API documentation for
An [admission rule][google.cloud.binaryauthorization.v1.AdmissionRule] specifies either that all container images used in a pod creation request must be attested to by one or more attestors, that all pod creations will be allowed, or that all pod creations will be denied.
Images matching an [admission allowlist pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern] are exempted from admission rules and will never block a pod creation.
An [admission allowlist pattern][google.cloud.binaryauthorization.v1.AdmissionWhitelistPattern] exempts images from checks by [admission rules][google.cloud.binaryauthorization.v1.AdmissionRule].
An attestor that attests to container image artifacts. An existing attestor cannot be modified except where indicated.
An [attestor public key][google.cloud.binaryauthorization.v1.AttestorPublicKey] that will be used to verify attestations signed by this attestor.
This message has
oneof_ fields (mutually exclusive fields).
For each oneof, at most one member field can be set at the same time.
Setting any member of the oneof automatically clears all other
Request message for [BinauthzManagementService.CreateAttestor].
Request message for [BinauthzManagementService.DeleteAttestor].
Request message for [BinauthzManagementService.GetAttestor].
Request message for [BinauthzManagementService.GetPolicy].
Request to read the current system policy.
Request message for [BinauthzManagementService.ListAttestors].
Response message for [BinauthzManagementService.ListAttestors].
A public key in the PkixPublicKey format (see https://tools.ietf.org/html/rfc5280#section-188.8.131.52 for details). Public keys of this type are typically textually encoded using the PEM format.
A policy for container image binary authorization.
Request message for [BinauthzManagementService.UpdateAttestor].
Request message for [BinauthzManagementService.UpdatePolicy].
An [user owned Grafeas note][google.cloud.binaryauthorization.v1.UserOwnedGrafeasNote] references a Grafeas Attestation.Authority Note created by the user.
Request message for ValidationHelperV1.ValidateAttestationOccurrence.
Response message for ValidationHelperV1.ValidateAttestationOccurrence.