types_spiffeid_proto_init() type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_agent_proto_rawDesc), len(file_spire_api_types_agent_proto_rawDesc)), NumEnums: 0, NumMessages: 2, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_agent_proto_goTypes, DependencyIndexes: file_spire_api_types_agent_proto_depIdxs, MessageInfos: file_spire_api_types_agent_proto_msgTypes, }.Build() File_spire_api_types_agent_proto = out.File file_spire_api_types_agent_proto_goTypes = nil file_spire_api_types_agent_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/agent.proto000066400000000000000000000027131516071322100266360ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; import "spire/api/types/selector.proto"; import "spire/api/types/spiffeid.proto"; import "google/protobuf/wrappers.proto"; message Agent { // Output only. SPIFFE ID of the agent. spire.api.types.SPIFFEID id = 1; // Output only. The method by which the agent attested. string attestation_type = 2; // Output only. The X509-SVID serial number. string x509svid_serial_number = 3; // Output only. The X509-SVID expiration (seconds since Unix epoch). int64 x509svid_expires_at = 4; // Output only. The selectors attributed to the agent during attestation. repeated spire.api.types.Selector selectors = 5; // Output only. Whether or not the agent is banned. bool banned = 6; // Output only. Whether or not the agent can re-attest. bool can_reattest = 7; // Output only. Optional. The version of the agent. string agent_version = 8; } message AgentMask { // attestation_type field mask bool attestation_type = 2; // x509svid_serial_number field mask bool x509svid_serial_number = 3; // x509svid_expires_at field mask bool x509svid_expires_at = 4; // selectors field mask bool selectors = 5; // banned field mask bool banned = 6; // can_reattest field mask bool can_reattest = 7; // agent_version field mask bool agent_version = 8; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/attestation.pb.go000066400000000000000000000106271516071322100277440ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/attestation.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type AttestationData struct { state protoimpl.MessageState `protogen:"open.v1"` // The type of attestation data. This is typically the name of the plugin // that produced that data. Type string `protobuf:"bytes,1,opt,name=type,proto3" json:"type,omitempty"` // The attestation data payload. Payload []byte `protobuf:"bytes,2,opt,name=payload,proto3" json:"payload,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *AttestationData) Reset() { *x = AttestationData{} mi := &file_spire_api_types_attestation_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *AttestationData) String() string { return protoimpl.X.MessageStringOf(x) } func (*AttestationData) ProtoMessage() {} func (x *AttestationData) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_attestation_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use AttestationData.ProtoReflect.Descriptor instead. func (*AttestationData) Descriptor() ([]byte, []int) { return file_spire_api_types_attestation_proto_rawDescGZIP(), []int{0} } func (x *AttestationData) GetType() string { if x != nil { return x.Type } return "" } func (x *AttestationData) GetPayload() []byte { if x != nil { return x.Payload } return nil } var File_spire_api_types_attestation_proto protoreflect.FileDescriptor const file_spire_api_types_attestation_proto_rawDesc = "" + "\n" + "!spire/api/types/attestation.proto\x12\x0fspire.api.types\"?\n" + "\x0fAttestationData\x12\x12\n" + "\x04type\x18\x01 \x01(\tR\x04type\x12\x18\n" + "\apayload\x18\x02 \x01(\fR\apayloadB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_attestation_proto_rawDescOnce sync.Once file_spire_api_types_attestation_proto_rawDescData []byte ) func file_spire_api_types_attestation_proto_rawDescGZIP() []byte { file_spire_api_types_attestation_proto_rawDescOnce.Do(func() { file_spire_api_types_attestation_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_attestation_proto_rawDesc), len(file_spire_api_types_attestation_proto_rawDesc))) }) return file_spire_api_types_attestation_proto_rawDescData } var file_spire_api_types_attestation_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_attestation_proto_goTypes = []any{ (*AttestationData)(nil), // 0: spire.api.types.AttestationData } var file_spire_api_types_attestation_proto_depIdxs = []int32{ 0, // [0:0] is the sub-list for method output_type 0, // [0:0] is the sub-list for method input_type 0, // [0:0] is the sub-list for extension type_name 0, // [0:0] is the sub-list for extension extendee 0, // [0:0] is the sub-list for field type_name } func init() { file_spire_api_types_attestation_proto_init() } func file_spire_api_types_attestation_proto_init() { if File_spire_api_types_attestation_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_attestation_proto_rawDesc), len(file_spire_api_types_attestation_proto_rawDesc)), NumEnums: 0, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_attestation_proto_goTypes, DependencyIndexes: file_spire_api_types_attestation_proto_depIdxs, MessageInfos: file_spire_api_types_attestation_proto_msgTypes, }.Build() File_spire_api_types_attestation_proto = out.File file_spire_api_types_attestation_proto_goTypes = nil file_spire_api_types_attestation_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/attestation.proto000066400000000000000000000005261516071322100300770ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; message AttestationData { // The type of attestation data. This is typically the name of the plugin // that produced that data. string type = 1; // The attestation data payload. bytes payload = 2; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/bundle.pb.go000066400000000000000000000351341516071322100266560ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/bundle.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type Bundle struct { state protoimpl.MessageState `protogen:"open.v1"` // The name of the trust domain the bundle belongs to (e.g., "example.org"). TrustDomain string `protobuf:"bytes,1,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` // X.509 authorities for authenticating X509-SVIDs. X509Authorities []*X509Certificate `protobuf:"bytes,2,rep,name=x509_authorities,json=x509Authorities,proto3" json:"x509_authorities,omitempty"` // JWT authorities for authenticating JWT-SVIDs. JwtAuthorities []*JWTKey `protobuf:"bytes,3,rep,name=jwt_authorities,json=jwtAuthorities,proto3" json:"jwt_authorities,omitempty"` // A hint on how often the bundle should be refreshed from the bundle // provider, in seconds. Can be zero (meaning no hint available). RefreshHint int64 `protobuf:"varint,4,opt,name=refresh_hint,json=refreshHint,proto3" json:"refresh_hint,omitempty"` // The sequence number of the bundle. SequenceNumber uint64 `protobuf:"varint,5,opt,name=sequence_number,json=sequenceNumber,proto3" json:"sequence_number,omitempty"` // WIT authorities for authenticating WIT-SVIDs. WitAuthorities []*WITKey `protobuf:"bytes,6,rep,name=wit_authorities,json=witAuthorities,proto3" json:"wit_authorities,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *Bundle) Reset() { *x = Bundle{} mi := &file_spire_api_types_bundle_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *Bundle) String() string { return protoimpl.X.MessageStringOf(x) } func (*Bundle) ProtoMessage() {} func (x *Bundle) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_bundle_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use Bundle.ProtoReflect.Descriptor instead. func (*Bundle) Descriptor() ([]byte, []int) { return file_spire_api_types_bundle_proto_rawDescGZIP(), []int{0} } func (x *Bundle) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } func (x *Bundle) GetX509Authorities() []*X509Certificate { if x != nil { return x.X509Authorities } return nil } func (x *Bundle) GetJwtAuthorities() []*JWTKey { if x != nil { return x.JwtAuthorities } return nil } func (x *Bundle) GetRefreshHint() int64 { if x != nil { return x.RefreshHint } return 0 } func (x *Bundle) GetSequenceNumber() uint64 { if x != nil { return x.SequenceNumber } return 0 } func (x *Bundle) GetWitAuthorities() []*WITKey { if x != nil { return x.WitAuthorities } return nil } type X509Certificate struct { state protoimpl.MessageState `protogen:"open.v1"` // The ASN.1 DER encoded bytes of the X.509 certificate. Asn1 []byte `protobuf:"bytes,1,opt,name=asn1,proto3" json:"asn1,omitempty"` // This authority is no longer secure and must not be used. Tainted bool `protobuf:"varint,2,opt,name=tainted,proto3" json:"tainted,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *X509Certificate) Reset() { *x = X509Certificate{} mi := &file_spire_api_types_bundle_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *X509Certificate) String() string { return protoimpl.X.MessageStringOf(x) } func (*X509Certificate) ProtoMessage() {} func (x *X509Certificate) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_bundle_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use X509Certificate.ProtoReflect.Descriptor instead. func (*X509Certificate) Descriptor() ([]byte, []int) { return file_spire_api_types_bundle_proto_rawDescGZIP(), []int{1} } func (x *X509Certificate) GetAsn1() []byte { if x != nil { return x.Asn1 } return nil } func (x *X509Certificate) GetTainted() bool { if x != nil { return x.Tainted } return false } type JWTKey struct { state protoimpl.MessageState `protogen:"open.v1"` // The PKIX encoded public key. PublicKey []byte `protobuf:"bytes,1,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"` // The key identifier. KeyId string `protobuf:"bytes,2,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"` // When the key expires (seconds since Unix epoch). If zero, the key does // not expire. ExpiresAt int64 `protobuf:"varint,3,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // This authority is no longer secure and must not be used Tainted bool `protobuf:"varint,4,opt,name=tainted,proto3" json:"tainted,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *JWTKey) Reset() { *x = JWTKey{} mi := &file_spire_api_types_bundle_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *JWTKey) String() string { return protoimpl.X.MessageStringOf(x) } func (*JWTKey) ProtoMessage() {} func (x *JWTKey) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_bundle_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use JWTKey.ProtoReflect.Descriptor instead. func (*JWTKey) Descriptor() ([]byte, []int) { return file_spire_api_types_bundle_proto_rawDescGZIP(), []int{2} } func (x *JWTKey) GetPublicKey() []byte { if x != nil { return x.PublicKey } return nil } func (x *JWTKey) GetKeyId() string { if x != nil { return x.KeyId } return "" } func (x *JWTKey) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *JWTKey) GetTainted() bool { if x != nil { return x.Tainted } return false } type WITKey struct { state protoimpl.MessageState `protogen:"open.v1"` // The PKIX encoded public key. PublicKey []byte `protobuf:"bytes,1,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"` // The key identifier. KeyId string `protobuf:"bytes,2,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"` // When the key expires (seconds since Unix epoch). If zero, the key does // not expire. ExpiresAt int64 `protobuf:"varint,3,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // This authority is no longer secure and must not be used Tainted bool `protobuf:"varint,4,opt,name=tainted,proto3" json:"tainted,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *WITKey) Reset() { *x = WITKey{} mi := &file_spire_api_types_bundle_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *WITKey) String() string { return protoimpl.X.MessageStringOf(x) } func (*WITKey) ProtoMessage() {} func (x *WITKey) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_bundle_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use WITKey.ProtoReflect.Descriptor instead. func (*WITKey) Descriptor() ([]byte, []int) { return file_spire_api_types_bundle_proto_rawDescGZIP(), []int{3} } func (x *WITKey) GetPublicKey() []byte { if x != nil { return x.PublicKey } return nil } func (x *WITKey) GetKeyId() string { if x != nil { return x.KeyId } return "" } func (x *WITKey) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *WITKey) GetTainted() bool { if x != nil { return x.Tainted } return false } type BundleMask struct { state protoimpl.MessageState `protogen:"open.v1"` // x509_authorities field mask. X509Authorities bool `protobuf:"varint,2,opt,name=x509_authorities,json=x509Authorities,proto3" json:"x509_authorities,omitempty"` // jwt_authorities field mask. JwtAuthorities bool `protobuf:"varint,3,opt,name=jwt_authorities,json=jwtAuthorities,proto3" json:"jwt_authorities,omitempty"` // refresh_hint field mask. RefreshHint bool `protobuf:"varint,4,opt,name=refresh_hint,json=refreshHint,proto3" json:"refresh_hint,omitempty"` // sequence_number field mask. SequenceNumber bool `protobuf:"varint,5,opt,name=sequence_number,json=sequenceNumber,proto3" json:"sequence_number,omitempty"` // wit_authorities field mask. WitAuthorities bool `protobuf:"varint,6,opt,name=wit_authorities,json=witAuthorities,proto3" json:"wit_authorities,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *BundleMask) Reset() { *x = BundleMask{} mi := &file_spire_api_types_bundle_proto_msgTypes[4] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *BundleMask) String() string { return protoimpl.X.MessageStringOf(x) } func (*BundleMask) ProtoMessage() {} func (x *BundleMask) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_bundle_proto_msgTypes[4] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use BundleMask.ProtoReflect.Descriptor instead. func (*BundleMask) Descriptor() ([]byte, []int) { return file_spire_api_types_bundle_proto_rawDescGZIP(), []int{4} } func (x *BundleMask) GetX509Authorities() bool { if x != nil { return x.X509Authorities } return false } func (x *BundleMask) GetJwtAuthorities() bool { if x != nil { return x.JwtAuthorities } return false } func (x *BundleMask) GetRefreshHint() bool { if x != nil { return x.RefreshHint } return false } func (x *BundleMask) GetSequenceNumber() bool { if x != nil { return x.SequenceNumber } return false } func (x *BundleMask) GetWitAuthorities() bool { if x != nil { return x.WitAuthorities } return false } var File_spire_api_types_bundle_proto protoreflect.FileDescriptor const file_spire_api_types_bundle_proto_rawDesc = "" + "\n" + "\x1cspire/api/types/bundle.proto\x12\x0fspire.api.types\"\xc8\x02\n" + "\x06Bundle\x12!\n" + "\ftrust_domain\x18\x01 \x01(\tR\vtrustDomain\x12K\n" + "\x10x509_authorities\x18\x02 \x03(\v2 .spire.api.types.X509CertificateR\x0fx509Authorities\x12@\n" + "\x0fjwt_authorities\x18\x03 \x03(\v2\x17.spire.api.types.JWTKeyR\x0ejwtAuthorities\x12!\n" + "\frefresh_hint\x18\x04 \x01(\x03R\vrefreshHint\x12'\n" + "\x0fsequence_number\x18\x05 \x01(\x04R\x0esequenceNumber\x12@\n" + "\x0fwit_authorities\x18\x06 \x03(\v2\x17.spire.api.types.WITKeyR\x0ewitAuthorities\"?\n" + "\x0fX509Certificate\x12\x12\n" + "\x04asn1\x18\x01 \x01(\fR\x04asn1\x12\x18\n" + "\atainted\x18\x02 \x01(\bR\atainted\"w\n" + "\x06JWTKey\x12\x1d\n" + "\n" + "public_key\x18\x01 \x01(\fR\tpublicKey\x12\x15\n" + "\x06key_id\x18\x02 \x01(\tR\x05keyId\x12\x1d\n" + "\n" + "expires_at\x18\x03 \x01(\x03R\texpiresAt\x12\x18\n" + "\atainted\x18\x04 \x01(\bR\atainted\"w\n" + "\x06WITKey\x12\x1d\n" + "\n" + "public_key\x18\x01 \x01(\fR\tpublicKey\x12\x15\n" + "\x06key_id\x18\x02 \x01(\tR\x05keyId\x12\x1d\n" + "\n" + "expires_at\x18\x03 \x01(\x03R\texpiresAt\x12\x18\n" + "\atainted\x18\x04 \x01(\bR\atainted\"\xd5\x01\n" + "\n" + "BundleMask\x12)\n" + "\x10x509_authorities\x18\x02 \x01(\bR\x0fx509Authorities\x12'\n" + "\x0fjwt_authorities\x18\x03 \x01(\bR\x0ejwtAuthorities\x12!\n" + "\frefresh_hint\x18\x04 \x01(\bR\vrefreshHint\x12'\n" + "\x0fsequence_number\x18\x05 \x01(\bR\x0esequenceNumber\x12'\n" + "\x0fwit_authorities\x18\x06 \x01(\bR\x0ewitAuthoritiesB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_bundle_proto_rawDescOnce sync.Once file_spire_api_types_bundle_proto_rawDescData []byte ) func file_spire_api_types_bundle_proto_rawDescGZIP() []byte { file_spire_api_types_bundle_proto_rawDescOnce.Do(func() { file_spire_api_types_bundle_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_bundle_proto_rawDesc), len(file_spire_api_types_bundle_proto_rawDesc))) }) return file_spire_api_types_bundle_proto_rawDescData } var file_spire_api_types_bundle_proto_msgTypes = make([]protoimpl.MessageInfo, 5) var file_spire_api_types_bundle_proto_goTypes = []any{ (*Bundle)(nil), // 0: spire.api.types.Bundle (*X509Certificate)(nil), // 1: spire.api.types.X509Certificate (*JWTKey)(nil), // 2: spire.api.types.JWTKey (*WITKey)(nil), // 3: spire.api.types.WITKey (*BundleMask)(nil), // 4: spire.api.types.BundleMask } var file_spire_api_types_bundle_proto_depIdxs = []int32{ 1, // 0: spire.api.types.Bundle.x509_authorities:type_name -> spire.api.types.X509Certificate 2, // 1: spire.api.types.Bundle.jwt_authorities:type_name -> spire.api.types.JWTKey 3, // 2: spire.api.types.Bundle.wit_authorities:type_name -> spire.api.types.WITKey 3, // [3:3] is the sub-list for method output_type 3, // [3:3] is the sub-list for method input_type 3, // [3:3] is the sub-list for extension type_name 3, // [3:3] is the sub-list for extension extendee 0, // [0:3] is the sub-list for field type_name } func init() { file_spire_api_types_bundle_proto_init() } func file_spire_api_types_bundle_proto_init() { if File_spire_api_types_bundle_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_bundle_proto_rawDesc), len(file_spire_api_types_bundle_proto_rawDesc)), NumEnums: 0, NumMessages: 5, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_bundle_proto_goTypes, DependencyIndexes: file_spire_api_types_bundle_proto_depIdxs, MessageInfos: file_spire_api_types_bundle_proto_msgTypes, }.Build() File_spire_api_types_bundle_proto = out.File file_spire_api_types_bundle_proto_goTypes = nil file_spire_api_types_bundle_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/bundle.proto000066400000000000000000000037551516071322100270200ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; message Bundle { // The name of the trust domain the bundle belongs to (e.g., "example.org"). string trust_domain = 1; // X.509 authorities for authenticating X509-SVIDs. repeated X509Certificate x509_authorities = 2; // JWT authorities for authenticating JWT-SVIDs. repeated JWTKey jwt_authorities = 3; // A hint on how often the bundle should be refreshed from the bundle // provider, in seconds. Can be zero (meaning no hint available). int64 refresh_hint = 4; // The sequence number of the bundle. uint64 sequence_number = 5; // WIT authorities for authenticating WIT-SVIDs. repeated WITKey wit_authorities = 6; } message X509Certificate { // The ASN.1 DER encoded bytes of the X.509 certificate. bytes asn1 = 1; // This authority is no longer secure and must not be used. bool tainted = 2; } message JWTKey { // The PKIX encoded public key. bytes public_key = 1; // The key identifier. string key_id = 2; // When the key expires (seconds since Unix epoch). If zero, the key does // not expire. int64 expires_at = 3; // This authority is no longer secure and must not be used bool tainted = 4; } message WITKey { // The PKIX encoded public key. bytes public_key = 1; // The key identifier. string key_id = 2; // When the key expires (seconds since Unix epoch). If zero, the key does // not expire. int64 expires_at = 3; // This authority is no longer secure and must not be used bool tainted = 4; } message BundleMask { // x509_authorities field mask. bool x509_authorities = 2; // jwt_authorities field mask. bool jwt_authorities = 3; // refresh_hint field mask. bool refresh_hint = 4; // sequence_number field mask. bool sequence_number = 5; // wit_authorities field mask. bool wit_authorities = 6; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/entry.pb.go000066400000000000000000000351251516071322100265460ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/entry.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type Entry struct { state protoimpl.MessageState `protogen:"open.v1"` // Globally unique ID for the entry. Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"` // The SPIFFE ID of the identity described by this entry. SpiffeId *SPIFFEID `protobuf:"bytes,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"` // Who the entry is delegated to. If the entry describes a node, this is // set to the SPIFFE ID of the SPIRE server of the trust domain (e.g. // spiffe://example.org/spire/server). Otherwise, it will be set to a node // SPIFFE ID. ParentId *SPIFFEID `protobuf:"bytes,3,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"` // The selectors which identify which entities match this entry. If this is // an entry for a node, these selectors represent selectors produced by // node attestation. Otherwise, these selectors represent those produced by // workload attestation. Selectors []*Selector `protobuf:"bytes,4,rep,name=selectors,proto3" json:"selectors,omitempty"` // The time to live for X509-SVID identities issued for this entry (in seconds). // Previously called ttl X509SvidTtl int32 `protobuf:"varint,5,opt,name=x509_svid_ttl,json=x509SvidTtl,proto3" json:"x509_svid_ttl,omitempty"` // The names of trust domains the identity described by this entry // federates with. FederatesWith []string `protobuf:"bytes,6,rep,name=federates_with,json=federatesWith,proto3" json:"federates_with,omitempty"` // Whether or not the identity described by this entry is an administrative // workload. Administrative workloads are granted additional access to // various managerial server APIs, such as entry registration. Admin bool `protobuf:"varint,7,opt,name=admin,proto3" json:"admin,omitempty"` // Whether or not the identity described by this entry represents a // downstream SPIRE server. Downstream SPIRE servers have additional access // to various signing APIs, such as those used to sign X.509 CA // certificates and publish JWT signing keys. Downstream bool `protobuf:"varint,8,opt,name=downstream,proto3" json:"downstream,omitempty"` // When the entry expires (seconds since Unix epoch). ExpiresAt int64 `protobuf:"varint,9,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // A list of DNS names associated with the identity described by this entry. DnsNames []string `protobuf:"bytes,10,rep,name=dns_names,json=dnsNames,proto3" json:"dns_names,omitempty"` // Revision number is bumped every time the entry is updated RevisionNumber int64 `protobuf:"varint,11,opt,name=revision_number,json=revisionNumber,proto3" json:"revision_number,omitempty"` // Determines if the issued identity is exportable to a store StoreSvid bool `protobuf:"varint,12,opt,name=store_svid,json=storeSvid,proto3" json:"store_svid,omitempty"` // The time to live for JWT-SVID identities issued for this entry (in seconds), overrides ttl if set. JwtSvidTtl int32 `protobuf:"varint,13,opt,name=jwt_svid_ttl,json=jwtSvidTtl,proto3" json:"jwt_svid_ttl,omitempty"` // An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. Hint string `protobuf:"bytes,14,opt,name=hint,proto3" json:"hint,omitempty"` // When the entry was created (seconds since Unix epoch). CreatedAt int64 `protobuf:"varint,15,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *Entry) Reset() { *x = Entry{} mi := &file_spire_api_types_entry_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *Entry) String() string { return protoimpl.X.MessageStringOf(x) } func (*Entry) ProtoMessage() {} func (x *Entry) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_entry_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use Entry.ProtoReflect.Descriptor instead. func (*Entry) Descriptor() ([]byte, []int) { return file_spire_api_types_entry_proto_rawDescGZIP(), []int{0} } func (x *Entry) GetId() string { if x != nil { return x.Id } return "" } func (x *Entry) GetSpiffeId() *SPIFFEID { if x != nil { return x.SpiffeId } return nil } func (x *Entry) GetParentId() *SPIFFEID { if x != nil { return x.ParentId } return nil } func (x *Entry) GetSelectors() []*Selector { if x != nil { return x.Selectors } return nil } func (x *Entry) GetX509SvidTtl() int32 { if x != nil { return x.X509SvidTtl } return 0 } func (x *Entry) GetFederatesWith() []string { if x != nil { return x.FederatesWith } return nil } func (x *Entry) GetAdmin() bool { if x != nil { return x.Admin } return false } func (x *Entry) GetDownstream() bool { if x != nil { return x.Downstream } return false } func (x *Entry) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *Entry) GetDnsNames() []string { if x != nil { return x.DnsNames } return nil } func (x *Entry) GetRevisionNumber() int64 { if x != nil { return x.RevisionNumber } return 0 } func (x *Entry) GetStoreSvid() bool { if x != nil { return x.StoreSvid } return false } func (x *Entry) GetJwtSvidTtl() int32 { if x != nil { return x.JwtSvidTtl } return 0 } func (x *Entry) GetHint() string { if x != nil { return x.Hint } return "" } func (x *Entry) GetCreatedAt() int64 { if x != nil { return x.CreatedAt } return 0 } // Field mask for Entry fields type EntryMask struct { state protoimpl.MessageState `protogen:"open.v1"` // spiffe_id field mask SpiffeId bool `protobuf:"varint,2,opt,name=spiffe_id,json=spiffeId,proto3" json:"spiffe_id,omitempty"` // parent_id field mask ParentId bool `protobuf:"varint,3,opt,name=parent_id,json=parentId,proto3" json:"parent_id,omitempty"` // selectors field mask Selectors bool `protobuf:"varint,4,opt,name=selectors,proto3" json:"selectors,omitempty"` // x509_svid_ttl field mask X509SvidTtl bool `protobuf:"varint,5,opt,name=x509_svid_ttl,json=x509SvidTtl,proto3" json:"x509_svid_ttl,omitempty"` // federates_with field mask FederatesWith bool `protobuf:"varint,6,opt,name=federates_with,json=federatesWith,proto3" json:"federates_with,omitempty"` // admin field mask Admin bool `protobuf:"varint,7,opt,name=admin,proto3" json:"admin,omitempty"` // downstream field mask Downstream bool `protobuf:"varint,8,opt,name=downstream,proto3" json:"downstream,omitempty"` // expires_at field mask ExpiresAt bool `protobuf:"varint,9,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // dns_names field mask DnsNames bool `protobuf:"varint,10,opt,name=dns_names,json=dnsNames,proto3" json:"dns_names,omitempty"` // revision_number field mask RevisionNumber bool `protobuf:"varint,11,opt,name=revision_number,json=revisionNumber,proto3" json:"revision_number,omitempty"` // store_svid field mask StoreSvid bool `protobuf:"varint,12,opt,name=store_svid,json=storeSvid,proto3" json:"store_svid,omitempty"` // jwt_svid_ttl field mask JwtSvidTtl bool `protobuf:"varint,13,opt,name=jwt_svid_ttl,json=jwtSvidTtl,proto3" json:"jwt_svid_ttl,omitempty"` // hint field mask Hint bool `protobuf:"varint,14,opt,name=hint,proto3" json:"hint,omitempty"` // created_at field mask CreatedAt bool `protobuf:"varint,15,opt,name=created_at,json=createdAt,proto3" json:"created_at,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *EntryMask) Reset() { *x = EntryMask{} mi := &file_spire_api_types_entry_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *EntryMask) String() string { return protoimpl.X.MessageStringOf(x) } func (*EntryMask) ProtoMessage() {} func (x *EntryMask) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_entry_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use EntryMask.ProtoReflect.Descriptor instead. func (*EntryMask) Descriptor() ([]byte, []int) { return file_spire_api_types_entry_proto_rawDescGZIP(), []int{1} } func (x *EntryMask) GetSpiffeId() bool { if x != nil { return x.SpiffeId } return false } func (x *EntryMask) GetParentId() bool { if x != nil { return x.ParentId } return false } func (x *EntryMask) GetSelectors() bool { if x != nil { return x.Selectors } return false } func (x *EntryMask) GetX509SvidTtl() bool { if x != nil { return x.X509SvidTtl } return false } func (x *EntryMask) GetFederatesWith() bool { if x != nil { return x.FederatesWith } return false } func (x *EntryMask) GetAdmin() bool { if x != nil { return x.Admin } return false } func (x *EntryMask) GetDownstream() bool { if x != nil { return x.Downstream } return false } func (x *EntryMask) GetExpiresAt() bool { if x != nil { return x.ExpiresAt } return false } func (x *EntryMask) GetDnsNames() bool { if x != nil { return x.DnsNames } return false } func (x *EntryMask) GetRevisionNumber() bool { if x != nil { return x.RevisionNumber } return false } func (x *EntryMask) GetStoreSvid() bool { if x != nil { return x.StoreSvid } return false } func (x *EntryMask) GetJwtSvidTtl() bool { if x != nil { return x.JwtSvidTtl } return false } func (x *EntryMask) GetHint() bool { if x != nil { return x.Hint } return false } func (x *EntryMask) GetCreatedAt() bool { if x != nil { return x.CreatedAt } return false } var File_spire_api_types_entry_proto protoreflect.FileDescriptor const file_spire_api_types_entry_proto_rawDesc = "" + "\n" + "\x1bspire/api/types/entry.proto\x12\x0fspire.api.types\x1a\x1espire/api/types/selector.proto\x1a\x1espire/api/types/spiffeid.proto\"\x9a\x04\n" + "\x05Entry\x12\x0e\n" + "\x02id\x18\x01 \x01(\tR\x02id\x126\n" + "\tspiffe_id\x18\x02 \x01(\v2\x19.spire.api.types.SPIFFEIDR\bspiffeId\x126\n" + "\tparent_id\x18\x03 \x01(\v2\x19.spire.api.types.SPIFFEIDR\bparentId\x127\n" + "\tselectors\x18\x04 \x03(\v2\x19.spire.api.types.SelectorR\tselectors\x12\"\n" + "\rx509_svid_ttl\x18\x05 \x01(\x05R\vx509SvidTtl\x12%\n" + "\x0efederates_with\x18\x06 \x03(\tR\rfederatesWith\x12\x14\n" + "\x05admin\x18\a \x01(\bR\x05admin\x12\x1e\n" + "\n" + "downstream\x18\b \x01(\bR\n" + "downstream\x12\x1d\n" + "\n" + "expires_at\x18\t \x01(\x03R\texpiresAt\x12\x1b\n" + "\tdns_names\x18\n" + " \x03(\tR\bdnsNames\x12'\n" + "\x0frevision_number\x18\v \x01(\x03R\x0erevisionNumber\x12\x1d\n" + "\n" + "store_svid\x18\f \x01(\bR\tstoreSvid\x12 \n" + "\fjwt_svid_ttl\x18\r \x01(\x05R\n" + "jwtSvidTtl\x12\x12\n" + "\x04hint\x18\x0e \x01(\tR\x04hint\x12\x1d\n" + "\n" + "created_at\x18\x0f \x01(\x03R\tcreatedAt\"\xbd\x03\n" + "\tEntryMask\x12\x1b\n" + "\tspiffe_id\x18\x02 \x01(\bR\bspiffeId\x12\x1b\n" + "\tparent_id\x18\x03 \x01(\bR\bparentId\x12\x1c\n" + "\tselectors\x18\x04 \x01(\bR\tselectors\x12\"\n" + "\rx509_svid_ttl\x18\x05 \x01(\bR\vx509SvidTtl\x12%\n" + "\x0efederates_with\x18\x06 \x01(\bR\rfederatesWith\x12\x14\n" + "\x05admin\x18\a \x01(\bR\x05admin\x12\x1e\n" + "\n" + "downstream\x18\b \x01(\bR\n" + "downstream\x12\x1d\n" + "\n" + "expires_at\x18\t \x01(\bR\texpiresAt\x12\x1b\n" + "\tdns_names\x18\n" + " \x01(\bR\bdnsNames\x12'\n" + "\x0frevision_number\x18\v \x01(\bR\x0erevisionNumber\x12\x1d\n" + "\n" + "store_svid\x18\f \x01(\bR\tstoreSvid\x12 \n" + "\fjwt_svid_ttl\x18\r \x01(\bR\n" + "jwtSvidTtl\x12\x12\n" + "\x04hint\x18\x0e \x01(\bR\x04hint\x12\x1d\n" + "\n" + "created_at\x18\x0f \x01(\bR\tcreatedAtB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_entry_proto_rawDescOnce sync.Once file_spire_api_types_entry_proto_rawDescData []byte ) func file_spire_api_types_entry_proto_rawDescGZIP() []byte { file_spire_api_types_entry_proto_rawDescOnce.Do(func() { file_spire_api_types_entry_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_entry_proto_rawDesc), len(file_spire_api_types_entry_proto_rawDesc))) }) return file_spire_api_types_entry_proto_rawDescData } var file_spire_api_types_entry_proto_msgTypes = make([]protoimpl.MessageInfo, 2) var file_spire_api_types_entry_proto_goTypes = []any{ (*Entry)(nil), // 0: spire.api.types.Entry (*EntryMask)(nil), // 1: spire.api.types.EntryMask (*SPIFFEID)(nil), // 2: spire.api.types.SPIFFEID (*Selector)(nil), // 3: spire.api.types.Selector } var file_spire_api_types_entry_proto_depIdxs = []int32{ 2, // 0: spire.api.types.Entry.spiffe_id:type_name -> spire.api.types.SPIFFEID 2, // 1: spire.api.types.Entry.parent_id:type_name -> spire.api.types.SPIFFEID 3, // 2: spire.api.types.Entry.selectors:type_name -> spire.api.types.Selector 3, // [3:3] is the sub-list for method output_type 3, // [3:3] is the sub-list for method input_type 3, // [3:3] is the sub-list for extension type_name 3, // [3:3] is the sub-list for extension extendee 0, // [0:3] is the sub-list for field type_name } func init() { file_spire_api_types_entry_proto_init() } func file_spire_api_types_entry_proto_init() { if File_spire_api_types_entry_proto != nil { return } file_spire_api_types_selector_proto_init() file_spire_api_types_spiffeid_proto_init() type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_entry_proto_rawDesc), len(file_spire_api_types_entry_proto_rawDesc)), NumEnums: 0, NumMessages: 2, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_entry_proto_goTypes, DependencyIndexes: file_spire_api_types_entry_proto_depIdxs, MessageInfos: file_spire_api_types_entry_proto_msgTypes, }.Build() File_spire_api_types_entry_proto = out.File file_spire_api_types_entry_proto_goTypes = nil file_spire_api_types_entry_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/entry.proto000066400000000000000000000065651516071322100267120ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; import "spire/api/types/selector.proto"; import "spire/api/types/spiffeid.proto"; message Entry { // Globally unique ID for the entry. string id = 1; // The SPIFFE ID of the identity described by this entry. spire.api.types.SPIFFEID spiffe_id = 2; // Who the entry is delegated to. If the entry describes a node, this is // set to the SPIFFE ID of the SPIRE server of the trust domain (e.g. // spiffe://example.org/spire/server). Otherwise, it will be set to a node // SPIFFE ID. spire.api.types.SPIFFEID parent_id = 3; // The selectors which identify which entities match this entry. If this is // an entry for a node, these selectors represent selectors produced by // node attestation. Otherwise, these selectors represent those produced by // workload attestation. repeated spire.api.types.Selector selectors = 4; // The time to live for X509-SVID identities issued for this entry (in seconds). // Previously called ttl int32 x509_svid_ttl = 5; // The names of trust domains the identity described by this entry // federates with. repeated string federates_with = 6; // Whether or not the identity described by this entry is an administrative // workload. Administrative workloads are granted additional access to // various managerial server APIs, such as entry registration. bool admin = 7; // Whether or not the identity described by this entry represents a // downstream SPIRE server. Downstream SPIRE servers have additional access // to various signing APIs, such as those used to sign X.509 CA // certificates and publish JWT signing keys. bool downstream = 8; // When the entry expires (seconds since Unix epoch). int64 expires_at = 9; // A list of DNS names associated with the identity described by this entry. repeated string dns_names = 10; // Revision number is bumped every time the entry is updated int64 revision_number = 11; // Determines if the issued identity is exportable to a store bool store_svid = 12; // The time to live for JWT-SVID identities issued for this entry (in seconds), overrides ttl if set. int32 jwt_svid_ttl = 13; // An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. string hint = 14; // When the entry was created (seconds since Unix epoch). int64 created_at = 15; } // Field mask for Entry fields message EntryMask { // spiffe_id field mask bool spiffe_id = 2; // parent_id field mask bool parent_id = 3; // selectors field mask bool selectors = 4; // x509_svid_ttl field mask bool x509_svid_ttl = 5; // federates_with field mask bool federates_with = 6; // admin field mask bool admin = 7; // downstream field mask bool downstream = 8; // expires_at field mask bool expires_at = 9; // dns_names field mask bool dns_names = 10; // revision_number field mask bool revision_number = 11; // store_svid field mask bool store_svid = 12; // jwt_svid_ttl field mask bool jwt_svid_ttl = 13; // hint field mask bool hint = 14; // created_at field mask bool created_at = 15; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/federateswith.pb.go000066400000000000000000000210701516071322100302350ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/federateswith.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type FederatesWithMatch_MatchBehavior int32 const ( // Indicates that the federated trust domains in this match are // equal to the candidate trust domains, independent of ordering. // Example: // // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_EXACT ["spiffe://td1", "spiffe://td2"] // Entries that match: // - 'e2' FederatesWithMatch_MATCH_EXACT FederatesWithMatch_MatchBehavior = 0 // Indicates that all candidates which have a non-empty subset // of the provided set of trust domains will match. // Example: // // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_SUBSET ["spiffe://td1"] // Entries that match: // - 'e1' FederatesWithMatch_MATCH_SUBSET FederatesWithMatch_MatchBehavior = 1 // Indicate that all candidates which are a superset // of the provided set of trust domains will match. // Example: // // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_SUPERSET ["spiffe://td1", "spiffe://td2"] // Entries that match: // - 'e1' // - 'e2' FederatesWithMatch_MATCH_SUPERSET FederatesWithMatch_MatchBehavior = 2 // Indicates that all candidates which have at least one // of the provided set of trust domains will match. // Example: // // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_ANY ["spiffe://td1"] // Entries that match: // - 'e1' // - 'e2' // - 'e3' FederatesWithMatch_MATCH_ANY FederatesWithMatch_MatchBehavior = 3 ) // Enum value maps for FederatesWithMatch_MatchBehavior. var ( FederatesWithMatch_MatchBehavior_name = map[int32]string{ 0: "MATCH_EXACT", 1: "MATCH_SUBSET", 2: "MATCH_SUPERSET", 3: "MATCH_ANY", } FederatesWithMatch_MatchBehavior_value = map[string]int32{ "MATCH_EXACT": 0, "MATCH_SUBSET": 1, "MATCH_SUPERSET": 2, "MATCH_ANY": 3, } ) func (x FederatesWithMatch_MatchBehavior) Enum() *FederatesWithMatch_MatchBehavior { p := new(FederatesWithMatch_MatchBehavior) *p = x return p } func (x FederatesWithMatch_MatchBehavior) String() string { return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x)) } func (FederatesWithMatch_MatchBehavior) Descriptor() protoreflect.EnumDescriptor { return file_spire_api_types_federateswith_proto_enumTypes[0].Descriptor() } func (FederatesWithMatch_MatchBehavior) Type() protoreflect.EnumType { return &file_spire_api_types_federateswith_proto_enumTypes[0] } func (x FederatesWithMatch_MatchBehavior) Number() protoreflect.EnumNumber { return protoreflect.EnumNumber(x) } // Deprecated: Use FederatesWithMatch_MatchBehavior.Descriptor instead. func (FederatesWithMatch_MatchBehavior) EnumDescriptor() ([]byte, []int) { return file_spire_api_types_federateswith_proto_rawDescGZIP(), []int{0, 0} } type FederatesWithMatch struct { state protoimpl.MessageState `protogen:"open.v1"` // The set of trust domain names to match on (e.g., "example.org"). TrustDomains []string `protobuf:"bytes,1,rep,name=trust_domains,json=trustDomains,proto3" json:"trust_domains,omitempty"` // How to match the trust domains. Match FederatesWithMatch_MatchBehavior `protobuf:"varint,2,opt,name=match,proto3,enum=spire.api.types.FederatesWithMatch_MatchBehavior" json:"match,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *FederatesWithMatch) Reset() { *x = FederatesWithMatch{} mi := &file_spire_api_types_federateswith_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *FederatesWithMatch) String() string { return protoimpl.X.MessageStringOf(x) } func (*FederatesWithMatch) ProtoMessage() {} func (x *FederatesWithMatch) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_federateswith_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use FederatesWithMatch.ProtoReflect.Descriptor instead. func (*FederatesWithMatch) Descriptor() ([]byte, []int) { return file_spire_api_types_federateswith_proto_rawDescGZIP(), []int{0} } func (x *FederatesWithMatch) GetTrustDomains() []string { if x != nil { return x.TrustDomains } return nil } func (x *FederatesWithMatch) GetMatch() FederatesWithMatch_MatchBehavior { if x != nil { return x.Match } return FederatesWithMatch_MATCH_EXACT } var File_spire_api_types_federateswith_proto protoreflect.FileDescriptor const file_spire_api_types_federateswith_proto_rawDesc = "" + "\n" + "#spire/api/types/federateswith.proto\x12\x0fspire.api.types\"\xd9\x01\n" + "\x12FederatesWithMatch\x12#\n" + "\rtrust_domains\x18\x01 \x03(\tR\ftrustDomains\x12G\n" + "\x05match\x18\x02 \x01(\x0e21.spire.api.types.FederatesWithMatch.MatchBehaviorR\x05match\"U\n" + "\rMatchBehavior\x12\x0f\n" + "\vMATCH_EXACT\x10\x00\x12\x10\n" + "\fMATCH_SUBSET\x10\x01\x12\x12\n" + "\x0eMATCH_SUPERSET\x10\x02\x12\r\n" + "\tMATCH_ANY\x10\x03B7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_federateswith_proto_rawDescOnce sync.Once file_spire_api_types_federateswith_proto_rawDescData []byte ) func file_spire_api_types_federateswith_proto_rawDescGZIP() []byte { file_spire_api_types_federateswith_proto_rawDescOnce.Do(func() { file_spire_api_types_federateswith_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_federateswith_proto_rawDesc), len(file_spire_api_types_federateswith_proto_rawDesc))) }) return file_spire_api_types_federateswith_proto_rawDescData } var file_spire_api_types_federateswith_proto_enumTypes = make([]protoimpl.EnumInfo, 1) var file_spire_api_types_federateswith_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_federateswith_proto_goTypes = []any{ (FederatesWithMatch_MatchBehavior)(0), // 0: spire.api.types.FederatesWithMatch.MatchBehavior (*FederatesWithMatch)(nil), // 1: spire.api.types.FederatesWithMatch } var file_spire_api_types_federateswith_proto_depIdxs = []int32{ 0, // 0: spire.api.types.FederatesWithMatch.match:type_name -> spire.api.types.FederatesWithMatch.MatchBehavior 1, // [1:1] is the sub-list for method output_type 1, // [1:1] is the sub-list for method input_type 1, // [1:1] is the sub-list for extension type_name 1, // [1:1] is the sub-list for extension extendee 0, // [0:1] is the sub-list for field type_name } func init() { file_spire_api_types_federateswith_proto_init() } func file_spire_api_types_federateswith_proto_init() { if File_spire_api_types_federateswith_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_federateswith_proto_rawDesc), len(file_spire_api_types_federateswith_proto_rawDesc)), NumEnums: 1, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_federateswith_proto_goTypes, DependencyIndexes: file_spire_api_types_federateswith_proto_depIdxs, EnumInfos: file_spire_api_types_federateswith_proto_enumTypes, MessageInfos: file_spire_api_types_federateswith_proto_msgTypes, }.Build() File_spire_api_types_federateswith_proto = out.File file_spire_api_types_federateswith_proto_goTypes = nil file_spire_api_types_federateswith_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/federateswith.proto000066400000000000000000000050551516071322100304000ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; message FederatesWithMatch { enum MatchBehavior { // Indicates that the federated trust domains in this match are // equal to the candidate trust domains, independent of ordering. // Example: // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_EXACT ["spiffe://td1", "spiffe://td2"] // Entries that match: // - 'e2' MATCH_EXACT = 0; // Indicates that all candidates which have a non-empty subset // of the provided set of trust domains will match. // Example: // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_SUBSET ["spiffe://td1"] // Entries that match: // - 'e1' MATCH_SUBSET = 1; // Indicate that all candidates which are a superset // of the provided set of trust domains will match. // Example: // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_SUPERSET ["spiffe://td1", "spiffe://td2"] // Entries that match: // - 'e1' // - 'e2' MATCH_SUPERSET = 2; // Indicates that all candidates which have at least one // of the provided set of trust domains will match. // Example: // Given: // - e1 { FederatesWith: ["spiffe://td1", "spiffe://td2", "spiffe://td3"]} // - e2 { FederatesWith: ["spiffe://td1", "spiffe://td2"]} // - e3 { FederatesWith: ["spiffe://td1"]} // Operation: // - MATCH_ANY ["spiffe://td1"] // Entries that match: // - 'e1' // - 'e2' // - 'e3' MATCH_ANY = 3; } // The set of trust domain names to match on (e.g., "example.org"). repeated string trust_domains = 1; // How to match the trust domains. MatchBehavior match = 2; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/federationrelationship.pb.go000066400000000000000000000335041516071322100321460ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/federationrelationship.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type FederationRelationship struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. The trust domain name (e.g., "example.org") to federate with. TrustDomain string `protobuf:"bytes,1,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` // Required. URL of the SPIFFE bundle endpoint that provides the trust // bundle to federate with. Must use the HTTPS protocol. BundleEndpointUrl string `protobuf:"bytes,2,opt,name=bundle_endpoint_url,json=bundleEndpointUrl,proto3" json:"bundle_endpoint_url,omitempty"` // Required. The endpoint profile type. // // Types that are valid to be assigned to BundleEndpointProfile: // // *FederationRelationship_HttpsWeb // *FederationRelationship_HttpsSpiffe BundleEndpointProfile isFederationRelationship_BundleEndpointProfile `protobuf_oneof:"bundle_endpoint_profile"` // Optional. The bundle for the trust domain. This field can be used to // create or replace the referenced trust domains' bundle when the // relationship is created or updated. When the relationship is retrieved, // it will be set to the referenced trust domain's latest bundle (if // available). Please note that the `https_spiffe` profile requires an // existing trust domain bundle in order to function correctly. The // required bundle must match the trust domain specified in the bundle // endpoint SPIFFE ID. If the bundle endpoint SPIFFE ID resides in the same // trust domain that you're trying to federate with, you may optionally // specify that trust domain bundle here. If the bundle endpoint SPIFFE ID // _does not_ reside in the same trust domain that you're federating with, // please ensure that the trust domain bundle for that trust domain has // been configured separately (e.g. configured via another federation // relationship or manually set via the Bundle API). TrustDomainBundle *Bundle `protobuf:"bytes,5,opt,name=trust_domain_bundle,json=trustDomainBundle,proto3" json:"trust_domain_bundle,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *FederationRelationship) Reset() { *x = FederationRelationship{} mi := &file_spire_api_types_federationrelationship_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *FederationRelationship) String() string { return protoimpl.X.MessageStringOf(x) } func (*FederationRelationship) ProtoMessage() {} func (x *FederationRelationship) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_federationrelationship_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use FederationRelationship.ProtoReflect.Descriptor instead. func (*FederationRelationship) Descriptor() ([]byte, []int) { return file_spire_api_types_federationrelationship_proto_rawDescGZIP(), []int{0} } func (x *FederationRelationship) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } func (x *FederationRelationship) GetBundleEndpointUrl() string { if x != nil { return x.BundleEndpointUrl } return "" } func (x *FederationRelationship) GetBundleEndpointProfile() isFederationRelationship_BundleEndpointProfile { if x != nil { return x.BundleEndpointProfile } return nil } func (x *FederationRelationship) GetHttpsWeb() *HTTPSWebProfile { if x != nil { if x, ok := x.BundleEndpointProfile.(*FederationRelationship_HttpsWeb); ok { return x.HttpsWeb } } return nil } func (x *FederationRelationship) GetHttpsSpiffe() *HTTPSSPIFFEProfile { if x != nil { if x, ok := x.BundleEndpointProfile.(*FederationRelationship_HttpsSpiffe); ok { return x.HttpsSpiffe } } return nil } func (x *FederationRelationship) GetTrustDomainBundle() *Bundle { if x != nil { return x.TrustDomainBundle } return nil } type isFederationRelationship_BundleEndpointProfile interface { isFederationRelationship_BundleEndpointProfile() } type FederationRelationship_HttpsWeb struct { // Use Web PKI endpoint profile. HttpsWeb *HTTPSWebProfile `protobuf:"bytes,3,opt,name=https_web,json=httpsWeb,proto3,oneof"` } type FederationRelationship_HttpsSpiffe struct { // Use SPIFFE Authentication endpoint profile. HttpsSpiffe *HTTPSSPIFFEProfile `protobuf:"bytes,4,opt,name=https_spiffe,json=httpsSpiffe,proto3,oneof"` } func (*FederationRelationship_HttpsWeb) isFederationRelationship_BundleEndpointProfile() {} func (*FederationRelationship_HttpsSpiffe) isFederationRelationship_BundleEndpointProfile() {} type HTTPSSPIFFEProfile struct { state protoimpl.MessageState `protogen:"open.v1"` // Required. Specifies the expected SPIFFE ID of the SPIFFE bundle endpoint // server. EndpointSpiffeId string `protobuf:"bytes,1,opt,name=endpoint_spiffe_id,json=endpointSpiffeId,proto3" json:"endpoint_spiffe_id,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *HTTPSSPIFFEProfile) Reset() { *x = HTTPSSPIFFEProfile{} mi := &file_spire_api_types_federationrelationship_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *HTTPSSPIFFEProfile) String() string { return protoimpl.X.MessageStringOf(x) } func (*HTTPSSPIFFEProfile) ProtoMessage() {} func (x *HTTPSSPIFFEProfile) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_federationrelationship_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use HTTPSSPIFFEProfile.ProtoReflect.Descriptor instead. func (*HTTPSSPIFFEProfile) Descriptor() ([]byte, []int) { return file_spire_api_types_federationrelationship_proto_rawDescGZIP(), []int{1} } func (x *HTTPSSPIFFEProfile) GetEndpointSpiffeId() string { if x != nil { return x.EndpointSpiffeId } return "" } type HTTPSWebProfile struct { state protoimpl.MessageState `protogen:"open.v1"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *HTTPSWebProfile) Reset() { *x = HTTPSWebProfile{} mi := &file_spire_api_types_federationrelationship_proto_msgTypes[2] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *HTTPSWebProfile) String() string { return protoimpl.X.MessageStringOf(x) } func (*HTTPSWebProfile) ProtoMessage() {} func (x *HTTPSWebProfile) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_federationrelationship_proto_msgTypes[2] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use HTTPSWebProfile.ProtoReflect.Descriptor instead. func (*HTTPSWebProfile) Descriptor() ([]byte, []int) { return file_spire_api_types_federationrelationship_proto_rawDescGZIP(), []int{2} } type FederationRelationshipMask struct { state protoimpl.MessageState `protogen:"open.v1"` // bundle_endpoint_url field mask. BundleEndpointUrl bool `protobuf:"varint,1,opt,name=bundle_endpoint_url,json=bundleEndpointUrl,proto3" json:"bundle_endpoint_url,omitempty"` // bundle_endpoint_profile field mask. BundleEndpointProfile bool `protobuf:"varint,2,opt,name=bundle_endpoint_profile,json=bundleEndpointProfile,proto3" json:"bundle_endpoint_profile,omitempty"` // trust_domain_bundle field mask. TrustDomainBundle bool `protobuf:"varint,3,opt,name=trust_domain_bundle,json=trustDomainBundle,proto3" json:"trust_domain_bundle,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *FederationRelationshipMask) Reset() { *x = FederationRelationshipMask{} mi := &file_spire_api_types_federationrelationship_proto_msgTypes[3] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *FederationRelationshipMask) String() string { return protoimpl.X.MessageStringOf(x) } func (*FederationRelationshipMask) ProtoMessage() {} func (x *FederationRelationshipMask) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_federationrelationship_proto_msgTypes[3] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use FederationRelationshipMask.ProtoReflect.Descriptor instead. func (*FederationRelationshipMask) Descriptor() ([]byte, []int) { return file_spire_api_types_federationrelationship_proto_rawDescGZIP(), []int{3} } func (x *FederationRelationshipMask) GetBundleEndpointUrl() bool { if x != nil { return x.BundleEndpointUrl } return false } func (x *FederationRelationshipMask) GetBundleEndpointProfile() bool { if x != nil { return x.BundleEndpointProfile } return false } func (x *FederationRelationshipMask) GetTrustDomainBundle() bool { if x != nil { return x.TrustDomainBundle } return false } var File_spire_api_types_federationrelationship_proto protoreflect.FileDescriptor const file_spire_api_types_federationrelationship_proto_rawDesc = "" + "\n" + ",spire/api/types/federationrelationship.proto\x12\x0fspire.api.types\x1a\x1cspire/api/types/bundle.proto\"\xda\x02\n" + "\x16FederationRelationship\x12!\n" + "\ftrust_domain\x18\x01 \x01(\tR\vtrustDomain\x12.\n" + "\x13bundle_endpoint_url\x18\x02 \x01(\tR\x11bundleEndpointUrl\x12?\n" + "\thttps_web\x18\x03 \x01(\v2 .spire.api.types.HTTPSWebProfileH\x00R\bhttpsWeb\x12H\n" + "\fhttps_spiffe\x18\x04 \x01(\v2#.spire.api.types.HTTPSSPIFFEProfileH\x00R\vhttpsSpiffe\x12G\n" + "\x13trust_domain_bundle\x18\x05 \x01(\v2\x17.spire.api.types.BundleR\x11trustDomainBundleB\x19\n" + "\x17bundle_endpoint_profile\"B\n" + "\x12HTTPSSPIFFEProfile\x12,\n" + "\x12endpoint_spiffe_id\x18\x01 \x01(\tR\x10endpointSpiffeId\"\x11\n" + "\x0fHTTPSWebProfile\"\xb4\x01\n" + "\x1aFederationRelationshipMask\x12.\n" + "\x13bundle_endpoint_url\x18\x01 \x01(\bR\x11bundleEndpointUrl\x126\n" + "\x17bundle_endpoint_profile\x18\x02 \x01(\bR\x15bundleEndpointProfile\x12.\n" + "\x13trust_domain_bundle\x18\x03 \x01(\bR\x11trustDomainBundleB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_federationrelationship_proto_rawDescOnce sync.Once file_spire_api_types_federationrelationship_proto_rawDescData []byte ) func file_spire_api_types_federationrelationship_proto_rawDescGZIP() []byte { file_spire_api_types_federationrelationship_proto_rawDescOnce.Do(func() { file_spire_api_types_federationrelationship_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_federationrelationship_proto_rawDesc), len(file_spire_api_types_federationrelationship_proto_rawDesc))) }) return file_spire_api_types_federationrelationship_proto_rawDescData } var file_spire_api_types_federationrelationship_proto_msgTypes = make([]protoimpl.MessageInfo, 4) var file_spire_api_types_federationrelationship_proto_goTypes = []any{ (*FederationRelationship)(nil), // 0: spire.api.types.FederationRelationship (*HTTPSSPIFFEProfile)(nil), // 1: spire.api.types.HTTPSSPIFFEProfile (*HTTPSWebProfile)(nil), // 2: spire.api.types.HTTPSWebProfile (*FederationRelationshipMask)(nil), // 3: spire.api.types.FederationRelationshipMask (*Bundle)(nil), // 4: spire.api.types.Bundle } var file_spire_api_types_federationrelationship_proto_depIdxs = []int32{ 2, // 0: spire.api.types.FederationRelationship.https_web:type_name -> spire.api.types.HTTPSWebProfile 1, // 1: spire.api.types.FederationRelationship.https_spiffe:type_name -> spire.api.types.HTTPSSPIFFEProfile 4, // 2: spire.api.types.FederationRelationship.trust_domain_bundle:type_name -> spire.api.types.Bundle 3, // [3:3] is the sub-list for method output_type 3, // [3:3] is the sub-list for method input_type 3, // [3:3] is the sub-list for extension type_name 3, // [3:3] is the sub-list for extension extendee 0, // [0:3] is the sub-list for field type_name } func init() { file_spire_api_types_federationrelationship_proto_init() } func file_spire_api_types_federationrelationship_proto_init() { if File_spire_api_types_federationrelationship_proto != nil { return } file_spire_api_types_bundle_proto_init() file_spire_api_types_federationrelationship_proto_msgTypes[0].OneofWrappers = []any{ (*FederationRelationship_HttpsWeb)(nil), (*FederationRelationship_HttpsSpiffe)(nil), } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_federationrelationship_proto_rawDesc), len(file_spire_api_types_federationrelationship_proto_rawDesc)), NumEnums: 0, NumMessages: 4, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_federationrelationship_proto_goTypes, DependencyIndexes: file_spire_api_types_federationrelationship_proto_depIdxs, MessageInfos: file_spire_api_types_federationrelationship_proto_msgTypes, }.Build() File_spire_api_types_federationrelationship_proto = out.File file_spire_api_types_federationrelationship_proto_goTypes = nil file_spire_api_types_federationrelationship_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/federationrelationship.proto000066400000000000000000000043761516071322100323110ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; import "spire/api/types/bundle.proto"; message FederationRelationship { // Required. The trust domain name (e.g., "example.org") to federate with. string trust_domain = 1; // Required. URL of the SPIFFE bundle endpoint that provides the trust // bundle to federate with. Must use the HTTPS protocol. string bundle_endpoint_url = 2; // Required. The endpoint profile type. oneof bundle_endpoint_profile { // Use Web PKI endpoint profile. HTTPSWebProfile https_web = 3; // Use SPIFFE Authentication endpoint profile. HTTPSSPIFFEProfile https_spiffe = 4; } // Optional. The bundle for the trust domain. This field can be used to // create or replace the referenced trust domains' bundle when the // relationship is created or updated. When the relationship is retrieved, // it will be set to the referenced trust domain's latest bundle (if // available). Please note that the `https_spiffe` profile requires an // existing trust domain bundle in order to function correctly. The // required bundle must match the trust domain specified in the bundle // endpoint SPIFFE ID. If the bundle endpoint SPIFFE ID resides in the same // trust domain that you're trying to federate with, you may optionally // specify that trust domain bundle here. If the bundle endpoint SPIFFE ID // _does not_ reside in the same trust domain that you're federating with, // please ensure that the trust domain bundle for that trust domain has // been configured separately (e.g. configured via another federation // relationship or manually set via the Bundle API). spire.api.types.Bundle trust_domain_bundle = 5; } message HTTPSSPIFFEProfile { // Required. Specifies the expected SPIFFE ID of the SPIFFE bundle endpoint // server. string endpoint_spiffe_id = 1; } message HTTPSWebProfile { } message FederationRelationshipMask { // bundle_endpoint_url field mask. bool bundle_endpoint_url = 1; // bundle_endpoint_profile field mask. bool bundle_endpoint_profile = 2; // trust_domain_bundle field mask. bool trust_domain_bundle = 3; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/jointoken.pb.go000066400000000000000000000104011516071322100273730ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/jointoken.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type JoinToken struct { state protoimpl.MessageState `protogen:"open.v1"` // The value of the token. Value string `protobuf:"bytes,1,opt,name=value,proto3" json:"value,omitempty"` // The token expiration (seconds since Unix epoch). ExpiresAt int64 `protobuf:"varint,2,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *JoinToken) Reset() { *x = JoinToken{} mi := &file_spire_api_types_jointoken_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *JoinToken) String() string { return protoimpl.X.MessageStringOf(x) } func (*JoinToken) ProtoMessage() {} func (x *JoinToken) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_jointoken_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use JoinToken.ProtoReflect.Descriptor instead. func (*JoinToken) Descriptor() ([]byte, []int) { return file_spire_api_types_jointoken_proto_rawDescGZIP(), []int{0} } func (x *JoinToken) GetValue() string { if x != nil { return x.Value } return "" } func (x *JoinToken) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } var File_spire_api_types_jointoken_proto protoreflect.FileDescriptor const file_spire_api_types_jointoken_proto_rawDesc = "" + "\n" + "\x1fspire/api/types/jointoken.proto\x12\x0fspire.api.types\"@\n" + "\tJoinToken\x12\x14\n" + "\x05value\x18\x01 \x01(\tR\x05value\x12\x1d\n" + "\n" + "expires_at\x18\x02 \x01(\x03R\texpiresAtB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_jointoken_proto_rawDescOnce sync.Once file_spire_api_types_jointoken_proto_rawDescData []byte ) func file_spire_api_types_jointoken_proto_rawDescGZIP() []byte { file_spire_api_types_jointoken_proto_rawDescOnce.Do(func() { file_spire_api_types_jointoken_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_jointoken_proto_rawDesc), len(file_spire_api_types_jointoken_proto_rawDesc))) }) return file_spire_api_types_jointoken_proto_rawDescData } var file_spire_api_types_jointoken_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_jointoken_proto_goTypes = []any{ (*JoinToken)(nil), // 0: spire.api.types.JoinToken } var file_spire_api_types_jointoken_proto_depIdxs = []int32{ 0, // [0:0] is the sub-list for method output_type 0, // [0:0] is the sub-list for method input_type 0, // [0:0] is the sub-list for extension type_name 0, // [0:0] is the sub-list for extension extendee 0, // [0:0] is the sub-list for field type_name } func init() { file_spire_api_types_jointoken_proto_init() } func file_spire_api_types_jointoken_proto_init() { if File_spire_api_types_jointoken_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_jointoken_proto_rawDesc), len(file_spire_api_types_jointoken_proto_rawDesc)), NumEnums: 0, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_jointoken_proto_goTypes, DependencyIndexes: file_spire_api_types_jointoken_proto_depIdxs, MessageInfos: file_spire_api_types_jointoken_proto_msgTypes, }.Build() File_spire_api_types_jointoken_proto = out.File file_spire_api_types_jointoken_proto_goTypes = nil file_spire_api_types_jointoken_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/jointoken.proto000066400000000000000000000004301516071322100275320ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; message JoinToken { // The value of the token. string value = 1; // The token expiration (seconds since Unix epoch). int64 expires_at = 2; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/jwtsvid.pb.go000066400000000000000000000130501516071322100270700ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/jwtsvid.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // JWT SPIFFE Verifiable Identity Document. It contains the raw JWT token // as well as a few denormalized fields for convenience. type JWTSVID struct { state protoimpl.MessageState `protogen:"open.v1"` // The serialized JWT token. Token string `protobuf:"bytes,1,opt,name=token,proto3" json:"token,omitempty"` // The SPIFFE ID of the JWT-SVID. Id *SPIFFEID `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"` // Expiration timestamp (seconds since Unix epoch). ExpiresAt int64 `protobuf:"varint,3,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // Issuance timestamp (seconds since Unix epoch). IssuedAt int64 `protobuf:"varint,4,opt,name=issued_at,json=issuedAt,proto3" json:"issued_at,omitempty"` // Optional. An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. // For example, `internal` and `external` to indicate an SVID for internal or // external use, respectively. Hint string `protobuf:"bytes,5,opt,name=hint,proto3" json:"hint,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *JWTSVID) Reset() { *x = JWTSVID{} mi := &file_spire_api_types_jwtsvid_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *JWTSVID) String() string { return protoimpl.X.MessageStringOf(x) } func (*JWTSVID) ProtoMessage() {} func (x *JWTSVID) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_jwtsvid_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use JWTSVID.ProtoReflect.Descriptor instead. func (*JWTSVID) Descriptor() ([]byte, []int) { return file_spire_api_types_jwtsvid_proto_rawDescGZIP(), []int{0} } func (x *JWTSVID) GetToken() string { if x != nil { return x.Token } return "" } func (x *JWTSVID) GetId() *SPIFFEID { if x != nil { return x.Id } return nil } func (x *JWTSVID) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *JWTSVID) GetIssuedAt() int64 { if x != nil { return x.IssuedAt } return 0 } func (x *JWTSVID) GetHint() string { if x != nil { return x.Hint } return "" } var File_spire_api_types_jwtsvid_proto protoreflect.FileDescriptor const file_spire_api_types_jwtsvid_proto_rawDesc = "" + "\n" + "\x1dspire/api/types/jwtsvid.proto\x12\x0fspire.api.types\x1a\x1espire/api/types/spiffeid.proto\"\x9a\x01\n" + "\aJWTSVID\x12\x14\n" + "\x05token\x18\x01 \x01(\tR\x05token\x12)\n" + "\x02id\x18\x02 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12\x1d\n" + "\n" + "expires_at\x18\x03 \x01(\x03R\texpiresAt\x12\x1b\n" + "\tissued_at\x18\x04 \x01(\x03R\bissuedAt\x12\x12\n" + "\x04hint\x18\x05 \x01(\tR\x04hintB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_jwtsvid_proto_rawDescOnce sync.Once file_spire_api_types_jwtsvid_proto_rawDescData []byte ) func file_spire_api_types_jwtsvid_proto_rawDescGZIP() []byte { file_spire_api_types_jwtsvid_proto_rawDescOnce.Do(func() { file_spire_api_types_jwtsvid_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_jwtsvid_proto_rawDesc), len(file_spire_api_types_jwtsvid_proto_rawDesc))) }) return file_spire_api_types_jwtsvid_proto_rawDescData } var file_spire_api_types_jwtsvid_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_jwtsvid_proto_goTypes = []any{ (*JWTSVID)(nil), // 0: spire.api.types.JWTSVID (*SPIFFEID)(nil), // 1: spire.api.types.SPIFFEID } var file_spire_api_types_jwtsvid_proto_depIdxs = []int32{ 1, // 0: spire.api.types.JWTSVID.id:type_name -> spire.api.types.SPIFFEID 1, // [1:1] is the sub-list for method output_type 1, // [1:1] is the sub-list for method input_type 1, // [1:1] is the sub-list for extension type_name 1, // [1:1] is the sub-list for extension extendee 0, // [0:1] is the sub-list for field type_name } func init() { file_spire_api_types_jwtsvid_proto_init() } func file_spire_api_types_jwtsvid_proto_init() { if File_spire_api_types_jwtsvid_proto != nil { return } file_spire_api_types_spiffeid_proto_init() type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_jwtsvid_proto_rawDesc), len(file_spire_api_types_jwtsvid_proto_rawDesc)), NumEnums: 0, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_jwtsvid_proto_goTypes, DependencyIndexes: file_spire_api_types_jwtsvid_proto_depIdxs, MessageInfos: file_spire_api_types_jwtsvid_proto_msgTypes, }.Build() File_spire_api_types_jwtsvid_proto = out.File file_spire_api_types_jwtsvid_proto_goTypes = nil file_spire_api_types_jwtsvid_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/jwtsvid.proto000066400000000000000000000016211516071322100272270ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; import "spire/api/types/spiffeid.proto"; // JWT SPIFFE Verifiable Identity Document. It contains the raw JWT token // as well as a few denormalized fields for convenience. message JWTSVID { // The serialized JWT token. string token = 1; // The SPIFFE ID of the JWT-SVID. spire.api.types.SPIFFEID id = 2; // Expiration timestamp (seconds since Unix epoch). int64 expires_at = 3; // Issuance timestamp (seconds since Unix epoch). int64 issued_at = 4; // Optional. An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. // For example, `internal` and `external` to indicate an SVID for internal or // external use, respectively. string hint = 5; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/logger.pb.go000066400000000000000000000147071516071322100266670ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/logger.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // The logger log levels. type LogLevel int32 const ( LogLevel_UNSPECIFIED LogLevel = 0 LogLevel_PANIC LogLevel = 1 LogLevel_FATAL LogLevel = 2 LogLevel_ERROR LogLevel = 3 LogLevel_WARN LogLevel = 4 LogLevel_INFO LogLevel = 5 LogLevel_DEBUG LogLevel = 6 LogLevel_TRACE LogLevel = 7 ) // Enum value maps for LogLevel. var ( LogLevel_name = map[int32]string{ 0: "UNSPECIFIED", 1: "PANIC", 2: "FATAL", 3: "ERROR", 4: "WARN", 5: "INFO", 6: "DEBUG", 7: "TRACE", } LogLevel_value = map[string]int32{ "UNSPECIFIED": 0, "PANIC": 1, "FATAL": 2, "ERROR": 3, "WARN": 4, "INFO": 5, "DEBUG": 6, "TRACE": 7, } ) func (x LogLevel) Enum() *LogLevel { p := new(LogLevel) *p = x return p } func (x LogLevel) String() string { return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x)) } func (LogLevel) Descriptor() protoreflect.EnumDescriptor { return file_spire_api_types_logger_proto_enumTypes[0].Descriptor() } func (LogLevel) Type() protoreflect.EnumType { return &file_spire_api_types_logger_proto_enumTypes[0] } func (x LogLevel) Number() protoreflect.EnumNumber { return protoreflect.EnumNumber(x) } // Deprecated: Use LogLevel.Descriptor instead. func (LogLevel) EnumDescriptor() ([]byte, []int) { return file_spire_api_types_logger_proto_rawDescGZIP(), []int{0} } // Represents the current Logger settings. type Logger struct { state protoimpl.MessageState `protogen:"open.v1"` // Output only. The logger's current log level. CurrentLevel LogLevel `protobuf:"varint,1,opt,name=current_level,json=currentLevel,proto3,enum=spire.api.types.LogLevel" json:"current_level,omitempty"` // Output only. The logger's log level at process launch. LaunchLevel LogLevel `protobuf:"varint,2,opt,name=launch_level,json=launchLevel,proto3,enum=spire.api.types.LogLevel" json:"launch_level,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *Logger) Reset() { *x = Logger{} mi := &file_spire_api_types_logger_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *Logger) String() string { return protoimpl.X.MessageStringOf(x) } func (*Logger) ProtoMessage() {} func (x *Logger) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_logger_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use Logger.ProtoReflect.Descriptor instead. func (*Logger) Descriptor() ([]byte, []int) { return file_spire_api_types_logger_proto_rawDescGZIP(), []int{0} } func (x *Logger) GetCurrentLevel() LogLevel { if x != nil { return x.CurrentLevel } return LogLevel_UNSPECIFIED } func (x *Logger) GetLaunchLevel() LogLevel { if x != nil { return x.LaunchLevel } return LogLevel_UNSPECIFIED } var File_spire_api_types_logger_proto protoreflect.FileDescriptor const file_spire_api_types_logger_proto_rawDesc = "" + "\n" + "\x1cspire/api/types/logger.proto\x12\x0fspire.api.types\"\x86\x01\n" + "\x06Logger\x12>\n" + "\rcurrent_level\x18\x01 \x01(\x0e2\x19.spire.api.types.LogLevelR\fcurrentLevel\x12<\n" + "\flaunch_level\x18\x02 \x01(\x0e2\x19.spire.api.types.LogLevelR\vlaunchLevel*f\n" + "\bLogLevel\x12\x0f\n" + "\vUNSPECIFIED\x10\x00\x12\t\n" + "\x05PANIC\x10\x01\x12\t\n" + "\x05FATAL\x10\x02\x12\t\n" + "\x05ERROR\x10\x03\x12\b\n" + "\x04WARN\x10\x04\x12\b\n" + "\x04INFO\x10\x05\x12\t\n" + "\x05DEBUG\x10\x06\x12\t\n" + "\x05TRACE\x10\aB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_logger_proto_rawDescOnce sync.Once file_spire_api_types_logger_proto_rawDescData []byte ) func file_spire_api_types_logger_proto_rawDescGZIP() []byte { file_spire_api_types_logger_proto_rawDescOnce.Do(func() { file_spire_api_types_logger_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_logger_proto_rawDesc), len(file_spire_api_types_logger_proto_rawDesc))) }) return file_spire_api_types_logger_proto_rawDescData } var file_spire_api_types_logger_proto_enumTypes = make([]protoimpl.EnumInfo, 1) var file_spire_api_types_logger_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_logger_proto_goTypes = []any{ (LogLevel)(0), // 0: spire.api.types.LogLevel (*Logger)(nil), // 1: spire.api.types.Logger } var file_spire_api_types_logger_proto_depIdxs = []int32{ 0, // 0: spire.api.types.Logger.current_level:type_name -> spire.api.types.LogLevel 0, // 1: spire.api.types.Logger.launch_level:type_name -> spire.api.types.LogLevel 2, // [2:2] is the sub-list for method output_type 2, // [2:2] is the sub-list for method input_type 2, // [2:2] is the sub-list for extension type_name 2, // [2:2] is the sub-list for extension extendee 0, // [0:2] is the sub-list for field type_name } func init() { file_spire_api_types_logger_proto_init() } func file_spire_api_types_logger_proto_init() { if File_spire_api_types_logger_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_logger_proto_rawDesc), len(file_spire_api_types_logger_proto_rawDesc)), NumEnums: 1, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_logger_proto_goTypes, DependencyIndexes: file_spire_api_types_logger_proto_depIdxs, EnumInfos: file_spire_api_types_logger_proto_enumTypes, MessageInfos: file_spire_api_types_logger_proto_msgTypes, }.Build() File_spire_api_types_logger_proto = out.File file_spire_api_types_logger_proto_goTypes = nil file_spire_api_types_logger_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/logger.proto000066400000000000000000000010571516071322100270170ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; // The logger log levels. enum LogLevel { UNSPECIFIED = 0; PANIC = 1; FATAL = 2; ERROR = 3; WARN = 4; INFO = 5; DEBUG = 6; TRACE = 7; } // Represents the current Logger settings. message Logger { // Output only. The logger's current log level. LogLevel current_level = 1; // Output only. The logger's log level at process launch. LogLevel launch_level = 2; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/selector.pb.go000066400000000000000000000227161516071322100272270ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/selector.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type SelectorMatch_MatchBehavior int32 const ( // Indicates that the selectors in this match are equal to the // candidate selectors, independent of ordering. // Example: // // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_EXACT ["a:1", "b:2"] // Entries that match: // - 'e2' SelectorMatch_MATCH_EXACT SelectorMatch_MatchBehavior = 0 // Indicates that all candidates which have a non-empty subset // of the provided set of selectors will match. // Example: // // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_SUBSET ["a:1"] // Entries that match: // - 'e1' SelectorMatch_MATCH_SUBSET SelectorMatch_MatchBehavior = 1 // Indicates that all candidates which are a superset // of the provided selectors will match. // Example: // // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_SUPERSET ["a:1", "b:2"] // Entries that match: // - 'e1' // - 'e2' SelectorMatch_MATCH_SUPERSET SelectorMatch_MatchBehavior = 2 // Indicates that all candidates which have at least one // of the provided set of selectors will match. // Example: // // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_ANY ["a:1"] // Entries that match: // - 'e1' // - 'e2' // - 'e3' SelectorMatch_MATCH_ANY SelectorMatch_MatchBehavior = 3 ) // Enum value maps for SelectorMatch_MatchBehavior. var ( SelectorMatch_MatchBehavior_name = map[int32]string{ 0: "MATCH_EXACT", 1: "MATCH_SUBSET", 2: "MATCH_SUPERSET", 3: "MATCH_ANY", } SelectorMatch_MatchBehavior_value = map[string]int32{ "MATCH_EXACT": 0, "MATCH_SUBSET": 1, "MATCH_SUPERSET": 2, "MATCH_ANY": 3, } ) func (x SelectorMatch_MatchBehavior) Enum() *SelectorMatch_MatchBehavior { p := new(SelectorMatch_MatchBehavior) *p = x return p } func (x SelectorMatch_MatchBehavior) String() string { return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x)) } func (SelectorMatch_MatchBehavior) Descriptor() protoreflect.EnumDescriptor { return file_spire_api_types_selector_proto_enumTypes[0].Descriptor() } func (SelectorMatch_MatchBehavior) Type() protoreflect.EnumType { return &file_spire_api_types_selector_proto_enumTypes[0] } func (x SelectorMatch_MatchBehavior) Number() protoreflect.EnumNumber { return protoreflect.EnumNumber(x) } // Deprecated: Use SelectorMatch_MatchBehavior.Descriptor instead. func (SelectorMatch_MatchBehavior) EnumDescriptor() ([]byte, []int) { return file_spire_api_types_selector_proto_rawDescGZIP(), []int{1, 0} } type Selector struct { state protoimpl.MessageState `protogen:"open.v1"` // The type of the selector. This is typically the name of the plugin that // produces the selector. Type string `protobuf:"bytes,1,opt,name=type,proto3" json:"type,omitempty"` // The value of the selector. Value string `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *Selector) Reset() { *x = Selector{} mi := &file_spire_api_types_selector_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *Selector) String() string { return protoimpl.X.MessageStringOf(x) } func (*Selector) ProtoMessage() {} func (x *Selector) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_selector_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use Selector.ProtoReflect.Descriptor instead. func (*Selector) Descriptor() ([]byte, []int) { return file_spire_api_types_selector_proto_rawDescGZIP(), []int{0} } func (x *Selector) GetType() string { if x != nil { return x.Type } return "" } func (x *Selector) GetValue() string { if x != nil { return x.Value } return "" } type SelectorMatch struct { state protoimpl.MessageState `protogen:"open.v1"` // The set of selectors to match on. Selectors []*Selector `protobuf:"bytes,1,rep,name=selectors,proto3" json:"selectors,omitempty"` // How to match the selectors. Match SelectorMatch_MatchBehavior `protobuf:"varint,2,opt,name=match,proto3,enum=spire.api.types.SelectorMatch_MatchBehavior" json:"match,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SelectorMatch) Reset() { *x = SelectorMatch{} mi := &file_spire_api_types_selector_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SelectorMatch) String() string { return protoimpl.X.MessageStringOf(x) } func (*SelectorMatch) ProtoMessage() {} func (x *SelectorMatch) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_selector_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SelectorMatch.ProtoReflect.Descriptor instead. func (*SelectorMatch) Descriptor() ([]byte, []int) { return file_spire_api_types_selector_proto_rawDescGZIP(), []int{1} } func (x *SelectorMatch) GetSelectors() []*Selector { if x != nil { return x.Selectors } return nil } func (x *SelectorMatch) GetMatch() SelectorMatch_MatchBehavior { if x != nil { return x.Match } return SelectorMatch_MATCH_EXACT } var File_spire_api_types_selector_proto protoreflect.FileDescriptor const file_spire_api_types_selector_proto_rawDesc = "" + "\n" + "\x1espire/api/types/selector.proto\x12\x0fspire.api.types\"4\n" + "\bSelector\x12\x12\n" + "\x04type\x18\x01 \x01(\tR\x04type\x12\x14\n" + "\x05value\x18\x02 \x01(\tR\x05value\"\xe3\x01\n" + "\rSelectorMatch\x127\n" + "\tselectors\x18\x01 \x03(\v2\x19.spire.api.types.SelectorR\tselectors\x12B\n" + "\x05match\x18\x02 \x01(\x0e2,.spire.api.types.SelectorMatch.MatchBehaviorR\x05match\"U\n" + "\rMatchBehavior\x12\x0f\n" + "\vMATCH_EXACT\x10\x00\x12\x10\n" + "\fMATCH_SUBSET\x10\x01\x12\x12\n" + "\x0eMATCH_SUPERSET\x10\x02\x12\r\n" + "\tMATCH_ANY\x10\x03B7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_selector_proto_rawDescOnce sync.Once file_spire_api_types_selector_proto_rawDescData []byte ) func file_spire_api_types_selector_proto_rawDescGZIP() []byte { file_spire_api_types_selector_proto_rawDescOnce.Do(func() { file_spire_api_types_selector_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_selector_proto_rawDesc), len(file_spire_api_types_selector_proto_rawDesc))) }) return file_spire_api_types_selector_proto_rawDescData } var file_spire_api_types_selector_proto_enumTypes = make([]protoimpl.EnumInfo, 1) var file_spire_api_types_selector_proto_msgTypes = make([]protoimpl.MessageInfo, 2) var file_spire_api_types_selector_proto_goTypes = []any{ (SelectorMatch_MatchBehavior)(0), // 0: spire.api.types.SelectorMatch.MatchBehavior (*Selector)(nil), // 1: spire.api.types.Selector (*SelectorMatch)(nil), // 2: spire.api.types.SelectorMatch } var file_spire_api_types_selector_proto_depIdxs = []int32{ 1, // 0: spire.api.types.SelectorMatch.selectors:type_name -> spire.api.types.Selector 0, // 1: spire.api.types.SelectorMatch.match:type_name -> spire.api.types.SelectorMatch.MatchBehavior 2, // [2:2] is the sub-list for method output_type 2, // [2:2] is the sub-list for method input_type 2, // [2:2] is the sub-list for extension type_name 2, // [2:2] is the sub-list for extension extendee 0, // [0:2] is the sub-list for field type_name } func init() { file_spire_api_types_selector_proto_init() } func file_spire_api_types_selector_proto_init() { if File_spire_api_types_selector_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_selector_proto_rawDesc), len(file_spire_api_types_selector_proto_rawDesc)), NumEnums: 1, NumMessages: 2, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_selector_proto_goTypes, DependencyIndexes: file_spire_api_types_selector_proto_depIdxs, EnumInfos: file_spire_api_types_selector_proto_enumTypes, MessageInfos: file_spire_api_types_selector_proto_msgTypes, }.Build() File_spire_api_types_selector_proto = out.File file_spire_api_types_selector_proto_goTypes = nil file_spire_api_types_selector_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/selector.proto000066400000000000000000000046131516071322100273610ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; message Selector { // The type of the selector. This is typically the name of the plugin that // produces the selector. string type = 1; // The value of the selector. string value = 2; } message SelectorMatch { enum MatchBehavior { // Indicates that the selectors in this match are equal to the // candidate selectors, independent of ordering. // Example: // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_EXACT ["a:1", "b:2"] // Entries that match: // - 'e2' MATCH_EXACT = 0; // Indicates that all candidates which have a non-empty subset // of the provided set of selectors will match. // Example: // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_SUBSET ["a:1"] // Entries that match: // - 'e1' MATCH_SUBSET = 1; // Indicates that all candidates which are a superset // of the provided selectors will match. // Example: // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_SUPERSET ["a:1", "b:2"] // Entries that match: // - 'e1' // - 'e2' MATCH_SUPERSET = 2; // Indicates that all candidates which have at least one // of the provided set of selectors will match. // Example: // Given: // - 'e1 { Selectors: ["a:1", "b:2", "c:3"]}' // - 'e2 { Selectors: ["a:1", "b:2"]}' // - 'e3 { Selectors: ["a:1"]}' // Operation: // - MATCH_ANY ["a:1"] // Entries that match: // - 'e1' // - 'e2' // - 'e3' MATCH_ANY = 3; } // The set of selectors to match on. repeated Selector selectors = 1; // How to match the selectors. MatchBehavior match = 2; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/spiffeid.pb.go000066400000000000000000000107511516071322100271740ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/spiffeid.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // A SPIFFE ID, consisting of the trust domain name and a path portions of // the SPIFFE ID URI. type SPIFFEID struct { state protoimpl.MessageState `protogen:"open.v1"` // Trust domain portion the SPIFFE ID (e.g. "example.org") TrustDomain string `protobuf:"bytes,1,opt,name=trust_domain,json=trustDomain,proto3" json:"trust_domain,omitempty"` // The path component of the SPIFFE ID (e.g. "/foo/bar/baz"). The path // SHOULD have a leading slash. Consumers MUST normalize the path before // making any sort of comparison between IDs. Path string `protobuf:"bytes,2,opt,name=path,proto3" json:"path,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *SPIFFEID) Reset() { *x = SPIFFEID{} mi := &file_spire_api_types_spiffeid_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *SPIFFEID) String() string { return protoimpl.X.MessageStringOf(x) } func (*SPIFFEID) ProtoMessage() {} func (x *SPIFFEID) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_spiffeid_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use SPIFFEID.ProtoReflect.Descriptor instead. func (*SPIFFEID) Descriptor() ([]byte, []int) { return file_spire_api_types_spiffeid_proto_rawDescGZIP(), []int{0} } func (x *SPIFFEID) GetTrustDomain() string { if x != nil { return x.TrustDomain } return "" } func (x *SPIFFEID) GetPath() string { if x != nil { return x.Path } return "" } var File_spire_api_types_spiffeid_proto protoreflect.FileDescriptor const file_spire_api_types_spiffeid_proto_rawDesc = "" + "\n" + "\x1espire/api/types/spiffeid.proto\x12\x0fspire.api.types\"A\n" + "\bSPIFFEID\x12!\n" + "\ftrust_domain\x18\x01 \x01(\tR\vtrustDomain\x12\x12\n" + "\x04path\x18\x02 \x01(\tR\x04pathB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_spiffeid_proto_rawDescOnce sync.Once file_spire_api_types_spiffeid_proto_rawDescData []byte ) func file_spire_api_types_spiffeid_proto_rawDescGZIP() []byte { file_spire_api_types_spiffeid_proto_rawDescOnce.Do(func() { file_spire_api_types_spiffeid_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_spiffeid_proto_rawDesc), len(file_spire_api_types_spiffeid_proto_rawDesc))) }) return file_spire_api_types_spiffeid_proto_rawDescData } var file_spire_api_types_spiffeid_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_spiffeid_proto_goTypes = []any{ (*SPIFFEID)(nil), // 0: spire.api.types.SPIFFEID } var file_spire_api_types_spiffeid_proto_depIdxs = []int32{ 0, // [0:0] is the sub-list for method output_type 0, // [0:0] is the sub-list for method input_type 0, // [0:0] is the sub-list for extension type_name 0, // [0:0] is the sub-list for extension extendee 0, // [0:0] is the sub-list for field type_name } func init() { file_spire_api_types_spiffeid_proto_init() } func file_spire_api_types_spiffeid_proto_init() { if File_spire_api_types_spiffeid_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_spiffeid_proto_rawDesc), len(file_spire_api_types_spiffeid_proto_rawDesc)), NumEnums: 0, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_spiffeid_proto_goTypes, DependencyIndexes: file_spire_api_types_spiffeid_proto_depIdxs, MessageInfos: file_spire_api_types_spiffeid_proto_msgTypes, }.Build() File_spire_api_types_spiffeid_proto = out.File file_spire_api_types_spiffeid_proto_goTypes = nil file_spire_api_types_spiffeid_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/spiffeid.proto000066400000000000000000000010541516071322100273260ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; // A SPIFFE ID, consisting of the trust domain name and a path portions of // the SPIFFE ID URI. message SPIFFEID { // Trust domain portion the SPIFFE ID (e.g. "example.org") string trust_domain = 1; // The path component of the SPIFFE ID (e.g. "/foo/bar/baz"). The path // SHOULD have a leading slash. Consumers MUST normalize the path before // making any sort of comparison between IDs. string path = 2; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/status.pb.go000066400000000000000000000206111516071322100267220ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/status.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) type PermissionDeniedDetails_Reason int32 const ( // Reason unknown. PermissionDeniedDetails_UNKNOWN PermissionDeniedDetails_Reason = 0 // Agent identity has expired. PermissionDeniedDetails_AGENT_EXPIRED PermissionDeniedDetails_Reason = 1 // Identity is not an attested agent. PermissionDeniedDetails_AGENT_NOT_ATTESTED PermissionDeniedDetails_Reason = 2 // Identity is not the active agent identity. PermissionDeniedDetails_AGENT_NOT_ACTIVE PermissionDeniedDetails_Reason = 3 // Agent has been banned. PermissionDeniedDetails_AGENT_BANNED PermissionDeniedDetails_Reason = 4 // Agent attempted to renew SVID, but should reattest instead PermissionDeniedDetails_AGENT_MUST_REATTEST PermissionDeniedDetails_Reason = 5 ) // Enum value maps for PermissionDeniedDetails_Reason. var ( PermissionDeniedDetails_Reason_name = map[int32]string{ 0: "UNKNOWN", 1: "AGENT_EXPIRED", 2: "AGENT_NOT_ATTESTED", 3: "AGENT_NOT_ACTIVE", 4: "AGENT_BANNED", 5: "AGENT_MUST_REATTEST", } PermissionDeniedDetails_Reason_value = map[string]int32{ "UNKNOWN": 0, "AGENT_EXPIRED": 1, "AGENT_NOT_ATTESTED": 2, "AGENT_NOT_ACTIVE": 3, "AGENT_BANNED": 4, "AGENT_MUST_REATTEST": 5, } ) func (x PermissionDeniedDetails_Reason) Enum() *PermissionDeniedDetails_Reason { p := new(PermissionDeniedDetails_Reason) *p = x return p } func (x PermissionDeniedDetails_Reason) String() string { return protoimpl.X.EnumStringOf(x.Descriptor(), protoreflect.EnumNumber(x)) } func (PermissionDeniedDetails_Reason) Descriptor() protoreflect.EnumDescriptor { return file_spire_api_types_status_proto_enumTypes[0].Descriptor() } func (PermissionDeniedDetails_Reason) Type() protoreflect.EnumType { return &file_spire_api_types_status_proto_enumTypes[0] } func (x PermissionDeniedDetails_Reason) Number() protoreflect.EnumNumber { return protoreflect.EnumNumber(x) } // Deprecated: Use PermissionDeniedDetails_Reason.Descriptor instead. func (PermissionDeniedDetails_Reason) EnumDescriptor() ([]byte, []int) { return file_spire_api_types_status_proto_rawDescGZIP(), []int{1, 0} } type Status struct { state protoimpl.MessageState `protogen:"open.v1"` // A status code, which should be an enum value of google.rpc.Code. Code int32 `protobuf:"varint,1,opt,name=code,proto3" json:"code,omitempty"` // A developer-facing error message. Message string `protobuf:"bytes,2,opt,name=message,proto3" json:"message,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *Status) Reset() { *x = Status{} mi := &file_spire_api_types_status_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *Status) String() string { return protoimpl.X.MessageStringOf(x) } func (*Status) ProtoMessage() {} func (x *Status) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_status_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use Status.ProtoReflect.Descriptor instead. func (*Status) Descriptor() ([]byte, []int) { return file_spire_api_types_status_proto_rawDescGZIP(), []int{0} } func (x *Status) GetCode() int32 { if x != nil { return x.Code } return 0 } func (x *Status) GetMessage() string { if x != nil { return x.Message } return "" } type PermissionDeniedDetails struct { state protoimpl.MessageState `protogen:"open.v1"` Reason PermissionDeniedDetails_Reason `protobuf:"varint,1,opt,name=reason,proto3,enum=spire.api.types.PermissionDeniedDetails_Reason" json:"reason,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *PermissionDeniedDetails) Reset() { *x = PermissionDeniedDetails{} mi := &file_spire_api_types_status_proto_msgTypes[1] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *PermissionDeniedDetails) String() string { return protoimpl.X.MessageStringOf(x) } func (*PermissionDeniedDetails) ProtoMessage() {} func (x *PermissionDeniedDetails) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_status_proto_msgTypes[1] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use PermissionDeniedDetails.ProtoReflect.Descriptor instead. func (*PermissionDeniedDetails) Descriptor() ([]byte, []int) { return file_spire_api_types_status_proto_rawDescGZIP(), []int{1} } func (x *PermissionDeniedDetails) GetReason() PermissionDeniedDetails_Reason { if x != nil { return x.Reason } return PermissionDeniedDetails_UNKNOWN } var File_spire_api_types_status_proto protoreflect.FileDescriptor const file_spire_api_types_status_proto_rawDesc = "" + "\n" + "\x1cspire/api/types/status.proto\x12\x0fspire.api.types\"6\n" + "\x06Status\x12\x12\n" + "\x04code\x18\x01 \x01(\x05R\x04code\x12\x18\n" + "\amessage\x18\x02 \x01(\tR\amessage\"\xe6\x01\n" + "\x17PermissionDeniedDetails\x12G\n" + "\x06reason\x18\x01 \x01(\x0e2/.spire.api.types.PermissionDeniedDetails.ReasonR\x06reason\"\x81\x01\n" + "\x06Reason\x12\v\n" + "\aUNKNOWN\x10\x00\x12\x11\n" + "\rAGENT_EXPIRED\x10\x01\x12\x16\n" + "\x12AGENT_NOT_ATTESTED\x10\x02\x12\x14\n" + "\x10AGENT_NOT_ACTIVE\x10\x03\x12\x10\n" + "\fAGENT_BANNED\x10\x04\x12\x17\n" + "\x13AGENT_MUST_REATTEST\x10\x05B7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_status_proto_rawDescOnce sync.Once file_spire_api_types_status_proto_rawDescData []byte ) func file_spire_api_types_status_proto_rawDescGZIP() []byte { file_spire_api_types_status_proto_rawDescOnce.Do(func() { file_spire_api_types_status_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_status_proto_rawDesc), len(file_spire_api_types_status_proto_rawDesc))) }) return file_spire_api_types_status_proto_rawDescData } var file_spire_api_types_status_proto_enumTypes = make([]protoimpl.EnumInfo, 1) var file_spire_api_types_status_proto_msgTypes = make([]protoimpl.MessageInfo, 2) var file_spire_api_types_status_proto_goTypes = []any{ (PermissionDeniedDetails_Reason)(0), // 0: spire.api.types.PermissionDeniedDetails.Reason (*Status)(nil), // 1: spire.api.types.Status (*PermissionDeniedDetails)(nil), // 2: spire.api.types.PermissionDeniedDetails } var file_spire_api_types_status_proto_depIdxs = []int32{ 0, // 0: spire.api.types.PermissionDeniedDetails.reason:type_name -> spire.api.types.PermissionDeniedDetails.Reason 1, // [1:1] is the sub-list for method output_type 1, // [1:1] is the sub-list for method input_type 1, // [1:1] is the sub-list for extension type_name 1, // [1:1] is the sub-list for extension extendee 0, // [0:1] is the sub-list for field type_name } func init() { file_spire_api_types_status_proto_init() } func file_spire_api_types_status_proto_init() { if File_spire_api_types_status_proto != nil { return } type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_status_proto_rawDesc), len(file_spire_api_types_status_proto_rawDesc)), NumEnums: 1, NumMessages: 2, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_status_proto_goTypes, DependencyIndexes: file_spire_api_types_status_proto_depIdxs, EnumInfos: file_spire_api_types_status_proto_enumTypes, MessageInfos: file_spire_api_types_status_proto_msgTypes, }.Build() File_spire_api_types_status_proto = out.File file_spire_api_types_status_proto_goTypes = nil file_spire_api_types_status_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/status.proto000066400000000000000000000014461516071322100270650ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; message Status { // A status code, which should be an enum value of google.rpc.Code. int32 code = 1; // A developer-facing error message. string message = 2; } message PermissionDeniedDetails { enum Reason { // Reason unknown. UNKNOWN = 0; // Agent identity has expired. AGENT_EXPIRED = 1; // Identity is not an attested agent. AGENT_NOT_ATTESTED = 2; // Identity is not the active agent identity. AGENT_NOT_ACTIVE = 3; // Agent has been banned. AGENT_BANNED = 4; // Agent attempted to renew SVID, but should reattest instead AGENT_MUST_REATTEST=5; } Reason reason = 1; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/witsvid.pb.go000066400000000000000000000130501516071322100270670ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/witsvid.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // WIT SPIFFE Verifiable Identity Document. It contains the raw WIT token // as well as a few denormalized fields for convenience. type WITSVID struct { state protoimpl.MessageState `protogen:"open.v1"` // The serialized WIT token. Token string `protobuf:"bytes,1,opt,name=token,proto3" json:"token,omitempty"` // The SPIFFE ID of the WIT-SVID. Id *SPIFFEID `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"` // Expiration timestamp (seconds since Unix epoch). ExpiresAt int64 `protobuf:"varint,3,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // Issuance timestamp (seconds since Unix epoch). IssuedAt int64 `protobuf:"varint,4,opt,name=issued_at,json=issuedAt,proto3" json:"issued_at,omitempty"` // Optional. An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. // For example, `internal` and `external` to indicate an SVID for internal or // external use, respectively. Hint string `protobuf:"bytes,5,opt,name=hint,proto3" json:"hint,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *WITSVID) Reset() { *x = WITSVID{} mi := &file_spire_api_types_witsvid_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *WITSVID) String() string { return protoimpl.X.MessageStringOf(x) } func (*WITSVID) ProtoMessage() {} func (x *WITSVID) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_witsvid_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use WITSVID.ProtoReflect.Descriptor instead. func (*WITSVID) Descriptor() ([]byte, []int) { return file_spire_api_types_witsvid_proto_rawDescGZIP(), []int{0} } func (x *WITSVID) GetToken() string { if x != nil { return x.Token } return "" } func (x *WITSVID) GetId() *SPIFFEID { if x != nil { return x.Id } return nil } func (x *WITSVID) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *WITSVID) GetIssuedAt() int64 { if x != nil { return x.IssuedAt } return 0 } func (x *WITSVID) GetHint() string { if x != nil { return x.Hint } return "" } var File_spire_api_types_witsvid_proto protoreflect.FileDescriptor const file_spire_api_types_witsvid_proto_rawDesc = "" + "\n" + "\x1dspire/api/types/witsvid.proto\x12\x0fspire.api.types\x1a\x1espire/api/types/spiffeid.proto\"\x9a\x01\n" + "\aWITSVID\x12\x14\n" + "\x05token\x18\x01 \x01(\tR\x05token\x12)\n" + "\x02id\x18\x02 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12\x1d\n" + "\n" + "expires_at\x18\x03 \x01(\x03R\texpiresAt\x12\x1b\n" + "\tissued_at\x18\x04 \x01(\x03R\bissuedAt\x12\x12\n" + "\x04hint\x18\x05 \x01(\tR\x04hintB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_witsvid_proto_rawDescOnce sync.Once file_spire_api_types_witsvid_proto_rawDescData []byte ) func file_spire_api_types_witsvid_proto_rawDescGZIP() []byte { file_spire_api_types_witsvid_proto_rawDescOnce.Do(func() { file_spire_api_types_witsvid_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_witsvid_proto_rawDesc), len(file_spire_api_types_witsvid_proto_rawDesc))) }) return file_spire_api_types_witsvid_proto_rawDescData } var file_spire_api_types_witsvid_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_witsvid_proto_goTypes = []any{ (*WITSVID)(nil), // 0: spire.api.types.WITSVID (*SPIFFEID)(nil), // 1: spire.api.types.SPIFFEID } var file_spire_api_types_witsvid_proto_depIdxs = []int32{ 1, // 0: spire.api.types.WITSVID.id:type_name -> spire.api.types.SPIFFEID 1, // [1:1] is the sub-list for method output_type 1, // [1:1] is the sub-list for method input_type 1, // [1:1] is the sub-list for extension type_name 1, // [1:1] is the sub-list for extension extendee 0, // [0:1] is the sub-list for field type_name } func init() { file_spire_api_types_witsvid_proto_init() } func file_spire_api_types_witsvid_proto_init() { if File_spire_api_types_witsvid_proto != nil { return } file_spire_api_types_spiffeid_proto_init() type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_witsvid_proto_rawDesc), len(file_spire_api_types_witsvid_proto_rawDesc)), NumEnums: 0, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_witsvid_proto_goTypes, DependencyIndexes: file_spire_api_types_witsvid_proto_depIdxs, MessageInfos: file_spire_api_types_witsvid_proto_msgTypes, }.Build() File_spire_api_types_witsvid_proto = out.File file_spire_api_types_witsvid_proto_goTypes = nil file_spire_api_types_witsvid_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/witsvid.proto000066400000000000000000000016221516071322100272270ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; import "spire/api/types/spiffeid.proto"; // WIT SPIFFE Verifiable Identity Document. It contains the raw WIT token // as well as a few denormalized fields for convenience. message WITSVID { // The serialized WIT token. string token = 1; // The SPIFFE ID of the WIT-SVID. spire.api.types.SPIFFEID id = 2; // Expiration timestamp (seconds since Unix epoch). int64 expires_at = 3; // Issuance timestamp (seconds since Unix epoch). int64 issued_at = 4; // Optional. An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. // For example, `internal` and `external` to indicate an SVID for internal or // external use, respectively. string hint = 5; } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/x509svid.pb.go000066400000000000000000000127221516071322100267760ustar00rootroot00000000000000// Code generated by protoc-gen-go. DO NOT EDIT. // versions: // protoc-gen-go v1.36.7 // protoc v6.30.2 // source: spire/api/types/x509svid.proto package types import ( protoreflect "google.golang.org/protobuf/reflect/protoreflect" protoimpl "google.golang.org/protobuf/runtime/protoimpl" reflect "reflect" sync "sync" unsafe "unsafe" ) const ( // Verify that this generated code is sufficiently up-to-date. _ = protoimpl.EnforceVersion(20 - protoimpl.MinVersion) // Verify that runtime/protoimpl is sufficiently up-to-date. _ = protoimpl.EnforceVersion(protoimpl.MaxVersion - 20) ) // X.509 SPIFFE Verifiable Identity Document. It contains the raw X.509 // certificate data as well as a few denormalized fields for convenience. type X509SVID struct { state protoimpl.MessageState `protogen:"open.v1"` // Certificate and intermediates required to form a chain of trust back to // the X.509 authorities of the trust domain (ASN.1 DER encoded). CertChain [][]byte `protobuf:"bytes,1,rep,name=cert_chain,json=certChain,proto3" json:"cert_chain,omitempty"` // SPIFFE ID of the SVID. Id *SPIFFEID `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"` // Expiration timestamp (seconds since Unix epoch). ExpiresAt int64 `protobuf:"varint,3,opt,name=expires_at,json=expiresAt,proto3" json:"expires_at,omitempty"` // Optional. An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. // For example, `internal` and `external` to indicate an SVID for internal or // external use, respectively. Hint string `protobuf:"bytes,4,opt,name=hint,proto3" json:"hint,omitempty"` unknownFields protoimpl.UnknownFields sizeCache protoimpl.SizeCache } func (x *X509SVID) Reset() { *x = X509SVID{} mi := &file_spire_api_types_x509svid_proto_msgTypes[0] ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) ms.StoreMessageInfo(mi) } func (x *X509SVID) String() string { return protoimpl.X.MessageStringOf(x) } func (*X509SVID) ProtoMessage() {} func (x *X509SVID) ProtoReflect() protoreflect.Message { mi := &file_spire_api_types_x509svid_proto_msgTypes[0] if x != nil { ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x)) if ms.LoadMessageInfo() == nil { ms.StoreMessageInfo(mi) } return ms } return mi.MessageOf(x) } // Deprecated: Use X509SVID.ProtoReflect.Descriptor instead. func (*X509SVID) Descriptor() ([]byte, []int) { return file_spire_api_types_x509svid_proto_rawDescGZIP(), []int{0} } func (x *X509SVID) GetCertChain() [][]byte { if x != nil { return x.CertChain } return nil } func (x *X509SVID) GetId() *SPIFFEID { if x != nil { return x.Id } return nil } func (x *X509SVID) GetExpiresAt() int64 { if x != nil { return x.ExpiresAt } return 0 } func (x *X509SVID) GetHint() string { if x != nil { return x.Hint } return "" } var File_spire_api_types_x509svid_proto protoreflect.FileDescriptor const file_spire_api_types_x509svid_proto_rawDesc = "" + "\n" + "\x1espire/api/types/x509svid.proto\x12\x0fspire.api.types\x1a\x1espire/api/types/spiffeid.proto\"\x87\x01\n" + "\bX509SVID\x12\x1d\n" + "\n" + "cert_chain\x18\x01 \x03(\fR\tcertChain\x12)\n" + "\x02id\x18\x02 \x01(\v2\x19.spire.api.types.SPIFFEIDR\x02id\x12\x1d\n" + "\n" + "expires_at\x18\x03 \x01(\x03R\texpiresAt\x12\x12\n" + "\x04hint\x18\x04 \x01(\tR\x04hintB7Z5github.com/spiffe/spire-api-sdk/proto/spire/api/typesb\x06proto3" var ( file_spire_api_types_x509svid_proto_rawDescOnce sync.Once file_spire_api_types_x509svid_proto_rawDescData []byte ) func file_spire_api_types_x509svid_proto_rawDescGZIP() []byte { file_spire_api_types_x509svid_proto_rawDescOnce.Do(func() { file_spire_api_types_x509svid_proto_rawDescData = protoimpl.X.CompressGZIP(unsafe.Slice(unsafe.StringData(file_spire_api_types_x509svid_proto_rawDesc), len(file_spire_api_types_x509svid_proto_rawDesc))) }) return file_spire_api_types_x509svid_proto_rawDescData } var file_spire_api_types_x509svid_proto_msgTypes = make([]protoimpl.MessageInfo, 1) var file_spire_api_types_x509svid_proto_goTypes = []any{ (*X509SVID)(nil), // 0: spire.api.types.X509SVID (*SPIFFEID)(nil), // 1: spire.api.types.SPIFFEID } var file_spire_api_types_x509svid_proto_depIdxs = []int32{ 1, // 0: spire.api.types.X509SVID.id:type_name -> spire.api.types.SPIFFEID 1, // [1:1] is the sub-list for method output_type 1, // [1:1] is the sub-list for method input_type 1, // [1:1] is the sub-list for extension type_name 1, // [1:1] is the sub-list for extension extendee 0, // [0:1] is the sub-list for field type_name } func init() { file_spire_api_types_x509svid_proto_init() } func file_spire_api_types_x509svid_proto_init() { if File_spire_api_types_x509svid_proto != nil { return } file_spire_api_types_spiffeid_proto_init() type x struct{} out := protoimpl.TypeBuilder{ File: protoimpl.DescBuilder{ GoPackagePath: reflect.TypeOf(x{}).PkgPath(), RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_api_types_x509svid_proto_rawDesc), len(file_spire_api_types_x509svid_proto_rawDesc)), NumEnums: 0, NumMessages: 1, NumExtensions: 0, NumServices: 0, }, GoTypes: file_spire_api_types_x509svid_proto_goTypes, DependencyIndexes: file_spire_api_types_x509svid_proto_depIdxs, MessageInfos: file_spire_api_types_x509svid_proto_msgTypes, }.Build() File_spire_api_types_x509svid_proto = out.File file_spire_api_types_x509svid_proto_goTypes = nil file_spire_api_types_x509svid_proto_depIdxs = nil } golang-github-spiffe-spire-api-sdk-1.14.4/proto/spire/api/types/x509svid.proto000066400000000000000000000017121516071322100271310ustar00rootroot00000000000000syntax = "proto3"; package spire.api.types; option go_package = "github.com/spiffe/spire-api-sdk/proto/spire/api/types"; import "spire/api/types/spiffeid.proto"; // X.509 SPIFFE Verifiable Identity Document. It contains the raw X.509 // certificate data as well as a few denormalized fields for convenience. message X509SVID { // Certificate and intermediates required to form a chain of trust back to // the X.509 authorities of the trust domain (ASN.1 DER encoded). repeated bytes cert_chain = 1; // SPIFFE ID of the SVID. spire.api.types.SPIFFEID id = 2; // Expiration timestamp (seconds since Unix epoch). int64 expires_at = 3; // Optional. An operator-specified string used to provide guidance on how this // identity should be used by a workload when more than one SVID is returned. // For example, `internal` and `external` to indicate an SVID for internal or // external use, respectively. string hint = 4; }