public interface CommonTlsContextOrBuilder
extends com.google.protobuf.MessageOrBuilder
| Modifier and Type | Method and Description |
|---|---|
String |
getAlpnProtocols(int index)
Supplies the list of ALPN protocols that the listener should expose.
|
com.google.protobuf.ByteString |
getAlpnProtocolsBytes(int index)
Supplies the list of ALPN protocols that the listener should expose.
|
int |
getAlpnProtocolsCount()
Supplies the list of ALPN protocols that the listener should expose.
|
List<String> |
getAlpnProtocolsList()
Supplies the list of ALPN protocols that the listener should expose.
|
CommonTlsContext.CombinedCertificateValidationContext |
getCombinedValidationContext()
Combined certificate validation context holds a default CertificateValidationContext
and SDS config.
|
CommonTlsContext.CombinedCertificateValidationContextOrBuilder |
getCombinedValidationContextOrBuilder()
Combined certificate validation context holds a default CertificateValidationContext
and SDS config.
|
TypedExtensionConfig |
getCustomHandshaker()
Custom TLS handshaker.
|
TypedExtensionConfigOrBuilder |
getCustomHandshakerOrBuilder()
Custom TLS handshaker.
|
CommonTlsContext.CertificateProvider |
getTlsCertificateCertificateProvider()
Certificate provider for fetching TLS certificates.
|
CommonTlsContext.CertificateProviderInstance |
getTlsCertificateCertificateProviderInstance()
Certificate provider instance for fetching TLS certificates.
|
CommonTlsContext.CertificateProviderInstanceOrBuilder |
getTlsCertificateCertificateProviderInstanceOrBuilder()
Certificate provider instance for fetching TLS certificates.
|
CommonTlsContext.CertificateProviderOrBuilder |
getTlsCertificateCertificateProviderOrBuilder()
Certificate provider for fetching TLS certificates.
|
TlsCertificate |
getTlsCertificates(int index)
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the
same context to allow both RSA and ECDSA certificates.
|
int |
getTlsCertificatesCount()
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the
same context to allow both RSA and ECDSA certificates.
|
SdsSecretConfig |
getTlsCertificateSdsSecretConfigs(int index)
Configs for fetching TLS certificates via SDS API.
|
int |
getTlsCertificateSdsSecretConfigsCount()
Configs for fetching TLS certificates via SDS API.
|
List<SdsSecretConfig> |
getTlsCertificateSdsSecretConfigsList()
Configs for fetching TLS certificates via SDS API.
|
SdsSecretConfigOrBuilder |
getTlsCertificateSdsSecretConfigsOrBuilder(int index)
Configs for fetching TLS certificates via SDS API.
|
List<? extends SdsSecretConfigOrBuilder> |
getTlsCertificateSdsSecretConfigsOrBuilderList()
Configs for fetching TLS certificates via SDS API.
|
List<TlsCertificate> |
getTlsCertificatesList()
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the
same context to allow both RSA and ECDSA certificates.
|
TlsCertificateOrBuilder |
getTlsCertificatesOrBuilder(int index)
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the
same context to allow both RSA and ECDSA certificates.
|
List<? extends TlsCertificateOrBuilder> |
getTlsCertificatesOrBuilderList()
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the
same context to allow both RSA and ECDSA certificates.
|
TlsParameters |
getTlsParams()
TLS protocol versions, cipher suites etc.
|
TlsParametersOrBuilder |
getTlsParamsOrBuilder()
TLS protocol versions, cipher suites etc.
|
CertificateValidationContext |
getValidationContext()
How to validate peer certificates.
|
CommonTlsContext.CertificateProvider |
getValidationContextCertificateProvider()
Certificate provider for fetching validation context.
|
CommonTlsContext.CertificateProviderInstance |
getValidationContextCertificateProviderInstance()
Certificate provider instance for fetching validation context.
|
CommonTlsContext.CertificateProviderInstanceOrBuilder |
getValidationContextCertificateProviderInstanceOrBuilder()
Certificate provider instance for fetching validation context.
|
CommonTlsContext.CertificateProviderOrBuilder |
getValidationContextCertificateProviderOrBuilder()
Certificate provider for fetching validation context.
|
CertificateValidationContextOrBuilder |
getValidationContextOrBuilder()
How to validate peer certificates.
|
SdsSecretConfig |
getValidationContextSdsSecretConfig()
Config for fetching validation context via SDS API.
|
SdsSecretConfigOrBuilder |
getValidationContextSdsSecretConfigOrBuilder()
Config for fetching validation context via SDS API.
|
CommonTlsContext.ValidationContextTypeCase |
getValidationContextTypeCase() |
boolean |
hasCombinedValidationContext()
Combined certificate validation context holds a default CertificateValidationContext
and SDS config.
|
boolean |
hasCustomHandshaker()
Custom TLS handshaker.
|
boolean |
hasTlsCertificateCertificateProvider()
Certificate provider for fetching TLS certificates.
|
boolean |
hasTlsCertificateCertificateProviderInstance()
Certificate provider instance for fetching TLS certificates.
|
boolean |
hasTlsParams()
TLS protocol versions, cipher suites etc.
|
boolean |
hasValidationContext()
How to validate peer certificates.
|
boolean |
hasValidationContextCertificateProvider()
Certificate provider for fetching validation context.
|
boolean |
hasValidationContextCertificateProviderInstance()
Certificate provider instance for fetching validation context.
|
boolean |
hasValidationContextSdsSecretConfig()
Config for fetching validation context via SDS API.
|
findInitializationErrors, getAllFields, getDefaultInstanceForType, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneofboolean hasTlsParams()
TLS protocol versions, cipher suites etc.
.envoy.extensions.transport_sockets.tls.v4alpha.TlsParameters tls_params = 1;TlsParameters getTlsParams()
TLS protocol versions, cipher suites etc.
.envoy.extensions.transport_sockets.tls.v4alpha.TlsParameters tls_params = 1;TlsParametersOrBuilder getTlsParamsOrBuilder()
TLS protocol versions, cipher suites etc.
.envoy.extensions.transport_sockets.tls.v4alpha.TlsParameters tls_params = 1;List<TlsCertificate> getTlsCertificatesList()
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates. Only a single TLS certificate is supported in client contexts. In server contexts, the first RSA certificate is used for clients that only support RSA and the first ECDSA certificate is used for clients that support ECDSA.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.TlsCertificate tls_certificates = 2;TlsCertificate getTlsCertificates(int index)
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates. Only a single TLS certificate is supported in client contexts. In server contexts, the first RSA certificate is used for clients that only support RSA and the first ECDSA certificate is used for clients that support ECDSA.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.TlsCertificate tls_certificates = 2;int getTlsCertificatesCount()
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates. Only a single TLS certificate is supported in client contexts. In server contexts, the first RSA certificate is used for clients that only support RSA and the first ECDSA certificate is used for clients that support ECDSA.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.TlsCertificate tls_certificates = 2;List<? extends TlsCertificateOrBuilder> getTlsCertificatesOrBuilderList()
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates. Only a single TLS certificate is supported in client contexts. In server contexts, the first RSA certificate is used for clients that only support RSA and the first ECDSA certificate is used for clients that support ECDSA.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.TlsCertificate tls_certificates = 2;TlsCertificateOrBuilder getTlsCertificatesOrBuilder(int index)
:ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates. Only a single TLS certificate is supported in client contexts. In server contexts, the first RSA certificate is used for clients that only support RSA and the first ECDSA certificate is used for clients that support ECDSA.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.TlsCertificate tls_certificates = 2;List<SdsSecretConfig> getTlsCertificateSdsSecretConfigsList()
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig tls_certificate_sds_secret_configs = 6 [(.validate.rules) = { ... }SdsSecretConfig getTlsCertificateSdsSecretConfigs(int index)
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig tls_certificate_sds_secret_configs = 6 [(.validate.rules) = { ... }int getTlsCertificateSdsSecretConfigsCount()
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig tls_certificate_sds_secret_configs = 6 [(.validate.rules) = { ... }List<? extends SdsSecretConfigOrBuilder> getTlsCertificateSdsSecretConfigsOrBuilderList()
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig tls_certificate_sds_secret_configs = 6 [(.validate.rules) = { ... }SdsSecretConfigOrBuilder getTlsCertificateSdsSecretConfigsOrBuilder(int index)
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
repeated .envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig tls_certificate_sds_secret_configs = 6 [(.validate.rules) = { ... }boolean hasTlsCertificateCertificateProvider()
Certificate provider for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProvider tls_certificate_certificate_provider = 9;CommonTlsContext.CertificateProvider getTlsCertificateCertificateProvider()
Certificate provider for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProvider tls_certificate_certificate_provider = 9;CommonTlsContext.CertificateProviderOrBuilder getTlsCertificateCertificateProviderOrBuilder()
Certificate provider for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProvider tls_certificate_certificate_provider = 9;boolean hasTlsCertificateCertificateProviderInstance()
Certificate provider instance for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProviderInstance tls_certificate_certificate_provider_instance = 11;CommonTlsContext.CertificateProviderInstance getTlsCertificateCertificateProviderInstance()
Certificate provider instance for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProviderInstance tls_certificate_certificate_provider_instance = 11;CommonTlsContext.CertificateProviderInstanceOrBuilder getTlsCertificateCertificateProviderInstanceOrBuilder()
Certificate provider instance for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProviderInstance tls_certificate_certificate_provider_instance = 11;boolean hasValidationContext()
How to validate peer certificates.
.envoy.extensions.transport_sockets.tls.v4alpha.CertificateValidationContext validation_context = 3;CertificateValidationContext getValidationContext()
How to validate peer certificates.
.envoy.extensions.transport_sockets.tls.v4alpha.CertificateValidationContext validation_context = 3;CertificateValidationContextOrBuilder getValidationContextOrBuilder()
How to validate peer certificates.
.envoy.extensions.transport_sockets.tls.v4alpha.CertificateValidationContext validation_context = 3;boolean hasValidationContextSdsSecretConfig()
Config for fetching validation context via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
.envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig validation_context_sds_secret_config = 7;SdsSecretConfig getValidationContextSdsSecretConfig()
Config for fetching validation context via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
.envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig validation_context_sds_secret_config = 7;SdsSecretConfigOrBuilder getValidationContextSdsSecretConfigOrBuilder()
Config for fetching validation context via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
.envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig validation_context_sds_secret_config = 7;boolean hasCombinedValidationContext()
Combined certificate validation context holds a default CertificateValidationContext and SDS config. When SDS server returns dynamic CertificateValidationContext, both dynamic and default CertificateValidationContext are merged into a new CertificateValidationContext for validation. This merge is done by Message::MergeFrom(), so dynamic CertificateValidationContext overwrites singular fields in default CertificateValidationContext, and concatenates repeated fields to default CertificateValidationContext, and logical OR is applied to boolean fields.
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CombinedCertificateValidationContext combined_validation_context = 8;CommonTlsContext.CombinedCertificateValidationContext getCombinedValidationContext()
Combined certificate validation context holds a default CertificateValidationContext and SDS config. When SDS server returns dynamic CertificateValidationContext, both dynamic and default CertificateValidationContext are merged into a new CertificateValidationContext for validation. This merge is done by Message::MergeFrom(), so dynamic CertificateValidationContext overwrites singular fields in default CertificateValidationContext, and concatenates repeated fields to default CertificateValidationContext, and logical OR is applied to boolean fields.
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CombinedCertificateValidationContext combined_validation_context = 8;CommonTlsContext.CombinedCertificateValidationContextOrBuilder getCombinedValidationContextOrBuilder()
Combined certificate validation context holds a default CertificateValidationContext and SDS config. When SDS server returns dynamic CertificateValidationContext, both dynamic and default CertificateValidationContext are merged into a new CertificateValidationContext for validation. This merge is done by Message::MergeFrom(), so dynamic CertificateValidationContext overwrites singular fields in default CertificateValidationContext, and concatenates repeated fields to default CertificateValidationContext, and logical OR is applied to boolean fields.
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CombinedCertificateValidationContext combined_validation_context = 8;boolean hasValidationContextCertificateProvider()
Certificate provider for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProvider validation_context_certificate_provider = 10;CommonTlsContext.CertificateProvider getValidationContextCertificateProvider()
Certificate provider for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProvider validation_context_certificate_provider = 10;CommonTlsContext.CertificateProviderOrBuilder getValidationContextCertificateProviderOrBuilder()
Certificate provider for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProvider validation_context_certificate_provider = 10;boolean hasValidationContextCertificateProviderInstance()
Certificate provider instance for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProviderInstance validation_context_certificate_provider_instance = 12;CommonTlsContext.CertificateProviderInstance getValidationContextCertificateProviderInstance()
Certificate provider instance for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProviderInstance validation_context_certificate_provider_instance = 12;CommonTlsContext.CertificateProviderInstanceOrBuilder getValidationContextCertificateProviderInstanceOrBuilder()
Certificate provider instance for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext.CertificateProviderInstance validation_context_certificate_provider_instance = 12;List<String> getAlpnProtocolsList()
Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_api_field_extensions.filters.network.http_connection_manager.v4alpha.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;int getAlpnProtocolsCount()
Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_api_field_extensions.filters.network.http_connection_manager.v4alpha.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;String getAlpnProtocols(int index)
Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_api_field_extensions.filters.network.http_connection_manager.v4alpha.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;com.google.protobuf.ByteString getAlpnProtocolsBytes(int index)
Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_api_field_extensions.filters.network.http_connection_manager.v4alpha.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;boolean hasCustomHandshaker()
Custom TLS handshaker. If empty, defaults to native TLS handshaking behavior.
.envoy.config.core.v4alpha.TypedExtensionConfig custom_handshaker = 13;TypedExtensionConfig getCustomHandshaker()
Custom TLS handshaker. If empty, defaults to native TLS handshaking behavior.
.envoy.config.core.v4alpha.TypedExtensionConfig custom_handshaker = 13;TypedExtensionConfigOrBuilder getCustomHandshakerOrBuilder()
Custom TLS handshaker. If empty, defaults to native TLS handshaking behavior.
.envoy.config.core.v4alpha.TypedExtensionConfig custom_handshaker = 13;CommonTlsContext.ValidationContextTypeCase getValidationContextTypeCase()
Copyright © 2018–2021 The Envoy Project. All rights reserved.