Class DownstreamTlsContext.Builder
- java.lang.Object
-
- com.google.protobuf.AbstractMessageLite.Builder
-
- com.google.protobuf.AbstractMessage.Builder<BuilderT>
-
- com.google.protobuf.GeneratedMessage.Builder<DownstreamTlsContext.Builder>
-
- io.envoyproxy.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.Builder
-
- All Implemented Interfaces:
com.google.protobuf.Message.Builder
,com.google.protobuf.MessageLite.Builder
,com.google.protobuf.MessageLiteOrBuilder
,com.google.protobuf.MessageOrBuilder
,DownstreamTlsContextOrBuilder
,java.lang.Cloneable
- Enclosing class:
- DownstreamTlsContext
public static final class DownstreamTlsContext.Builder extends com.google.protobuf.GeneratedMessage.Builder<DownstreamTlsContext.Builder> implements DownstreamTlsContextOrBuilder
[#next-free-field: 11]
Protobuf typeenvoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext
-
-
Field Summary
Fields Modifier and Type Field Description private int
bitField0_
private CommonTlsContext
commonTlsContext_
private com.google.protobuf.SingleFieldBuilder<CommonTlsContext,CommonTlsContext.Builder,CommonTlsContextOrBuilder>
commonTlsContextBuilder_
private boolean
disableStatefulSessionResumption_
private com.google.protobuf.BoolValue
fullScanCertsOnSniMismatch_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder>
fullScanCertsOnSniMismatchBuilder_
private int
ocspStaplePolicy_
private com.google.protobuf.BoolValue
requireClientCertificate_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder>
requireClientCertificateBuilder_
private com.google.protobuf.BoolValue
requireSni_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder>
requireSniBuilder_
private com.google.protobuf.SingleFieldBuilder<TlsSessionTicketKeys,TlsSessionTicketKeys.Builder,TlsSessionTicketKeysOrBuilder>
sessionTicketKeysBuilder_
private com.google.protobuf.SingleFieldBuilder<SdsSecretConfig,SdsSecretConfig.Builder,SdsSecretConfigOrBuilder>
sessionTicketKeysSdsSecretConfigBuilder_
private java.lang.Object
sessionTicketKeysType_
private int
sessionTicketKeysTypeCase_
private com.google.protobuf.Duration
sessionTimeout_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.Duration,com.google.protobuf.Duration.Builder,com.google.protobuf.DurationOrBuilder>
sessionTimeoutBuilder_
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description DownstreamTlsContext
build()
DownstreamTlsContext
buildPartial()
private void
buildPartial0(DownstreamTlsContext result)
private void
buildPartialOneofs(DownstreamTlsContext result)
DownstreamTlsContext.Builder
clear()
DownstreamTlsContext.Builder
clearCommonTlsContext()
Common TLS context settings.DownstreamTlsContext.Builder
clearDisableStatefulSessionResumption()
If set to true, the TLS server will not maintain a session cache of TLS sessions.DownstreamTlsContext.Builder
clearDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption.DownstreamTlsContext.Builder
clearFullScanCertsOnSniMismatch()
Multiple certificates are allowed in Downstream transport socket to serve different SNI.DownstreamTlsContext.Builder
clearOcspStaplePolicy()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime.DownstreamTlsContext.Builder
clearRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.DownstreamTlsContext.Builder
clearRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.DownstreamTlsContext.Builder
clearSessionTicketKeys()
TLS session ticket key settings.DownstreamTlsContext.Builder
clearSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.DownstreamTlsContext.Builder
clearSessionTicketKeysType()
DownstreamTlsContext.Builder
clearSessionTimeout()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.CommonTlsContext
getCommonTlsContext()
Common TLS context settings.CommonTlsContext.Builder
getCommonTlsContextBuilder()
Common TLS context settings.private com.google.protobuf.SingleFieldBuilder<CommonTlsContext,CommonTlsContext.Builder,CommonTlsContextOrBuilder>
getCommonTlsContextFieldBuilder()
Common TLS context settings.CommonTlsContextOrBuilder
getCommonTlsContextOrBuilder()
Common TLS context settings.DownstreamTlsContext
getDefaultInstanceForType()
static com.google.protobuf.Descriptors.Descriptor
getDescriptor()
com.google.protobuf.Descriptors.Descriptor
getDescriptorForType()
boolean
getDisableStatefulSessionResumption()
If set to true, the TLS server will not maintain a session cache of TLS sessions.boolean
getDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption.com.google.protobuf.BoolValue
getFullScanCertsOnSniMismatch()
Multiple certificates are allowed in Downstream transport socket to serve different SNI.com.google.protobuf.BoolValue.Builder
getFullScanCertsOnSniMismatchBuilder()
Multiple certificates are allowed in Downstream transport socket to serve different SNI.private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder>
getFullScanCertsOnSniMismatchFieldBuilder()
Multiple certificates are allowed in Downstream transport socket to serve different SNI.com.google.protobuf.BoolValueOrBuilder
getFullScanCertsOnSniMismatchOrBuilder()
Multiple certificates are allowed in Downstream transport socket to serve different SNI.DownstreamTlsContext.OcspStaplePolicy
getOcspStaplePolicy()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime.int
getOcspStaplePolicyValue()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime.com.google.protobuf.BoolValue
getRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.com.google.protobuf.BoolValue.Builder
getRequireClientCertificateBuilder()
If specified, Envoy will reject connections without a valid client certificate.private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder>
getRequireClientCertificateFieldBuilder()
If specified, Envoy will reject connections without a valid client certificate.com.google.protobuf.BoolValueOrBuilder
getRequireClientCertificateOrBuilder()
If specified, Envoy will reject connections without a valid client certificate.com.google.protobuf.BoolValue
getRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.com.google.protobuf.BoolValue.Builder
getRequireSniBuilder()
If specified, Envoy will reject connections without a valid and matching SNI.private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder>
getRequireSniFieldBuilder()
If specified, Envoy will reject connections without a valid and matching SNI.com.google.protobuf.BoolValueOrBuilder
getRequireSniOrBuilder()
If specified, Envoy will reject connections without a valid and matching SNI.TlsSessionTicketKeys
getSessionTicketKeys()
TLS session ticket key settings.TlsSessionTicketKeys.Builder
getSessionTicketKeysBuilder()
TLS session ticket key settings.private com.google.protobuf.SingleFieldBuilder<TlsSessionTicketKeys,TlsSessionTicketKeys.Builder,TlsSessionTicketKeysOrBuilder>
getSessionTicketKeysFieldBuilder()
TLS session ticket key settings.TlsSessionTicketKeysOrBuilder
getSessionTicketKeysOrBuilder()
TLS session ticket key settings.SdsSecretConfig
getSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.SdsSecretConfig.Builder
getSessionTicketKeysSdsSecretConfigBuilder()
Config for fetching TLS session ticket keys via SDS API.private com.google.protobuf.SingleFieldBuilder<SdsSecretConfig,SdsSecretConfig.Builder,SdsSecretConfigOrBuilder>
getSessionTicketKeysSdsSecretConfigFieldBuilder()
Config for fetching TLS session ticket keys via SDS API.SdsSecretConfigOrBuilder
getSessionTicketKeysSdsSecretConfigOrBuilder()
Config for fetching TLS session ticket keys via SDS API.DownstreamTlsContext.SessionTicketKeysTypeCase
getSessionTicketKeysTypeCase()
com.google.protobuf.Duration
getSessionTimeout()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.com.google.protobuf.Duration.Builder
getSessionTimeoutBuilder()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.Duration,com.google.protobuf.Duration.Builder,com.google.protobuf.DurationOrBuilder>
getSessionTimeoutFieldBuilder()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.com.google.protobuf.DurationOrBuilder
getSessionTimeoutOrBuilder()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.boolean
hasCommonTlsContext()
Common TLS context settings.boolean
hasDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption.boolean
hasFullScanCertsOnSniMismatch()
Multiple certificates are allowed in Downstream transport socket to serve different SNI.boolean
hasRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.boolean
hasRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI.boolean
hasSessionTicketKeys()
TLS session ticket key settings.boolean
hasSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.boolean
hasSessionTimeout()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.protected com.google.protobuf.GeneratedMessage.FieldAccessorTable
internalGetFieldAccessorTable()
boolean
isInitialized()
private void
maybeForceBuilderInitialization()
DownstreamTlsContext.Builder
mergeCommonTlsContext(CommonTlsContext value)
Common TLS context settings.DownstreamTlsContext.Builder
mergeFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry)
DownstreamTlsContext.Builder
mergeFrom(com.google.protobuf.Message other)
DownstreamTlsContext.Builder
mergeFrom(DownstreamTlsContext other)
DownstreamTlsContext.Builder
mergeFullScanCertsOnSniMismatch(com.google.protobuf.BoolValue value)
Multiple certificates are allowed in Downstream transport socket to serve different SNI.DownstreamTlsContext.Builder
mergeRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client certificate.DownstreamTlsContext.Builder
mergeRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI.DownstreamTlsContext.Builder
mergeSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.DownstreamTlsContext.Builder
mergeSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.DownstreamTlsContext.Builder
mergeSessionTimeout(com.google.protobuf.Duration value)
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.DownstreamTlsContext.Builder
setCommonTlsContext(CommonTlsContext value)
Common TLS context settings.DownstreamTlsContext.Builder
setCommonTlsContext(CommonTlsContext.Builder builderForValue)
Common TLS context settings.DownstreamTlsContext.Builder
setDisableStatefulSessionResumption(boolean value)
If set to true, the TLS server will not maintain a session cache of TLS sessions.DownstreamTlsContext.Builder
setDisableStatelessSessionResumption(boolean value)
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption.DownstreamTlsContext.Builder
setFullScanCertsOnSniMismatch(com.google.protobuf.BoolValue value)
Multiple certificates are allowed in Downstream transport socket to serve different SNI.DownstreamTlsContext.Builder
setFullScanCertsOnSniMismatch(com.google.protobuf.BoolValue.Builder builderForValue)
Multiple certificates are allowed in Downstream transport socket to serve different SNI.DownstreamTlsContext.Builder
setOcspStaplePolicy(DownstreamTlsContext.OcspStaplePolicy value)
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime.DownstreamTlsContext.Builder
setOcspStaplePolicyValue(int value)
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime.DownstreamTlsContext.Builder
setRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client certificate.DownstreamTlsContext.Builder
setRequireClientCertificate(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid client certificate.DownstreamTlsContext.Builder
setRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI.DownstreamTlsContext.Builder
setRequireSni(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid and matching SNI.DownstreamTlsContext.Builder
setSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.DownstreamTlsContext.Builder
setSessionTicketKeys(TlsSessionTicketKeys.Builder builderForValue)
TLS session ticket key settings.DownstreamTlsContext.Builder
setSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.DownstreamTlsContext.Builder
setSessionTicketKeysSdsSecretConfig(SdsSecretConfig.Builder builderForValue)
Config for fetching TLS session ticket keys via SDS API.DownstreamTlsContext.Builder
setSessionTimeout(com.google.protobuf.Duration value)
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.DownstreamTlsContext.Builder
setSessionTimeout(com.google.protobuf.Duration.Builder builderForValue)
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.-
Methods inherited from class com.google.protobuf.GeneratedMessage.Builder
addRepeatedField, clearField, clearOneof, clone, getAllFields, getField, getFieldBuilder, getOneofFieldDescriptor, getParentForChildren, getRepeatedField, getRepeatedFieldBuilder, getRepeatedFieldCount, getUnknownFields, getUnknownFieldSetBuilder, hasField, hasOneof, internalGetMapField, internalGetMapFieldReflection, internalGetMutableMapField, internalGetMutableMapFieldReflection, isClean, markClean, mergeUnknownFields, mergeUnknownLengthDelimitedField, mergeUnknownVarintField, newBuilderForField, onBuilt, onChanged, parseUnknownField, setField, setRepeatedField, setUnknownFields, setUnknownFieldSetBuilder, setUnknownFieldsProto3
-
Methods inherited from class com.google.protobuf.AbstractMessage.Builder
findInitializationErrors, getInitializationErrorString, internalMergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, newUninitializedMessageException, toString
-
Methods inherited from class com.google.protobuf.AbstractMessageLite.Builder
addAll, addAll, mergeDelimitedFrom, mergeDelimitedFrom, mergeFrom, newUninitializedMessageException
-
Methods inherited from class java.lang.Object
equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
-
-
-
-
Field Detail
-
sessionTicketKeysTypeCase_
private int sessionTicketKeysTypeCase_
-
sessionTicketKeysType_
private java.lang.Object sessionTicketKeysType_
-
bitField0_
private int bitField0_
-
commonTlsContext_
private CommonTlsContext commonTlsContext_
-
commonTlsContextBuilder_
private com.google.protobuf.SingleFieldBuilder<CommonTlsContext,CommonTlsContext.Builder,CommonTlsContextOrBuilder> commonTlsContextBuilder_
-
requireClientCertificate_
private com.google.protobuf.BoolValue requireClientCertificate_
-
requireClientCertificateBuilder_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder> requireClientCertificateBuilder_
-
requireSni_
private com.google.protobuf.BoolValue requireSni_
-
requireSniBuilder_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder> requireSniBuilder_
-
sessionTicketKeysBuilder_
private com.google.protobuf.SingleFieldBuilder<TlsSessionTicketKeys,TlsSessionTicketKeys.Builder,TlsSessionTicketKeysOrBuilder> sessionTicketKeysBuilder_
-
sessionTicketKeysSdsSecretConfigBuilder_
private com.google.protobuf.SingleFieldBuilder<SdsSecretConfig,SdsSecretConfig.Builder,SdsSecretConfigOrBuilder> sessionTicketKeysSdsSecretConfigBuilder_
-
disableStatefulSessionResumption_
private boolean disableStatefulSessionResumption_
-
sessionTimeout_
private com.google.protobuf.Duration sessionTimeout_
-
sessionTimeoutBuilder_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.Duration,com.google.protobuf.Duration.Builder,com.google.protobuf.DurationOrBuilder> sessionTimeoutBuilder_
-
ocspStaplePolicy_
private int ocspStaplePolicy_
-
fullScanCertsOnSniMismatch_
private com.google.protobuf.BoolValue fullScanCertsOnSniMismatch_
-
fullScanCertsOnSniMismatchBuilder_
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder> fullScanCertsOnSniMismatchBuilder_
-
-
Method Detail
-
getDescriptor
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor()
-
internalGetFieldAccessorTable
protected com.google.protobuf.GeneratedMessage.FieldAccessorTable internalGetFieldAccessorTable()
- Specified by:
internalGetFieldAccessorTable
in classcom.google.protobuf.GeneratedMessage.Builder<DownstreamTlsContext.Builder>
-
maybeForceBuilderInitialization
private void maybeForceBuilderInitialization()
-
clear
public DownstreamTlsContext.Builder clear()
- Specified by:
clear
in interfacecom.google.protobuf.Message.Builder
- Specified by:
clear
in interfacecom.google.protobuf.MessageLite.Builder
- Overrides:
clear
in classcom.google.protobuf.GeneratedMessage.Builder<DownstreamTlsContext.Builder>
-
getDescriptorForType
public com.google.protobuf.Descriptors.Descriptor getDescriptorForType()
- Specified by:
getDescriptorForType
in interfacecom.google.protobuf.Message.Builder
- Specified by:
getDescriptorForType
in interfacecom.google.protobuf.MessageOrBuilder
- Overrides:
getDescriptorForType
in classcom.google.protobuf.GeneratedMessage.Builder<DownstreamTlsContext.Builder>
-
getDefaultInstanceForType
public DownstreamTlsContext getDefaultInstanceForType()
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageOrBuilder
-
build
public DownstreamTlsContext build()
- Specified by:
build
in interfacecom.google.protobuf.Message.Builder
- Specified by:
build
in interfacecom.google.protobuf.MessageLite.Builder
-
buildPartial
public DownstreamTlsContext buildPartial()
- Specified by:
buildPartial
in interfacecom.google.protobuf.Message.Builder
- Specified by:
buildPartial
in interfacecom.google.protobuf.MessageLite.Builder
-
buildPartial0
private void buildPartial0(DownstreamTlsContext result)
-
buildPartialOneofs
private void buildPartialOneofs(DownstreamTlsContext result)
-
mergeFrom
public DownstreamTlsContext.Builder mergeFrom(com.google.protobuf.Message other)
- Specified by:
mergeFrom
in interfacecom.google.protobuf.Message.Builder
- Overrides:
mergeFrom
in classcom.google.protobuf.AbstractMessage.Builder<DownstreamTlsContext.Builder>
-
mergeFrom
public DownstreamTlsContext.Builder mergeFrom(DownstreamTlsContext other)
-
isInitialized
public final boolean isInitialized()
- Specified by:
isInitialized
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Overrides:
isInitialized
in classcom.google.protobuf.GeneratedMessage.Builder<DownstreamTlsContext.Builder>
-
mergeFrom
public DownstreamTlsContext.Builder mergeFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws java.io.IOException
- Specified by:
mergeFrom
in interfacecom.google.protobuf.Message.Builder
- Specified by:
mergeFrom
in interfacecom.google.protobuf.MessageLite.Builder
- Overrides:
mergeFrom
in classcom.google.protobuf.AbstractMessage.Builder<DownstreamTlsContext.Builder>
- Throws:
java.io.IOException
-
getSessionTicketKeysTypeCase
public DownstreamTlsContext.SessionTicketKeysTypeCase getSessionTicketKeysTypeCase()
- Specified by:
getSessionTicketKeysTypeCase
in interfaceDownstreamTlsContextOrBuilder
-
clearSessionTicketKeysType
public DownstreamTlsContext.Builder clearSessionTicketKeysType()
-
hasCommonTlsContext
public boolean hasCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
- Specified by:
hasCommonTlsContext
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the commonTlsContext field is set.
-
getCommonTlsContext
public CommonTlsContext getCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
- Specified by:
getCommonTlsContext
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The commonTlsContext.
-
setCommonTlsContext
public DownstreamTlsContext.Builder setCommonTlsContext(CommonTlsContext value)
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
-
setCommonTlsContext
public DownstreamTlsContext.Builder setCommonTlsContext(CommonTlsContext.Builder builderForValue)
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
-
mergeCommonTlsContext
public DownstreamTlsContext.Builder mergeCommonTlsContext(CommonTlsContext value)
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
-
clearCommonTlsContext
public DownstreamTlsContext.Builder clearCommonTlsContext()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
-
getCommonTlsContextBuilder
public CommonTlsContext.Builder getCommonTlsContextBuilder()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
-
getCommonTlsContextOrBuilder
public CommonTlsContextOrBuilder getCommonTlsContextOrBuilder()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
- Specified by:
getCommonTlsContextOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getCommonTlsContextFieldBuilder
private com.google.protobuf.SingleFieldBuilder<CommonTlsContext,CommonTlsContext.Builder,CommonTlsContextOrBuilder> getCommonTlsContextFieldBuilder()
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
-
hasRequireClientCertificate
public boolean hasRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
- Specified by:
hasRequireClientCertificate
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the requireClientCertificate field is set.
-
getRequireClientCertificate
public com.google.protobuf.BoolValue getRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
- Specified by:
getRequireClientCertificate
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The requireClientCertificate.
-
setRequireClientCertificate
public DownstreamTlsContext.Builder setRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
-
setRequireClientCertificate
public DownstreamTlsContext.Builder setRequireClientCertificate(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
-
mergeRequireClientCertificate
public DownstreamTlsContext.Builder mergeRequireClientCertificate(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
-
clearRequireClientCertificate
public DownstreamTlsContext.Builder clearRequireClientCertificate()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
-
getRequireClientCertificateBuilder
public com.google.protobuf.BoolValue.Builder getRequireClientCertificateBuilder()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
-
getRequireClientCertificateOrBuilder
public com.google.protobuf.BoolValueOrBuilder getRequireClientCertificateOrBuilder()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
- Specified by:
getRequireClientCertificateOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getRequireClientCertificateFieldBuilder
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder> getRequireClientCertificateFieldBuilder()
If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
-
hasRequireSni
public boolean hasRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
- Specified by:
hasRequireSni
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the requireSni field is set.
-
getRequireSni
public com.google.protobuf.BoolValue getRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
- Specified by:
getRequireSni
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The requireSni.
-
setRequireSni
public DownstreamTlsContext.Builder setRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
-
setRequireSni
public DownstreamTlsContext.Builder setRequireSni(com.google.protobuf.BoolValue.Builder builderForValue)
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
-
mergeRequireSni
public DownstreamTlsContext.Builder mergeRequireSni(com.google.protobuf.BoolValue value)
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
-
clearRequireSni
public DownstreamTlsContext.Builder clearRequireSni()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
-
getRequireSniBuilder
public com.google.protobuf.BoolValue.Builder getRequireSniBuilder()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
-
getRequireSniOrBuilder
public com.google.protobuf.BoolValueOrBuilder getRequireSniOrBuilder()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
- Specified by:
getRequireSniOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getRequireSniFieldBuilder
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder> getRequireSniFieldBuilder()
If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
-
hasSessionTicketKeys
public boolean hasSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
- Specified by:
hasSessionTicketKeys
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the sessionTicketKeys field is set.
-
getSessionTicketKeys
public TlsSessionTicketKeys getSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
- Specified by:
getSessionTicketKeys
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The sessionTicketKeys.
-
setSessionTicketKeys
public DownstreamTlsContext.Builder setSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
-
setSessionTicketKeys
public DownstreamTlsContext.Builder setSessionTicketKeys(TlsSessionTicketKeys.Builder builderForValue)
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
-
mergeSessionTicketKeys
public DownstreamTlsContext.Builder mergeSessionTicketKeys(TlsSessionTicketKeys value)
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
-
clearSessionTicketKeys
public DownstreamTlsContext.Builder clearSessionTicketKeys()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
-
getSessionTicketKeysBuilder
public TlsSessionTicketKeys.Builder getSessionTicketKeysBuilder()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
-
getSessionTicketKeysOrBuilder
public TlsSessionTicketKeysOrBuilder getSessionTicketKeysOrBuilder()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
- Specified by:
getSessionTicketKeysOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getSessionTicketKeysFieldBuilder
private com.google.protobuf.SingleFieldBuilder<TlsSessionTicketKeys,TlsSessionTicketKeys.Builder,TlsSessionTicketKeysOrBuilder> getSessionTicketKeysFieldBuilder()
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
-
hasSessionTicketKeysSdsSecretConfig
public boolean hasSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
- Specified by:
hasSessionTicketKeysSdsSecretConfig
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the sessionTicketKeysSdsSecretConfig field is set.
-
getSessionTicketKeysSdsSecretConfig
public SdsSecretConfig getSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
- Specified by:
getSessionTicketKeysSdsSecretConfig
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The sessionTicketKeysSdsSecretConfig.
-
setSessionTicketKeysSdsSecretConfig
public DownstreamTlsContext.Builder setSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
-
setSessionTicketKeysSdsSecretConfig
public DownstreamTlsContext.Builder setSessionTicketKeysSdsSecretConfig(SdsSecretConfig.Builder builderForValue)
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
-
mergeSessionTicketKeysSdsSecretConfig
public DownstreamTlsContext.Builder mergeSessionTicketKeysSdsSecretConfig(SdsSecretConfig value)
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
-
clearSessionTicketKeysSdsSecretConfig
public DownstreamTlsContext.Builder clearSessionTicketKeysSdsSecretConfig()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
-
getSessionTicketKeysSdsSecretConfigBuilder
public SdsSecretConfig.Builder getSessionTicketKeysSdsSecretConfigBuilder()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
-
getSessionTicketKeysSdsSecretConfigOrBuilder
public SdsSecretConfigOrBuilder getSessionTicketKeysSdsSecretConfigOrBuilder()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
- Specified by:
getSessionTicketKeysSdsSecretConfigOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getSessionTicketKeysSdsSecretConfigFieldBuilder
private com.google.protobuf.SingleFieldBuilder<SdsSecretConfig,SdsSecretConfig.Builder,SdsSecretConfigOrBuilder> getSessionTicketKeysSdsSecretConfigFieldBuilder()
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
-
hasDisableStatelessSessionResumption
public boolean hasDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;
- Specified by:
hasDisableStatelessSessionResumption
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the disableStatelessSessionResumption field is set.
-
getDisableStatelessSessionResumption
public boolean getDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;
- Specified by:
getDisableStatelessSessionResumption
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The disableStatelessSessionResumption.
-
setDisableStatelessSessionResumption
public DownstreamTlsContext.Builder setDisableStatelessSessionResumption(boolean value)
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;
- Parameters:
value
- The disableStatelessSessionResumption to set.- Returns:
- This builder for chaining.
-
clearDisableStatelessSessionResumption
public DownstreamTlsContext.Builder clearDisableStatelessSessionResumption()
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;
- Returns:
- This builder for chaining.
-
getDisableStatefulSessionResumption
public boolean getDisableStatefulSessionResumption()
If set to true, the TLS server will not maintain a session cache of TLS sessions. (This is relevant only for TLSv1.2 and earlier.)
bool disable_stateful_session_resumption = 10;
- Specified by:
getDisableStatefulSessionResumption
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The disableStatefulSessionResumption.
-
setDisableStatefulSessionResumption
public DownstreamTlsContext.Builder setDisableStatefulSessionResumption(boolean value)
If set to true, the TLS server will not maintain a session cache of TLS sessions. (This is relevant only for TLSv1.2 and earlier.)
bool disable_stateful_session_resumption = 10;
- Parameters:
value
- The disableStatefulSessionResumption to set.- Returns:
- This builder for chaining.
-
clearDisableStatefulSessionResumption
public DownstreamTlsContext.Builder clearDisableStatefulSessionResumption()
If set to true, the TLS server will not maintain a session cache of TLS sessions. (This is relevant only for TLSv1.2 and earlier.)
bool disable_stateful_session_resumption = 10;
- Returns:
- This builder for chaining.
-
hasSessionTimeout
public boolean hasSessionTimeout()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
- Specified by:
hasSessionTimeout
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the sessionTimeout field is set.
-
getSessionTimeout
public com.google.protobuf.Duration getSessionTimeout()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
- Specified by:
getSessionTimeout
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The sessionTimeout.
-
setSessionTimeout
public DownstreamTlsContext.Builder setSessionTimeout(com.google.protobuf.Duration value)
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
-
setSessionTimeout
public DownstreamTlsContext.Builder setSessionTimeout(com.google.protobuf.Duration.Builder builderForValue)
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
-
mergeSessionTimeout
public DownstreamTlsContext.Builder mergeSessionTimeout(com.google.protobuf.Duration value)
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
-
clearSessionTimeout
public DownstreamTlsContext.Builder clearSessionTimeout()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
-
getSessionTimeoutBuilder
public com.google.protobuf.Duration.Builder getSessionTimeoutBuilder()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
-
getSessionTimeoutOrBuilder
public com.google.protobuf.DurationOrBuilder getSessionTimeoutOrBuilder()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
- Specified by:
getSessionTimeoutOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getSessionTimeoutFieldBuilder
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.Duration,com.google.protobuf.Duration.Builder,com.google.protobuf.DurationOrBuilder> getSessionTimeoutFieldBuilder()
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
-
getOcspStaplePolicyValue
public int getOcspStaplePolicyValue()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }
- Specified by:
getOcspStaplePolicyValue
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The enum numeric value on the wire for ocspStaplePolicy.
-
setOcspStaplePolicyValue
public DownstreamTlsContext.Builder setOcspStaplePolicyValue(int value)
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }
- Parameters:
value
- The enum numeric value on the wire for ocspStaplePolicy to set.- Returns:
- This builder for chaining.
-
getOcspStaplePolicy
public DownstreamTlsContext.OcspStaplePolicy getOcspStaplePolicy()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }
- Specified by:
getOcspStaplePolicy
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The ocspStaplePolicy.
-
setOcspStaplePolicy
public DownstreamTlsContext.Builder setOcspStaplePolicy(DownstreamTlsContext.OcspStaplePolicy value)
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }
- Parameters:
value
- The ocspStaplePolicy to set.- Returns:
- This builder for chaining.
-
clearOcspStaplePolicy
public DownstreamTlsContext.Builder clearOcspStaplePolicy()
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }
- Returns:
- This builder for chaining.
-
hasFullScanCertsOnSniMismatch
public boolean hasFullScanCertsOnSniMismatch()
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
- Specified by:
hasFullScanCertsOnSniMismatch
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the fullScanCertsOnSniMismatch field is set.
-
getFullScanCertsOnSniMismatch
public com.google.protobuf.BoolValue getFullScanCertsOnSniMismatch()
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
- Specified by:
getFullScanCertsOnSniMismatch
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The fullScanCertsOnSniMismatch.
-
setFullScanCertsOnSniMismatch
public DownstreamTlsContext.Builder setFullScanCertsOnSniMismatch(com.google.protobuf.BoolValue value)
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
-
setFullScanCertsOnSniMismatch
public DownstreamTlsContext.Builder setFullScanCertsOnSniMismatch(com.google.protobuf.BoolValue.Builder builderForValue)
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
-
mergeFullScanCertsOnSniMismatch
public DownstreamTlsContext.Builder mergeFullScanCertsOnSniMismatch(com.google.protobuf.BoolValue value)
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
-
clearFullScanCertsOnSniMismatch
public DownstreamTlsContext.Builder clearFullScanCertsOnSniMismatch()
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
-
getFullScanCertsOnSniMismatchBuilder
public com.google.protobuf.BoolValue.Builder getFullScanCertsOnSniMismatchBuilder()
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
-
getFullScanCertsOnSniMismatchOrBuilder
public com.google.protobuf.BoolValueOrBuilder getFullScanCertsOnSniMismatchOrBuilder()
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
- Specified by:
getFullScanCertsOnSniMismatchOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getFullScanCertsOnSniMismatchFieldBuilder
private com.google.protobuf.SingleFieldBuilder<com.google.protobuf.BoolValue,com.google.protobuf.BoolValue.Builder,com.google.protobuf.BoolValueOrBuilder> getFullScanCertsOnSniMismatchFieldBuilder()
Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
-
-