public final class DownstreamTlsContext extends com.google.protobuf.GeneratedMessageV3 implements DownstreamTlsContextOrBuilder
[#next-free-field: 9]Protobuf type
envoy.extensions.transport_sockets.tls.v4alpha.DownstreamTlsContext| Modifier and Type | Class and Description |
|---|---|
static class |
DownstreamTlsContext.Builder
[#next-free-field: 9]
Protobuf type
envoy.extensions.transport_sockets.tls.v4alpha.DownstreamTlsContext |
static class |
DownstreamTlsContext.OcspStaplePolicy
Protobuf enum
envoy.extensions.transport_sockets.tls.v4alpha.DownstreamTlsContext.OcspStaplePolicy |
static class |
DownstreamTlsContext.SessionTicketKeysTypeCase |
com.google.protobuf.GeneratedMessageV3.BuilderParent, com.google.protobuf.GeneratedMessageV3.ExtendableBuilder<MessageType extends com.google.protobuf.GeneratedMessageV3.ExtendableMessage,BuilderType extends com.google.protobuf.GeneratedMessageV3.ExtendableBuilder<MessageType,BuilderType>>, com.google.protobuf.GeneratedMessageV3.ExtendableMessage<MessageType extends com.google.protobuf.GeneratedMessageV3.ExtendableMessage>, com.google.protobuf.GeneratedMessageV3.ExtendableMessageOrBuilder<MessageType extends com.google.protobuf.GeneratedMessageV3.ExtendableMessage>, com.google.protobuf.GeneratedMessageV3.FieldAccessorTable, com.google.protobuf.GeneratedMessageV3.UnusedPrivateParameter| Modifier and Type | Field and Description |
|---|---|
static int |
COMMON_TLS_CONTEXT_FIELD_NUMBER |
static int |
DISABLE_STATELESS_SESSION_RESUMPTION_FIELD_NUMBER |
static int |
OCSP_STAPLE_POLICY_FIELD_NUMBER |
static int |
REQUIRE_CLIENT_CERTIFICATE_FIELD_NUMBER |
static int |
REQUIRE_SNI_FIELD_NUMBER |
static int |
SESSION_TICKET_KEYS_FIELD_NUMBER |
static int |
SESSION_TICKET_KEYS_SDS_SECRET_CONFIG_FIELD_NUMBER |
static int |
SESSION_TIMEOUT_FIELD_NUMBER |
| Modifier and Type | Method and Description |
|---|---|
boolean |
equals(Object obj) |
CommonTlsContext |
getCommonTlsContext()
Common TLS context settings.
|
CommonTlsContextOrBuilder |
getCommonTlsContextOrBuilder()
Common TLS context settings.
|
static DownstreamTlsContext |
getDefaultInstance() |
DownstreamTlsContext |
getDefaultInstanceForType() |
static com.google.protobuf.Descriptors.Descriptor |
getDescriptor() |
boolean |
getDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS
server to not issue TLS session tickets for the purposes of stateless TLS session resumption.
|
DownstreamTlsContext.OcspStaplePolicy |
getOcspStaplePolicy()
Config for whether to use certificates if they do not have
an accompanying OCSP response or if the response expires at runtime.
|
int |
getOcspStaplePolicyValue()
Config for whether to use certificates if they do not have
an accompanying OCSP response or if the response expires at runtime.
|
com.google.protobuf.Parser<DownstreamTlsContext> |
getParserForType() |
com.google.protobuf.BoolValue |
getRequireClientCertificate()
If specified, Envoy will reject connections without a valid client
certificate.
|
com.google.protobuf.BoolValueOrBuilder |
getRequireClientCertificateOrBuilder()
If specified, Envoy will reject connections without a valid client
certificate.
|
com.google.protobuf.BoolValue |
getRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.
|
com.google.protobuf.BoolValueOrBuilder |
getRequireSniOrBuilder()
If specified, Envoy will reject connections without a valid and matching SNI.
|
int |
getSerializedSize() |
TlsSessionTicketKeys |
getSessionTicketKeys()
TLS session ticket key settings.
|
TlsSessionTicketKeysOrBuilder |
getSessionTicketKeysOrBuilder()
TLS session ticket key settings.
|
SdsSecretConfig |
getSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
|
SdsSecretConfigOrBuilder |
getSessionTicketKeysSdsSecretConfigOrBuilder()
Config for fetching TLS session ticket keys via SDS API.
|
DownstreamTlsContext.SessionTicketKeysTypeCase |
getSessionTicketKeysTypeCase() |
com.google.protobuf.Duration |
getSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
com.google.protobuf.DurationOrBuilder |
getSessionTimeoutOrBuilder()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
com.google.protobuf.UnknownFieldSet |
getUnknownFields() |
boolean |
hasCommonTlsContext()
Common TLS context settings.
|
int |
hashCode() |
boolean |
hasRequireClientCertificate()
If specified, Envoy will reject connections without a valid client
certificate.
|
boolean |
hasRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.
|
boolean |
hasSessionTicketKeys()
TLS session ticket key settings.
|
boolean |
hasSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
|
boolean |
hasSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session
Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2)
<https://tools.ietf.org/html/rfc5077#section-5.6>`
only seconds could be specified (fractional seconds are going to be ignored).
|
protected com.google.protobuf.GeneratedMessageV3.FieldAccessorTable |
internalGetFieldAccessorTable() |
boolean |
isInitialized() |
static DownstreamTlsContext.Builder |
newBuilder() |
static DownstreamTlsContext.Builder |
newBuilder(DownstreamTlsContext prototype) |
DownstreamTlsContext.Builder |
newBuilderForType() |
protected DownstreamTlsContext.Builder |
newBuilderForType(com.google.protobuf.GeneratedMessageV3.BuilderParent parent) |
protected Object |
newInstance(com.google.protobuf.GeneratedMessageV3.UnusedPrivateParameter unused) |
static DownstreamTlsContext |
parseDelimitedFrom(InputStream input) |
static DownstreamTlsContext |
parseDelimitedFrom(InputStream input,
com.google.protobuf.ExtensionRegistryLite extensionRegistry) |
static DownstreamTlsContext |
parseFrom(byte[] data) |
static DownstreamTlsContext |
parseFrom(byte[] data,
com.google.protobuf.ExtensionRegistryLite extensionRegistry) |
static DownstreamTlsContext |
parseFrom(ByteBuffer data) |
static DownstreamTlsContext |
parseFrom(ByteBuffer data,
com.google.protobuf.ExtensionRegistryLite extensionRegistry) |
static DownstreamTlsContext |
parseFrom(com.google.protobuf.ByteString data) |
static DownstreamTlsContext |
parseFrom(com.google.protobuf.ByteString data,
com.google.protobuf.ExtensionRegistryLite extensionRegistry) |
static DownstreamTlsContext |
parseFrom(com.google.protobuf.CodedInputStream input) |
static DownstreamTlsContext |
parseFrom(com.google.protobuf.CodedInputStream input,
com.google.protobuf.ExtensionRegistryLite extensionRegistry) |
static DownstreamTlsContext |
parseFrom(InputStream input) |
static DownstreamTlsContext |
parseFrom(InputStream input,
com.google.protobuf.ExtensionRegistryLite extensionRegistry) |
static com.google.protobuf.Parser<DownstreamTlsContext> |
parser() |
DownstreamTlsContext.Builder |
toBuilder() |
void |
writeTo(com.google.protobuf.CodedOutputStream output) |
canUseUnsafe, computeStringSize, computeStringSizeNoTag, emptyBooleanList, emptyDoubleList, emptyFloatList, emptyIntList, emptyLongList, getAllFields, getDescriptorForType, getField, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, hasField, hasOneof, internalGetMapField, makeExtensionsImmutable, mergeFromAndMakeImmutableInternal, mutableCopy, mutableCopy, mutableCopy, mutableCopy, mutableCopy, newBooleanList, newBuilderForType, newDoubleList, newFloatList, newIntList, newLongList, parseDelimitedWithIOException, parseDelimitedWithIOException, parseUnknownField, parseUnknownFieldProto3, parseWithIOException, parseWithIOException, parseWithIOException, parseWithIOException, serializeBooleanMapTo, serializeIntegerMapTo, serializeLongMapTo, serializeStringMapTo, writeReplace, writeString, writeStringNoTagfindInitializationErrors, getInitializationErrorString, hashBoolean, hashEnum, hashEnumList, hashFields, hashLong, toStringaddAll, addAll, checkByteStringIsUtf8, toByteArray, toByteString, writeDelimitedTo, writeToclone, finalize, getClass, notify, notifyAll, wait, wait, waitpublic static final int COMMON_TLS_CONTEXT_FIELD_NUMBER
public static final int REQUIRE_CLIENT_CERTIFICATE_FIELD_NUMBER
public static final int REQUIRE_SNI_FIELD_NUMBER
public static final int SESSION_TICKET_KEYS_FIELD_NUMBER
public static final int SESSION_TICKET_KEYS_SDS_SECRET_CONFIG_FIELD_NUMBER
public static final int DISABLE_STATELESS_SESSION_RESUMPTION_FIELD_NUMBER
public static final int SESSION_TIMEOUT_FIELD_NUMBER
public static final int OCSP_STAPLE_POLICY_FIELD_NUMBER
protected Object newInstance(com.google.protobuf.GeneratedMessageV3.UnusedPrivateParameter unused)
newInstance in class com.google.protobuf.GeneratedMessageV3public final com.google.protobuf.UnknownFieldSet getUnknownFields()
getUnknownFields in interface com.google.protobuf.MessageOrBuildergetUnknownFields in class com.google.protobuf.GeneratedMessageV3public static final com.google.protobuf.Descriptors.Descriptor getDescriptor()
protected com.google.protobuf.GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
internalGetFieldAccessorTable in class com.google.protobuf.GeneratedMessageV3public DownstreamTlsContext.SessionTicketKeysTypeCase getSessionTicketKeysTypeCase()
getSessionTicketKeysTypeCase in interface DownstreamTlsContextOrBuilderpublic boolean hasCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext common_tls_context = 1;hasCommonTlsContext in interface DownstreamTlsContextOrBuilderpublic CommonTlsContext getCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext common_tls_context = 1;getCommonTlsContext in interface DownstreamTlsContextOrBuilderpublic CommonTlsContextOrBuilder getCommonTlsContextOrBuilder()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v4alpha.CommonTlsContext common_tls_context = 1;getCommonTlsContextOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;hasRequireClientCertificate in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.BoolValue getRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;getRequireClientCertificate in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.BoolValueOrBuilder getRequireClientCertificateOrBuilder()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;getRequireClientCertificateOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;hasRequireSni in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.BoolValue getRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;getRequireSni in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.BoolValueOrBuilder getRequireSniOrBuilder()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;getRequireSniOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v4alpha.TlsSessionTicketKeys session_ticket_keys = 4;hasSessionTicketKeys in interface DownstreamTlsContextOrBuilderpublic TlsSessionTicketKeys getSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v4alpha.TlsSessionTicketKeys session_ticket_keys = 4;getSessionTicketKeys in interface DownstreamTlsContextOrBuilderpublic TlsSessionTicketKeysOrBuilder getSessionTicketKeysOrBuilder()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v4alpha.TlsSessionTicketKeys session_ticket_keys = 4;getSessionTicketKeysOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean hasSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;hasSessionTicketKeysSdsSecretConfig in interface DownstreamTlsContextOrBuilderpublic SdsSecretConfig getSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;getSessionTicketKeysSdsSecretConfig in interface DownstreamTlsContextOrBuilderpublic SdsSecretConfigOrBuilder getSessionTicketKeysSdsSecretConfigOrBuilder()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v4alpha.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;getSessionTicketKeysSdsSecretConfigOrBuilder in interface DownstreamTlsContextOrBuilderpublic boolean getDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_api_field_extensions.transport_sockets.tls.v4alpha.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_api_field_extensions.transport_sockets.tls.v4alpha.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;getDisableStatelessSessionResumption in interface DownstreamTlsContextOrBuilderpublic boolean hasSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }hasSessionTimeout in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.Duration getSessionTimeout()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }getSessionTimeout in interface DownstreamTlsContextOrBuilderpublic com.google.protobuf.DurationOrBuilder getSessionTimeoutOrBuilder()
If specified, session_timeout will change maximum lifetime (in seconds) of TLS session Currently this value is used as a hint to `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>` only seconds could be specified (fractional seconds are going to be ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }getSessionTimeoutOrBuilder in interface DownstreamTlsContextOrBuilderpublic int getOcspStaplePolicyValue()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v4alpha.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }getOcspStaplePolicyValue in interface DownstreamTlsContextOrBuilderpublic DownstreamTlsContext.OcspStaplePolicy getOcspStaplePolicy()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v4alpha.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }getOcspStaplePolicy in interface DownstreamTlsContextOrBuilderpublic final boolean isInitialized()
isInitialized in interface com.google.protobuf.MessageLiteOrBuilderisInitialized in class com.google.protobuf.GeneratedMessageV3public void writeTo(com.google.protobuf.CodedOutputStream output)
throws IOException
writeTo in interface com.google.protobuf.MessageLitewriteTo in class com.google.protobuf.GeneratedMessageV3IOExceptionpublic int getSerializedSize()
getSerializedSize in interface com.google.protobuf.MessageLitegetSerializedSize in class com.google.protobuf.GeneratedMessageV3public boolean equals(Object obj)
equals in interface com.google.protobuf.Messageequals in class com.google.protobuf.AbstractMessagepublic int hashCode()
hashCode in interface com.google.protobuf.MessagehashCode in class com.google.protobuf.AbstractMessagepublic static DownstreamTlsContext parseFrom(ByteBuffer data) throws com.google.protobuf.InvalidProtocolBufferException
com.google.protobuf.InvalidProtocolBufferExceptionpublic static DownstreamTlsContext parseFrom(ByteBuffer data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException
com.google.protobuf.InvalidProtocolBufferExceptionpublic static DownstreamTlsContext parseFrom(com.google.protobuf.ByteString data) throws com.google.protobuf.InvalidProtocolBufferException
com.google.protobuf.InvalidProtocolBufferExceptionpublic static DownstreamTlsContext parseFrom(com.google.protobuf.ByteString data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException
com.google.protobuf.InvalidProtocolBufferExceptionpublic static DownstreamTlsContext parseFrom(byte[] data) throws com.google.protobuf.InvalidProtocolBufferException
com.google.protobuf.InvalidProtocolBufferExceptionpublic static DownstreamTlsContext parseFrom(byte[] data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException
com.google.protobuf.InvalidProtocolBufferExceptionpublic static DownstreamTlsContext parseFrom(InputStream input) throws IOException
IOExceptionpublic static DownstreamTlsContext parseFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
IOExceptionpublic static DownstreamTlsContext parseDelimitedFrom(InputStream input) throws IOException
IOExceptionpublic static DownstreamTlsContext parseDelimitedFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
IOExceptionpublic static DownstreamTlsContext parseFrom(com.google.protobuf.CodedInputStream input) throws IOException
IOExceptionpublic static DownstreamTlsContext parseFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException
IOExceptionpublic DownstreamTlsContext.Builder newBuilderForType()
newBuilderForType in interface com.google.protobuf.MessagenewBuilderForType in interface com.google.protobuf.MessageLitepublic static DownstreamTlsContext.Builder newBuilder()
public static DownstreamTlsContext.Builder newBuilder(DownstreamTlsContext prototype)
public DownstreamTlsContext.Builder toBuilder()
toBuilder in interface com.google.protobuf.MessagetoBuilder in interface com.google.protobuf.MessageLiteprotected DownstreamTlsContext.Builder newBuilderForType(com.google.protobuf.GeneratedMessageV3.BuilderParent parent)
newBuilderForType in class com.google.protobuf.GeneratedMessageV3public static DownstreamTlsContext getDefaultInstance()
public static com.google.protobuf.Parser<DownstreamTlsContext> parser()
public com.google.protobuf.Parser<DownstreamTlsContext> getParserForType()
getParserForType in interface com.google.protobuf.MessagegetParserForType in interface com.google.protobuf.MessageLitegetParserForType in class com.google.protobuf.GeneratedMessageV3public DownstreamTlsContext getDefaultInstanceForType()
getDefaultInstanceForType in interface com.google.protobuf.MessageLiteOrBuildergetDefaultInstanceForType in interface com.google.protobuf.MessageOrBuilderCopyright © 2018–2021 The Envoy Project. All rights reserved.