Package io.grafeas.v1beta1.attestation (2.14.0)

Classes

Attestation

Occurrence that represents a single "attestation". The authenticity of an attestation can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is sufficient to establish trust. In this circumstance, the authority to which this attestation is attached is primarily useful for look-up (how to find this attestation if you already know the authority and artifact to be verified) and intent (which authority was this attestation intended to sign for).

Protobuf type grafeas.v1beta1.attestation.Attestation

Attestation.Builder

Occurrence that represents a single "attestation". The authenticity of an attestation can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is sufficient to establish trust. In this circumstance, the authority to which this attestation is attached is primarily useful for look-up (how to find this attestation if you already know the authority and artifact to be verified) and intent (which authority was this attestation intended to sign for).

Protobuf type grafeas.v1beta1.attestation.Attestation

AttestationOuterClass

Authority

Note kind that represents a logical attestation "role" or "authority". For example, an organization might have one Authority for "QA" and one for "build". This note is intended to act strictly as a grouping mechanism for the attached occurrences (Attestations). This grouping mechanism also provides a security boundary, since IAM ACLs gate the ability for a principle to attach an occurrence to a given note. It also provides a single point of lookup to find all attached attestation occurrences, even if they don't all live in the same project.

Protobuf type grafeas.v1beta1.attestation.Authority

Authority.Builder

Note kind that represents a logical attestation "role" or "authority". For example, an organization might have one Authority for "QA" and one for "build". This note is intended to act strictly as a grouping mechanism for the attached occurrences (Attestations). This grouping mechanism also provides a security boundary, since IAM ACLs gate the ability for a principle to attach an occurrence to a given note. It also provides a single point of lookup to find all attached attestation occurrences, even if they don't all live in the same project.

Protobuf type grafeas.v1beta1.attestation.Authority

Authority.Hint

This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a UUID for security purposes) from "readable" names more suitable for debug output. Note that these hints should not be used to look up authorities in security sensitive contexts, such as when looking up attestations to verify.

Protobuf type grafeas.v1beta1.attestation.Authority.Hint

Authority.Hint.Builder

This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a UUID for security purposes) from "readable" names more suitable for debug output. Note that these hints should not be used to look up authorities in security sensitive contexts, such as when looking up attestations to verify.

Protobuf type grafeas.v1beta1.attestation.Authority.Hint

Details

Details of an attestation occurrence.

Protobuf type grafeas.v1beta1.attestation.Details

Details.Builder

Details of an attestation occurrence.

Protobuf type grafeas.v1beta1.attestation.Details

GenericSignedAttestation

An attestation wrapper that uses the Grafeas Signature message. This attestation must define the serialized_payload that the signatures verify and any metadata necessary to interpret that plaintext. The signatures should always be over the serialized_payload bytestring.

Protobuf type grafeas.v1beta1.attestation.GenericSignedAttestation

GenericSignedAttestation.Builder

An attestation wrapper that uses the Grafeas Signature message. This attestation must define the serialized_payload that the signatures verify and any metadata necessary to interpret that plaintext. The signatures should always be over the serialized_payload bytestring.

Protobuf type grafeas.v1beta1.attestation.GenericSignedAttestation

IamResourceName

AUTO-GENERATED DOCUMENTATION AND CLASS

IamResourceNames (deprecated)

Deprecated. This resource name class will be removed in the next major version.

AUTO-GENERATED DOCUMENTATION AND CLASS

NoteName

AUTO-GENERATED DOCUMENTATION AND CLASS

NoteName.Builder

Builder for NoteName.

OccurrenceName

AUTO-GENERATED DOCUMENTATION AND CLASS

OccurrenceName.Builder

Builder for OccurrenceName.

PgpSignedAttestation

An attestation wrapper with a PGP-compatible signature. This message only supports ATTACHED signatures, where the payload that is signed is included alongside the signature itself in the same file.

Protobuf type grafeas.v1beta1.attestation.PgpSignedAttestation

PgpSignedAttestation.Builder

An attestation wrapper with a PGP-compatible signature. This message only supports ATTACHED signatures, where the payload that is signed is included alongside the signature itself in the same file.

Protobuf type grafeas.v1beta1.attestation.PgpSignedAttestation

ProjectName

AUTO-GENERATED DOCUMENTATION AND CLASS

ProjectName.Builder

Builder for ProjectName.

ScanConfigName

AUTO-GENERATED DOCUMENTATION AND CLASS

ScanConfigName.Builder

Builder for ScanConfigName.

UntypedIamResourceName (deprecated)

Deprecated. This resource name class will be removed in the next major version.

AUTO-GENERATED DOCUMENTATION AND CLASS

Interfaces

AttestationOrBuilder

Authority.HintOrBuilder

AuthorityOrBuilder

DetailsOrBuilder

GenericSignedAttestationOrBuilder

PgpSignedAttestationOrBuilder

Enums

Attestation.SignatureCase

GenericSignedAttestation.ContentType

Type of the attestation plaintext that was signed.

Protobuf enum grafeas.v1beta1.attestation.GenericSignedAttestation.ContentType

PgpSignedAttestation.ContentType

Type (for example schema) of the attestation payload that was signed.

Protobuf enum grafeas.v1beta1.attestation.PgpSignedAttestation.ContentType

PgpSignedAttestation.KeyIdCase