Variables
RevocationReason_name, RevocationReason_value
var (
RevocationReason_name = map[int32]string{
0: "REVOCATION_REASON_UNSPECIFIED",
1: "KEY_COMPROMISE",
2: "CERTIFICATE_AUTHORITY_COMPROMISE",
3: "AFFILIATION_CHANGED",
4: "SUPERSEDED",
5: "CESSATION_OF_OPERATION",
6: "CERTIFICATE_HOLD",
7: "PRIVILEGE_WITHDRAWN",
8: "ATTRIBUTE_AUTHORITY_COMPROMISE",
}
RevocationReason_value = map[string]int32{
"REVOCATION_REASON_UNSPECIFIED": 0,
"KEY_COMPROMISE": 1,
"CERTIFICATE_AUTHORITY_COMPROMISE": 2,
"AFFILIATION_CHANGED": 3,
"SUPERSEDED": 4,
"CESSATION_OF_OPERATION": 5,
"CERTIFICATE_HOLD": 6,
"PRIVILEGE_WITHDRAWN": 7,
"ATTRIBUTE_AUTHORITY_COMPROMISE": 8,
}
)
Enum value maps for RevocationReason.
CertificateAuthority_Type_name, CertificateAuthority_Type_value
var (
CertificateAuthority_Type_name = map[int32]string{
0: "TYPE_UNSPECIFIED",
1: "SELF_SIGNED",
2: "SUBORDINATE",
}
CertificateAuthority_Type_value = map[string]int32{
"TYPE_UNSPECIFIED": 0,
"SELF_SIGNED": 1,
"SUBORDINATE": 2,
}
)
Enum value maps for CertificateAuthority_Type.
CertificateAuthority_Tier_name, CertificateAuthority_Tier_value
var (
CertificateAuthority_Tier_name = map[int32]string{
0: "TIER_UNSPECIFIED",
1: "ENTERPRISE",
2: "DEVOPS",
}
CertificateAuthority_Tier_value = map[string]int32{
"TIER_UNSPECIFIED": 0,
"ENTERPRISE": 1,
"DEVOPS": 2,
}
)
Enum value maps for CertificateAuthority_Tier.
CertificateAuthority_State_name, CertificateAuthority_State_value
var (
CertificateAuthority_State_name = map[int32]string{
0: "STATE_UNSPECIFIED",
1: "ENABLED",
2: "DISABLED",
3: "PENDING_ACTIVATION",
4: "PENDING_DELETION",
}
CertificateAuthority_State_value = map[string]int32{
"STATE_UNSPECIFIED": 0,
"ENABLED": 1,
"DISABLED": 2,
"PENDING_ACTIVATION": 3,
"PENDING_DELETION": 4,
}
)
Enum value maps for CertificateAuthority_State.
CertificateAuthority_SignHashAlgorithm_name, CertificateAuthority_SignHashAlgorithm_value
var (
CertificateAuthority_SignHashAlgorithm_name = map[int32]string{
0: "SIGN_HASH_ALGORITHM_UNSPECIFIED",
1: "RSA_PSS_2048_SHA256",
2: "RSA_PSS_3072_SHA256",
3: "RSA_PSS_4096_SHA256",
6: "RSA_PKCS1_2048_SHA256",
7: "RSA_PKCS1_3072_SHA256",
8: "RSA_PKCS1_4096_SHA256",
4: "EC_P256_SHA256",
5: "EC_P384_SHA384",
}
CertificateAuthority_SignHashAlgorithm_value = map[string]int32{
"SIGN_HASH_ALGORITHM_UNSPECIFIED": 0,
"RSA_PSS_2048_SHA256": 1,
"RSA_PSS_3072_SHA256": 2,
"RSA_PSS_4096_SHA256": 3,
"RSA_PKCS1_2048_SHA256": 6,
"RSA_PKCS1_3072_SHA256": 7,
"RSA_PKCS1_4096_SHA256": 8,
"EC_P256_SHA256": 4,
"EC_P384_SHA384": 5,
}
)
Enum value maps for CertificateAuthority_SignHashAlgorithm.
CertificateRevocationList_State_name, CertificateRevocationList_State_value
var (
CertificateRevocationList_State_name = map[int32]string{
0: "STATE_UNSPECIFIED",
1: "ACTIVE",
2: "SUPERSEDED",
}
CertificateRevocationList_State_value = map[string]int32{
"STATE_UNSPECIFIED": 0,
"ACTIVE": 1,
"SUPERSEDED": 2,
}
)
Enum value maps for CertificateRevocationList_State.
PublicKey_KeyType_name, PublicKey_KeyType_value
var (
PublicKey_KeyType_name = map[int32]string{
0: "KEY_TYPE_UNSPECIFIED",
1: "PEM_RSA_KEY",
2: "PEM_EC_KEY",
}
PublicKey_KeyType_value = map[string]int32{
"KEY_TYPE_UNSPECIFIED": 0,
"PEM_RSA_KEY": 1,
"PEM_EC_KEY": 2,
}
)
Enum value maps for PublicKey_KeyType.
File_google_cloud_security_privateca_v1beta1_resources_proto
var File_google_cloud_security_privateca_v1beta1_resources_proto protoreflect.FileDescriptor
File_google_cloud_security_privateca_v1beta1_service_proto
var File_google_cloud_security_privateca_v1beta1_service_proto protoreflect.FileDescriptor
Functions
func RegisterCertificateAuthorityServiceServer
func RegisterCertificateAuthorityServiceServer(s *grpc.Server, srv CertificateAuthorityServiceServer)
ActivateCertificateAuthorityRequest
type ActivateCertificateAuthorityRequest struct {
// Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
// format `projects/*/locations/*/certificateAuthorities/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Required. The signed CA certificate issued from
// [FetchCertificateAuthorityCsrResponse.pem_csr][google.cloud.security.privateca.v1beta1.FetchCertificateAuthorityCsrResponse.pem_csr].
PemCaCertificate string `protobuf:"bytes,2,opt,name=pem_ca_certificate,json=pemCaCertificate,proto3" json:"pem_ca_certificate,omitempty"`
// Required. Must include information about the issuer of 'pem_ca_certificate', and any
// further issuers until the self-signed CA.
SubordinateConfig *SubordinateConfig `protobuf:"bytes,3,opt,name=subordinate_config,json=subordinateConfig,proto3" json:"subordinate_config,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,4,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.ActivateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ActivateCertificateAuthority].
func (*ActivateCertificateAuthorityRequest) Descriptor
func (*ActivateCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use ActivateCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*ActivateCertificateAuthorityRequest) GetName
func (x *ActivateCertificateAuthorityRequest) GetName() string
func (*ActivateCertificateAuthorityRequest) GetPemCaCertificate
func (x *ActivateCertificateAuthorityRequest) GetPemCaCertificate() string
func (*ActivateCertificateAuthorityRequest) GetRequestId
func (x *ActivateCertificateAuthorityRequest) GetRequestId() string
func (*ActivateCertificateAuthorityRequest) GetSubordinateConfig
func (x *ActivateCertificateAuthorityRequest) GetSubordinateConfig() *SubordinateConfig
func (*ActivateCertificateAuthorityRequest) ProtoMessage
func (*ActivateCertificateAuthorityRequest) ProtoMessage()
func (*ActivateCertificateAuthorityRequest) ProtoReflect
func (x *ActivateCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*ActivateCertificateAuthorityRequest) Reset
func (x *ActivateCertificateAuthorityRequest) Reset()
func (*ActivateCertificateAuthorityRequest) String
func (x *ActivateCertificateAuthorityRequest) String() string
Certificate
type Certificate struct {
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
CertificateConfig isCertificate_CertificateConfig `protobuf_oneof:"certificate_config"`
Lifetime *durationpb.Duration `protobuf:"bytes,4,opt,name=lifetime,proto3" json:"lifetime,omitempty"`
RevocationDetails *Certificate_RevocationDetails `protobuf:"bytes,5,opt,name=revocation_details,json=revocationDetails,proto3" json:"revocation_details,omitempty"`
PemCertificate string `protobuf:"bytes,6,opt,name=pem_certificate,json=pemCertificate,proto3" json:"pem_certificate,omitempty"`
CertificateDescription *CertificateDescription "" /* 127 byte string literal not displayed */
PemCertificateChain []string `protobuf:"bytes,8,rep,name=pem_certificate_chain,json=pemCertificateChain,proto3" json:"pem_certificate_chain,omitempty"`
CreateTime *timestamppb.Timestamp `protobuf:"bytes,9,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,10,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
Labels map[string]string "" /* 154 byte string literal not displayed */
}
A [Certificate][google.cloud.security.privateca.v1beta1.Certificate] corresponds to a signed X.509 certificate issued by a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
func (*Certificate) Descriptor
func (*Certificate) Descriptor() ([]byte, []int)
Deprecated: Use Certificate.ProtoReflect.Descriptor instead.
func (*Certificate) GetCertificateConfig
func (m *Certificate) GetCertificateConfig() isCertificate_CertificateConfig
func (*Certificate) GetCertificateDescription
func (x *Certificate) GetCertificateDescription() *CertificateDescription
func (*Certificate) GetConfig
func (x *Certificate) GetConfig() *CertificateConfig
func (*Certificate) GetCreateTime
func (x *Certificate) GetCreateTime() *timestamppb.Timestamp
func (*Certificate) GetLabels
func (x *Certificate) GetLabels() map[string]string
func (*Certificate) GetLifetime
func (x *Certificate) GetLifetime() *durationpb.Duration
func (*Certificate) GetName
func (x *Certificate) GetName() string
func (*Certificate) GetPemCertificate
func (x *Certificate) GetPemCertificate() string
func (*Certificate) GetPemCertificateChain
func (x *Certificate) GetPemCertificateChain() []string
func (*Certificate) GetPemCsr
func (x *Certificate) GetPemCsr() string
func (*Certificate) GetRevocationDetails
func (x *Certificate) GetRevocationDetails() *Certificate_RevocationDetails
func (*Certificate) GetUpdateTime
func (x *Certificate) GetUpdateTime() *timestamppb.Timestamp
func (*Certificate) ProtoMessage
func (*Certificate) ProtoMessage()
func (*Certificate) ProtoReflect
func (x *Certificate) ProtoReflect() protoreflect.Message
func (*Certificate) Reset
func (x *Certificate) Reset()
func (*Certificate) String
func (x *Certificate) String() string
CertificateAuthority
type CertificateAuthority struct {
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
Type CertificateAuthority_Type "" /* 133 byte string literal not displayed */
Tier CertificateAuthority_Tier "" /* 133 byte string literal not displayed */
Config *CertificateConfig `protobuf:"bytes,4,opt,name=config,proto3" json:"config,omitempty"`
Lifetime *durationpb.Duration `protobuf:"bytes,5,opt,name=lifetime,proto3" json:"lifetime,omitempty"`
KeySpec *CertificateAuthority_KeyVersionSpec `protobuf:"bytes,6,opt,name=key_spec,json=keySpec,proto3" json:"key_spec,omitempty"`
CertificatePolicy *CertificateAuthority_CertificateAuthorityPolicy `protobuf:"bytes,7,opt,name=certificate_policy,json=certificatePolicy,proto3" json:"certificate_policy,omitempty"`
IssuingOptions *CertificateAuthority_IssuingOptions `protobuf:"bytes,8,opt,name=issuing_options,json=issuingOptions,proto3" json:"issuing_options,omitempty"`
SubordinateConfig *SubordinateConfig `protobuf:"bytes,19,opt,name=subordinate_config,json=subordinateConfig,proto3" json:"subordinate_config,omitempty"`
State CertificateAuthority_State "" /* 137 byte string literal not displayed */
PemCaCertificates []string `protobuf:"bytes,9,rep,name=pem_ca_certificates,json=pemCaCertificates,proto3" json:"pem_ca_certificates,omitempty"`
CaCertificateDescriptions []*CertificateDescription "" /* 139 byte string literal not displayed */
GcsBucket string `protobuf:"bytes,13,opt,name=gcs_bucket,json=gcsBucket,proto3" json:"gcs_bucket,omitempty"`
AccessUrls *CertificateAuthority_AccessUrls `protobuf:"bytes,14,opt,name=access_urls,json=accessUrls,proto3" json:"access_urls,omitempty"`
CreateTime *timestamppb.Timestamp `protobuf:"bytes,15,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,16,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
DeleteTime *timestamppb.Timestamp `protobuf:"bytes,17,opt,name=delete_time,json=deleteTime,proto3" json:"delete_time,omitempty"`
Labels map[string]string "" /* 154 byte string literal not displayed */
}
A [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] represents an individual Certificate Authority. A [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] can be used to create [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
func (*CertificateAuthority) Descriptor
func (*CertificateAuthority) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority.ProtoReflect.Descriptor instead.
func (*CertificateAuthority) GetAccessUrls
func (x *CertificateAuthority) GetAccessUrls() *CertificateAuthority_AccessUrls
func (*CertificateAuthority) GetCaCertificateDescriptions
func (x *CertificateAuthority) GetCaCertificateDescriptions() []*CertificateDescription
func (*CertificateAuthority) GetCertificatePolicy
func (x *CertificateAuthority) GetCertificatePolicy() *CertificateAuthority_CertificateAuthorityPolicy
func (*CertificateAuthority) GetConfig
func (x *CertificateAuthority) GetConfig() *CertificateConfig
func (*CertificateAuthority) GetCreateTime
func (x *CertificateAuthority) GetCreateTime() *timestamppb.Timestamp
func (*CertificateAuthority) GetDeleteTime
func (x *CertificateAuthority) GetDeleteTime() *timestamppb.Timestamp
func (*CertificateAuthority) GetGcsBucket
func (x *CertificateAuthority) GetGcsBucket() string
func (*CertificateAuthority) GetIssuingOptions
func (x *CertificateAuthority) GetIssuingOptions() *CertificateAuthority_IssuingOptions
func (*CertificateAuthority) GetKeySpec
func (x *CertificateAuthority) GetKeySpec() *CertificateAuthority_KeyVersionSpec
func (*CertificateAuthority) GetLabels
func (x *CertificateAuthority) GetLabels() map[string]string
func (*CertificateAuthority) GetLifetime
func (x *CertificateAuthority) GetLifetime() *durationpb.Duration
func (*CertificateAuthority) GetName
func (x *CertificateAuthority) GetName() string
func (*CertificateAuthority) GetPemCaCertificates
func (x *CertificateAuthority) GetPemCaCertificates() []string
func (*CertificateAuthority) GetState
func (x *CertificateAuthority) GetState() CertificateAuthority_State
func (*CertificateAuthority) GetSubordinateConfig
func (x *CertificateAuthority) GetSubordinateConfig() *SubordinateConfig
func (*CertificateAuthority) GetTier
func (x *CertificateAuthority) GetTier() CertificateAuthority_Tier
func (*CertificateAuthority) GetType
func (x *CertificateAuthority) GetType() CertificateAuthority_Type
func (*CertificateAuthority) GetUpdateTime
func (x *CertificateAuthority) GetUpdateTime() *timestamppb.Timestamp
func (*CertificateAuthority) ProtoMessage
func (*CertificateAuthority) ProtoMessage()
func (*CertificateAuthority) ProtoReflect
func (x *CertificateAuthority) ProtoReflect() protoreflect.Message
func (*CertificateAuthority) Reset
func (x *CertificateAuthority) Reset()
func (*CertificateAuthority) String
func (x *CertificateAuthority) String() string
CertificateAuthorityServiceClient
type CertificateAuthorityServiceClient interface {
// Create a new [Certificate][google.cloud.security.privateca.v1beta1.Certificate] in a given Project, Location from a particular
// [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
CreateCertificate(ctx context.Context, in *CreateCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
// Returns a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
GetCertificate(ctx context.Context, in *GetCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
// Lists [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
ListCertificates(ctx context.Context, in *ListCertificatesRequest, opts ...grpc.CallOption) (*ListCertificatesResponse, error)
// Revoke a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
RevokeCertificate(ctx context.Context, in *RevokeCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
// Update a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]. Currently, the only field you can update is the
// [labels][google.cloud.security.privateca.v1beta1.Certificate.labels] field.
UpdateCertificate(ctx context.Context, in *UpdateCertificateRequest, opts ...grpc.CallOption) (*Certificate, error)
// Activate a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is in state
// [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
// of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. After the
// parent Certificate Authority signs a certificate signing request from
// [FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr], this method can complete the activation
// process.
ActivateCertificateAuthority(ctx context.Context, in *ActivateCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Create a new [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in a given Project and Location.
CreateCertificateAuthority(ctx context.Context, in *CreateCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Disable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
DisableCertificateAuthority(ctx context.Context, in *DisableCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Enable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
EnableCertificateAuthority(ctx context.Context, in *EnableCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Fetch a certificate signing request (CSR) from a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
// that is in state
// [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
// of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. The CSR must
// then be signed by the desired parent Certificate Authority, which could be
// another [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] resource, or could be an on-prem
// certificate authority. See also [ActivateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ActivateCertificateAuthority].
FetchCertificateAuthorityCsr(ctx context.Context, in *FetchCertificateAuthorityCsrRequest, opts ...grpc.CallOption) (*FetchCertificateAuthorityCsrResponse, error)
// Returns a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
GetCertificateAuthority(ctx context.Context, in *GetCertificateAuthorityRequest, opts ...grpc.CallOption) (*CertificateAuthority, error)
// Lists [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority].
ListCertificateAuthorities(ctx context.Context, in *ListCertificateAuthoritiesRequest, opts ...grpc.CallOption) (*ListCertificateAuthoritiesResponse, error)
// Restore a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is scheduled for deletion.
RestoreCertificateAuthority(ctx context.Context, in *RestoreCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Schedule a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] for deletion.
ScheduleDeleteCertificateAuthority(ctx context.Context, in *ScheduleDeleteCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Update a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
UpdateCertificateAuthority(ctx context.Context, in *UpdateCertificateAuthorityRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Returns a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
GetCertificateRevocationList(ctx context.Context, in *GetCertificateRevocationListRequest, opts ...grpc.CallOption) (*CertificateRevocationList, error)
// Lists [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
ListCertificateRevocationLists(ctx context.Context, in *ListCertificateRevocationListsRequest, opts ...grpc.CallOption) (*ListCertificateRevocationListsResponse, error)
// Update a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
UpdateCertificateRevocationList(ctx context.Context, in *UpdateCertificateRevocationListRequest, opts ...grpc.CallOption) (*longrunning.Operation, error)
// Returns a [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig].
GetReusableConfig(ctx context.Context, in *GetReusableConfigRequest, opts ...grpc.CallOption) (*ReusableConfig, error)
// Lists [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig].
ListReusableConfigs(ctx context.Context, in *ListReusableConfigsRequest, opts ...grpc.CallOption) (*ListReusableConfigsResponse, error)
}
CertificateAuthorityServiceClient is the client API for CertificateAuthorityService service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.
func NewCertificateAuthorityServiceClient
func NewCertificateAuthorityServiceClient(cc grpc.ClientConnInterface) CertificateAuthorityServiceClient
CertificateAuthorityServiceServer
type CertificateAuthorityServiceServer interface {
// Create a new [Certificate][google.cloud.security.privateca.v1beta1.Certificate] in a given Project, Location from a particular
// [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
CreateCertificate(context.Context, *CreateCertificateRequest) (*Certificate, error)
// Returns a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
GetCertificate(context.Context, *GetCertificateRequest) (*Certificate, error)
// Lists [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
ListCertificates(context.Context, *ListCertificatesRequest) (*ListCertificatesResponse, error)
// Revoke a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
RevokeCertificate(context.Context, *RevokeCertificateRequest) (*Certificate, error)
// Update a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]. Currently, the only field you can update is the
// [labels][google.cloud.security.privateca.v1beta1.Certificate.labels] field.
UpdateCertificate(context.Context, *UpdateCertificateRequest) (*Certificate, error)
// Activate a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is in state
// [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
// of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. After the
// parent Certificate Authority signs a certificate signing request from
// [FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr], this method can complete the activation
// process.
ActivateCertificateAuthority(context.Context, *ActivateCertificateAuthorityRequest) (*longrunning.Operation, error)
// Create a new [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in a given Project and Location.
CreateCertificateAuthority(context.Context, *CreateCertificateAuthorityRequest) (*longrunning.Operation, error)
// Disable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
DisableCertificateAuthority(context.Context, *DisableCertificateAuthorityRequest) (*longrunning.Operation, error)
// Enable a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
EnableCertificateAuthority(context.Context, *EnableCertificateAuthorityRequest) (*longrunning.Operation, error)
// Fetch a certificate signing request (CSR) from a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
// that is in state
// [PENDING_ACTIVATION][google.cloud.security.privateca.v1beta1.CertificateAuthority.State.PENDING_ACTIVATION] and is
// of type [SUBORDINATE][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type.SUBORDINATE]. The CSR must
// then be signed by the desired parent Certificate Authority, which could be
// another [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] resource, or could be an on-prem
// certificate authority. See also [ActivateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ActivateCertificateAuthority].
FetchCertificateAuthorityCsr(context.Context, *FetchCertificateAuthorityCsrRequest) (*FetchCertificateAuthorityCsrResponse, error)
// Returns a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
GetCertificateAuthority(context.Context, *GetCertificateAuthorityRequest) (*CertificateAuthority, error)
// Lists [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority].
ListCertificateAuthorities(context.Context, *ListCertificateAuthoritiesRequest) (*ListCertificateAuthoritiesResponse, error)
// Restore a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] that is scheduled for deletion.
RestoreCertificateAuthority(context.Context, *RestoreCertificateAuthorityRequest) (*longrunning.Operation, error)
// Schedule a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] for deletion.
ScheduleDeleteCertificateAuthority(context.Context, *ScheduleDeleteCertificateAuthorityRequest) (*longrunning.Operation, error)
// Update a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
UpdateCertificateAuthority(context.Context, *UpdateCertificateAuthorityRequest) (*longrunning.Operation, error)
// Returns a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
GetCertificateRevocationList(context.Context, *GetCertificateRevocationListRequest) (*CertificateRevocationList, error)
// Lists [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
ListCertificateRevocationLists(context.Context, *ListCertificateRevocationListsRequest) (*ListCertificateRevocationListsResponse, error)
// Update a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList].
UpdateCertificateRevocationList(context.Context, *UpdateCertificateRevocationListRequest) (*longrunning.Operation, error)
// Returns a [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig].
GetReusableConfig(context.Context, *GetReusableConfigRequest) (*ReusableConfig, error)
// Lists [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig].
ListReusableConfigs(context.Context, *ListReusableConfigsRequest) (*ListReusableConfigsResponse, error)
}
CertificateAuthorityServiceServer is the server API for CertificateAuthorityService service.
CertificateAuthority_AccessUrls
type CertificateAuthority_AccessUrls struct {
CaCertificateAccessUrl string "" /* 131 byte string literal not displayed */
CrlAccessUrl string `protobuf:"bytes,2,opt,name=crl_access_url,json=crlAccessUrl,proto3" json:"crl_access_url,omitempty"`
}
URLs where a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will publish content.
func (*CertificateAuthority_AccessUrls) Descriptor
func (*CertificateAuthority_AccessUrls) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_AccessUrls.ProtoReflect.Descriptor instead.
func (*CertificateAuthority_AccessUrls) GetCaCertificateAccessUrl
func (x *CertificateAuthority_AccessUrls) GetCaCertificateAccessUrl() string
func (*CertificateAuthority_AccessUrls) GetCrlAccessUrl
func (x *CertificateAuthority_AccessUrls) GetCrlAccessUrl() string
func (*CertificateAuthority_AccessUrls) ProtoMessage
func (*CertificateAuthority_AccessUrls) ProtoMessage()
func (*CertificateAuthority_AccessUrls) ProtoReflect
func (x *CertificateAuthority_AccessUrls) ProtoReflect() protoreflect.Message
func (*CertificateAuthority_AccessUrls) Reset
func (x *CertificateAuthority_AccessUrls) Reset()
func (*CertificateAuthority_AccessUrls) String
func (x *CertificateAuthority_AccessUrls) String() string
CertificateAuthority_CertificateAuthorityPolicy
type CertificateAuthority_CertificateAuthorityPolicy struct {
ConfigPolicy isCertificateAuthority_CertificateAuthorityPolicy_ConfigPolicy `protobuf_oneof:"config_policy"`
AllowedLocationsAndOrganizations []*Subject "" /* 161 byte string literal not displayed */
AllowedCommonNames []string `protobuf:"bytes,4,rep,name=allowed_common_names,json=allowedCommonNames,proto3" json:"allowed_common_names,omitempty"`
AllowedSans *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames `protobuf:"bytes,5,opt,name=allowed_sans,json=allowedSans,proto3" json:"allowed_sans,omitempty"`
MaximumLifetime *durationpb.Duration `protobuf:"bytes,6,opt,name=maximum_lifetime,json=maximumLifetime,proto3" json:"maximum_lifetime,omitempty"`
AllowedIssuanceModes *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes `protobuf:"bytes,8,opt,name=allowed_issuance_modes,json=allowedIssuanceModes,proto3" json:"allowed_issuance_modes,omitempty"`
}
The issuing policy for a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]. [Certificates][google.cloud.security.privateca.v1beta1.Certificate] will not be successfully issued from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] if they violate the policy.
func (*CertificateAuthority_CertificateAuthorityPolicy) Descriptor
func (*CertificateAuthority_CertificateAuthorityPolicy) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy.ProtoReflect.Descriptor instead.
func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedCommonNames
func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedCommonNames() []string
func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedConfigList
func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedConfigList() *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList
func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedIssuanceModes
func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedIssuanceModes() *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes
func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedLocationsAndOrganizations
func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedLocationsAndOrganizations() []*Subject
func (*CertificateAuthority_CertificateAuthorityPolicy) GetAllowedSans
func (x *CertificateAuthority_CertificateAuthorityPolicy) GetAllowedSans() *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames
func (*CertificateAuthority_CertificateAuthorityPolicy) GetConfigPolicy
func (m *CertificateAuthority_CertificateAuthorityPolicy) GetConfigPolicy() isCertificateAuthority_CertificateAuthorityPolicy_ConfigPolicy
func (*CertificateAuthority_CertificateAuthorityPolicy) GetMaximumLifetime
func (x *CertificateAuthority_CertificateAuthorityPolicy) GetMaximumLifetime() *durationpb.Duration
func (*CertificateAuthority_CertificateAuthorityPolicy) GetOverwriteConfigValues
func (x *CertificateAuthority_CertificateAuthorityPolicy) GetOverwriteConfigValues() *ReusableConfigWrapper
func (*CertificateAuthority_CertificateAuthorityPolicy) ProtoMessage
func (*CertificateAuthority_CertificateAuthorityPolicy) ProtoMessage()
func (*CertificateAuthority_CertificateAuthorityPolicy) ProtoReflect
func (x *CertificateAuthority_CertificateAuthorityPolicy) ProtoReflect() protoreflect.Message
func (*CertificateAuthority_CertificateAuthorityPolicy) Reset
func (x *CertificateAuthority_CertificateAuthorityPolicy) Reset()
func (*CertificateAuthority_CertificateAuthorityPolicy) String
func (x *CertificateAuthority_CertificateAuthorityPolicy) String() string
CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList
type CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList struct {
// Required. All [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
// must match at least one listed [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper]. If a
// [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper] has an empty field, any value will be
// allowed for that field.
AllowedConfigValues []*ReusableConfigWrapper `protobuf:"bytes,1,rep,name=allowed_config_values,json=allowedConfigValues,proto3" json:"allowed_config_values,omitempty"`
// contains filtered or unexported fields
}
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Descriptor
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList.ProtoReflect.Descriptor instead.
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) GetAllowedConfigValues
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) GetAllowedConfigValues() []*ReusableConfigWrapper
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoMessage
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoMessage()
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoReflect
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) ProtoReflect() protoreflect.Message
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Reset
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) Reset()
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) String
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList) String() string
CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList_
type CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList_ struct {
// Optional. All [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
// must match at least one listed [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper] in the list.
AllowedConfigList *CertificateAuthority_CertificateAuthorityPolicy_AllowedConfigList `protobuf:"bytes,1,opt,name=allowed_config_list,json=allowedConfigList,proto3,oneof"`
}
CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames
type CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames struct {
AllowedDnsNames []string `protobuf:"bytes,1,rep,name=allowed_dns_names,json=allowedDnsNames,proto3" json:"allowed_dns_names,omitempty"`
AllowedUris []string `protobuf:"bytes,2,rep,name=allowed_uris,json=allowedUris,proto3" json:"allowed_uris,omitempty"`
AllowedEmailAddresses []string `protobuf:"bytes,3,rep,name=allowed_email_addresses,json=allowedEmailAddresses,proto3" json:"allowed_email_addresses,omitempty"`
AllowedIps []string `protobuf:"bytes,4,rep,name=allowed_ips,json=allowedIps,proto3" json:"allowed_ips,omitempty"`
AllowGlobbingDnsWildcards bool "" /* 141 byte string literal not displayed */
AllowCustomSans bool `protobuf:"varint,6,opt,name=allow_custom_sans,json=allowCustomSans,proto3" json:"allow_custom_sans,omitempty"`
}
[AllowedSubjectAltNames][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.AllowedSubjectAltNames] specifies the allowed values for [SubjectAltNames][google.cloud.security.privateca.v1beta1.SubjectAltNames] by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] when issuing [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Descriptor
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames.ProtoReflect.Descriptor instead.
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowCustomSans
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowCustomSans() bool
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowGlobbingDnsWildcards
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowGlobbingDnsWildcards() bool
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedDnsNames
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedDnsNames() []string
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedEmailAddresses
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedEmailAddresses() []string
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedIps
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedIps() []string
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedUris
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) GetAllowedUris() []string
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoMessage
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoMessage()
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoReflect
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) ProtoReflect() protoreflect.Message
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Reset
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) Reset()
func (*CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) String
func (x *CertificateAuthority_CertificateAuthorityPolicy_AllowedSubjectAltNames) String() string
CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes
type CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes struct {
AllowCsrBasedIssuance bool "" /* 129 byte string literal not displayed */
AllowConfigBasedIssuance bool "" /* 138 byte string literal not displayed */
}
[IssuanceModes][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy.IssuanceModes] specifies the allowed ways in which [Certificates][google.cloud.security.privateca.v1beta1.Certificate] may be requested from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Descriptor
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes.ProtoReflect.Descriptor instead.
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowConfigBasedIssuance
func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowConfigBasedIssuance() bool
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowCsrBasedIssuance
func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) GetAllowCsrBasedIssuance() bool
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoMessage
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoMessage()
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoReflect
func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) ProtoReflect() protoreflect.Message
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Reset
func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) Reset()
func (*CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) String
func (x *CertificateAuthority_CertificateAuthorityPolicy_IssuanceModes) String() string
CertificateAuthority_CertificateAuthorityPolicy_OverwriteConfigValues
type CertificateAuthority_CertificateAuthorityPolicy_OverwriteConfigValues struct {
// Optional. All [Certificates][google.cloud.security.privateca.v1beta1.Certificate] issued by the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
// will use the provided configuration values, overwriting any requested
// configuration values.
OverwriteConfigValues *ReusableConfigWrapper `protobuf:"bytes,2,opt,name=overwrite_config_values,json=overwriteConfigValues,proto3,oneof"`
}
CertificateAuthority_IssuingOptions
type CertificateAuthority_IssuingOptions struct {
// Required. When true, includes a URL to the issuing CA certificate in the
// "authority information access" X.509 extension.
IncludeCaCertUrl bool `protobuf:"varint,1,opt,name=include_ca_cert_url,json=includeCaCertUrl,proto3" json:"include_ca_cert_url,omitempty"`
// Required. When true, includes a URL to the CRL corresponding to certificates
// issued from a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
// CRLs will expire 7 days from their creation. However, we will rebuild
// daily. CRLs are also rebuilt shortly after a certificate is revoked.
IncludeCrlAccessUrl bool `protobuf:"varint,2,opt,name=include_crl_access_url,json=includeCrlAccessUrl,proto3" json:"include_crl_access_url,omitempty"`
// contains filtered or unexported fields
}
Options that affect all certificates issued by a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
func (*CertificateAuthority_IssuingOptions) Descriptor
func (*CertificateAuthority_IssuingOptions) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_IssuingOptions.ProtoReflect.Descriptor instead.
func (*CertificateAuthority_IssuingOptions) GetIncludeCaCertUrl
func (x *CertificateAuthority_IssuingOptions) GetIncludeCaCertUrl() bool
func (*CertificateAuthority_IssuingOptions) GetIncludeCrlAccessUrl
func (x *CertificateAuthority_IssuingOptions) GetIncludeCrlAccessUrl() bool
func (*CertificateAuthority_IssuingOptions) ProtoMessage
func (*CertificateAuthority_IssuingOptions) ProtoMessage()
func (*CertificateAuthority_IssuingOptions) ProtoReflect
func (x *CertificateAuthority_IssuingOptions) ProtoReflect() protoreflect.Message
func (*CertificateAuthority_IssuingOptions) Reset
func (x *CertificateAuthority_IssuingOptions) Reset()
func (*CertificateAuthority_IssuingOptions) String
func (x *CertificateAuthority_IssuingOptions) String() string
CertificateAuthority_KeyVersionSpec
type CertificateAuthority_KeyVersionSpec struct {
// Types that are assignable to KeyVersion:
//
// *CertificateAuthority_KeyVersionSpec_CloudKmsKeyVersion
// *CertificateAuthority_KeyVersionSpec_Algorithm
KeyVersion isCertificateAuthority_KeyVersionSpec_KeyVersion `protobuf_oneof:"KeyVersion"`
// contains filtered or unexported fields
}
A Cloud KMS key configuration that a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will use.
func (*CertificateAuthority_KeyVersionSpec) Descriptor
func (*CertificateAuthority_KeyVersionSpec) Descriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_KeyVersionSpec.ProtoReflect.Descriptor instead.
func (*CertificateAuthority_KeyVersionSpec) GetAlgorithm
func (x *CertificateAuthority_KeyVersionSpec) GetAlgorithm() CertificateAuthority_SignHashAlgorithm
func (*CertificateAuthority_KeyVersionSpec) GetCloudKmsKeyVersion
func (x *CertificateAuthority_KeyVersionSpec) GetCloudKmsKeyVersion() string
func (*CertificateAuthority_KeyVersionSpec) GetKeyVersion
func (m *CertificateAuthority_KeyVersionSpec) GetKeyVersion() isCertificateAuthority_KeyVersionSpec_KeyVersion
func (*CertificateAuthority_KeyVersionSpec) ProtoMessage
func (*CertificateAuthority_KeyVersionSpec) ProtoMessage()
func (*CertificateAuthority_KeyVersionSpec) ProtoReflect
func (x *CertificateAuthority_KeyVersionSpec) ProtoReflect() protoreflect.Message
func (*CertificateAuthority_KeyVersionSpec) Reset
func (x *CertificateAuthority_KeyVersionSpec) Reset()
func (*CertificateAuthority_KeyVersionSpec) String
func (x *CertificateAuthority_KeyVersionSpec) String() string
CertificateAuthority_KeyVersionSpec_Algorithm
type CertificateAuthority_KeyVersionSpec_Algorithm struct {
Algorithm CertificateAuthority_SignHashAlgorithm "" /* 135 byte string literal not displayed */
}
CertificateAuthority_KeyVersionSpec_CloudKmsKeyVersion
type CertificateAuthority_KeyVersionSpec_CloudKmsKeyVersion struct {
// Required. The resource name for an existing Cloud KMS CryptoKeyVersion in the
// format
// `projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*`.
// This option enables full flexibility in the key's capabilities and
// properties.
CloudKmsKeyVersion string `protobuf:"bytes,1,opt,name=cloud_kms_key_version,json=cloudKmsKeyVersion,proto3,oneof"`
}
CertificateAuthority_SignHashAlgorithm
type CertificateAuthority_SignHashAlgorithm int32
The algorithm of a Cloud KMS CryptoKeyVersion of a
[CryptoKey][google.cloud.kms.v1.CryptoKey] with the
[CryptoKeyPurpose][google.cloud.kms.v1.CryptoKey.CryptoKeyPurpose] value
ASYMMETRIC_SIGN
. These values correspond to the
[CryptoKeyVersionAlgorithm][google.cloud.kms.v1.CryptoKeyVersion.CryptoKeyVersionAlgorithm]
values. For RSA signing algorithms, the PSS algorithms should be preferred,
use PKCS1 algorithms if required for compatibility. For further
recommandations, see
https://cloud.google.com/kms/docs/algorithms#algorithm_recommendations.
CertificateAuthority_SIGN_HASH_ALGORITHM_UNSPECIFIED, CertificateAuthority_RSA_PSS_2048_SHA256, CertificateAuthority_RSA_PSS_3072_SHA256, CertificateAuthority_RSA_PSS_4096_SHA256, CertificateAuthority_RSA_PKCS1_2048_SHA256, CertificateAuthority_RSA_PKCS1_3072_SHA256, CertificateAuthority_RSA_PKCS1_4096_SHA256, CertificateAuthority_EC_P256_SHA256, CertificateAuthority_EC_P384_SHA384
const (
// Not specified.
CertificateAuthority_SIGN_HASH_ALGORITHM_UNSPECIFIED CertificateAuthority_SignHashAlgorithm = 0
// maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PSS_2048_SHA256
CertificateAuthority_RSA_PSS_2048_SHA256 CertificateAuthority_SignHashAlgorithm = 1
// maps to CryptoKeyVersionAlgorithm. RSA_SIGN_PSS_3072_SHA256
CertificateAuthority_RSA_PSS_3072_SHA256 CertificateAuthority_SignHashAlgorithm = 2
// maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PSS_4096_SHA256
CertificateAuthority_RSA_PSS_4096_SHA256 CertificateAuthority_SignHashAlgorithm = 3
// maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PKCS1_2048_SHA256
CertificateAuthority_RSA_PKCS1_2048_SHA256 CertificateAuthority_SignHashAlgorithm = 6
// maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PKCS1_3072_SHA256
CertificateAuthority_RSA_PKCS1_3072_SHA256 CertificateAuthority_SignHashAlgorithm = 7
// maps to CryptoKeyVersionAlgorithm.RSA_SIGN_PKCS1_4096_SHA256
CertificateAuthority_RSA_PKCS1_4096_SHA256 CertificateAuthority_SignHashAlgorithm = 8
// maps to CryptoKeyVersionAlgorithm.EC_SIGN_P256_SHA256
CertificateAuthority_EC_P256_SHA256 CertificateAuthority_SignHashAlgorithm = 4
// maps to CryptoKeyVersionAlgorithm.EC_SIGN_P384_SHA384
CertificateAuthority_EC_P384_SHA384 CertificateAuthority_SignHashAlgorithm = 5
)
func (CertificateAuthority_SignHashAlgorithm) Descriptor
func (CertificateAuthority_SignHashAlgorithm) Descriptor() protoreflect.EnumDescriptor
func (CertificateAuthority_SignHashAlgorithm) Enum
func (CertificateAuthority_SignHashAlgorithm) EnumDescriptor
func (CertificateAuthority_SignHashAlgorithm) EnumDescriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_SignHashAlgorithm.Descriptor instead.
func (CertificateAuthority_SignHashAlgorithm) Number
func (x CertificateAuthority_SignHashAlgorithm) Number() protoreflect.EnumNumber
func (CertificateAuthority_SignHashAlgorithm) String
func (x CertificateAuthority_SignHashAlgorithm) String() string
func (CertificateAuthority_SignHashAlgorithm) Type
func (CertificateAuthority_SignHashAlgorithm) Type() protoreflect.EnumType
CertificateAuthority_State
type CertificateAuthority_State int32
The state of a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], indicating if it can be used.
CertificateAuthority_STATE_UNSPECIFIED, CertificateAuthority_ENABLED, CertificateAuthority_DISABLED, CertificateAuthority_PENDING_ACTIVATION, CertificateAuthority_PENDING_DELETION
const (
// Not specified.
CertificateAuthority_STATE_UNSPECIFIED CertificateAuthority_State = 0
// Certificates can be issued from this CA. CRLs will be generated for this
// CA.
CertificateAuthority_ENABLED CertificateAuthority_State = 1
// Certificates cannot be issued from this CA. CRLs will still be generated.
CertificateAuthority_DISABLED CertificateAuthority_State = 2
// Certificates cannot be issued from this CA. CRLs will not be generated.
CertificateAuthority_PENDING_ACTIVATION CertificateAuthority_State = 3
// Certificates cannot be issued from this CA. CRLs will not be generated.
CertificateAuthority_PENDING_DELETION CertificateAuthority_State = 4
)
func (CertificateAuthority_State) Descriptor
func (CertificateAuthority_State) Descriptor() protoreflect.EnumDescriptor
func (CertificateAuthority_State) Enum
func (x CertificateAuthority_State) Enum() *CertificateAuthority_State
func (CertificateAuthority_State) EnumDescriptor
func (CertificateAuthority_State) EnumDescriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_State.Descriptor instead.
func (CertificateAuthority_State) Number
func (x CertificateAuthority_State) Number() protoreflect.EnumNumber
func (CertificateAuthority_State) String
func (x CertificateAuthority_State) String() string
func (CertificateAuthority_State) Type
func (CertificateAuthority_State) Type() protoreflect.EnumType
CertificateAuthority_Tier
type CertificateAuthority_Tier int32
The tier of a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], indicating its supported functionality and/or billing SKU.
CertificateAuthority_TIER_UNSPECIFIED, CertificateAuthority_ENTERPRISE, CertificateAuthority_DEVOPS
const (
// Not specified.
CertificateAuthority_TIER_UNSPECIFIED CertificateAuthority_Tier = 0
// Enterprise tier.
CertificateAuthority_ENTERPRISE CertificateAuthority_Tier = 1
// DevOps tier.
CertificateAuthority_DEVOPS CertificateAuthority_Tier = 2
)
func (CertificateAuthority_Tier) Descriptor
func (CertificateAuthority_Tier) Descriptor() protoreflect.EnumDescriptor
func (CertificateAuthority_Tier) Enum
func (x CertificateAuthority_Tier) Enum() *CertificateAuthority_Tier
func (CertificateAuthority_Tier) EnumDescriptor
func (CertificateAuthority_Tier) EnumDescriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_Tier.Descriptor instead.
func (CertificateAuthority_Tier) Number
func (x CertificateAuthority_Tier) Number() protoreflect.EnumNumber
func (CertificateAuthority_Tier) String
func (x CertificateAuthority_Tier) String() string
func (CertificateAuthority_Tier) Type
func (CertificateAuthority_Tier) Type() protoreflect.EnumType
CertificateAuthority_Type
type CertificateAuthority_Type int32
The type of a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], indicating its issuing chain.
CertificateAuthority_TYPE_UNSPECIFIED, CertificateAuthority_SELF_SIGNED, CertificateAuthority_SUBORDINATE
const (
// Not specified.
CertificateAuthority_TYPE_UNSPECIFIED CertificateAuthority_Type = 0
// Self-signed CA.
CertificateAuthority_SELF_SIGNED CertificateAuthority_Type = 1
// Subordinate CA. Could be issued by a Private CA [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
// or an unmanaged CA.
CertificateAuthority_SUBORDINATE CertificateAuthority_Type = 2
)
func (CertificateAuthority_Type) Descriptor
func (CertificateAuthority_Type) Descriptor() protoreflect.EnumDescriptor
func (CertificateAuthority_Type) Enum
func (x CertificateAuthority_Type) Enum() *CertificateAuthority_Type
func (CertificateAuthority_Type) EnumDescriptor
func (CertificateAuthority_Type) EnumDescriptor() ([]byte, []int)
Deprecated: Use CertificateAuthority_Type.Descriptor instead.
func (CertificateAuthority_Type) Number
func (x CertificateAuthority_Type) Number() protoreflect.EnumNumber
func (CertificateAuthority_Type) String
func (x CertificateAuthority_Type) String() string
func (CertificateAuthority_Type) Type
func (CertificateAuthority_Type) Type() protoreflect.EnumType
CertificateConfig
type CertificateConfig struct {
// Required. Specifies some of the values in a certificate that are related to the
// subject.
SubjectConfig *CertificateConfig_SubjectConfig `protobuf:"bytes,1,opt,name=subject_config,json=subjectConfig,proto3" json:"subject_config,omitempty"`
// Required. Describes how some of the technical fields in a certificate should be
// populated.
ReusableConfig *ReusableConfigWrapper `protobuf:"bytes,2,opt,name=reusable_config,json=reusableConfig,proto3" json:"reusable_config,omitempty"`
// Optional. The public key that corresponds to this config. This is, for example, used
// when issuing [Certificates][google.cloud.security.privateca.v1beta1.Certificate], but not when creating a
// self-signed [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] or [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] CSR.
PublicKey *PublicKey `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"`
// contains filtered or unexported fields
}
A [CertificateConfig][google.cloud.security.privateca.v1beta1.CertificateConfig] describes an X.509 certificate or CSR that is to be created, as an alternative to using ASN.1.
func (*CertificateConfig) Descriptor
func (*CertificateConfig) Descriptor() ([]byte, []int)
Deprecated: Use CertificateConfig.ProtoReflect.Descriptor instead.
func (*CertificateConfig) GetPublicKey
func (x *CertificateConfig) GetPublicKey() *PublicKey
func (*CertificateConfig) GetReusableConfig
func (x *CertificateConfig) GetReusableConfig() *ReusableConfigWrapper
func (*CertificateConfig) GetSubjectConfig
func (x *CertificateConfig) GetSubjectConfig() *CertificateConfig_SubjectConfig
func (*CertificateConfig) ProtoMessage
func (*CertificateConfig) ProtoMessage()
func (*CertificateConfig) ProtoReflect
func (x *CertificateConfig) ProtoReflect() protoreflect.Message
func (*CertificateConfig) Reset
func (x *CertificateConfig) Reset()
func (*CertificateConfig) String
func (x *CertificateConfig) String() string
CertificateConfig_SubjectConfig
type CertificateConfig_SubjectConfig struct {
// Required. Contains distinguished name fields such as the location and organization.
Subject *Subject `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"`
// Optional. The "common name" of the distinguished name.
CommonName string `protobuf:"bytes,2,opt,name=common_name,json=commonName,proto3" json:"common_name,omitempty"`
// Optional. The subject alternative name fields.
SubjectAltName *SubjectAltNames `protobuf:"bytes,3,opt,name=subject_alt_name,json=subjectAltName,proto3" json:"subject_alt_name,omitempty"`
// contains filtered or unexported fields
}
These values are used to create the distinguished name and subject alternative name fields in an X.509 certificate.
func (*CertificateConfig_SubjectConfig) Descriptor
func (*CertificateConfig_SubjectConfig) Descriptor() ([]byte, []int)
Deprecated: Use CertificateConfig_SubjectConfig.ProtoReflect.Descriptor instead.
func (*CertificateConfig_SubjectConfig) GetCommonName
func (x *CertificateConfig_SubjectConfig) GetCommonName() string
func (*CertificateConfig_SubjectConfig) GetSubject
func (x *CertificateConfig_SubjectConfig) GetSubject() *Subject
func (*CertificateConfig_SubjectConfig) GetSubjectAltName
func (x *CertificateConfig_SubjectConfig) GetSubjectAltName() *SubjectAltNames
func (*CertificateConfig_SubjectConfig) ProtoMessage
func (*CertificateConfig_SubjectConfig) ProtoMessage()
func (*CertificateConfig_SubjectConfig) ProtoReflect
func (x *CertificateConfig_SubjectConfig) ProtoReflect() protoreflect.Message
func (*CertificateConfig_SubjectConfig) Reset
func (x *CertificateConfig_SubjectConfig) Reset()
func (*CertificateConfig_SubjectConfig) String
func (x *CertificateConfig_SubjectConfig) String() string
CertificateDescription
type CertificateDescription struct {
SubjectDescription *CertificateDescription_SubjectDescription `protobuf:"bytes,1,opt,name=subject_description,json=subjectDescription,proto3" json:"subject_description,omitempty"`
ConfigValues *ReusableConfigValues `protobuf:"bytes,2,opt,name=config_values,json=configValues,proto3" json:"config_values,omitempty"`
PublicKey *PublicKey `protobuf:"bytes,3,opt,name=public_key,json=publicKey,proto3" json:"public_key,omitempty"`
SubjectKeyId *CertificateDescription_KeyId `protobuf:"bytes,4,opt,name=subject_key_id,json=subjectKeyId,proto3" json:"subject_key_id,omitempty"`
AuthorityKeyId *CertificateDescription_KeyId `protobuf:"bytes,5,opt,name=authority_key_id,json=authorityKeyId,proto3" json:"authority_key_id,omitempty"`
CrlDistributionPoints []string `protobuf:"bytes,6,rep,name=crl_distribution_points,json=crlDistributionPoints,proto3" json:"crl_distribution_points,omitempty"`
AiaIssuingCertificateUrls []string "" /* 140 byte string literal not displayed */
CertFingerprint *CertificateDescription_CertificateFingerprint `protobuf:"bytes,8,opt,name=cert_fingerprint,json=certFingerprint,proto3" json:"cert_fingerprint,omitempty"`
}
A [CertificateDescription][google.cloud.security.privateca.v1beta1.CertificateDescription] describes an X.509 certificate or CSR that has been issued, as an alternative to using ASN.1 / X.509.
func (*CertificateDescription) Descriptor
func (*CertificateDescription) Descriptor() ([]byte, []int)
Deprecated: Use CertificateDescription.ProtoReflect.Descriptor instead.
func (*CertificateDescription) GetAiaIssuingCertificateUrls
func (x *CertificateDescription) GetAiaIssuingCertificateUrls() []string
func (*CertificateDescription) GetAuthorityKeyId
func (x *CertificateDescription) GetAuthorityKeyId() *CertificateDescription_KeyId
func (*CertificateDescription) GetCertFingerprint
func (x *CertificateDescription) GetCertFingerprint() *CertificateDescription_CertificateFingerprint
func (*CertificateDescription) GetConfigValues
func (x *CertificateDescription) GetConfigValues() *ReusableConfigValues
func (*CertificateDescription) GetCrlDistributionPoints
func (x *CertificateDescription) GetCrlDistributionPoints() []string
func (*CertificateDescription) GetPublicKey
func (x *CertificateDescription) GetPublicKey() *PublicKey
func (*CertificateDescription) GetSubjectDescription
func (x *CertificateDescription) GetSubjectDescription() *CertificateDescription_SubjectDescription
func (*CertificateDescription) GetSubjectKeyId
func (x *CertificateDescription) GetSubjectKeyId() *CertificateDescription_KeyId
func (*CertificateDescription) ProtoMessage
func (*CertificateDescription) ProtoMessage()
func (*CertificateDescription) ProtoReflect
func (x *CertificateDescription) ProtoReflect() protoreflect.Message
func (*CertificateDescription) Reset
func (x *CertificateDescription) Reset()
func (*CertificateDescription) String
func (x *CertificateDescription) String() string
CertificateDescription_CertificateFingerprint
type CertificateDescription_CertificateFingerprint struct {
// The SHA 256 hash, encoded in hexadecimal, of the DER x509 certificate.
Sha256Hash string `protobuf:"bytes,1,opt,name=sha256_hash,json=sha256Hash,proto3" json:"sha256_hash,omitempty"`
// contains filtered or unexported fields
}
A group of fingerprints for the x509 certificate.
func (*CertificateDescription_CertificateFingerprint) Descriptor
func (*CertificateDescription_CertificateFingerprint) Descriptor() ([]byte, []int)
Deprecated: Use CertificateDescription_CertificateFingerprint.ProtoReflect.Descriptor instead.
func (*CertificateDescription_CertificateFingerprint) GetSha256Hash
func (x *CertificateDescription_CertificateFingerprint) GetSha256Hash() string
func (*CertificateDescription_CertificateFingerprint) ProtoMessage
func (*CertificateDescription_CertificateFingerprint) ProtoMessage()
func (*CertificateDescription_CertificateFingerprint) ProtoReflect
func (x *CertificateDescription_CertificateFingerprint) ProtoReflect() protoreflect.Message
func (*CertificateDescription_CertificateFingerprint) Reset
func (x *CertificateDescription_CertificateFingerprint) Reset()
func (*CertificateDescription_CertificateFingerprint) String
func (x *CertificateDescription_CertificateFingerprint) String() string
CertificateDescription_KeyId
type CertificateDescription_KeyId struct {
// Optional. The value of this KeyId encoded in lowercase hexadecimal. This is most
// likely the 160 bit SHA-1 hash of the public key.
KeyId string `protobuf:"bytes,1,opt,name=key_id,json=keyId,proto3" json:"key_id,omitempty"`
// contains filtered or unexported fields
}
A KeyId identifies a specific public key, usually by hashing the public key.
func (*CertificateDescription_KeyId) Descriptor
func (*CertificateDescription_KeyId) Descriptor() ([]byte, []int)
Deprecated: Use CertificateDescription_KeyId.ProtoReflect.Descriptor instead.
func (*CertificateDescription_KeyId) GetKeyId
func (x *CertificateDescription_KeyId) GetKeyId() string
func (*CertificateDescription_KeyId) ProtoMessage
func (*CertificateDescription_KeyId) ProtoMessage()
func (*CertificateDescription_KeyId) ProtoReflect
func (x *CertificateDescription_KeyId) ProtoReflect() protoreflect.Message
func (*CertificateDescription_KeyId) Reset
func (x *CertificateDescription_KeyId) Reset()
func (*CertificateDescription_KeyId) String
func (x *CertificateDescription_KeyId) String() string
CertificateDescription_SubjectDescription
type CertificateDescription_SubjectDescription struct {
// Contains distinguished name fields such as the location and organization.
Subject *Subject `protobuf:"bytes,1,opt,name=subject,proto3" json:"subject,omitempty"`
// The "common name" of the distinguished name.
CommonName string `protobuf:"bytes,2,opt,name=common_name,json=commonName,proto3" json:"common_name,omitempty"`
// The subject alternative name fields.
SubjectAltName *SubjectAltNames `protobuf:"bytes,3,opt,name=subject_alt_name,json=subjectAltName,proto3" json:"subject_alt_name,omitempty"`
// The serial number encoded in lowercase hexadecimal.
HexSerialNumber string `protobuf:"bytes,4,opt,name=hex_serial_number,json=hexSerialNumber,proto3" json:"hex_serial_number,omitempty"`
// For convenience, the actual lifetime of an issued certificate.
// Corresponds to 'not_after_time' - 'not_before_time'.
Lifetime *durationpb.Duration `protobuf:"bytes,5,opt,name=lifetime,proto3" json:"lifetime,omitempty"`
// The time at which the certificate becomes valid.
NotBeforeTime *timestamppb.Timestamp `protobuf:"bytes,6,opt,name=not_before_time,json=notBeforeTime,proto3" json:"not_before_time,omitempty"`
// The time at which the certificate expires.
NotAfterTime *timestamppb.Timestamp `protobuf:"bytes,7,opt,name=not_after_time,json=notAfterTime,proto3" json:"not_after_time,omitempty"`
// contains filtered or unexported fields
}
These values describe fields in an issued X.509 certificate such as the distinguished name, subject alternative names, serial number, and lifetime.
func (*CertificateDescription_SubjectDescription) Descriptor
func (*CertificateDescription_SubjectDescription) Descriptor() ([]byte, []int)
Deprecated: Use CertificateDescription_SubjectDescription.ProtoReflect.Descriptor instead.
func (*CertificateDescription_SubjectDescription) GetCommonName
func (x *CertificateDescription_SubjectDescription) GetCommonName() string
func (*CertificateDescription_SubjectDescription) GetHexSerialNumber
func (x *CertificateDescription_SubjectDescription) GetHexSerialNumber() string
func (*CertificateDescription_SubjectDescription) GetLifetime
func (x *CertificateDescription_SubjectDescription) GetLifetime() *durationpb.Duration
func (*CertificateDescription_SubjectDescription) GetNotAfterTime
func (x *CertificateDescription_SubjectDescription) GetNotAfterTime() *timestamppb.Timestamp
func (*CertificateDescription_SubjectDescription) GetNotBeforeTime
func (x *CertificateDescription_SubjectDescription) GetNotBeforeTime() *timestamppb.Timestamp
func (*CertificateDescription_SubjectDescription) GetSubject
func (x *CertificateDescription_SubjectDescription) GetSubject() *Subject
func (*CertificateDescription_SubjectDescription) GetSubjectAltName
func (x *CertificateDescription_SubjectDescription) GetSubjectAltName() *SubjectAltNames
func (*CertificateDescription_SubjectDescription) ProtoMessage
func (*CertificateDescription_SubjectDescription) ProtoMessage()
func (*CertificateDescription_SubjectDescription) ProtoReflect
func (x *CertificateDescription_SubjectDescription) ProtoReflect() protoreflect.Message
func (*CertificateDescription_SubjectDescription) Reset
func (x *CertificateDescription_SubjectDescription) Reset()
func (*CertificateDescription_SubjectDescription) String
func (x *CertificateDescription_SubjectDescription) String() string
CertificateRevocationList
type CertificateRevocationList struct {
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
SequenceNumber int64 `protobuf:"varint,2,opt,name=sequence_number,json=sequenceNumber,proto3" json:"sequence_number,omitempty"`
RevokedCertificates []*CertificateRevocationList_RevokedCertificate `protobuf:"bytes,3,rep,name=revoked_certificates,json=revokedCertificates,proto3" json:"revoked_certificates,omitempty"`
PemCrl string `protobuf:"bytes,4,opt,name=pem_crl,json=pemCrl,proto3" json:"pem_crl,omitempty"`
AccessUrl string `protobuf:"bytes,5,opt,name=access_url,json=accessUrl,proto3" json:"access_url,omitempty"`
State CertificateRevocationList_State "" /* 141 byte string literal not displayed */
CreateTime *timestamppb.Timestamp `protobuf:"bytes,7,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,8,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
Labels map[string]string "" /* 153 byte string literal not displayed */
}
A [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] corresponds to a signed X.509 certificate Revocation List (CRL). A CRL contains the serial numbers of certificates that should no longer be trusted.
func (*CertificateRevocationList) Descriptor
func (*CertificateRevocationList) Descriptor() ([]byte, []int)
Deprecated: Use CertificateRevocationList.ProtoReflect.Descriptor instead.
func (*CertificateRevocationList) GetAccessUrl
func (x *CertificateRevocationList) GetAccessUrl() string
func (*CertificateRevocationList) GetCreateTime
func (x *CertificateRevocationList) GetCreateTime() *timestamppb.Timestamp
func (*CertificateRevocationList) GetLabels
func (x *CertificateRevocationList) GetLabels() map[string]string
func (*CertificateRevocationList) GetName
func (x *CertificateRevocationList) GetName() string
func (*CertificateRevocationList) GetPemCrl
func (x *CertificateRevocationList) GetPemCrl() string
func (*CertificateRevocationList) GetRevokedCertificates
func (x *CertificateRevocationList) GetRevokedCertificates() []*CertificateRevocationList_RevokedCertificate
func (*CertificateRevocationList) GetSequenceNumber
func (x *CertificateRevocationList) GetSequenceNumber() int64
func (*CertificateRevocationList) GetState
func (x *CertificateRevocationList) GetState() CertificateRevocationList_State
func (*CertificateRevocationList) GetUpdateTime
func (x *CertificateRevocationList) GetUpdateTime() *timestamppb.Timestamp
func (*CertificateRevocationList) ProtoMessage
func (*CertificateRevocationList) ProtoMessage()
func (*CertificateRevocationList) ProtoReflect
func (x *CertificateRevocationList) ProtoReflect() protoreflect.Message
func (*CertificateRevocationList) Reset
func (x *CertificateRevocationList) Reset()
func (*CertificateRevocationList) String
func (x *CertificateRevocationList) String() string
CertificateRevocationList_RevokedCertificate
type CertificateRevocationList_RevokedCertificate struct {
Certificate string `protobuf:"bytes,1,opt,name=certificate,proto3" json:"certificate,omitempty"`
HexSerialNumber string `protobuf:"bytes,2,opt,name=hex_serial_number,json=hexSerialNumber,proto3" json:"hex_serial_number,omitempty"`
RevocationReason RevocationReason "" /* 172 byte string literal not displayed */
}
Describes a revoked [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
func (*CertificateRevocationList_RevokedCertificate) Descriptor
func (*CertificateRevocationList_RevokedCertificate) Descriptor() ([]byte, []int)
Deprecated: Use CertificateRevocationList_RevokedCertificate.ProtoReflect.Descriptor instead.
func (*CertificateRevocationList_RevokedCertificate) GetCertificate
func (x *CertificateRevocationList_RevokedCertificate) GetCertificate() string
func (*CertificateRevocationList_RevokedCertificate) GetHexSerialNumber
func (x *CertificateRevocationList_RevokedCertificate) GetHexSerialNumber() string
func (*CertificateRevocationList_RevokedCertificate) GetRevocationReason
func (x *CertificateRevocationList_RevokedCertificate) GetRevocationReason() RevocationReason
func (*CertificateRevocationList_RevokedCertificate) ProtoMessage
func (*CertificateRevocationList_RevokedCertificate) ProtoMessage()
func (*CertificateRevocationList_RevokedCertificate) ProtoReflect
func (x *CertificateRevocationList_RevokedCertificate) ProtoReflect() protoreflect.Message
func (*CertificateRevocationList_RevokedCertificate) Reset
func (x *CertificateRevocationList_RevokedCertificate) Reset()
func (*CertificateRevocationList_RevokedCertificate) String
func (x *CertificateRevocationList_RevokedCertificate) String() string
CertificateRevocationList_State
type CertificateRevocationList_State int32
The state of a [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList], indicating if it is current.
CertificateRevocationList_STATE_UNSPECIFIED, CertificateRevocationList_ACTIVE, CertificateRevocationList_SUPERSEDED
const (
// Not specified.
CertificateRevocationList_STATE_UNSPECIFIED CertificateRevocationList_State = 0
// The [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] is up to date.
CertificateRevocationList_ACTIVE CertificateRevocationList_State = 1
// The [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] is no longer current.
CertificateRevocationList_SUPERSEDED CertificateRevocationList_State = 2
)
func (CertificateRevocationList_State) Descriptor
func (CertificateRevocationList_State) Descriptor() protoreflect.EnumDescriptor
func (CertificateRevocationList_State) Enum
func (x CertificateRevocationList_State) Enum() *CertificateRevocationList_State
func (CertificateRevocationList_State) EnumDescriptor
func (CertificateRevocationList_State) EnumDescriptor() ([]byte, []int)
Deprecated: Use CertificateRevocationList_State.Descriptor instead.
func (CertificateRevocationList_State) Number
func (x CertificateRevocationList_State) Number() protoreflect.EnumNumber
func (CertificateRevocationList_State) String
func (x CertificateRevocationList_State) String() string
func (CertificateRevocationList_State) Type
func (CertificateRevocationList_State) Type() protoreflect.EnumType
Certificate_Config
type Certificate_Config struct {
// Immutable. A description of the certificate and key that does not require X.509 or
// ASN.1.
Config *CertificateConfig `protobuf:"bytes,3,opt,name=config,proto3,oneof"`
}
Certificate_PemCsr
type Certificate_PemCsr struct {
// Immutable. A pem-encoded X.509 certificate signing request (CSR).
PemCsr string `protobuf:"bytes,2,opt,name=pem_csr,json=pemCsr,proto3,oneof"`
}
Certificate_RevocationDetails
type Certificate_RevocationDetails struct {
RevocationState RevocationReason "" /* 169 byte string literal not displayed */
RevocationTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=revocation_time,json=revocationTime,proto3" json:"revocation_time,omitempty"`
}
Describes fields that are relavent to the revocation of a [Certificate][google.cloud.security.privateca.v1beta1.Certificate].
func (*Certificate_RevocationDetails) Descriptor
func (*Certificate_RevocationDetails) Descriptor() ([]byte, []int)
Deprecated: Use Certificate_RevocationDetails.ProtoReflect.Descriptor instead.
func (*Certificate_RevocationDetails) GetRevocationState
func (x *Certificate_RevocationDetails) GetRevocationState() RevocationReason
func (*Certificate_RevocationDetails) GetRevocationTime
func (x *Certificate_RevocationDetails) GetRevocationTime() *timestamppb.Timestamp
func (*Certificate_RevocationDetails) ProtoMessage
func (*Certificate_RevocationDetails) ProtoMessage()
func (*Certificate_RevocationDetails) ProtoReflect
func (x *Certificate_RevocationDetails) ProtoReflect() protoreflect.Message
func (*Certificate_RevocationDetails) Reset
func (x *Certificate_RevocationDetails) Reset()
func (*Certificate_RevocationDetails) String
func (x *Certificate_RevocationDetails) String() string
CreateCertificateAuthorityRequest
type CreateCertificateAuthorityRequest struct {
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
CertificateAuthorityId string "" /* 129 byte string literal not displayed */
CertificateAuthority *CertificateAuthority `protobuf:"bytes,3,opt,name=certificate_authority,json=certificateAuthority,proto3" json:"certificate_authority,omitempty"`
RequestId string `protobuf:"bytes,4,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
}
Request message for [CertificateAuthorityService.CreateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.CreateCertificateAuthority].
func (*CreateCertificateAuthorityRequest) Descriptor
func (*CreateCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use CreateCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*CreateCertificateAuthorityRequest) GetCertificateAuthority
func (x *CreateCertificateAuthorityRequest) GetCertificateAuthority() *CertificateAuthority
func (*CreateCertificateAuthorityRequest) GetCertificateAuthorityId
func (x *CreateCertificateAuthorityRequest) GetCertificateAuthorityId() string
func (*CreateCertificateAuthorityRequest) GetParent
func (x *CreateCertificateAuthorityRequest) GetParent() string
func (*CreateCertificateAuthorityRequest) GetRequestId
func (x *CreateCertificateAuthorityRequest) GetRequestId() string
func (*CreateCertificateAuthorityRequest) ProtoMessage
func (*CreateCertificateAuthorityRequest) ProtoMessage()
func (*CreateCertificateAuthorityRequest) ProtoReflect
func (x *CreateCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*CreateCertificateAuthorityRequest) Reset
func (x *CreateCertificateAuthorityRequest) Reset()
func (*CreateCertificateAuthorityRequest) String
func (x *CreateCertificateAuthorityRequest) String() string
CreateCertificateRequest
type CreateCertificateRequest struct {
// Required. The resource name of the location and [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]
// associated with the [Certificate][google.cloud.security.privateca.v1beta1.Certificate], in the format
// `projects/*/locations/*/certificateAuthorities/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Optional. It must be unique within a location and match the regular
// expression `[a-zA-Z0-9_-]{1,63}`. This field is required when using a
// [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the Enterprise [CertificateAuthority.Tier][google.cloud.security.privateca.v1beta1.CertificateAuthority.Tier],
// but is optional and its value is ignored otherwise.
CertificateId string `protobuf:"bytes,2,opt,name=certificate_id,json=certificateId,proto3" json:"certificate_id,omitempty"`
// Required. A [Certificate][google.cloud.security.privateca.v1beta1.Certificate] with initial field values.
Certificate *Certificate `protobuf:"bytes,3,opt,name=certificate,proto3" json:"certificate,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,4,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.CreateCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.CreateCertificate].
func (*CreateCertificateRequest) Descriptor
func (*CreateCertificateRequest) Descriptor() ([]byte, []int)
Deprecated: Use CreateCertificateRequest.ProtoReflect.Descriptor instead.
func (*CreateCertificateRequest) GetCertificate
func (x *CreateCertificateRequest) GetCertificate() *Certificate
func (*CreateCertificateRequest) GetCertificateId
func (x *CreateCertificateRequest) GetCertificateId() string
func (*CreateCertificateRequest) GetParent
func (x *CreateCertificateRequest) GetParent() string
func (*CreateCertificateRequest) GetRequestId
func (x *CreateCertificateRequest) GetRequestId() string
func (*CreateCertificateRequest) ProtoMessage
func (*CreateCertificateRequest) ProtoMessage()
func (*CreateCertificateRequest) ProtoReflect
func (x *CreateCertificateRequest) ProtoReflect() protoreflect.Message
func (*CreateCertificateRequest) Reset
func (x *CreateCertificateRequest) Reset()
func (*CreateCertificateRequest) String
func (x *CreateCertificateRequest) String() string
DisableCertificateAuthorityRequest
type DisableCertificateAuthorityRequest struct {
// Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
// format `projects/*/locations/*/certificateAuthorities/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.DisableCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.DisableCertificateAuthority].
func (*DisableCertificateAuthorityRequest) Descriptor
func (*DisableCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use DisableCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*DisableCertificateAuthorityRequest) GetName
func (x *DisableCertificateAuthorityRequest) GetName() string
func (*DisableCertificateAuthorityRequest) GetRequestId
func (x *DisableCertificateAuthorityRequest) GetRequestId() string
func (*DisableCertificateAuthorityRequest) ProtoMessage
func (*DisableCertificateAuthorityRequest) ProtoMessage()
func (*DisableCertificateAuthorityRequest) ProtoReflect
func (x *DisableCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*DisableCertificateAuthorityRequest) Reset
func (x *DisableCertificateAuthorityRequest) Reset()
func (*DisableCertificateAuthorityRequest) String
func (x *DisableCertificateAuthorityRequest) String() string
EnableCertificateAuthorityRequest
type EnableCertificateAuthorityRequest struct {
// Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
// format `projects/*/locations/*/certificateAuthorities/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.EnableCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.EnableCertificateAuthority].
func (*EnableCertificateAuthorityRequest) Descriptor
func (*EnableCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use EnableCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*EnableCertificateAuthorityRequest) GetName
func (x *EnableCertificateAuthorityRequest) GetName() string
func (*EnableCertificateAuthorityRequest) GetRequestId
func (x *EnableCertificateAuthorityRequest) GetRequestId() string
func (*EnableCertificateAuthorityRequest) ProtoMessage
func (*EnableCertificateAuthorityRequest) ProtoMessage()
func (*EnableCertificateAuthorityRequest) ProtoReflect
func (x *EnableCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*EnableCertificateAuthorityRequest) Reset
func (x *EnableCertificateAuthorityRequest) Reset()
func (*EnableCertificateAuthorityRequest) String
func (x *EnableCertificateAuthorityRequest) String() string
FetchCertificateAuthorityCsrRequest
type FetchCertificateAuthorityCsrRequest struct {
// Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
// format `projects/*/locations/*/certificateAuthorities/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr].
func (*FetchCertificateAuthorityCsrRequest) Descriptor
func (*FetchCertificateAuthorityCsrRequest) Descriptor() ([]byte, []int)
Deprecated: Use FetchCertificateAuthorityCsrRequest.ProtoReflect.Descriptor instead.
func (*FetchCertificateAuthorityCsrRequest) GetName
func (x *FetchCertificateAuthorityCsrRequest) GetName() string
func (*FetchCertificateAuthorityCsrRequest) ProtoMessage
func (*FetchCertificateAuthorityCsrRequest) ProtoMessage()
func (*FetchCertificateAuthorityCsrRequest) ProtoReflect
func (x *FetchCertificateAuthorityCsrRequest) ProtoReflect() protoreflect.Message
func (*FetchCertificateAuthorityCsrRequest) Reset
func (x *FetchCertificateAuthorityCsrRequest) Reset()
func (*FetchCertificateAuthorityCsrRequest) String
func (x *FetchCertificateAuthorityCsrRequest) String() string
FetchCertificateAuthorityCsrResponse
type FetchCertificateAuthorityCsrResponse struct {
// Output only. The PEM-encoded signed certificate signing request (CSR).
PemCsr string `protobuf:"bytes,1,opt,name=pem_csr,json=pemCsr,proto3" json:"pem_csr,omitempty"`
// contains filtered or unexported fields
}
Response message for [CertificateAuthorityService.FetchCertificateAuthorityCsr][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.FetchCertificateAuthorityCsr].
func (*FetchCertificateAuthorityCsrResponse) Descriptor
func (*FetchCertificateAuthorityCsrResponse) Descriptor() ([]byte, []int)
Deprecated: Use FetchCertificateAuthorityCsrResponse.ProtoReflect.Descriptor instead.
func (*FetchCertificateAuthorityCsrResponse) GetPemCsr
func (x *FetchCertificateAuthorityCsrResponse) GetPemCsr() string
func (*FetchCertificateAuthorityCsrResponse) ProtoMessage
func (*FetchCertificateAuthorityCsrResponse) ProtoMessage()
func (*FetchCertificateAuthorityCsrResponse) ProtoReflect
func (x *FetchCertificateAuthorityCsrResponse) ProtoReflect() protoreflect.Message
func (*FetchCertificateAuthorityCsrResponse) Reset
func (x *FetchCertificateAuthorityCsrResponse) Reset()
func (*FetchCertificateAuthorityCsrResponse) String
func (x *FetchCertificateAuthorityCsrResponse) String() string
GetCertificateAuthorityRequest
type GetCertificateAuthorityRequest struct {
// Required. The [name][google.cloud.security.privateca.v1beta1.CertificateAuthority.name] of the [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] to
// get.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.GetCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetCertificateAuthority].
func (*GetCertificateAuthorityRequest) Descriptor
func (*GetCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*GetCertificateAuthorityRequest) GetName
func (x *GetCertificateAuthorityRequest) GetName() string
func (*GetCertificateAuthorityRequest) ProtoMessage
func (*GetCertificateAuthorityRequest) ProtoMessage()
func (*GetCertificateAuthorityRequest) ProtoReflect
func (x *GetCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*GetCertificateAuthorityRequest) Reset
func (x *GetCertificateAuthorityRequest) Reset()
func (*GetCertificateAuthorityRequest) String
func (x *GetCertificateAuthorityRequest) String() string
GetCertificateRequest
type GetCertificateRequest struct {
// Required. The [name][google.cloud.security.privateca.v1beta1.Certificate.name] of the [Certificate][google.cloud.security.privateca.v1beta1.Certificate] to get.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.GetCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetCertificate].
func (*GetCertificateRequest) Descriptor
func (*GetCertificateRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetCertificateRequest.ProtoReflect.Descriptor instead.
func (*GetCertificateRequest) GetName
func (x *GetCertificateRequest) GetName() string
func (*GetCertificateRequest) ProtoMessage
func (*GetCertificateRequest) ProtoMessage()
func (*GetCertificateRequest) ProtoReflect
func (x *GetCertificateRequest) ProtoReflect() protoreflect.Message
func (*GetCertificateRequest) Reset
func (x *GetCertificateRequest) Reset()
func (*GetCertificateRequest) String
func (x *GetCertificateRequest) String() string
GetCertificateRevocationListRequest
type GetCertificateRevocationListRequest struct {
// Required. The [name][google.cloud.security.privateca.v1beta1.CertificateRevocationList.name] of the
// [CertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateRevocationList] to get.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.GetCertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetCertificateRevocationList].
func (*GetCertificateRevocationListRequest) Descriptor
func (*GetCertificateRevocationListRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetCertificateRevocationListRequest.ProtoReflect.Descriptor instead.
func (*GetCertificateRevocationListRequest) GetName
func (x *GetCertificateRevocationListRequest) GetName() string
func (*GetCertificateRevocationListRequest) ProtoMessage
func (*GetCertificateRevocationListRequest) ProtoMessage()
func (*GetCertificateRevocationListRequest) ProtoReflect
func (x *GetCertificateRevocationListRequest) ProtoReflect() protoreflect.Message
func (*GetCertificateRevocationListRequest) Reset
func (x *GetCertificateRevocationListRequest) Reset()
func (*GetCertificateRevocationListRequest) String
func (x *GetCertificateRevocationListRequest) String() string
GetReusableConfigRequest
type GetReusableConfigRequest struct {
// Required. The [name][ReusableConfigs.name] of the [ReusableConfigs][] to get.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.GetReusableConfig][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.GetReusableConfig].
func (*GetReusableConfigRequest) Descriptor
func (*GetReusableConfigRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetReusableConfigRequest.ProtoReflect.Descriptor instead.
func (*GetReusableConfigRequest) GetName
func (x *GetReusableConfigRequest) GetName() string
func (*GetReusableConfigRequest) ProtoMessage
func (*GetReusableConfigRequest) ProtoMessage()
func (*GetReusableConfigRequest) ProtoReflect
func (x *GetReusableConfigRequest) ProtoReflect() protoreflect.Message
func (*GetReusableConfigRequest) Reset
func (x *GetReusableConfigRequest) Reset()
func (*GetReusableConfigRequest) String
func (x *GetReusableConfigRequest) String() string
KeyUsage
type KeyUsage struct {
BaseKeyUsage *KeyUsage_KeyUsageOptions `protobuf:"bytes,1,opt,name=base_key_usage,json=baseKeyUsage,proto3" json:"base_key_usage,omitempty"`
ExtendedKeyUsage *KeyUsage_ExtendedKeyUsageOptions `protobuf:"bytes,2,opt,name=extended_key_usage,json=extendedKeyUsage,proto3" json:"extended_key_usage,omitempty"`
UnknownExtendedKeyUsages []*ObjectId "" /* 137 byte string literal not displayed */
}
A [KeyUsage][google.cloud.security.privateca.v1beta1.KeyUsage] describes key usage values that may appear in an X.509 certificate.
func (*KeyUsage) Descriptor
Deprecated: Use KeyUsage.ProtoReflect.Descriptor instead.
func (*KeyUsage) GetBaseKeyUsage
func (x *KeyUsage) GetBaseKeyUsage() *KeyUsage_KeyUsageOptions
func (*KeyUsage) GetExtendedKeyUsage
func (x *KeyUsage) GetExtendedKeyUsage() *KeyUsage_ExtendedKeyUsageOptions
func (*KeyUsage) GetUnknownExtendedKeyUsages
func (*KeyUsage) ProtoMessage
func (*KeyUsage) ProtoMessage()
func (*KeyUsage) ProtoReflect
func (x *KeyUsage) ProtoReflect() protoreflect.Message
func (*KeyUsage) Reset
func (x *KeyUsage) Reset()
func (*KeyUsage) String
KeyUsage_ExtendedKeyUsageOptions
type KeyUsage_ExtendedKeyUsageOptions struct {
// Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially described as "TLS WWW
// server authentication", though regularly used for non-WWW TLS.
ServerAuth bool `protobuf:"varint,1,opt,name=server_auth,json=serverAuth,proto3" json:"server_auth,omitempty"`
// Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially described as "TLS WWW
// client authentication", though regularly used for non-WWW TLS.
ClientAuth bool `protobuf:"varint,2,opt,name=client_auth,json=clientAuth,proto3" json:"client_auth,omitempty"`
// Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially described as "Signing of
// downloadable executable code client authentication".
CodeSigning bool `protobuf:"varint,3,opt,name=code_signing,json=codeSigning,proto3" json:"code_signing,omitempty"`
// Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially described as "Email
// protection".
EmailProtection bool `protobuf:"varint,4,opt,name=email_protection,json=emailProtection,proto3" json:"email_protection,omitempty"`
// Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially described as "Binding
// the hash of an object to a time".
TimeStamping bool `protobuf:"varint,5,opt,name=time_stamping,json=timeStamping,proto3" json:"time_stamping,omitempty"`
// Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially described as "Signing
// OCSP responses".
OcspSigning bool `protobuf:"varint,6,opt,name=ocsp_signing,json=ocspSigning,proto3" json:"ocsp_signing,omitempty"`
// contains filtered or unexported fields
}
[KeyUsage.ExtendedKeyUsageOptions][google.cloud.security.privateca.v1beta1.KeyUsage.ExtendedKeyUsageOptions] has fields that correspond to certain common OIDs that could be specified as an extended key usage value.
func (*KeyUsage_ExtendedKeyUsageOptions) Descriptor
func (*KeyUsage_ExtendedKeyUsageOptions) Descriptor() ([]byte, []int)
Deprecated: Use KeyUsage_ExtendedKeyUsageOptions.ProtoReflect.Descriptor instead.
func (*KeyUsage_ExtendedKeyUsageOptions) GetClientAuth
func (x *KeyUsage_ExtendedKeyUsageOptions) GetClientAuth() bool
func (*KeyUsage_ExtendedKeyUsageOptions) GetCodeSigning
func (x *KeyUsage_ExtendedKeyUsageOptions) GetCodeSigning() bool
func (*KeyUsage_ExtendedKeyUsageOptions) GetEmailProtection
func (x *KeyUsage_ExtendedKeyUsageOptions) GetEmailProtection() bool
func (*KeyUsage_ExtendedKeyUsageOptions) GetOcspSigning
func (x *KeyUsage_ExtendedKeyUsageOptions) GetOcspSigning() bool
func (*KeyUsage_ExtendedKeyUsageOptions) GetServerAuth
func (x *KeyUsage_ExtendedKeyUsageOptions) GetServerAuth() bool
func (*KeyUsage_ExtendedKeyUsageOptions) GetTimeStamping
func (x *KeyUsage_ExtendedKeyUsageOptions) GetTimeStamping() bool
func (*KeyUsage_ExtendedKeyUsageOptions) ProtoMessage
func (*KeyUsage_ExtendedKeyUsageOptions) ProtoMessage()
func (*KeyUsage_ExtendedKeyUsageOptions) ProtoReflect
func (x *KeyUsage_ExtendedKeyUsageOptions) ProtoReflect() protoreflect.Message
func (*KeyUsage_ExtendedKeyUsageOptions) Reset
func (x *KeyUsage_ExtendedKeyUsageOptions) Reset()
func (*KeyUsage_ExtendedKeyUsageOptions) String
func (x *KeyUsage_ExtendedKeyUsageOptions) String() string
KeyUsage_KeyUsageOptions
type KeyUsage_KeyUsageOptions struct {
// The key may be used for digital signatures.
DigitalSignature bool `protobuf:"varint,1,opt,name=digital_signature,json=digitalSignature,proto3" json:"digital_signature,omitempty"`
// The key may be used for cryptographic commitments. Note that this may
// also be referred to as "non-repudiation".
ContentCommitment bool `protobuf:"varint,2,opt,name=content_commitment,json=contentCommitment,proto3" json:"content_commitment,omitempty"`
// The key may be used to encipher other keys.
KeyEncipherment bool `protobuf:"varint,3,opt,name=key_encipherment,json=keyEncipherment,proto3" json:"key_encipherment,omitempty"`
// The key may be used to encipher data.
DataEncipherment bool `protobuf:"varint,4,opt,name=data_encipherment,json=dataEncipherment,proto3" json:"data_encipherment,omitempty"`
// The key may be used in a key agreement protocol.
KeyAgreement bool `protobuf:"varint,5,opt,name=key_agreement,json=keyAgreement,proto3" json:"key_agreement,omitempty"`
// The key may be used to sign certificates.
CertSign bool `protobuf:"varint,6,opt,name=cert_sign,json=certSign,proto3" json:"cert_sign,omitempty"`
// The key may be used sign certificate revocation lists.
CrlSign bool `protobuf:"varint,7,opt,name=crl_sign,json=crlSign,proto3" json:"crl_sign,omitempty"`
// The key may be used to encipher only.
EncipherOnly bool `protobuf:"varint,8,opt,name=encipher_only,json=encipherOnly,proto3" json:"encipher_only,omitempty"`
// The key may be used to decipher only.
DecipherOnly bool `protobuf:"varint,9,opt,name=decipher_only,json=decipherOnly,proto3" json:"decipher_only,omitempty"`
// contains filtered or unexported fields
}
[KeyUsage.KeyUsageOptions][google.cloud.security.privateca.v1beta1.KeyUsage.KeyUsageOptions] corresponds to the key usage values described in https://tools.ietf.org/html/rfc5280#section-4.2.1.3.
func (*KeyUsage_KeyUsageOptions) Descriptor
func (*KeyUsage_KeyUsageOptions) Descriptor() ([]byte, []int)
Deprecated: Use KeyUsage_KeyUsageOptions.ProtoReflect.Descriptor instead.
func (*KeyUsage_KeyUsageOptions) GetCertSign
func (x *KeyUsage_KeyUsageOptions) GetCertSign() bool
func (*KeyUsage_KeyUsageOptions) GetContentCommitment
func (x *KeyUsage_KeyUsageOptions) GetContentCommitment() bool
func (*KeyUsage_KeyUsageOptions) GetCrlSign
func (x *KeyUsage_KeyUsageOptions) GetCrlSign() bool
func (*KeyUsage_KeyUsageOptions) GetDataEncipherment
func (x *KeyUsage_KeyUsageOptions) GetDataEncipherment() bool
func (*KeyUsage_KeyUsageOptions) GetDecipherOnly
func (x *KeyUsage_KeyUsageOptions) GetDecipherOnly() bool
func (*KeyUsage_KeyUsageOptions) GetDigitalSignature
func (x *KeyUsage_KeyUsageOptions) GetDigitalSignature() bool
func (*KeyUsage_KeyUsageOptions) GetEncipherOnly
func (x *KeyUsage_KeyUsageOptions) GetEncipherOnly() bool
func (*KeyUsage_KeyUsageOptions) GetKeyAgreement
func (x *KeyUsage_KeyUsageOptions) GetKeyAgreement() bool
func (*KeyUsage_KeyUsageOptions) GetKeyEncipherment
func (x *KeyUsage_KeyUsageOptions) GetKeyEncipherment() bool
func (*KeyUsage_KeyUsageOptions) ProtoMessage
func (*KeyUsage_KeyUsageOptions) ProtoMessage()
func (*KeyUsage_KeyUsageOptions) ProtoReflect
func (x *KeyUsage_KeyUsageOptions) ProtoReflect() protoreflect.Message
func (*KeyUsage_KeyUsageOptions) Reset
func (x *KeyUsage_KeyUsageOptions) Reset()
func (*KeyUsage_KeyUsageOptions) String
func (x *KeyUsage_KeyUsageOptions) String() string
ListCertificateAuthoritiesRequest
type ListCertificateAuthoritiesRequest struct {
// Required. The resource name of the location associated with the
// [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority], in the format
// `projects/*/locations/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Optional. Limit on the number of [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority] to
// include in the response.
// Further [CertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthority] can subsequently be
// obtained by including the
// [ListCertificateAuthoritiesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateAuthoritiesResponse.next_page_token] in a subsequent
// request. If unspecified, the server will pick an appropriate default.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// Optional. Pagination token, returned earlier via
// [ListCertificateAuthoritiesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateAuthoritiesResponse.next_page_token].
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// Optional. Only include resources that match the filter in the response.
Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
// Optional. Specify how the results should be sorted.
OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.ListCertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateAuthorities].
func (*ListCertificateAuthoritiesRequest) Descriptor
func (*ListCertificateAuthoritiesRequest) Descriptor() ([]byte, []int)
Deprecated: Use ListCertificateAuthoritiesRequest.ProtoReflect.Descriptor instead.
func (*ListCertificateAuthoritiesRequest) GetFilter
func (x *ListCertificateAuthoritiesRequest) GetFilter() string
func (*ListCertificateAuthoritiesRequest) GetOrderBy
func (x *ListCertificateAuthoritiesRequest) GetOrderBy() string
func (*ListCertificateAuthoritiesRequest) GetPageSize
func (x *ListCertificateAuthoritiesRequest) GetPageSize() int32
func (*ListCertificateAuthoritiesRequest) GetPageToken
func (x *ListCertificateAuthoritiesRequest) GetPageToken() string
func (*ListCertificateAuthoritiesRequest) GetParent
func (x *ListCertificateAuthoritiesRequest) GetParent() string
func (*ListCertificateAuthoritiesRequest) ProtoMessage
func (*ListCertificateAuthoritiesRequest) ProtoMessage()
func (*ListCertificateAuthoritiesRequest) ProtoReflect
func (x *ListCertificateAuthoritiesRequest) ProtoReflect() protoreflect.Message
func (*ListCertificateAuthoritiesRequest) Reset
func (x *ListCertificateAuthoritiesRequest) Reset()
func (*ListCertificateAuthoritiesRequest) String
func (x *ListCertificateAuthoritiesRequest) String() string
ListCertificateAuthoritiesResponse
type ListCertificateAuthoritiesResponse struct {
CertificateAuthorities []*CertificateAuthority "" /* 127 byte string literal not displayed */
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
}
Response message for [CertificateAuthorityService.ListCertificateAuthorities][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateAuthorities].
func (*ListCertificateAuthoritiesResponse) Descriptor
func (*ListCertificateAuthoritiesResponse) Descriptor() ([]byte, []int)
Deprecated: Use ListCertificateAuthoritiesResponse.ProtoReflect.Descriptor instead.
func (*ListCertificateAuthoritiesResponse) GetCertificateAuthorities
func (x *ListCertificateAuthoritiesResponse) GetCertificateAuthorities() []*CertificateAuthority
func (*ListCertificateAuthoritiesResponse) GetNextPageToken
func (x *ListCertificateAuthoritiesResponse) GetNextPageToken() string
func (*ListCertificateAuthoritiesResponse) GetUnreachable
func (x *ListCertificateAuthoritiesResponse) GetUnreachable() []string
func (*ListCertificateAuthoritiesResponse) ProtoMessage
func (*ListCertificateAuthoritiesResponse) ProtoMessage()
func (*ListCertificateAuthoritiesResponse) ProtoReflect
func (x *ListCertificateAuthoritiesResponse) ProtoReflect() protoreflect.Message
func (*ListCertificateAuthoritiesResponse) Reset
func (x *ListCertificateAuthoritiesResponse) Reset()
func (*ListCertificateAuthoritiesResponse) String
func (x *ListCertificateAuthoritiesResponse) String() string
ListCertificateRevocationListsRequest
type ListCertificateRevocationListsRequest struct {
// Required. The resource name of the location associated with the
// [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList], in the format
// `projects/*/locations/*/certificateauthorities/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Optional. Limit on the number of
// [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList] to include in the
// response. Further [CertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateRevocationList]
// can subsequently be obtained by including the
// [ListCertificateRevocationListsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateRevocationListsResponse.next_page_token] in a subsequent
// request. If unspecified, the server will pick an appropriate default.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// Optional. Pagination token, returned earlier via
// [ListCertificateRevocationListsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificateRevocationListsResponse.next_page_token].
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// Optional. Only include resources that match the filter in the response.
Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
// Optional. Specify how the results should be sorted.
OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.ListCertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateRevocationLists].
func (*ListCertificateRevocationListsRequest) Descriptor
func (*ListCertificateRevocationListsRequest) Descriptor() ([]byte, []int)
Deprecated: Use ListCertificateRevocationListsRequest.ProtoReflect.Descriptor instead.
func (*ListCertificateRevocationListsRequest) GetFilter
func (x *ListCertificateRevocationListsRequest) GetFilter() string
func (*ListCertificateRevocationListsRequest) GetOrderBy
func (x *ListCertificateRevocationListsRequest) GetOrderBy() string
func (*ListCertificateRevocationListsRequest) GetPageSize
func (x *ListCertificateRevocationListsRequest) GetPageSize() int32
func (*ListCertificateRevocationListsRequest) GetPageToken
func (x *ListCertificateRevocationListsRequest) GetPageToken() string
func (*ListCertificateRevocationListsRequest) GetParent
func (x *ListCertificateRevocationListsRequest) GetParent() string
func (*ListCertificateRevocationListsRequest) ProtoMessage
func (*ListCertificateRevocationListsRequest) ProtoMessage()
func (*ListCertificateRevocationListsRequest) ProtoReflect
func (x *ListCertificateRevocationListsRequest) ProtoReflect() protoreflect.Message
func (*ListCertificateRevocationListsRequest) Reset
func (x *ListCertificateRevocationListsRequest) Reset()
func (*ListCertificateRevocationListsRequest) String
func (x *ListCertificateRevocationListsRequest) String() string
ListCertificateRevocationListsResponse
type ListCertificateRevocationListsResponse struct {
CertificateRevocationLists []*CertificateRevocationList "" /* 141 byte string literal not displayed */
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
}
Response message for [CertificateAuthorityService.ListCertificateRevocationLists][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificateRevocationLists].
func (*ListCertificateRevocationListsResponse) Descriptor
func (*ListCertificateRevocationListsResponse) Descriptor() ([]byte, []int)
Deprecated: Use ListCertificateRevocationListsResponse.ProtoReflect.Descriptor instead.
func (*ListCertificateRevocationListsResponse) GetCertificateRevocationLists
func (x *ListCertificateRevocationListsResponse) GetCertificateRevocationLists() []*CertificateRevocationList
func (*ListCertificateRevocationListsResponse) GetNextPageToken
func (x *ListCertificateRevocationListsResponse) GetNextPageToken() string
func (*ListCertificateRevocationListsResponse) GetUnreachable
func (x *ListCertificateRevocationListsResponse) GetUnreachable() []string
func (*ListCertificateRevocationListsResponse) ProtoMessage
func (*ListCertificateRevocationListsResponse) ProtoMessage()
func (*ListCertificateRevocationListsResponse) ProtoReflect
func (x *ListCertificateRevocationListsResponse) ProtoReflect() protoreflect.Message
func (*ListCertificateRevocationListsResponse) Reset
func (x *ListCertificateRevocationListsResponse) Reset()
func (*ListCertificateRevocationListsResponse) String
func (x *ListCertificateRevocationListsResponse) String() string
ListCertificatesRequest
type ListCertificatesRequest struct {
// Required. The resource name of the location associated with the
// [Certificates][google.cloud.security.privateca.v1beta1.Certificate], in the format
// `projects/*/locations/*/certificateauthorities/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Optional. Limit on the number of
// [Certificates][google.cloud.security.privateca.v1beta1.Certificate] to include in the
// response. Further [Certificates][google.cloud.security.privateca.v1beta1.Certificate] can subsequently be obtained
// by including the
// [ListCertificatesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificatesResponse.next_page_token] in a subsequent
// request. If unspecified, the server will pick an appropriate default.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// Optional. Pagination token, returned earlier via
// [ListCertificatesResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListCertificatesResponse.next_page_token].
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// Optional. Only include resources that match the filter in the response. For details
// on supported filters and syntax, see [Certificates Filtering
// documentation](https://cloud.google.com/certificate-authority-service/docs/sorting-filtering-certificates#filtering_support).
Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
// Optional. Specify how the results should be sorted. For details on supported fields
// and syntax, see [Certificates Sorting
// documentation](https://cloud.google.com/certificate-authority-service/docs/sorting-filtering-certificates#sorting_support).
OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.ListCertificates][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificates].
func (*ListCertificatesRequest) Descriptor
func (*ListCertificatesRequest) Descriptor() ([]byte, []int)
Deprecated: Use ListCertificatesRequest.ProtoReflect.Descriptor instead.
func (*ListCertificatesRequest) GetFilter
func (x *ListCertificatesRequest) GetFilter() string
func (*ListCertificatesRequest) GetOrderBy
func (x *ListCertificatesRequest) GetOrderBy() string
func (*ListCertificatesRequest) GetPageSize
func (x *ListCertificatesRequest) GetPageSize() int32
func (*ListCertificatesRequest) GetPageToken
func (x *ListCertificatesRequest) GetPageToken() string
func (*ListCertificatesRequest) GetParent
func (x *ListCertificatesRequest) GetParent() string
func (*ListCertificatesRequest) ProtoMessage
func (*ListCertificatesRequest) ProtoMessage()
func (*ListCertificatesRequest) ProtoReflect
func (x *ListCertificatesRequest) ProtoReflect() protoreflect.Message
func (*ListCertificatesRequest) Reset
func (x *ListCertificatesRequest) Reset()
func (*ListCertificatesRequest) String
func (x *ListCertificatesRequest) String() string
ListCertificatesResponse
type ListCertificatesResponse struct {
// The list of [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
Certificates []*Certificate `protobuf:"bytes,1,rep,name=certificates,proto3" json:"certificates,omitempty"`
// A token to retrieve next page of results. Pass this value in
// [ListCertificatesRequest.next_page_token][] to retrieve the
// next page of results.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// A list of locations (e.g. "us-west1") that could not be reached.
Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
// contains filtered or unexported fields
}
Response message for [CertificateAuthorityService.ListCertificates][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListCertificates].
func (*ListCertificatesResponse) Descriptor
func (*ListCertificatesResponse) Descriptor() ([]byte, []int)
Deprecated: Use ListCertificatesResponse.ProtoReflect.Descriptor instead.
func (*ListCertificatesResponse) GetCertificates
func (x *ListCertificatesResponse) GetCertificates() []*Certificate
func (*ListCertificatesResponse) GetNextPageToken
func (x *ListCertificatesResponse) GetNextPageToken() string
func (*ListCertificatesResponse) GetUnreachable
func (x *ListCertificatesResponse) GetUnreachable() []string
func (*ListCertificatesResponse) ProtoMessage
func (*ListCertificatesResponse) ProtoMessage()
func (*ListCertificatesResponse) ProtoReflect
func (x *ListCertificatesResponse) ProtoReflect() protoreflect.Message
func (*ListCertificatesResponse) Reset
func (x *ListCertificatesResponse) Reset()
func (*ListCertificatesResponse) String
func (x *ListCertificatesResponse) String() string
ListReusableConfigsRequest
type ListReusableConfigsRequest struct {
// Required. The resource name of the location associated with the
// [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig], in the format
// `projects/*/locations/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Optional. Limit on the number of
// [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig] to include in the response.
// Further [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig] can subsequently be
// obtained by including the
// [ListReusableConfigsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListReusableConfigsResponse.next_page_token] in a subsequent request. If
// unspecified, the server will pick an appropriate default.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// Optional. Pagination token, returned earlier via
// [ListReusableConfigsResponse.next_page_token][google.cloud.security.privateca.v1beta1.ListReusableConfigsResponse.next_page_token].
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// Optional. Only include resources that match the filter in the response.
Filter string `protobuf:"bytes,4,opt,name=filter,proto3" json:"filter,omitempty"`
// Optional. Specify how the results should be sorted.
OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.ListReusableConfigs][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListReusableConfigs].
func (*ListReusableConfigsRequest) Descriptor
func (*ListReusableConfigsRequest) Descriptor() ([]byte, []int)
Deprecated: Use ListReusableConfigsRequest.ProtoReflect.Descriptor instead.
func (*ListReusableConfigsRequest) GetFilter
func (x *ListReusableConfigsRequest) GetFilter() string
func (*ListReusableConfigsRequest) GetOrderBy
func (x *ListReusableConfigsRequest) GetOrderBy() string
func (*ListReusableConfigsRequest) GetPageSize
func (x *ListReusableConfigsRequest) GetPageSize() int32
func (*ListReusableConfigsRequest) GetPageToken
func (x *ListReusableConfigsRequest) GetPageToken() string
func (*ListReusableConfigsRequest) GetParent
func (x *ListReusableConfigsRequest) GetParent() string
func (*ListReusableConfigsRequest) ProtoMessage
func (*ListReusableConfigsRequest) ProtoMessage()
func (*ListReusableConfigsRequest) ProtoReflect
func (x *ListReusableConfigsRequest) ProtoReflect() protoreflect.Message
func (*ListReusableConfigsRequest) Reset
func (x *ListReusableConfigsRequest) Reset()
func (*ListReusableConfigsRequest) String
func (x *ListReusableConfigsRequest) String() string
ListReusableConfigsResponse
type ListReusableConfigsResponse struct {
// The list of [ReusableConfigs][google.cloud.security.privateca.v1beta1.ReusableConfig].
ReusableConfigs []*ReusableConfig `protobuf:"bytes,1,rep,name=reusable_configs,json=reusableConfigs,proto3" json:"reusable_configs,omitempty"`
// A token to retrieve next page of results. Pass this value in
// [ListReusableConfigsRequest.next_page_token][] to retrieve
// the next page of results.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// A list of locations (e.g. "us-west1") that could not be reached.
Unreachable []string `protobuf:"bytes,3,rep,name=unreachable,proto3" json:"unreachable,omitempty"`
// contains filtered or unexported fields
}
Response message for [CertificateAuthorityService.ListReusableConfigs][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ListReusableConfigs].
func (*ListReusableConfigsResponse) Descriptor
func (*ListReusableConfigsResponse) Descriptor() ([]byte, []int)
Deprecated: Use ListReusableConfigsResponse.ProtoReflect.Descriptor instead.
func (*ListReusableConfigsResponse) GetNextPageToken
func (x *ListReusableConfigsResponse) GetNextPageToken() string
func (*ListReusableConfigsResponse) GetReusableConfigs
func (x *ListReusableConfigsResponse) GetReusableConfigs() []*ReusableConfig
func (*ListReusableConfigsResponse) GetUnreachable
func (x *ListReusableConfigsResponse) GetUnreachable() []string
func (*ListReusableConfigsResponse) ProtoMessage
func (*ListReusableConfigsResponse) ProtoMessage()
func (*ListReusableConfigsResponse) ProtoReflect
func (x *ListReusableConfigsResponse) ProtoReflect() protoreflect.Message
func (*ListReusableConfigsResponse) Reset
func (x *ListReusableConfigsResponse) Reset()
func (*ListReusableConfigsResponse) String
func (x *ListReusableConfigsResponse) String() string
ObjectId
type ObjectId struct {
// Required. The parts of an OID path. The most significant parts of the path come
// first.
ObjectIdPath []int32 `protobuf:"varint,1,rep,packed,name=object_id_path,json=objectIdPath,proto3" json:"object_id_path,omitempty"`
// contains filtered or unexported fields
}
An [ObjectId][google.cloud.security.privateca.v1beta1.ObjectId] specifies an object identifier (OID). These provide context and describe types in ASN.1 messages.
func (*ObjectId) Descriptor
Deprecated: Use ObjectId.ProtoReflect.Descriptor instead.
func (*ObjectId) GetObjectIdPath
func (*ObjectId) ProtoMessage
func (*ObjectId) ProtoMessage()
func (*ObjectId) ProtoReflect
func (x *ObjectId) ProtoReflect() protoreflect.Message
func (*ObjectId) Reset
func (x *ObjectId) Reset()
func (*ObjectId) String
OperationMetadata
type OperationMetadata struct {
// Output only. The time the operation was created.
CreateTime *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// Output only. The time the operation finished running.
EndTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=end_time,json=endTime,proto3" json:"end_time,omitempty"`
// Output only. Server-defined resource path for the target of the operation.
Target string `protobuf:"bytes,3,opt,name=target,proto3" json:"target,omitempty"`
// Output only. Name of the verb executed by the operation.
Verb string `protobuf:"bytes,4,opt,name=verb,proto3" json:"verb,omitempty"`
// Output only. Human-readable status of the operation, if any.
StatusMessage string `protobuf:"bytes,5,opt,name=status_message,json=statusMessage,proto3" json:"status_message,omitempty"`
// Output only. Identifies whether the user has requested cancellation
// of the operation. Operations that have successfully been cancelled
// have [Operation.error][] value with a [google.rpc.Status.code][google.rpc.Status.code] of 1,
// corresponding to `Code.CANCELLED`.
RequestedCancellation bool `protobuf:"varint,6,opt,name=requested_cancellation,json=requestedCancellation,proto3" json:"requested_cancellation,omitempty"`
// Output only. API version used to start the operation.
ApiVersion string `protobuf:"bytes,7,opt,name=api_version,json=apiVersion,proto3" json:"api_version,omitempty"`
// contains filtered or unexported fields
}
Represents the metadata of the long-running operation.
func (*OperationMetadata) Descriptor
func (*OperationMetadata) Descriptor() ([]byte, []int)
Deprecated: Use OperationMetadata.ProtoReflect.Descriptor instead.
func (*OperationMetadata) GetApiVersion
func (x *OperationMetadata) GetApiVersion() string
func (*OperationMetadata) GetCreateTime
func (x *OperationMetadata) GetCreateTime() *timestamppb.Timestamp
func (*OperationMetadata) GetEndTime
func (x *OperationMetadata) GetEndTime() *timestamppb.Timestamp
func (*OperationMetadata) GetRequestedCancellation
func (x *OperationMetadata) GetRequestedCancellation() bool
func (*OperationMetadata) GetStatusMessage
func (x *OperationMetadata) GetStatusMessage() string
func (*OperationMetadata) GetTarget
func (x *OperationMetadata) GetTarget() string
func (*OperationMetadata) GetVerb
func (x *OperationMetadata) GetVerb() string
func (*OperationMetadata) ProtoMessage
func (*OperationMetadata) ProtoMessage()
func (*OperationMetadata) ProtoReflect
func (x *OperationMetadata) ProtoReflect() protoreflect.Message
func (*OperationMetadata) Reset
func (x *OperationMetadata) Reset()
func (*OperationMetadata) String
func (x *OperationMetadata) String() string
PublicKey
type PublicKey struct {
// Required. The type of public key.
Type PublicKey_KeyType `protobuf:"varint,1,opt,name=type,proto3,enum=google.cloud.security.privateca.v1beta1.PublicKey_KeyType" json:"type,omitempty"`
// Required. A public key. Padding and encoding varies by 'KeyType' and is described
// along with the KeyType values.
Key []byte `protobuf:"bytes,2,opt,name=key,proto3" json:"key,omitempty"`
// contains filtered or unexported fields
}
A [PublicKey][google.cloud.security.privateca.v1beta1.PublicKey] describes a public key.
func (*PublicKey) Descriptor
Deprecated: Use PublicKey.ProtoReflect.Descriptor instead.
func (*PublicKey) GetKey
func (*PublicKey) GetType
func (x *PublicKey) GetType() PublicKey_KeyType
func (*PublicKey) ProtoMessage
func (*PublicKey) ProtoMessage()
func (*PublicKey) ProtoReflect
func (x *PublicKey) ProtoReflect() protoreflect.Message
func (*PublicKey) Reset
func (x *PublicKey) Reset()
func (*PublicKey) String
PublicKey_KeyType
type PublicKey_KeyType int32
Types of public keys that are supported. At a minimum, we support RSA and ECDSA, for the key sizes or curves listed: https://cloud.google.com/kms/docs/algorithms#asymmetric_signing_algorithms
PublicKey_KEY_TYPE_UNSPECIFIED, PublicKey_PEM_RSA_KEY, PublicKey_PEM_EC_KEY
const (
// Default unspecified value.
PublicKey_KEY_TYPE_UNSPECIFIED PublicKey_KeyType = 0
// A PEM-encoded PKCS#1/RFC 3447 RSAPrivateKey structure.
PublicKey_PEM_RSA_KEY PublicKey_KeyType = 1
// A PEM-encoded compressed NIST P-256/secp256r1/prime256v1 or P-384 key.
PublicKey_PEM_EC_KEY PublicKey_KeyType = 2
)
func (PublicKey_KeyType) Descriptor
func (PublicKey_KeyType) Descriptor() protoreflect.EnumDescriptor
func (PublicKey_KeyType) Enum
func (x PublicKey_KeyType) Enum() *PublicKey_KeyType
func (PublicKey_KeyType) EnumDescriptor
func (PublicKey_KeyType) EnumDescriptor() ([]byte, []int)
Deprecated: Use PublicKey_KeyType.Descriptor instead.
func (PublicKey_KeyType) Number
func (x PublicKey_KeyType) Number() protoreflect.EnumNumber
func (PublicKey_KeyType) String
func (x PublicKey_KeyType) String() string
func (PublicKey_KeyType) Type
func (PublicKey_KeyType) Type() protoreflect.EnumType
RestoreCertificateAuthorityRequest
type RestoreCertificateAuthorityRequest struct {
// Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
// format `projects/*/locations/*/certificateAuthorities/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.RestoreCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.RestoreCertificateAuthority].
func (*RestoreCertificateAuthorityRequest) Descriptor
func (*RestoreCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use RestoreCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*RestoreCertificateAuthorityRequest) GetName
func (x *RestoreCertificateAuthorityRequest) GetName() string
func (*RestoreCertificateAuthorityRequest) GetRequestId
func (x *RestoreCertificateAuthorityRequest) GetRequestId() string
func (*RestoreCertificateAuthorityRequest) ProtoMessage
func (*RestoreCertificateAuthorityRequest) ProtoMessage()
func (*RestoreCertificateAuthorityRequest) ProtoReflect
func (x *RestoreCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*RestoreCertificateAuthorityRequest) Reset
func (x *RestoreCertificateAuthorityRequest) Reset()
func (*RestoreCertificateAuthorityRequest) String
func (x *RestoreCertificateAuthorityRequest) String() string
ReusableConfig
type ReusableConfig struct {
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
Values *ReusableConfigValues `protobuf:"bytes,2,opt,name=values,proto3" json:"values,omitempty"`
Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
CreateTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
Labels map[string]string "" /* 153 byte string literal not displayed */
}
A [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig] refers to a managed [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues]. Those, in turn, are used to describe certain fields of an X.509 certificate, such as the key usage fields, fields specific to CA certificates, certificate policy extensions and custom extensions.
func (*ReusableConfig) Descriptor
func (*ReusableConfig) Descriptor() ([]byte, []int)
Deprecated: Use ReusableConfig.ProtoReflect.Descriptor instead.
func (*ReusableConfig) GetCreateTime
func (x *ReusableConfig) GetCreateTime() *timestamppb.Timestamp
func (*ReusableConfig) GetDescription
func (x *ReusableConfig) GetDescription() string
func (*ReusableConfig) GetLabels
func (x *ReusableConfig) GetLabels() map[string]string
func (*ReusableConfig) GetName
func (x *ReusableConfig) GetName() string
func (*ReusableConfig) GetUpdateTime
func (x *ReusableConfig) GetUpdateTime() *timestamppb.Timestamp
func (*ReusableConfig) GetValues
func (x *ReusableConfig) GetValues() *ReusableConfigValues
func (*ReusableConfig) ProtoMessage
func (*ReusableConfig) ProtoMessage()
func (*ReusableConfig) ProtoReflect
func (x *ReusableConfig) ProtoReflect() protoreflect.Message
func (*ReusableConfig) Reset
func (x *ReusableConfig) Reset()
func (*ReusableConfig) String
func (x *ReusableConfig) String() string
ReusableConfigValues
type ReusableConfigValues struct {
// Optional. Indicates the intended use for keys that correspond to a certificate.
KeyUsage *KeyUsage `protobuf:"bytes,1,opt,name=key_usage,json=keyUsage,proto3" json:"key_usage,omitempty"`
// Optional. Describes options in this [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues] that are
// relevant in a CA certificate.
CaOptions *ReusableConfigValues_CaOptions `protobuf:"bytes,2,opt,name=ca_options,json=caOptions,proto3" json:"ca_options,omitempty"`
// Optional. Describes the X.509 certificate policy object identifiers, per
// https://tools.ietf.org/html/rfc5280#section-4.2.1.4.
PolicyIds []*ObjectId `protobuf:"bytes,3,rep,name=policy_ids,json=policyIds,proto3" json:"policy_ids,omitempty"`
// Optional. Describes Online Certificate Status Protocol (OCSP) endpoint addresses
// that appear in the "Authority Information Access" extension in the
// certificate.
AiaOcspServers []string `protobuf:"bytes,4,rep,name=aia_ocsp_servers,json=aiaOcspServers,proto3" json:"aia_ocsp_servers,omitempty"`
// Optional. Describes custom X.509 extensions.
AdditionalExtensions []*X509Extension `protobuf:"bytes,5,rep,name=additional_extensions,json=additionalExtensions,proto3" json:"additional_extensions,omitempty"`
// contains filtered or unexported fields
}
A [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues] is used to describe certain fields of an X.509 certificate, such as the key usage fields, fields specific to CA certificates, certificate policy extensions and custom extensions.
func (*ReusableConfigValues) Descriptor
func (*ReusableConfigValues) Descriptor() ([]byte, []int)
Deprecated: Use ReusableConfigValues.ProtoReflect.Descriptor instead.
func (*ReusableConfigValues) GetAdditionalExtensions
func (x *ReusableConfigValues) GetAdditionalExtensions() []*X509Extension
func (*ReusableConfigValues) GetAiaOcspServers
func (x *ReusableConfigValues) GetAiaOcspServers() []string
func (*ReusableConfigValues) GetCaOptions
func (x *ReusableConfigValues) GetCaOptions() *ReusableConfigValues_CaOptions
func (*ReusableConfigValues) GetKeyUsage
func (x *ReusableConfigValues) GetKeyUsage() *KeyUsage
func (*ReusableConfigValues) GetPolicyIds
func (x *ReusableConfigValues) GetPolicyIds() []*ObjectId
func (*ReusableConfigValues) ProtoMessage
func (*ReusableConfigValues) ProtoMessage()
func (*ReusableConfigValues) ProtoReflect
func (x *ReusableConfigValues) ProtoReflect() protoreflect.Message
func (*ReusableConfigValues) Reset
func (x *ReusableConfigValues) Reset()
func (*ReusableConfigValues) String
func (x *ReusableConfigValues) String() string
ReusableConfigValues_CaOptions
type ReusableConfigValues_CaOptions struct {
// Optional. Refers to the "CA" X.509 extension, which is a boolean value. When this
// value is missing, the extension will be omitted from the CA certificate.
IsCa *wrapperspb.BoolValue `protobuf:"bytes,1,opt,name=is_ca,json=isCa,proto3" json:"is_ca,omitempty"`
// Optional. Refers to the path length restriction X.509 extension. For a CA
// certificate, this value describes the depth of subordinate CA
// certificates that are allowed.
// If this value is less than 0, the request will fail.
// If this value is missing, the max path length will be omitted from the
// CA certificate.
MaxIssuerPathLength *wrapperspb.Int32Value `protobuf:"bytes,2,opt,name=max_issuer_path_length,json=maxIssuerPathLength,proto3" json:"max_issuer_path_length,omitempty"`
// contains filtered or unexported fields
}
Describes values that are relevant in a CA certificate.
func (*ReusableConfigValues_CaOptions) Descriptor
func (*ReusableConfigValues_CaOptions) Descriptor() ([]byte, []int)
Deprecated: Use ReusableConfigValues_CaOptions.ProtoReflect.Descriptor instead.
func (*ReusableConfigValues_CaOptions) GetIsCa
func (x *ReusableConfigValues_CaOptions) GetIsCa() *wrapperspb.BoolValue
func (*ReusableConfigValues_CaOptions) GetMaxIssuerPathLength
func (x *ReusableConfigValues_CaOptions) GetMaxIssuerPathLength() *wrapperspb.Int32Value
func (*ReusableConfigValues_CaOptions) ProtoMessage
func (*ReusableConfigValues_CaOptions) ProtoMessage()
func (*ReusableConfigValues_CaOptions) ProtoReflect
func (x *ReusableConfigValues_CaOptions) ProtoReflect() protoreflect.Message
func (*ReusableConfigValues_CaOptions) Reset
func (x *ReusableConfigValues_CaOptions) Reset()
func (*ReusableConfigValues_CaOptions) String
func (x *ReusableConfigValues_CaOptions) String() string
ReusableConfigWrapper
type ReusableConfigWrapper struct {
// Reusable or inline config values.
//
// Types that are assignable to ConfigValues:
//
// *ReusableConfigWrapper_ReusableConfig
// *ReusableConfigWrapper_ReusableConfigValues
ConfigValues isReusableConfigWrapper_ConfigValues `protobuf_oneof:"config_values"`
// contains filtered or unexported fields
}
A [ReusableConfigWrapper][google.cloud.security.privateca.v1beta1.ReusableConfigWrapper] describes values that may assist in creating an X.509 certificate, or a reference to a pre-defined set of values.
func (*ReusableConfigWrapper) Descriptor
func (*ReusableConfigWrapper) Descriptor() ([]byte, []int)
Deprecated: Use ReusableConfigWrapper.ProtoReflect.Descriptor instead.
func (*ReusableConfigWrapper) GetConfigValues
func (m *ReusableConfigWrapper) GetConfigValues() isReusableConfigWrapper_ConfigValues
func (*ReusableConfigWrapper) GetReusableConfig
func (x *ReusableConfigWrapper) GetReusableConfig() string
func (*ReusableConfigWrapper) GetReusableConfigValues
func (x *ReusableConfigWrapper) GetReusableConfigValues() *ReusableConfigValues
func (*ReusableConfigWrapper) ProtoMessage
func (*ReusableConfigWrapper) ProtoMessage()
func (*ReusableConfigWrapper) ProtoReflect
func (x *ReusableConfigWrapper) ProtoReflect() protoreflect.Message
func (*ReusableConfigWrapper) Reset
func (x *ReusableConfigWrapper) Reset()
func (*ReusableConfigWrapper) String
func (x *ReusableConfigWrapper) String() string
ReusableConfigWrapper_ReusableConfig
type ReusableConfigWrapper_ReusableConfig struct {
// Required. A resource path to a [ReusableConfig][google.cloud.security.privateca.v1beta1.ReusableConfig] in the format
// `projects/*/locations/*/reusableConfigs/*`.
ReusableConfig string `protobuf:"bytes,1,opt,name=reusable_config,json=reusableConfig,proto3,oneof"`
}
ReusableConfigWrapper_ReusableConfigValues
type ReusableConfigWrapper_ReusableConfigValues struct {
// Required. A user-specified inline [ReusableConfigValues][google.cloud.security.privateca.v1beta1.ReusableConfigValues].
ReusableConfigValues *ReusableConfigValues `protobuf:"bytes,2,opt,name=reusable_config_values,json=reusableConfigValues,proto3,oneof"`
}
RevocationReason
type RevocationReason int32
A [RevocationReason][google.cloud.security.privateca.v1beta1.RevocationReason] indicates whether a [Certificate][google.cloud.security.privateca.v1beta1.Certificate] has been revoked, and the reason for revocation. These correspond to standard revocation reasons from RFC 5280. Note that the enum labels and values in this definition are not the same ASN.1 values defined in RFC 5280. These values will be translated to the correct ASN.1 values when a CRL is created.
RevocationReason_REVOCATION_REASON_UNSPECIFIED, RevocationReason_KEY_COMPROMISE, RevocationReason_CERTIFICATE_AUTHORITY_COMPROMISE, RevocationReason_AFFILIATION_CHANGED, RevocationReason_SUPERSEDED, RevocationReason_CESSATION_OF_OPERATION, RevocationReason_CERTIFICATE_HOLD, RevocationReason_PRIVILEGE_WITHDRAWN, RevocationReason_ATTRIBUTE_AUTHORITY_COMPROMISE
const (
// Default unspecified value. This value does indicate that a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]
// has been revoked, but that a reason has not been recorded.
RevocationReason_REVOCATION_REASON_UNSPECIFIED RevocationReason = 0
// Key material for this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] may have leaked.
RevocationReason_KEY_COMPROMISE RevocationReason = 1
// The key material for a certificate authority in the issuing path may have
// leaked.
RevocationReason_CERTIFICATE_AUTHORITY_COMPROMISE RevocationReason = 2
// The subject or other attributes in this [Certificate][google.cloud.security.privateca.v1beta1.Certificate] have changed.
RevocationReason_AFFILIATION_CHANGED RevocationReason = 3
// This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] has been superseded.
RevocationReason_SUPERSEDED RevocationReason = 4
// This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] or entities in the issuing path have ceased to
// operate.
RevocationReason_CESSATION_OF_OPERATION RevocationReason = 5
// This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] should not be considered valid, it is expected that it
// may become valid in the future.
RevocationReason_CERTIFICATE_HOLD RevocationReason = 6
// This [Certificate][google.cloud.security.privateca.v1beta1.Certificate] no longer has permission to assert the listed
// attributes.
RevocationReason_PRIVILEGE_WITHDRAWN RevocationReason = 7
// The authority which determines appropriate attributes for a [Certificate][google.cloud.security.privateca.v1beta1.Certificate]
// may have been compromised.
RevocationReason_ATTRIBUTE_AUTHORITY_COMPROMISE RevocationReason = 8
)
func (RevocationReason) Descriptor
func (RevocationReason) Descriptor() protoreflect.EnumDescriptor
func (RevocationReason) Enum
func (x RevocationReason) Enum() *RevocationReason
func (RevocationReason) EnumDescriptor
func (RevocationReason) EnumDescriptor() ([]byte, []int)
Deprecated: Use RevocationReason.Descriptor instead.
func (RevocationReason) Number
func (x RevocationReason) Number() protoreflect.EnumNumber
func (RevocationReason) String
func (x RevocationReason) String() string
func (RevocationReason) Type
func (RevocationReason) Type() protoreflect.EnumType
RevokeCertificateRequest
type RevokeCertificateRequest struct {
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
Reason RevocationReason "" /* 128 byte string literal not displayed */
RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
}
Request message for [CertificateAuthorityService.RevokeCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.RevokeCertificate].
func (*RevokeCertificateRequest) Descriptor
func (*RevokeCertificateRequest) Descriptor() ([]byte, []int)
Deprecated: Use RevokeCertificateRequest.ProtoReflect.Descriptor instead.
func (*RevokeCertificateRequest) GetName
func (x *RevokeCertificateRequest) GetName() string
func (*RevokeCertificateRequest) GetReason
func (x *RevokeCertificateRequest) GetReason() RevocationReason
func (*RevokeCertificateRequest) GetRequestId
func (x *RevokeCertificateRequest) GetRequestId() string
func (*RevokeCertificateRequest) ProtoMessage
func (*RevokeCertificateRequest) ProtoMessage()
func (*RevokeCertificateRequest) ProtoReflect
func (x *RevokeCertificateRequest) ProtoReflect() protoreflect.Message
func (*RevokeCertificateRequest) Reset
func (x *RevokeCertificateRequest) Reset()
func (*RevokeCertificateRequest) String
func (x *RevokeCertificateRequest) String() string
ScheduleDeleteCertificateAuthorityRequest
type ScheduleDeleteCertificateAuthorityRequest struct {
// Required. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
// format `projects/*/locations/*/certificateAuthorities/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,2,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.ScheduleDeleteCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.ScheduleDeleteCertificateAuthority].
func (*ScheduleDeleteCertificateAuthorityRequest) Descriptor
func (*ScheduleDeleteCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use ScheduleDeleteCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*ScheduleDeleteCertificateAuthorityRequest) GetName
func (x *ScheduleDeleteCertificateAuthorityRequest) GetName() string
func (*ScheduleDeleteCertificateAuthorityRequest) GetRequestId
func (x *ScheduleDeleteCertificateAuthorityRequest) GetRequestId() string
func (*ScheduleDeleteCertificateAuthorityRequest) ProtoMessage
func (*ScheduleDeleteCertificateAuthorityRequest) ProtoMessage()
func (*ScheduleDeleteCertificateAuthorityRequest) ProtoReflect
func (x *ScheduleDeleteCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*ScheduleDeleteCertificateAuthorityRequest) Reset
func (x *ScheduleDeleteCertificateAuthorityRequest) Reset()
func (*ScheduleDeleteCertificateAuthorityRequest) String
func (x *ScheduleDeleteCertificateAuthorityRequest) String() string
Subject
type Subject struct {
// The country code of the subject.
CountryCode string `protobuf:"bytes,1,opt,name=country_code,json=countryCode,proto3" json:"country_code,omitempty"`
// The organization of the subject.
Organization string `protobuf:"bytes,2,opt,name=organization,proto3" json:"organization,omitempty"`
// The organizational_unit of the subject.
OrganizationalUnit string `protobuf:"bytes,3,opt,name=organizational_unit,json=organizationalUnit,proto3" json:"organizational_unit,omitempty"`
// The locality or city of the subject.
Locality string `protobuf:"bytes,4,opt,name=locality,proto3" json:"locality,omitempty"`
// The province, territory, or regional state of the subject.
Province string `protobuf:"bytes,5,opt,name=province,proto3" json:"province,omitempty"`
// The street address of the subject.
StreetAddress string `protobuf:"bytes,6,opt,name=street_address,json=streetAddress,proto3" json:"street_address,omitempty"`
// The postal code of the subject.
PostalCode string `protobuf:"bytes,7,opt,name=postal_code,json=postalCode,proto3" json:"postal_code,omitempty"`
// contains filtered or unexported fields
}
[Subject][google.cloud.security.privateca.v1beta1.Subject] describes parts of a distinguished name that, in turn, describes the subject of the certificate.
func (*Subject) Descriptor
Deprecated: Use Subject.ProtoReflect.Descriptor instead.
func (*Subject) GetCountryCode
func (*Subject) GetLocality
func (*Subject) GetOrganization
func (*Subject) GetOrganizationalUnit
func (*Subject) GetPostalCode
func (*Subject) GetProvince
func (*Subject) GetStreetAddress
func (*Subject) ProtoMessage
func (*Subject) ProtoMessage()
func (*Subject) ProtoReflect
func (x *Subject) ProtoReflect() protoreflect.Message
func (*Subject) Reset
func (x *Subject) Reset()
func (*Subject) String
SubjectAltNames
type SubjectAltNames struct {
// Contains only valid, fully-qualified host names.
DnsNames []string `protobuf:"bytes,1,rep,name=dns_names,json=dnsNames,proto3" json:"dns_names,omitempty"`
// Contains only valid RFC 3986 URIs.
Uris []string `protobuf:"bytes,2,rep,name=uris,proto3" json:"uris,omitempty"`
// Contains only valid RFC 2822 E-mail addresses.
EmailAddresses []string `protobuf:"bytes,3,rep,name=email_addresses,json=emailAddresses,proto3" json:"email_addresses,omitempty"`
// Contains only valid 32-bit IPv4 addresses or RFC 4291 IPv6 addresses.
IpAddresses []string `protobuf:"bytes,4,rep,name=ip_addresses,json=ipAddresses,proto3" json:"ip_addresses,omitempty"`
// Contains additional subject alternative name values.
CustomSans []*X509Extension `protobuf:"bytes,5,rep,name=custom_sans,json=customSans,proto3" json:"custom_sans,omitempty"`
// contains filtered or unexported fields
}
[SubjectAltNames][google.cloud.security.privateca.v1beta1.SubjectAltNames] corresponds to a more modern way of listing what the asserted identity is in a certificate (i.e., compared to the "common name" in the distinguished name).
func (*SubjectAltNames) Descriptor
func (*SubjectAltNames) Descriptor() ([]byte, []int)
Deprecated: Use SubjectAltNames.ProtoReflect.Descriptor instead.
func (*SubjectAltNames) GetCustomSans
func (x *SubjectAltNames) GetCustomSans() []*X509Extension
func (*SubjectAltNames) GetDnsNames
func (x *SubjectAltNames) GetDnsNames() []string
func (*SubjectAltNames) GetEmailAddresses
func (x *SubjectAltNames) GetEmailAddresses() []string
func (*SubjectAltNames) GetIpAddresses
func (x *SubjectAltNames) GetIpAddresses() []string
func (*SubjectAltNames) GetUris
func (x *SubjectAltNames) GetUris() []string
func (*SubjectAltNames) ProtoMessage
func (*SubjectAltNames) ProtoMessage()
func (*SubjectAltNames) ProtoReflect
func (x *SubjectAltNames) ProtoReflect() protoreflect.Message
func (*SubjectAltNames) Reset
func (x *SubjectAltNames) Reset()
func (*SubjectAltNames) String
func (x *SubjectAltNames) String() string
SubordinateConfig
type SubordinateConfig struct {
// Types that are assignable to SubordinateConfig:
//
// *SubordinateConfig_CertificateAuthority
// *SubordinateConfig_PemIssuerChain
SubordinateConfig isSubordinateConfig_SubordinateConfig `protobuf_oneof:"subordinate_config"`
// contains filtered or unexported fields
}
Describes a subordinate CA's issuers. This is either a resource path to a known issuing [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], or a PEM issuer certificate chain.
func (*SubordinateConfig) Descriptor
func (*SubordinateConfig) Descriptor() ([]byte, []int)
Deprecated: Use SubordinateConfig.ProtoReflect.Descriptor instead.
func (*SubordinateConfig) GetCertificateAuthority
func (x *SubordinateConfig) GetCertificateAuthority() string
func (*SubordinateConfig) GetPemIssuerChain
func (x *SubordinateConfig) GetPemIssuerChain() *SubordinateConfig_SubordinateConfigChain
func (*SubordinateConfig) GetSubordinateConfig
func (m *SubordinateConfig) GetSubordinateConfig() isSubordinateConfig_SubordinateConfig
func (*SubordinateConfig) ProtoMessage
func (*SubordinateConfig) ProtoMessage()
func (*SubordinateConfig) ProtoReflect
func (x *SubordinateConfig) ProtoReflect() protoreflect.Message
func (*SubordinateConfig) Reset
func (x *SubordinateConfig) Reset()
func (*SubordinateConfig) String
func (x *SubordinateConfig) String() string
SubordinateConfig_CertificateAuthority
type SubordinateConfig_CertificateAuthority struct {
// Required. This can refer to a [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the same project that
// was used to create a subordinate [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]. This field
// is used for information and usability purposes only. The resource name
// is in the format `projects/*/locations/*/certificateAuthorities/*`.
CertificateAuthority string `protobuf:"bytes,1,opt,name=certificate_authority,json=certificateAuthority,proto3,oneof"`
}
SubordinateConfig_PemIssuerChain
type SubordinateConfig_PemIssuerChain struct {
// Required. Contains the PEM certificate chain for the issuers of this
// [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], but not pem certificate for this CA itself.
PemIssuerChain *SubordinateConfig_SubordinateConfigChain `protobuf:"bytes,2,opt,name=pem_issuer_chain,json=pemIssuerChain,proto3,oneof"`
}
SubordinateConfig_SubordinateConfigChain
type SubordinateConfig_SubordinateConfigChain struct {
// Required. Expected to be in leaf-to-root order according to RFC 5246.
PemCertificates []string `protobuf:"bytes,1,rep,name=pem_certificates,json=pemCertificates,proto3" json:"pem_certificates,omitempty"`
// contains filtered or unexported fields
}
This message describes a subordinate CA's issuer certificate chain. This wrapper exists for compatibility reasons.
func (*SubordinateConfig_SubordinateConfigChain) Descriptor
func (*SubordinateConfig_SubordinateConfigChain) Descriptor() ([]byte, []int)
Deprecated: Use SubordinateConfig_SubordinateConfigChain.ProtoReflect.Descriptor instead.
func (*SubordinateConfig_SubordinateConfigChain) GetPemCertificates
func (x *SubordinateConfig_SubordinateConfigChain) GetPemCertificates() []string
func (*SubordinateConfig_SubordinateConfigChain) ProtoMessage
func (*SubordinateConfig_SubordinateConfigChain) ProtoMessage()
func (*SubordinateConfig_SubordinateConfigChain) ProtoReflect
func (x *SubordinateConfig_SubordinateConfigChain) ProtoReflect() protoreflect.Message
func (*SubordinateConfig_SubordinateConfigChain) Reset
func (x *SubordinateConfig_SubordinateConfigChain) Reset()
func (*SubordinateConfig_SubordinateConfigChain) String
func (x *SubordinateConfig_SubordinateConfigChain) String() string
UnimplementedCertificateAuthorityServiceServer
type UnimplementedCertificateAuthorityServiceServer struct {
}
UnimplementedCertificateAuthorityServiceServer can be embedded to have forward compatible implementations.
func (*UnimplementedCertificateAuthorityServiceServer) ActivateCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) ActivateCertificateAuthority(context.Context, *ActivateCertificateAuthorityRequest) (*longrunning.Operation, error)
func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificate
func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificate(context.Context, *CreateCertificateRequest) (*Certificate, error)
func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) CreateCertificateAuthority(context.Context, *CreateCertificateAuthorityRequest) (*longrunning.Operation, error)
func (*UnimplementedCertificateAuthorityServiceServer) DisableCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) DisableCertificateAuthority(context.Context, *DisableCertificateAuthorityRequest) (*longrunning.Operation, error)
func (*UnimplementedCertificateAuthorityServiceServer) EnableCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) EnableCertificateAuthority(context.Context, *EnableCertificateAuthorityRequest) (*longrunning.Operation, error)
func (*UnimplementedCertificateAuthorityServiceServer) FetchCertificateAuthorityCsr
func (*UnimplementedCertificateAuthorityServiceServer) FetchCertificateAuthorityCsr(context.Context, *FetchCertificateAuthorityCsrRequest) (*FetchCertificateAuthorityCsrResponse, error)
func (*UnimplementedCertificateAuthorityServiceServer) GetCertificate
func (*UnimplementedCertificateAuthorityServiceServer) GetCertificate(context.Context, *GetCertificateRequest) (*Certificate, error)
func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateAuthority(context.Context, *GetCertificateAuthorityRequest) (*CertificateAuthority, error)
func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateRevocationList
func (*UnimplementedCertificateAuthorityServiceServer) GetCertificateRevocationList(context.Context, *GetCertificateRevocationListRequest) (*CertificateRevocationList, error)
func (*UnimplementedCertificateAuthorityServiceServer) GetReusableConfig
func (*UnimplementedCertificateAuthorityServiceServer) GetReusableConfig(context.Context, *GetReusableConfigRequest) (*ReusableConfig, error)
func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateAuthorities
func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateAuthorities(context.Context, *ListCertificateAuthoritiesRequest) (*ListCertificateAuthoritiesResponse, error)
func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateRevocationLists
func (*UnimplementedCertificateAuthorityServiceServer) ListCertificateRevocationLists(context.Context, *ListCertificateRevocationListsRequest) (*ListCertificateRevocationListsResponse, error)
func (*UnimplementedCertificateAuthorityServiceServer) ListCertificates
func (*UnimplementedCertificateAuthorityServiceServer) ListCertificates(context.Context, *ListCertificatesRequest) (*ListCertificatesResponse, error)
func (*UnimplementedCertificateAuthorityServiceServer) ListReusableConfigs
func (*UnimplementedCertificateAuthorityServiceServer) ListReusableConfigs(context.Context, *ListReusableConfigsRequest) (*ListReusableConfigsResponse, error)
func (*UnimplementedCertificateAuthorityServiceServer) RestoreCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) RestoreCertificateAuthority(context.Context, *RestoreCertificateAuthorityRequest) (*longrunning.Operation, error)
func (*UnimplementedCertificateAuthorityServiceServer) RevokeCertificate
func (*UnimplementedCertificateAuthorityServiceServer) RevokeCertificate(context.Context, *RevokeCertificateRequest) (*Certificate, error)
func (*UnimplementedCertificateAuthorityServiceServer) ScheduleDeleteCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) ScheduleDeleteCertificateAuthority(context.Context, *ScheduleDeleteCertificateAuthorityRequest) (*longrunning.Operation, error)
func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificate
func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificate(context.Context, *UpdateCertificateRequest) (*Certificate, error)
func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateAuthority
func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateAuthority(context.Context, *UpdateCertificateAuthorityRequest) (*longrunning.Operation, error)
func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateRevocationList
func (*UnimplementedCertificateAuthorityServiceServer) UpdateCertificateRevocationList(context.Context, *UpdateCertificateRevocationListRequest) (*longrunning.Operation, error)
UpdateCertificateAuthorityRequest
type UpdateCertificateAuthorityRequest struct {
// Required. [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] with updated values.
CertificateAuthority *CertificateAuthority `protobuf:"bytes,1,opt,name=certificate_authority,json=certificateAuthority,proto3" json:"certificate_authority,omitempty"`
// Required. A list of fields to be updated in this request.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.UpdateCertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.UpdateCertificateAuthority].
func (*UpdateCertificateAuthorityRequest) Descriptor
func (*UpdateCertificateAuthorityRequest) Descriptor() ([]byte, []int)
Deprecated: Use UpdateCertificateAuthorityRequest.ProtoReflect.Descriptor instead.
func (*UpdateCertificateAuthorityRequest) GetCertificateAuthority
func (x *UpdateCertificateAuthorityRequest) GetCertificateAuthority() *CertificateAuthority
func (*UpdateCertificateAuthorityRequest) GetRequestId
func (x *UpdateCertificateAuthorityRequest) GetRequestId() string
func (*UpdateCertificateAuthorityRequest) GetUpdateMask
func (x *UpdateCertificateAuthorityRequest) GetUpdateMask() *fieldmaskpb.FieldMask
func (*UpdateCertificateAuthorityRequest) ProtoMessage
func (*UpdateCertificateAuthorityRequest) ProtoMessage()
func (*UpdateCertificateAuthorityRequest) ProtoReflect
func (x *UpdateCertificateAuthorityRequest) ProtoReflect() protoreflect.Message
func (*UpdateCertificateAuthorityRequest) Reset
func (x *UpdateCertificateAuthorityRequest) Reset()
func (*UpdateCertificateAuthorityRequest) String
func (x *UpdateCertificateAuthorityRequest) String() string
UpdateCertificateRequest
type UpdateCertificateRequest struct {
// Required. [Certificate][google.cloud.security.privateca.v1beta1.Certificate] with updated values.
Certificate *Certificate `protobuf:"bytes,1,opt,name=certificate,proto3" json:"certificate,omitempty"`
// Required. A list of fields to be updated in this request.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// Optional. An ID to identify requests. Specify a unique request ID so that if you must
// retry your request, the server will know to ignore the request if it has
// already been completed. The server will guarantee that for at least 60
// minutes since the first request.
//
// For example, consider a situation where you make an initial request and t
// he request times out. If you make the request again with the same request
// ID, the server can check if original operation with the same request ID
// was received, and if so, will ignore the second request. This prevents
// clients from accidentally creating duplicate commitments.
//
// The request ID must be a valid UUID with the exception that zero UUID is
// not supported (00000000-0000-0000-0000-000000000000).
RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
// contains filtered or unexported fields
}
Request message for [CertificateAuthorityService.UpdateCertificate][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.UpdateCertificate].
func (*UpdateCertificateRequest) Descriptor
func (*UpdateCertificateRequest) Descriptor() ([]byte, []int)
Deprecated: Use UpdateCertificateRequest.ProtoReflect.Descriptor instead.
func (*UpdateCertificateRequest) GetCertificate
func (x *UpdateCertificateRequest) GetCertificate() *Certificate
func (*UpdateCertificateRequest) GetRequestId
func (x *UpdateCertificateRequest) GetRequestId() string
func (*UpdateCertificateRequest) GetUpdateMask
func (x *UpdateCertificateRequest) GetUpdateMask() *fieldmaskpb.FieldMask
func (*UpdateCertificateRequest) ProtoMessage
func (*UpdateCertificateRequest) ProtoMessage()
func (*UpdateCertificateRequest) ProtoReflect
func (x *UpdateCertificateRequest) ProtoReflect() protoreflect.Message
func (*UpdateCertificateRequest) Reset
func (x *UpdateCertificateRequest) Reset()
func (*UpdateCertificateRequest) String
func (x *UpdateCertificateRequest) String() string
UpdateCertificateRevocationListRequest
type UpdateCertificateRevocationListRequest struct {
CertificateRevocationList *CertificateRevocationList "" /* 138 byte string literal not displayed */
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
RequestId string `protobuf:"bytes,3,opt,name=request_id,json=requestId,proto3" json:"request_id,omitempty"`
}
Request message for [CertificateAuthorityService.UpdateCertificateRevocationList][google.cloud.security.privateca.v1beta1.CertificateAuthorityService.UpdateCertificateRevocationList].
func (*UpdateCertificateRevocationListRequest) Descriptor
func (*UpdateCertificateRevocationListRequest) Descriptor() ([]byte, []int)
Deprecated: Use UpdateCertificateRevocationListRequest.ProtoReflect.Descriptor instead.
func (*UpdateCertificateRevocationListRequest) GetCertificateRevocationList
func (x *UpdateCertificateRevocationListRequest) GetCertificateRevocationList() *CertificateRevocationList
func (*UpdateCertificateRevocationListRequest) GetRequestId
func (x *UpdateCertificateRevocationListRequest) GetRequestId() string
func (*UpdateCertificateRevocationListRequest) GetUpdateMask
func (x *UpdateCertificateRevocationListRequest) GetUpdateMask() *fieldmaskpb.FieldMask
func (*UpdateCertificateRevocationListRequest) ProtoMessage
func (*UpdateCertificateRevocationListRequest) ProtoMessage()
func (*UpdateCertificateRevocationListRequest) ProtoReflect
func (x *UpdateCertificateRevocationListRequest) ProtoReflect() protoreflect.Message
func (*UpdateCertificateRevocationListRequest) Reset
func (x *UpdateCertificateRevocationListRequest) Reset()
func (*UpdateCertificateRevocationListRequest) String
func (x *UpdateCertificateRevocationListRequest) String() string
X509Extension
type X509Extension struct {
// Required. The OID for this X.509 extension.
ObjectId *ObjectId `protobuf:"bytes,1,opt,name=object_id,json=objectId,proto3" json:"object_id,omitempty"`
// Required. Indicates whether or not this extension is critical (i.e., if the client
// does not know how to handle this extension, the client should consider this
// to be an error).
Critical bool `protobuf:"varint,2,opt,name=critical,proto3" json:"critical,omitempty"`
// Required. The value of this X.509 extension.
Value []byte `protobuf:"bytes,3,opt,name=value,proto3" json:"value,omitempty"`
// contains filtered or unexported fields
}
An [X509Extension][google.cloud.security.privateca.v1beta1.X509Extension] specifies an X.509 extension, which may be used in different parts of X.509 objects like certificates, CSRs, and CRLs.
func (*X509Extension) Descriptor
func (*X509Extension) Descriptor() ([]byte, []int)
Deprecated: Use X509Extension.ProtoReflect.Descriptor instead.
func (*X509Extension) GetCritical
func (x *X509Extension) GetCritical() bool
func (*X509Extension) GetObjectId
func (x *X509Extension) GetObjectId() *ObjectId
func (*X509Extension) GetValue
func (x *X509Extension) GetValue() []byte
func (*X509Extension) ProtoMessage
func (*X509Extension) ProtoMessage()
func (*X509Extension) ProtoReflect
func (x *X509Extension) ProtoReflect() protoreflect.Message
func (*X509Extension) Reset
func (x *X509Extension) Reset()
func (*X509Extension) String
func (x *X509Extension) String() string