Binary Authorization v1 API - Class UserOwnedGrafeasNote (2.2.0)

public sealed class UserOwnedGrafeasNote : IMessage<UserOwnedGrafeasNote>, IEquatable<UserOwnedGrafeasNote>, IDeepCloneable<UserOwnedGrafeasNote>, IBufferMessage, IMessage

Reference documentation and code samples for the Binary Authorization v1 API class UserOwnedGrafeasNote.

An [user owned Grafeas note][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote] references a Grafeas Attestation.Authority Note created by the user.

Inheritance

object > UserOwnedGrafeasNote

Namespace

Google.Cloud.BinaryAuthorization.V1

Assembly

Google.Cloud.BinaryAuthorization.V1.dll

Constructors

UserOwnedGrafeasNote()

public UserOwnedGrafeasNote()

UserOwnedGrafeasNote(UserOwnedGrafeasNote)

public UserOwnedGrafeasNote(UserOwnedGrafeasNote other)
Parameter
NameDescription
otherUserOwnedGrafeasNote

Properties

DelegationServiceAccountEmail

public string DelegationServiceAccountEmail { get; set; }

Output only. This field will contain the service account email address that this Attestor will use as the principal when querying Container Analysis. Attestor administrators must grant this service account the IAM role needed to read attestations from the [note_reference][Note] in Container Analysis (containeranalysis.notes.occurrences.viewer).

This email address is fixed for the lifetime of the Attestor, but callers should not make any other assumptions about the service account email; future versions may use an email based on a different naming pattern.

Property Value
TypeDescription
string

NoteReference

public string NoteReference { get; set; }

Required. The Grafeas resource name of a Attestation.Authority Note, created by the user, in the format: projects/*/notes/*. This field may not be updated.

An attestation by this attestor is stored as a Grafeas Attestation.Authority Occurrence that names a container image and that links to this Note. Grafeas is an external dependency.

Property Value
TypeDescription
string

PublicKeys

public RepeatedField<AttestorPublicKey> PublicKeys { get; }

Optional. Public keys that verify attestations signed by this attestor. This field may be updated.

If this field is non-empty, one of the specified public keys must verify that an attestation was signed by this attestor for the image specified in the admission request.

If this field is empty, this attestor always returns that no valid attestations exist.

Property Value
TypeDescription
RepeatedFieldAttestorPublicKey