Reference documentation and code samples for the Confidential Computing V1 API class Google::Cloud::ConfidentialComputing::V1::ConfidentialComputing::Rest::Client.
REST client for the ConfidentialComputing service.
Service describing handlers for resources
Inherits
- Object
Methods
.configure
def self.configure() { |config| ... } -> Client::Configuration
Configure the ConfidentialComputing Client class.
See Configuration for a description of the configuration fields.
- (config) — Configure the Client client.
- config (Client::Configuration)
# Modify the configuration for all ConfidentialComputing clients ::Google::Cloud::ConfidentialComputing::V1::ConfidentialComputing::Rest::Client.configure do |config| config.timeout = 10.0 end
#configure
def configure() { |config| ... } -> Client::Configuration
Configure the ConfidentialComputing Client instance.
The configuration is set to the derived mode, meaning that values can be changed, but structural changes (adding new fields, etc.) are not allowed. Structural changes should be made on Client.configure.
See Configuration for a description of the configuration fields.
- (config) — Configure the Client client.
- config (Client::Configuration)
#create_challenge
def create_challenge(request, options = nil) -> ::Google::Cloud::ConfidentialComputing::V1::Challenge
def create_challenge(parent: nil, challenge: nil) -> ::Google::Cloud::ConfidentialComputing::V1::Challenge
Creates a new Challenge in a given project and location.
def create_challenge(request, options = nil) -> ::Google::Cloud::ConfidentialComputing::V1::Challenge
create_challenge
via a request object, either of type
Google::Cloud::ConfidentialComputing::V1::CreateChallengeRequest or an equivalent Hash.
- request (::Google::Cloud::ConfidentialComputing::V1::CreateChallengeRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
- options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def create_challenge(parent: nil, challenge: nil) -> ::Google::Cloud::ConfidentialComputing::V1::Challenge
create_challenge
via keyword arguments. Note that at
least one keyword argument is required. To specify no parameters, or to keep all
the default parameter values, pass an empty Hash as a request object (see above).
-
parent (::String) — Required. The resource name of the location where the Challenge will be
used, in the format
projects/*/locations/*
. - challenge (::Google::Cloud::ConfidentialComputing::V1::Challenge, ::Hash) — Required. The Challenge to be created. Currently this field can be empty as all the Challenge fields are set by the server.
- (result, operation) — Access the result along with the TransportOperation object
- result (::Google::Cloud::ConfidentialComputing::V1::Challenge)
- operation (::Gapic::Rest::TransportOperation)
- (::Google::Cloud::Error) — if the REST call is aborted.
Basic example
require "google/cloud/confidential_computing/v1" # Create a client object. The client can be reused for multiple calls. client = Google::Cloud::ConfidentialComputing::V1::ConfidentialComputing::Rest::Client.new # Create a request. To set request fields, pass in keyword arguments. request = Google::Cloud::ConfidentialComputing::V1::CreateChallengeRequest.new # Call the create_challenge method. result = client.create_challenge request # The returned object is of type Google::Cloud::ConfidentialComputing::V1::Challenge. p result
#initialize
def initialize() { |config| ... } -> Client
Create a new ConfidentialComputing REST client object.
- (config) — Configure the ConfidentialComputing client.
- config (Client::Configuration)
- (Client) — a new instance of Client
# Create a client using the default configuration client = ::Google::Cloud::ConfidentialComputing::V1::ConfidentialComputing::Rest::Client.new # Create a client using a custom configuration client = ::Google::Cloud::ConfidentialComputing::V1::ConfidentialComputing::Rest::Client.new do |config| config.timeout = 10.0 end
#location_client
def location_client() -> Google::Cloud::Location::Locations::Rest::Client
Get the associated client for mix-in of the Locations.
- (Google::Cloud::Location::Locations::Rest::Client)
#universe_domain
def universe_domain() -> String
The effective universe domain
- (String)
#verify_attestation
def verify_attestation(request, options = nil) -> ::Google::Cloud::ConfidentialComputing::V1::VerifyAttestationResponse
def verify_attestation(td_ccel: nil, sev_snp_attestation: nil, challenge: nil, gcp_credentials: nil, tpm_attestation: nil, confidential_space_info: nil, token_options: nil) -> ::Google::Cloud::ConfidentialComputing::V1::VerifyAttestationResponse
Verifies the provided attestation info, returning a signed OIDC token.
def verify_attestation(request, options = nil) -> ::Google::Cloud::ConfidentialComputing::V1::VerifyAttestationResponse
verify_attestation
via a request object, either of type
VerifyAttestationRequest or an equivalent Hash.
- request (::Google::Cloud::ConfidentialComputing::V1::VerifyAttestationRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
- options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def verify_attestation(td_ccel: nil, sev_snp_attestation: nil, challenge: nil, gcp_credentials: nil, tpm_attestation: nil, confidential_space_info: nil, token_options: nil) -> ::Google::Cloud::ConfidentialComputing::V1::VerifyAttestationResponse
verify_attestation
via keyword arguments. Note that at
least one keyword argument is required. To specify no parameters, or to keep all
the default parameter values, pass an empty Hash as a request object (see above).
- td_ccel (::Google::Cloud::ConfidentialComputing::V1::TdxCcelAttestation, ::Hash) — Optional. A TDX with CCEL and RTMR Attestation Quote.
- sev_snp_attestation (::Google::Cloud::ConfidentialComputing::V1::SevSnpAttestation, ::Hash) — Optional. An SEV-SNP Attestation Report.
-
challenge (::String) — Required. The name of the Challenge whose nonce was used to generate the
attestation, in the format
projects/*/locations/*/challenges/*
. The provided Challenge will be consumed, and cannot be used again. - gcp_credentials (::Google::Cloud::ConfidentialComputing::V1::GcpCredentials, ::Hash) — Optional. Credentials used to populate the "emails" claim in the claims_token.
- tpm_attestation (::Google::Cloud::ConfidentialComputing::V1::TpmAttestation, ::Hash) — Required. The TPM-specific data provided by the attesting platform, used to populate any of the claims regarding platform state.
- confidential_space_info (::Google::Cloud::ConfidentialComputing::V1::ConfidentialSpaceInfo, ::Hash) — Optional. Optional information related to the Confidential Space TEE.
- token_options (::Google::Cloud::ConfidentialComputing::V1::TokenOptions, ::Hash) — Optional. A collection of optional, workload-specified claims that modify the token output.
- (result, operation) — Access the result along with the TransportOperation object
- result (::Google::Cloud::ConfidentialComputing::V1::VerifyAttestationResponse)
- operation (::Gapic::Rest::TransportOperation)
- (::Google::Cloud::Error) — if the REST call is aborted.
Basic example
require "google/cloud/confidential_computing/v1" # Create a client object. The client can be reused for multiple calls. client = Google::Cloud::ConfidentialComputing::V1::ConfidentialComputing::Rest::Client.new # Create a request. To set request fields, pass in keyword arguments. request = Google::Cloud::ConfidentialComputing::V1::VerifyAttestationRequest.new # Call the verify_attestation method. result = client.verify_attestation request # The returned object is of type Google::Cloud::ConfidentialComputing::V1::VerifyAttestationResponse. p result