public static final class DownstreamTlsContext.Builder extends com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder> implements DownstreamTlsContextOrBuilder
[#next-free-field: 9]Protobuf type
envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext| Modifier and Type | Method and Description |
|---|---|
DownstreamTlsContext.Builder |
addRepeatedField(com.google.protobuf.Descriptors.FieldDescriptor field,
Object value) |
DownstreamTlsContext |
build() |
DownstreamTlsContext |
buildPartial() |
DownstreamTlsContext.Builder |
clear() |
DownstreamTlsContext.Builder |
clearCommonTlsContext()
Common TLS context settings.
|
DownstreamTlsContext.Builder |
clearDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS
server to not issue TLS session tickets for the purposes of stateless TLS session resumption.
|
DownstreamTlsContext.Builder |
clearField(com.google.protobuf.Descriptors.FieldDescriptor field) |
DownstreamTlsContext.Builder |
clearOcspStaplePolicy()
Config for whether to use certificates if they do not have
an accompanying OCSP response or if the response expires at runtime.
|
DownstreamTlsContext.Builder |
clearOneof(com.google.protobuf.Descriptors.OneofDescriptor oneof) |
DownstreamTlsContext.Builder |
clearRequireClientCertificate()
If specified, Envoy will reject connections without a valid client
certificate.
|
DownstreamTlsContext.Builder |
clearRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.
|
DownstreamTlsContext.Builder |
clearSessionTicketKeys()
TLS session ticket key settings.
|
DownstreamTlsContext.Builder |
clearSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
|
DownstreamTlsContext.Builder |
clearSessionTicketKeysType() |
DownstreamTlsContext.Builder |
clearSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
DownstreamTlsContext.Builder |
clone() |
CommonTlsContext |
getCommonTlsContext()
Common TLS context settings.
|
CommonTlsContext.Builder |
getCommonTlsContextBuilder()
Common TLS context settings.
|
CommonTlsContextOrBuilder |
getCommonTlsContextOrBuilder()
Common TLS context settings.
|
DownstreamTlsContext |
getDefaultInstanceForType() |
static com.google.protobuf.Descriptors.Descriptor |
getDescriptor() |
com.google.protobuf.Descriptors.Descriptor |
getDescriptorForType() |
boolean |
getDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS
server to not issue TLS session tickets for the purposes of stateless TLS session resumption.
|
DownstreamTlsContext.OcspStaplePolicy |
getOcspStaplePolicy()
Config for whether to use certificates if they do not have
an accompanying OCSP response or if the response expires at runtime.
|
int |
getOcspStaplePolicyValue()
Config for whether to use certificates if they do not have
an accompanying OCSP response or if the response expires at runtime.
|
com.google.protobuf.BoolValue |
getRequireClientCertificate()
If specified, Envoy will reject connections without a valid client
certificate.
|
com.google.protobuf.BoolValue.Builder |
getRequireClientCertificateBuilder()
If specified, Envoy will reject connections without a valid client
certificate.
|
com.google.protobuf.BoolValueOrBuilder |
getRequireClientCertificateOrBuilder()
If specified, Envoy will reject connections without a valid client
certificate.
|
com.google.protobuf.BoolValue |
getRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.
|
com.google.protobuf.BoolValue.Builder |
getRequireSniBuilder()
If specified, Envoy will reject connections without a valid and matching SNI.
|
com.google.protobuf.BoolValueOrBuilder |
getRequireSniOrBuilder()
If specified, Envoy will reject connections without a valid and matching SNI.
|
TlsSessionTicketKeys |
getSessionTicketKeys()
TLS session ticket key settings.
|
TlsSessionTicketKeys.Builder |
getSessionTicketKeysBuilder()
TLS session ticket key settings.
|
TlsSessionTicketKeysOrBuilder |
getSessionTicketKeysOrBuilder()
TLS session ticket key settings.
|
SdsSecretConfig |
getSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
|
SdsSecretConfig.Builder |
getSessionTicketKeysSdsSecretConfigBuilder()
Config for fetching TLS session ticket keys via SDS API.
|
SdsSecretConfigOrBuilder |
getSessionTicketKeysSdsSecretConfigOrBuilder()
Config for fetching TLS session ticket keys via SDS API.
|
DownstreamTlsContext.SessionTicketKeysTypeCase |
getSessionTicketKeysTypeCase() |
com.google.protobuf.Duration |
getSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
com.google.protobuf.Duration.Builder |
getSessionTimeoutBuilder()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
com.google.protobuf.DurationOrBuilder |
getSessionTimeoutOrBuilder()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
boolean |
hasCommonTlsContext()
Common TLS context settings.
|
boolean |
hasRequireClientCertificate()
If specified, Envoy will reject connections without a valid client
certificate.
|
boolean |
hasRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.
|
boolean |
hasSessionTicketKeys()
TLS session ticket key settings.
|
boolean |
hasSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
|
boolean |
hasSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
protected com.google.protobuf.GeneratedMessageV3.FieldAccessorTable |
internalGetFieldAccessorTable() |
boolean |
isInitialized() |
DownstreamTlsContext.Builder |
mergeCommonTlsContext(CommonTlsContext value)
Common TLS context settings.
|
DownstreamTlsContext.Builder |
mergeFrom(com.google.protobuf.CodedInputStream input,
com.google.protobuf.ExtensionRegistryLite extensionRegistry) |
DownstreamTlsContext.Builder |
mergeFrom(DownstreamTlsContext other) |
DownstreamTlsContext.Builder |
mergeFrom(com.google.protobuf.Message other) |
DownstreamTlsContext.Builder |
mergeRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client
certificate.
|
DownstreamTlsContext.Builder |
mergeRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI.
|
DownstreamTlsContext.Builder |
mergeSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.
|
DownstreamTlsContext.Builder |
mergeSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.
|
DownstreamTlsContext.Builder |
mergeSessionTimeout(com.google.protobuf.Duration value)
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
DownstreamTlsContext.Builder |
mergeUnknownFields(com.google.protobuf.UnknownFieldSet unknownFields) |
DownstreamTlsContext.Builder |
setCommonTlsContext(CommonTlsContext.Builder builderForValue)
Common TLS context settings.
|
DownstreamTlsContext.Builder |
setCommonTlsContext(CommonTlsContext value)
Common TLS context settings.
|
DownstreamTlsContext.Builder |
setDisableStatelessSessionResumption(boolean value)
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS
server to not issue TLS session tickets for the purposes of stateless TLS session resumption.
|
DownstreamTlsContext.Builder |
setField(com.google.protobuf.Descriptors.FieldDescriptor field,
Object value) |
DownstreamTlsContext.Builder |
setOcspStaplePolicy(DownstreamTlsContext.OcspStaplePolicy value)
Config for whether to use certificates if they do not have
an accompanying OCSP response or if the response expires at runtime.
|
DownstreamTlsContext.Builder |
setOcspStaplePolicyValue(int value)
Config for whether to use certificates if they do not have
an accompanying OCSP response or if the response expires at runtime.
|
DownstreamTlsContext.Builder |
setRepeatedField(com.google.protobuf.Descriptors.FieldDescriptor field,
int index,
Object value) |
DownstreamTlsContext.Builder |
setRequireClientCertificate(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid client
certificate.
|
DownstreamTlsContext.Builder |
setRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client
certificate.
|
DownstreamTlsContext.Builder |
setRequireSni(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid and matching SNI.
|
DownstreamTlsContext.Builder |
setRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI.
|
DownstreamTlsContext.Builder |
setSessionTicketKeys(TlsSessionTicketKeys.Builder builderForValue)
TLS session ticket key settings.
|
DownstreamTlsContext.Builder |
setSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.
|
DownstreamTlsContext.Builder |
setSessionTicketKeysSdsSecretConfig(SdsSecretConfig.Builder builderForValue)
Config for fetching TLS session ticket keys via SDS API.
|
DownstreamTlsContext.Builder |
setSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.
|
DownstreamTlsContext.Builder |
setSessionTimeout(com.google.protobuf.Duration.Builder builderForValue)
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
DownstreamTlsContext.Builder |
setSessionTimeout(com.google.protobuf.Duration value)
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
DownstreamTlsContext.Builder |
setUnknownFields(com.google.protobuf.UnknownFieldSet unknownFields) |
getAllFields, getField, getFieldBuilder, getOneofFieldDescriptor, getParentForChildren, getRepeatedField, getRepeatedFieldBuilder, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof, internalGetMapField, internalGetMutableMapField, isClean, markClean, newBuilderForField, onBuilt, onChanged, setUnknownFieldsProto3findInitializationErrors, getInitializationErrorString, internalMergeFrom, mergeDelimitedFrom, mergeDelimitedFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, newUninitializedMessageException, toStringaddAll, addAll, mergeFrom, newUninitializedMessageExceptionequals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, waitpublic static final com.google.protobuf.Descriptors.Descriptor getDescriptor()
protected com.google.protobuf.GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
internalGetFieldAccessorTable in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder clear()
clear in interface com.google.protobuf.Message.Builderclear in interface com.google.protobuf.MessageLite.Builderclear in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public com.google.protobuf.Descriptors.Descriptor getDescriptorForType()
getDescriptorForType in interface com.google.protobuf.Message.BuildergetDescriptorForType in interface com.google.protobuf.MessageOrBuildergetDescriptorForType in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext getDefaultInstanceForType()
getDefaultInstanceForType in interface com.google.protobuf.MessageLiteOrBuildergetDefaultInstanceForType in interface com.google.protobuf.MessageOrBuilderpublic DownstreamTlsContext build()
build in interface com.google.protobuf.Message.Builderbuild in interface com.google.protobuf.MessageLite.Builderpublic DownstreamTlsContext buildPartial()
buildPartial in interface com.google.protobuf.Message.BuilderbuildPartial in interface com.google.protobuf.MessageLite.Builderpublic DownstreamTlsContext.Builder clone()
clone in interface com.google.protobuf.Message.Builderclone in interface com.google.protobuf.MessageLite.Builderclone in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder setField(com.google.protobuf.Descriptors.FieldDescriptor field, Object value)
setField in interface com.google.protobuf.Message.BuildersetField in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder clearField(com.google.protobuf.Descriptors.FieldDescriptor field)
clearField in interface com.google.protobuf.Message.BuilderclearField in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder clearOneof(com.google.protobuf.Descriptors.OneofDescriptor oneof)
clearOneof in interface com.google.protobuf.Message.BuilderclearOneof in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder setRepeatedField(com.google.protobuf.Descriptors.FieldDescriptor field, int index, Object value)
setRepeatedField in interface com.google.protobuf.Message.BuildersetRepeatedField in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder addRepeatedField(com.google.protobuf.Descriptors.FieldDescriptor field, Object value)
addRepeatedField in interface com.google.protobuf.Message.BuilderaddRepeatedField in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder mergeFrom(com.google.protobuf.Message other)
mergeFrom in interface com.google.protobuf.Message.BuildermergeFrom in class com.google.protobuf.AbstractMessage.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder mergeFrom(DownstreamTlsContext other)
public final boolean isInitialized()
isInitialized in interface com.google.protobuf.MessageLiteOrBuilderisInitialized in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public DownstreamTlsContext.Builder mergeFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
mergeFrom in interface com.google.protobuf.Message.BuildermergeFrom in interface com.google.protobuf.MessageLite.BuildermergeFrom in class com.google.protobuf.AbstractMessage.Builder<DownstreamTlsContext.Builder>IOExceptionpublic DownstreamTlsContext.SessionTicketKeysTypeCase getSessionTicketKeysTypeCase()
getSessionTicketKeysTypeCase in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder clearSessionTicketKeysType()
public boolean hasCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;hasCommonTlsContext in interface DownstreamTlsContextOrBuilderpublic CommonTlsContext getCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;getCommonTlsContext in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setCommonTlsContext(CommonTlsContext value)
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;public DownstreamTlsContext.Builder setCommonTlsContext(CommonTlsContext.Builder builderForValue)
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;public DownstreamTlsContext.Builder mergeCommonTlsContext(CommonTlsContext value)
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;public DownstreamTlsContext.Builder clearCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;public CommonTlsContext.Builder getCommonTlsContextBuilder()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;public CommonTlsContextOrBuilder getCommonTlsContextOrBuilder()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;getCommonTlsContextOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;hasRequireClientCertificate in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.BoolValue getRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;getRequireClientCertificate in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;public DownstreamTlsContext.Builder setRequireClientCertificate(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;public DownstreamTlsContext.Builder mergeRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;public DownstreamTlsContext.Builder clearRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;public com.google.protobuf.BoolValue.Builder getRequireClientCertificateBuilder()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;public com.google.protobuf.BoolValueOrBuilder getRequireClientCertificateOrBuilder()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;getRequireClientCertificateOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;hasRequireSni in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.BoolValue getRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;getRequireSni in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;public DownstreamTlsContext.Builder setRequireSni(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;public DownstreamTlsContext.Builder mergeRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;public DownstreamTlsContext.Builder clearRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;public com.google.protobuf.BoolValue.Builder getRequireSniBuilder()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;public com.google.protobuf.BoolValueOrBuilder getRequireSniOrBuilder()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;getRequireSniOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;hasSessionTicketKeys in interface DownstreamTlsContextOrBuilderpublic TlsSessionTicketKeys getSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;getSessionTicketKeys in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;public DownstreamTlsContext.Builder setSessionTicketKeys(TlsSessionTicketKeys.Builder builderForValue)
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;public DownstreamTlsContext.Builder mergeSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;public DownstreamTlsContext.Builder clearSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;public TlsSessionTicketKeys.Builder getSessionTicketKeysBuilder()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;public TlsSessionTicketKeysOrBuilder getSessionTicketKeysOrBuilder()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;getSessionTicketKeysOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;hasSessionTicketKeysSdsSecretConfig in interface DownstreamTlsContextOrBuilderpublic SdsSecretConfig getSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;getSessionTicketKeysSdsSecretConfig in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;public DownstreamTlsContext.Builder setSessionTicketKeysSdsSecretConfig(SdsSecretConfig.Builder builderForValue)
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;public DownstreamTlsContext.Builder mergeSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;public DownstreamTlsContext.Builder clearSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;public SdsSecretConfig.Builder getSessionTicketKeysSdsSecretConfigBuilder()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;public SdsSecretConfigOrBuilder getSessionTicketKeysSdsSecretConfigOrBuilder()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;getSessionTicketKeysSdsSecretConfigOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean getDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;getDisableStatelessSessionResumption in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setDisableStatelessSessionResumption(boolean value)
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;public DownstreamTlsContext.Builder clearDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;public boolean hasSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }hasSessionTimeout in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.Duration getSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }getSessionTimeout in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setSessionTimeout(com.google.protobuf.Duration value)
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }public DownstreamTlsContext.Builder setSessionTimeout(com.google.protobuf.Duration.Builder builderForValue)
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }public DownstreamTlsContext.Builder mergeSessionTimeout(com.google.protobuf.Duration value)
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }public DownstreamTlsContext.Builder clearSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }public com.google.protobuf.Duration.Builder getSessionTimeoutBuilder()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }public com.google.protobuf.DurationOrBuilder getSessionTimeoutOrBuilder()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }getSessionTimeoutOrBuilder in interface DownstreamTlsContextOrBuilderpublic int getOcspStaplePolicyValue()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }getOcspStaplePolicyValue in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setOcspStaplePolicyValue(int value)
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }public DownstreamTlsContext.OcspStaplePolicy getOcspStaplePolicy()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }getOcspStaplePolicy in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.Builder setOcspStaplePolicy(DownstreamTlsContext.OcspStaplePolicy value)
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }public DownstreamTlsContext.Builder clearOcspStaplePolicy()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }public final DownstreamTlsContext.Builder setUnknownFields(com.google.protobuf.UnknownFieldSet unknownFields)
setUnknownFields in interface com.google.protobuf.Message.BuildersetUnknownFields in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>public final DownstreamTlsContext.Builder mergeUnknownFields(com.google.protobuf.UnknownFieldSet unknownFields)
mergeUnknownFields in interface com.google.protobuf.Message.BuildermergeUnknownFields in class com.google.protobuf.GeneratedMessageV3.Builder<DownstreamTlsContext.Builder>Copyright © 2018–2021 The Envoy Project. All rights reserved.