Package io.kubernetes.client.proto

Class V1beta1Certificates.CertificateSigningRequestSpec.Builder

java.lang.Object
com.google.protobuf.AbstractMessageLite.Builder
com.google.protobuf.AbstractMessage.Builder<BuilderType>
com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>
io.kubernetes.client.proto.V1beta1Certificates.CertificateSigningRequestSpec.Builder
All Implemented Interfaces:
com.google.protobuf.Message.Builder, com.google.protobuf.MessageLite.Builder, com.google.protobuf.MessageLiteOrBuilder, com.google.protobuf.MessageOrBuilder, V1beta1Certificates.CertificateSigningRequestSpecOrBuilder, Cloneable
Enclosing class:
V1beta1Certificates.CertificateSigningRequestSpec
public static final class V1beta1Certificates.CertificateSigningRequestSpec.Builder extends com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder> implements V1beta1Certificates.CertificateSigningRequestSpecOrBuilder
 CertificateSigningRequestSpec contains the certificate request.
Protobuf type k8s.io.api.certificates.v1beta1.CertificateSigningRequestSpec

  • Method Details

    • getDescriptor

      public static final com.google.protobuf.Descriptors.Descriptor getDescriptor()

    • internalGetMapField

      protected com.google.protobuf.MapField internalGetMapField(int number)
      Overrides:
      internalGetMapField in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • internalGetMutableMapField

      protected com.google.protobuf.MapField internalGetMutableMapField(int number)
      Overrides:
      internalGetMutableMapField in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • internalGetFieldAccessorTable

      protected com.google.protobuf.GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
      Specified by:
      internalGetFieldAccessorTable in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • clear

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clear()
      Specified by:
      clear in interface com.google.protobuf.Message.Builder
      Specified by:
      clear in interface com.google.protobuf.MessageLite.Builder
      Overrides:
      clear in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • getDescriptorForType

      public com.google.protobuf.Descriptors.Descriptor getDescriptorForType()
      Specified by:
      getDescriptorForType in interface com.google.protobuf.Message.Builder
      Specified by:
      getDescriptorForType in interface com.google.protobuf.MessageOrBuilder
      Overrides:
      getDescriptorForType in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • getDefaultInstanceForType

      public V1beta1Certificates.CertificateSigningRequestSpec getDefaultInstanceForType()
      Specified by:
      getDefaultInstanceForType in interface com.google.protobuf.MessageLiteOrBuilder
      Specified by:
      getDefaultInstanceForType in interface com.google.protobuf.MessageOrBuilder

    • build

      public V1beta1Certificates.CertificateSigningRequestSpec build()
      Specified by:
      build in interface com.google.protobuf.Message.Builder
      Specified by:
      build in interface com.google.protobuf.MessageLite.Builder

    • buildPartial

      public V1beta1Certificates.CertificateSigningRequestSpec buildPartial()
      Specified by:
      buildPartial in interface com.google.protobuf.Message.Builder
      Specified by:
      buildPartial in interface com.google.protobuf.MessageLite.Builder

    • clone

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clone()
      Specified by:
      clone in interface com.google.protobuf.Message.Builder
      Specified by:
      clone in interface com.google.protobuf.MessageLite.Builder
      Overrides:
      clone in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • setField

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setField(com.google.protobuf.Descriptors.FieldDescriptor field, Object value)
      Specified by:
      setField in interface com.google.protobuf.Message.Builder
      Overrides:
      setField in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • clearField

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearField(com.google.protobuf.Descriptors.FieldDescriptor field)
      Specified by:
      clearField in interface com.google.protobuf.Message.Builder
      Overrides:
      clearField in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • clearOneof

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearOneof(com.google.protobuf.Descriptors.OneofDescriptor oneof)
      Specified by:
      clearOneof in interface com.google.protobuf.Message.Builder
      Overrides:
      clearOneof in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • setRepeatedField

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setRepeatedField(com.google.protobuf.Descriptors.FieldDescriptor field, int index, Object value)
      Specified by:
      setRepeatedField in interface com.google.protobuf.Message.Builder
      Overrides:
      setRepeatedField in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • addRepeatedField

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder addRepeatedField(com.google.protobuf.Descriptors.FieldDescriptor field, Object value)
      Specified by:
      addRepeatedField in interface com.google.protobuf.Message.Builder
      Overrides:
      addRepeatedField in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • mergeFrom

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder mergeFrom(com.google.protobuf.Message other)
      Specified by:
      mergeFrom in interface com.google.protobuf.Message.Builder
      Overrides:
      mergeFrom in class com.google.protobuf.AbstractMessage.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • mergeFrom

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder mergeFrom(V1beta1Certificates.CertificateSigningRequestSpec other)

    • isInitialized

      public final boolean isInitialized()
      Specified by:
      isInitialized in interface com.google.protobuf.MessageLiteOrBuilder
      Overrides:
      isInitialized in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • mergeFrom

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder mergeFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
      Specified by:
      mergeFrom in interface com.google.protobuf.Message.Builder
      Specified by:
      mergeFrom in interface com.google.protobuf.MessageLite.Builder
      Overrides:
      mergeFrom in class com.google.protobuf.AbstractMessage.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>
      Throws:
      IOException

    • hasRequest

      public boolean hasRequest()
       Base64-encoded PKCS#10 CSR data
 +listType=atomic
      optional bytes request = 1;
      Specified by:
      hasRequest in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getRequest

      public com.google.protobuf.ByteString getRequest()
       Base64-encoded PKCS#10 CSR data
 +listType=atomic
      optional bytes request = 1;
      Specified by:
      getRequest in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • setRequest

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setRequest(com.google.protobuf.ByteString value)
       Base64-encoded PKCS#10 CSR data
 +listType=atomic
      optional bytes request = 1;

    • clearRequest

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearRequest()
       Base64-encoded PKCS#10 CSR data
 +listType=atomic
      optional bytes request = 1;

    • hasSignerName

      public boolean hasSignerName()
       Requested signer for the request. It is a qualified name in the form:
 `scope-hostname.io/name`.
 If empty, it will be defaulted:
  1. If it's a kubelet client certificate, it is assigned
     "kubernetes.io/kube-apiserver-client-kubelet".
  2. If it's a kubelet serving certificate, it is assigned
     "kubernetes.io/kubelet-serving".
  3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".
 Distribution of trust for signers happens out of band.
 You can select on this field using `spec.signerName`.
 +optional
      optional string signerName = 7;
      Specified by:
      hasSignerName in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getSignerName

      public String getSignerName()
       Requested signer for the request. It is a qualified name in the form:
 `scope-hostname.io/name`.
 If empty, it will be defaulted:
  1. If it's a kubelet client certificate, it is assigned
     "kubernetes.io/kube-apiserver-client-kubelet".
  2. If it's a kubelet serving certificate, it is assigned
     "kubernetes.io/kubelet-serving".
  3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".
 Distribution of trust for signers happens out of band.
 You can select on this field using `spec.signerName`.
 +optional
      optional string signerName = 7;
      Specified by:
      getSignerName in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getSignerNameBytes

      public com.google.protobuf.ByteString getSignerNameBytes()
       Requested signer for the request. It is a qualified name in the form:
 `scope-hostname.io/name`.
 If empty, it will be defaulted:
  1. If it's a kubelet client certificate, it is assigned
     "kubernetes.io/kube-apiserver-client-kubelet".
  2. If it's a kubelet serving certificate, it is assigned
     "kubernetes.io/kubelet-serving".
  3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".
 Distribution of trust for signers happens out of band.
 You can select on this field using `spec.signerName`.
 +optional
      optional string signerName = 7;
      Specified by:
      getSignerNameBytes in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • setSignerName

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setSignerName(String value)
       Requested signer for the request. It is a qualified name in the form:
 `scope-hostname.io/name`.
 If empty, it will be defaulted:
  1. If it's a kubelet client certificate, it is assigned
     "kubernetes.io/kube-apiserver-client-kubelet".
  2. If it's a kubelet serving certificate, it is assigned
     "kubernetes.io/kubelet-serving".
  3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".
 Distribution of trust for signers happens out of band.
 You can select on this field using `spec.signerName`.
 +optional
      optional string signerName = 7;

    • clearSignerName

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearSignerName()
       Requested signer for the request. It is a qualified name in the form:
 `scope-hostname.io/name`.
 If empty, it will be defaulted:
  1. If it's a kubelet client certificate, it is assigned
     "kubernetes.io/kube-apiserver-client-kubelet".
  2. If it's a kubelet serving certificate, it is assigned
     "kubernetes.io/kubelet-serving".
  3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".
 Distribution of trust for signers happens out of band.
 You can select on this field using `spec.signerName`.
 +optional
      optional string signerName = 7;

    • setSignerNameBytes

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setSignerNameBytes(com.google.protobuf.ByteString value)
       Requested signer for the request. It is a qualified name in the form:
 `scope-hostname.io/name`.
 If empty, it will be defaulted:
  1. If it's a kubelet client certificate, it is assigned
     "kubernetes.io/kube-apiserver-client-kubelet".
  2. If it's a kubelet serving certificate, it is assigned
     "kubernetes.io/kubelet-serving".
  3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".
 Distribution of trust for signers happens out of band.
 You can select on this field using `spec.signerName`.
 +optional
      optional string signerName = 7;

    • hasExpirationSeconds

      public boolean hasExpirationSeconds()
       expirationSeconds is the requested duration of validity of the issued
 certificate. The certificate signer may issue a certificate with a different
 validity duration so a client must check the delta between the notBefore and
 and notAfter fields in the issued certificate to determine the actual duration.
 The v1.22+ in-tree implementations of the well-known Kubernetes signers will
 honor this field as long as the requested duration is not greater than the
 maximum duration they will honor per the --cluster-signing-duration CLI
 flag to the Kubernetes controller manager.
 Certificate signers may not honor this field for various reasons:
   1. Old signer that is unaware of the field (such as the in-tree
      implementations prior to v1.22)
   2. Signer whose configured maximum is shorter than the requested duration
   3. Signer whose configured minimum is longer than the requested duration
 The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.
 As of v1.22, this field is beta and is controlled via the CSRDuration feature gate.
 +optional
      optional int32 expirationSeconds = 8;
      Specified by:
      hasExpirationSeconds in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getExpirationSeconds

      public int getExpirationSeconds()
       expirationSeconds is the requested duration of validity of the issued
 certificate. The certificate signer may issue a certificate with a different
 validity duration so a client must check the delta between the notBefore and
 and notAfter fields in the issued certificate to determine the actual duration.
 The v1.22+ in-tree implementations of the well-known Kubernetes signers will
 honor this field as long as the requested duration is not greater than the
 maximum duration they will honor per the --cluster-signing-duration CLI
 flag to the Kubernetes controller manager.
 Certificate signers may not honor this field for various reasons:
   1. Old signer that is unaware of the field (such as the in-tree
      implementations prior to v1.22)
   2. Signer whose configured maximum is shorter than the requested duration
   3. Signer whose configured minimum is longer than the requested duration
 The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.
 As of v1.22, this field is beta and is controlled via the CSRDuration feature gate.
 +optional
      optional int32 expirationSeconds = 8;
      Specified by:
      getExpirationSeconds in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • setExpirationSeconds

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setExpirationSeconds(int value)
       expirationSeconds is the requested duration of validity of the issued
 certificate. The certificate signer may issue a certificate with a different
 validity duration so a client must check the delta between the notBefore and
 and notAfter fields in the issued certificate to determine the actual duration.
 The v1.22+ in-tree implementations of the well-known Kubernetes signers will
 honor this field as long as the requested duration is not greater than the
 maximum duration they will honor per the --cluster-signing-duration CLI
 flag to the Kubernetes controller manager.
 Certificate signers may not honor this field for various reasons:
   1. Old signer that is unaware of the field (such as the in-tree
      implementations prior to v1.22)
   2. Signer whose configured maximum is shorter than the requested duration
   3. Signer whose configured minimum is longer than the requested duration
 The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.
 As of v1.22, this field is beta and is controlled via the CSRDuration feature gate.
 +optional
      optional int32 expirationSeconds = 8;

    • clearExpirationSeconds

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearExpirationSeconds()
       expirationSeconds is the requested duration of validity of the issued
 certificate. The certificate signer may issue a certificate with a different
 validity duration so a client must check the delta between the notBefore and
 and notAfter fields in the issued certificate to determine the actual duration.
 The v1.22+ in-tree implementations of the well-known Kubernetes signers will
 honor this field as long as the requested duration is not greater than the
 maximum duration they will honor per the --cluster-signing-duration CLI
 flag to the Kubernetes controller manager.
 Certificate signers may not honor this field for various reasons:
   1. Old signer that is unaware of the field (such as the in-tree
      implementations prior to v1.22)
   2. Signer whose configured maximum is shorter than the requested duration
   3. Signer whose configured minimum is longer than the requested duration
 The minimum valid value for expirationSeconds is 600, i.e. 10 minutes.
 As of v1.22, this field is beta and is controlled via the CSRDuration feature gate.
 +optional
      optional int32 expirationSeconds = 8;

    • getUsagesList

      public com.google.protobuf.ProtocolStringList getUsagesList()
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;
      Specified by:
      getUsagesList in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getUsagesCount

      public int getUsagesCount()
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;
      Specified by:
      getUsagesCount in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getUsages

      public String getUsages(int index)
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;
      Specified by:
      getUsages in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getUsagesBytes

      public com.google.protobuf.ByteString getUsagesBytes(int index)
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;
      Specified by:
      getUsagesBytes in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • setUsages

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setUsages(int index, String value)
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;

    • addUsages

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder addUsages(String value)
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;

    • addAllUsages

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder addAllUsages(Iterable<String> values)
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;

    • clearUsages

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearUsages()
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;

    • addUsagesBytes

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder addUsagesBytes(com.google.protobuf.ByteString value)
       allowedUsages specifies a set of usage contexts the key will be
 valid for.
 See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3
      https://tools.ietf.org/html/rfc5280#section-4.2.1.12
 Valid values are:
  "signing",
  "digital signature",
  "content commitment",
  "key encipherment",
  "key agreement",
  "data encipherment",
  "cert sign",
  "crl sign",
  "encipher only",
  "decipher only",
  "any",
  "server auth",
  "client auth",
  "code signing",
  "email protection",
  "s/mime",
  "ipsec end system",
  "ipsec tunnel",
  "ipsec user",
  "timestamping",
  "ocsp signing",
  "microsoft sgc",
  "netscape sgc"
 +listType=atomic
      repeated string usages = 5;

    • hasUsername

      public boolean hasUsername()
       Information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string username = 2;
      Specified by:
      hasUsername in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getUsername

      public String getUsername()
       Information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string username = 2;
      Specified by:
      getUsername in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getUsernameBytes

      public com.google.protobuf.ByteString getUsernameBytes()
       Information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string username = 2;
      Specified by:
      getUsernameBytes in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • setUsername

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setUsername(String value)
       Information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string username = 2;

    • clearUsername

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearUsername()
       Information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string username = 2;

    • setUsernameBytes

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setUsernameBytes(com.google.protobuf.ByteString value)
       Information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string username = 2;

    • hasUid

      public boolean hasUid()
       UID information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string uid = 3;
      Specified by:
      hasUid in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getUid

      public String getUid()
       UID information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string uid = 3;
      Specified by:
      getUid in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getUidBytes

      public com.google.protobuf.ByteString getUidBytes()
       UID information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string uid = 3;
      Specified by:
      getUidBytes in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • setUid

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setUid(String value)
       UID information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string uid = 3;

    • clearUid

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearUid()
       UID information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string uid = 3;

    • setUidBytes

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setUidBytes(com.google.protobuf.ByteString value)
       UID information about the requesting user.
 See user.Info interface for details.
 +optional
      optional string uid = 3;

    • getGroupsList

      public com.google.protobuf.ProtocolStringList getGroupsList()
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;
      Specified by:
      getGroupsList in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getGroupsCount

      public int getGroupsCount()
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;
      Specified by:
      getGroupsCount in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getGroups

      public String getGroups(int index)
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;
      Specified by:
      getGroups in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getGroupsBytes

      public com.google.protobuf.ByteString getGroupsBytes(int index)
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;
      Specified by:
      getGroupsBytes in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • setGroups

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder setGroups(int index, String value)
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;

    • addGroups

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder addGroups(String value)
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;

    • addAllGroups

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder addAllGroups(Iterable<String> values)
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;

    • clearGroups

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearGroups()
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;

    • addGroupsBytes

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder addGroupsBytes(com.google.protobuf.ByteString value)
       Group information about the requesting user.
 See user.Info interface for details.
 +listType=atomic
 +optional
      repeated string groups = 4;

    • getExtraCount

      public int getExtraCount()
      Description copied from interface: V1beta1Certificates.CertificateSigningRequestSpecOrBuilder
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;
      Specified by:
      getExtraCount in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • containsExtra

      public boolean containsExtra(String key)
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;
      Specified by:
      containsExtra in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getExtra

      @Deprecated public Map<String,V1beta1Certificates.ExtraValue> getExtra()
      Deprecated.
      Use getExtraMap() instead.
      Specified by:
      getExtra in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getExtraMap

      public Map<String,V1beta1Certificates.ExtraValue> getExtraMap()
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;
      Specified by:
      getExtraMap in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getExtraOrDefault

      public V1beta1Certificates.ExtraValue getExtraOrDefault(String key, V1beta1Certificates.ExtraValue defaultValue)
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;
      Specified by:
      getExtraOrDefault in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • getExtraOrThrow

      public V1beta1Certificates.ExtraValue getExtraOrThrow(String key)
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;
      Specified by:
      getExtraOrThrow in interface V1beta1Certificates.CertificateSigningRequestSpecOrBuilder

    • clearExtra

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder clearExtra()

    • removeExtra

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder removeExtra(String key)
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;

    • getMutableExtra

      @Deprecated public Map<String,V1beta1Certificates.ExtraValue> getMutableExtra()
      Deprecated.
      Use alternate mutation accessors instead.

    • putExtra

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder putExtra(String key, V1beta1Certificates.ExtraValue value)
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;

    • putAllExtra

      public V1beta1Certificates.CertificateSigningRequestSpec.Builder putAllExtra(Map<String,V1beta1Certificates.ExtraValue> values)
       Extra information about the requesting user.
 See user.Info interface for details.
 +optional
      map<string, .k8s.io.api.certificates.v1beta1.ExtraValue> extra = 6;

    • setUnknownFields

      public final V1beta1Certificates.CertificateSigningRequestSpec.Builder setUnknownFields(com.google.protobuf.UnknownFieldSet unknownFields)
      Specified by:
      setUnknownFields in interface com.google.protobuf.Message.Builder
      Overrides:
      setUnknownFields in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>

    • mergeUnknownFields

      public final V1beta1Certificates.CertificateSigningRequestSpec.Builder mergeUnknownFields(com.google.protobuf.UnknownFieldSet unknownFields)
      Specified by:
      mergeUnknownFields in interface com.google.protobuf.Message.Builder
      Overrides:
      mergeUnknownFields in class com.google.protobuf.GeneratedMessageV3.Builder<V1beta1Certificates.CertificateSigningRequestSpec.Builder>