istio.networking.v1alpha3

接口 GatewayOuterClass.ServerTLSSettingsOrBuilder

所有超级接口:

com.google.protobuf.MessageLiteOrBuilder, com.google.protobuf.MessageOrBuilder

所有已知实现类:

GatewayOuterClass.ServerTLSSettings, GatewayOuterClass.ServerTLSSettings.Builder

封闭类:

GatewayOuterClass

public static interface GatewayOuterClass.ServerTLSSettingsOrBuilder
extends com.google.protobuf.MessageOrBuilder

方法概要

限定符和类型	方法和说明
String	getCaCertificates() REQUIRED if mode is `MUTUAL`.
com.google.protobuf.ByteString	getCaCertificatesBytes() REQUIRED if mode is `MUTUAL`.
String	getCipherSuites(int index) Optional: If specified, only support the specified cipher list.
com.google.protobuf.ByteString	getCipherSuitesBytes(int index) Optional: If specified, only support the specified cipher list.
int	getCipherSuitesCount() Optional: If specified, only support the specified cipher list.
List<String>	getCipherSuitesList() Optional: If specified, only support the specified cipher list.
String	getCredentialName() For gateways running on Kubernetes, the name of the secret that holds the TLS certs including the CA certificates.
com.google.protobuf.ByteString	getCredentialNameBytes() For gateways running on Kubernetes, the name of the secret that holds the TLS certs including the CA certificates.
boolean	getHttpsRedirect() If set to true, the load balancer will send a 301 redirect for all http connections, asking the clients to use HTTPS.
GatewayOuterClass.ServerTLSSettings.TLSProtocol	getMaxProtocolVersion() Optional: Maximum TLS protocol version.
int	getMaxProtocolVersionValue() Optional: Maximum TLS protocol version.
GatewayOuterClass.ServerTLSSettings.TLSProtocol	getMinProtocolVersion() Optional: Minimum TLS protocol version.
int	getMinProtocolVersionValue() Optional: Minimum TLS protocol version.
GatewayOuterClass.ServerTLSSettings.TLSmode	getMode() Optional: Indicates whether connections to this port should be secured using TLS.
int	getModeValue() Optional: Indicates whether connections to this port should be secured using TLS.
String	getPrivateKey() REQUIRED if mode is `SIMPLE` or `MUTUAL`.
com.google.protobuf.ByteString	getPrivateKeyBytes() REQUIRED if mode is `SIMPLE` or `MUTUAL`.
String	getServerCertificate() REQUIRED if mode is `SIMPLE` or `MUTUAL`.
com.google.protobuf.ByteString	getServerCertificateBytes() REQUIRED if mode is `SIMPLE` or `MUTUAL`.
String	getSubjectAltNames(int index) A list of alternate names to verify the subject identity in the certificate presented by the client.
com.google.protobuf.ByteString	getSubjectAltNamesBytes(int index) A list of alternate names to verify the subject identity in the certificate presented by the client.
int	getSubjectAltNamesCount() A list of alternate names to verify the subject identity in the certificate presented by the client.
List<String>	getSubjectAltNamesList() A list of alternate names to verify the subject identity in the certificate presented by the client.
String	getVerifyCertificateHash(int index) An optional list of hex-encoded SHA-256 hashes of the authorized client certificates.
com.google.protobuf.ByteString	getVerifyCertificateHashBytes(int index) An optional list of hex-encoded SHA-256 hashes of the authorized client certificates.
int	getVerifyCertificateHashCount() An optional list of hex-encoded SHA-256 hashes of the authorized client certificates.
List<String>	getVerifyCertificateHashList() An optional list of hex-encoded SHA-256 hashes of the authorized client certificates.
String	getVerifyCertificateSpki(int index) An optional list of base64-encoded SHA-256 hashes of the SKPIs of authorized client certificates.
com.google.protobuf.ByteString	getVerifyCertificateSpkiBytes(int index) An optional list of base64-encoded SHA-256 hashes of the SKPIs of authorized client certificates.
int	getVerifyCertificateSpkiCount() An optional list of base64-encoded SHA-256 hashes of the SKPIs of authorized client certificates.
List<String>	getVerifyCertificateSpkiList() An optional list of base64-encoded SHA-256 hashes of the SKPIs of authorized client certificates.

从接口继承的方法 com.google.protobuf.MessageOrBuilder

findInitializationErrors, getAllFields, getDefaultInstanceForType, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof

从接口继承的方法 com.google.protobuf.MessageLiteOrBuilder

isInitialized

方法详细资料

getHttpsRedirect

boolean getHttpsRedirect()

 If set to true, the load balancer will send a 301 redirect for
 all http connections, asking the clients to use HTTPS.
 

bool https_redirect = 1;

返回:

The httpsRedirect.

getModeValue

int getModeValue()

 Optional: Indicates whether connections to this port should be
 secured using TLS. The value of this field determines how TLS is
 enforced.
 

.istio.networking.v1alpha3.ServerTLSSettings.TLSmode mode = 2;

返回:

The enum numeric value on the wire for mode.

getMode

GatewayOuterClass.ServerTLSSettings.TLSmode getMode()

 Optional: Indicates whether connections to this port should be
 secured using TLS. The value of this field determines how TLS is
 enforced.
 

.istio.networking.v1alpha3.ServerTLSSettings.TLSmode mode = 2;

返回:

The mode.

getServerCertificate

String getServerCertificate()

 REQUIRED if mode is `SIMPLE` or `MUTUAL`. The path to the file
 holding the server-side TLS certificate to use.
 

string server_certificate = 3;

返回:

The serverCertificate.

getServerCertificateBytes

com.google.protobuf.ByteString getServerCertificateBytes()

 REQUIRED if mode is `SIMPLE` or `MUTUAL`. The path to the file
 holding the server-side TLS certificate to use.
 

string server_certificate = 3;

返回:

The bytes for serverCertificate.

getPrivateKey

String getPrivateKey()

 REQUIRED if mode is `SIMPLE` or `MUTUAL`. The path to the file
 holding the server's private key.
 

string private_key = 4;

返回:

The privateKey.

getPrivateKeyBytes

com.google.protobuf.ByteString getPrivateKeyBytes()

 REQUIRED if mode is `SIMPLE` or `MUTUAL`. The path to the file
 holding the server's private key.
 

string private_key = 4;

返回:

The bytes for privateKey.

getCaCertificates

String getCaCertificates()

 REQUIRED if mode is `MUTUAL`. The path to a file containing
 certificate authority certificates to use in verifying a presented
 client side certificate.
 

string ca_certificates = 5;

返回:

The caCertificates.

getCaCertificatesBytes

com.google.protobuf.ByteString getCaCertificatesBytes()

 REQUIRED if mode is `MUTUAL`. The path to a file containing
 certificate authority certificates to use in verifying a presented
 client side certificate.
 

string ca_certificates = 5;

返回:

The bytes for caCertificates.

getCredentialName

String getCredentialName()

 For gateways running on Kubernetes, the name of the secret that
 holds the TLS certs including the CA certificates. Applicable
 only on Kubernetes. The secret (of type `generic`) should
 contain the following keys and values: `key:
 <privateKey>` and `cert: <serverCert>`. For mutual TLS, 
 `cacert: <CACertificate>` can be provided in the same secret or 
 a separate secret named `<secret>-cacert`.
 Secret of type tls for server certificates along with
 ca.crt key for CA certificates is also supported.
 Only one of server certificates and CA certificate
 or credentialName can be specified.
 

string credential_name = 10;

返回:

The credentialName.

getCredentialNameBytes

com.google.protobuf.ByteString getCredentialNameBytes()

 For gateways running on Kubernetes, the name of the secret that
 holds the TLS certs including the CA certificates. Applicable
 only on Kubernetes. The secret (of type `generic`) should
 contain the following keys and values: `key:
 <privateKey>` and `cert: <serverCert>`. For mutual TLS, 
 `cacert: <CACertificate>` can be provided in the same secret or 
 a separate secret named `<secret>-cacert`.
 Secret of type tls for server certificates along with
 ca.crt key for CA certificates is also supported.
 Only one of server certificates and CA certificate
 or credentialName can be specified.
 

string credential_name = 10;

返回:

The bytes for credentialName.

getSubjectAltNamesList

List<String> getSubjectAltNamesList()

 A list of alternate names to verify the subject identity in the
 certificate presented by the client.
 

repeated string subject_alt_names = 6;

返回:

A list containing the subjectAltNames.

getSubjectAltNamesCount

int getSubjectAltNamesCount()

 A list of alternate names to verify the subject identity in the
 certificate presented by the client.
 

repeated string subject_alt_names = 6;

返回:

The count of subjectAltNames.

getSubjectAltNames

String getSubjectAltNames(int index)

 A list of alternate names to verify the subject identity in the
 certificate presented by the client.
 

repeated string subject_alt_names = 6;

参数:

index - The index of the element to return.

返回:

The subjectAltNames at the given index.

getSubjectAltNamesBytes

com.google.protobuf.ByteString getSubjectAltNamesBytes(int index)

 A list of alternate names to verify the subject identity in the
 certificate presented by the client.
 

repeated string subject_alt_names = 6;

参数:

index - The index of the value to return.

返回:

The bytes of the subjectAltNames at the given index.

getVerifyCertificateSpkiList

List<String> getVerifyCertificateSpkiList()

 An optional list of base64-encoded SHA-256 hashes of the SKPIs of
 authorized client certificates.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_spki = 11;

返回:

A list containing the verifyCertificateSpki.

getVerifyCertificateSpkiCount

int getVerifyCertificateSpkiCount()

 An optional list of base64-encoded SHA-256 hashes of the SKPIs of
 authorized client certificates.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_spki = 11;

返回:

The count of verifyCertificateSpki.

getVerifyCertificateSpki

String getVerifyCertificateSpki(int index)

 An optional list of base64-encoded SHA-256 hashes of the SKPIs of
 authorized client certificates.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_spki = 11;

参数:

index - The index of the element to return.

返回:

The verifyCertificateSpki at the given index.

getVerifyCertificateSpkiBytes

com.google.protobuf.ByteString getVerifyCertificateSpkiBytes(int index)

 An optional list of base64-encoded SHA-256 hashes of the SKPIs of
 authorized client certificates.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_spki = 11;

参数:

index - The index of the value to return.

返回:

The bytes of the verifyCertificateSpki at the given index.

getVerifyCertificateHashList

List<String> getVerifyCertificateHashList()

 An optional list of hex-encoded SHA-256 hashes of the
 authorized client certificates. Both simple and colon separated
 formats are acceptable.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_hash = 12;

返回:

A list containing the verifyCertificateHash.

getVerifyCertificateHashCount

int getVerifyCertificateHashCount()

 An optional list of hex-encoded SHA-256 hashes of the
 authorized client certificates. Both simple and colon separated
 formats are acceptable.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_hash = 12;

返回:

The count of verifyCertificateHash.

getVerifyCertificateHash

String getVerifyCertificateHash(int index)

 An optional list of hex-encoded SHA-256 hashes of the
 authorized client certificates. Both simple and colon separated
 formats are acceptable.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_hash = 12;

参数:

index - The index of the element to return.

返回:

The verifyCertificateHash at the given index.

getVerifyCertificateHashBytes

com.google.protobuf.ByteString getVerifyCertificateHashBytes(int index)

 An optional list of hex-encoded SHA-256 hashes of the
 authorized client certificates. Both simple and colon separated
 formats are acceptable.
 Note: When both verify_certificate_hash and verify_certificate_spki
 are specified, a hash matching either value will result in the
 certificate being accepted.
 

repeated string verify_certificate_hash = 12;

参数:

index - The index of the value to return.

返回:

The bytes of the verifyCertificateHash at the given index.

getMinProtocolVersionValue

int getMinProtocolVersionValue()

 Optional: Minimum TLS protocol version.
 

.istio.networking.v1alpha3.ServerTLSSettings.TLSProtocol min_protocol_version = 7;

返回:

The enum numeric value on the wire for minProtocolVersion.

getMinProtocolVersion

GatewayOuterClass.ServerTLSSettings.TLSProtocol getMinProtocolVersion()

 Optional: Minimum TLS protocol version.
 

.istio.networking.v1alpha3.ServerTLSSettings.TLSProtocol min_protocol_version = 7;

返回:

The minProtocolVersion.

getMaxProtocolVersionValue

int getMaxProtocolVersionValue()

 Optional: Maximum TLS protocol version.
 

.istio.networking.v1alpha3.ServerTLSSettings.TLSProtocol max_protocol_version = 8;

返回:

The enum numeric value on the wire for maxProtocolVersion.

getMaxProtocolVersion

GatewayOuterClass.ServerTLSSettings.TLSProtocol getMaxProtocolVersion()

 Optional: Maximum TLS protocol version.
 

.istio.networking.v1alpha3.ServerTLSSettings.TLSProtocol max_protocol_version = 8;

返回:

The maxProtocolVersion.

getCipherSuitesList

List<String> getCipherSuitesList()

 Optional: If specified, only support the specified cipher list.
 Otherwise default to the default cipher list supported by Envoy.
 

repeated string cipher_suites = 9;

返回:

A list containing the cipherSuites.

getCipherSuitesCount

int getCipherSuitesCount()

 Optional: If specified, only support the specified cipher list.
 Otherwise default to the default cipher list supported by Envoy.
 

repeated string cipher_suites = 9;

返回:

The count of cipherSuites.

getCipherSuites

String getCipherSuites(int index)

 Optional: If specified, only support the specified cipher list.
 Otherwise default to the default cipher list supported by Envoy.
 

repeated string cipher_suites = 9;

参数:

index - The index of the element to return.

返回:

The cipherSuites at the given index.

getCipherSuitesBytes

com.google.protobuf.ByteString getCipherSuitesBytes(int index)

 Optional: If specified, only support the specified cipher list.
 Otherwise default to the default cipher list supported by Envoy.
 

repeated string cipher_suites = 9;

参数:

index - The index of the value to return.

返回:

The bytes of the cipherSuites at the given index.