Class DownstreamTlsContext
java.lang.Object
com.google.protobuf.AbstractMessageLite
com.google.protobuf.AbstractMessage
com.google.protobuf.GeneratedMessage
io.envoyproxy.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext
- All Implemented Interfaces:
com.google.protobuf.Message
,com.google.protobuf.MessageLite
,com.google.protobuf.MessageLiteOrBuilder
,com.google.protobuf.MessageOrBuilder
,DownstreamTlsContextOrBuilder
,Serializable
public final class DownstreamTlsContext
extends com.google.protobuf.GeneratedMessage
implements DownstreamTlsContextOrBuilder
[#next-free-field: 11]Protobuf type
envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeClassDescriptionstatic final class
[#next-free-field: 11]static enum
Protobuf enumenvoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy
static enum
Nested classes/interfaces inherited from class com.google.protobuf.GeneratedMessage
com.google.protobuf.GeneratedMessage.ExtendableBuilder<MessageT extends com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT>,
BuilderT extends com.google.protobuf.GeneratedMessage.ExtendableBuilder<MessageT, BuilderT>>, com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT extends com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT>>, com.google.protobuf.GeneratedMessage.ExtendableMessageOrBuilder<MessageT extends com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT>>, com.google.protobuf.GeneratedMessage.FieldAccessorTable, com.google.protobuf.GeneratedMessage.GeneratedExtension<ContainingT extends com.google.protobuf.Message, T>, com.google.protobuf.GeneratedMessage.UnusedPrivateParameter Nested classes/interfaces inherited from class com.google.protobuf.AbstractMessage
com.google.protobuf.AbstractMessage.BuilderParent
Nested classes/interfaces inherited from class com.google.protobuf.AbstractMessageLite
com.google.protobuf.AbstractMessageLite.InternalOneOfEnum
-
Field Summary
FieldsModifier and TypeFieldDescriptionprivate int
static final int
private CommonTlsContext
private static final DownstreamTlsContext
static final int
static final int
private boolean
static final int
private com.google.protobuf.BoolValue
private byte
static final int
private int
private static final com.google.protobuf.Parser
<DownstreamTlsContext> static final int
static final int
private com.google.protobuf.BoolValue
private com.google.protobuf.BoolValue
private static final long
static final int
static final int
static final int
private Object
private int
private com.google.protobuf.Duration
Fields inherited from class com.google.protobuf.GeneratedMessage
alwaysUseFieldBuilders, unknownFields
Fields inherited from class com.google.protobuf.AbstractMessage
memoizedSize
Fields inherited from class com.google.protobuf.AbstractMessageLite
memoizedHashCode
-
Constructor Summary
ConstructorsModifierConstructorDescriptionprivate
private
DownstreamTlsContext
(com.google.protobuf.GeneratedMessage.Builder<?> builder) -
Method Summary
Modifier and TypeMethodDescriptionboolean
Common TLS context settings.Common TLS context settings.static DownstreamTlsContext
static final com.google.protobuf.Descriptors.Descriptor
boolean
If set to true, the TLS server will not maintain a session cache of TLS sessions.boolean
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption.com.google.protobuf.BoolValue
Multiple certificates are allowed in Downstream transport socket to serve different SNI.com.google.protobuf.BoolValueOrBuilder
Multiple certificates are allowed in Downstream transport socket to serve different SNI.Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime.int
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime.com.google.protobuf.Parser
<DownstreamTlsContext> com.google.protobuf.BoolValue
If specified, Envoy will reject connections without a valid client certificate.com.google.protobuf.BoolValueOrBuilder
If specified, Envoy will reject connections without a valid client certificate.com.google.protobuf.BoolValue
If specified, Envoy will reject connections without a valid and matching SNI.com.google.protobuf.BoolValueOrBuilder
If specified, Envoy will reject connections without a valid and matching SNI.int
TLS session ticket key settings.TLS session ticket key settings.Config for fetching TLS session ticket keys via SDS API.Config for fetching TLS session ticket keys via SDS API.com.google.protobuf.Duration
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.com.google.protobuf.DurationOrBuilder
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.boolean
Common TLS context settings.boolean
Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption.boolean
Multiple certificates are allowed in Downstream transport socket to serve different SNI.int
hashCode()
boolean
If specified, Envoy will reject connections without a valid client certificate.boolean
If specified, Envoy will reject connections without a valid and matching SNI.boolean
TLS session ticket key settings.boolean
Config for fetching TLS session ticket keys via SDS API.boolean
If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session.protected com.google.protobuf.GeneratedMessage.FieldAccessorTable
final boolean
static DownstreamTlsContext.Builder
static DownstreamTlsContext.Builder
newBuilder
(DownstreamTlsContext prototype) protected DownstreamTlsContext.Builder
newBuilderForType
(com.google.protobuf.AbstractMessage.BuilderParent parent) static DownstreamTlsContext
parseDelimitedFrom
(InputStream input) static DownstreamTlsContext
parseDelimitedFrom
(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static DownstreamTlsContext
parseFrom
(byte[] data) static DownstreamTlsContext
parseFrom
(byte[] data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static DownstreamTlsContext
parseFrom
(com.google.protobuf.ByteString data) static DownstreamTlsContext
parseFrom
(com.google.protobuf.ByteString data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static DownstreamTlsContext
parseFrom
(com.google.protobuf.CodedInputStream input) static DownstreamTlsContext
parseFrom
(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static DownstreamTlsContext
parseFrom
(InputStream input) static DownstreamTlsContext
parseFrom
(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static DownstreamTlsContext
parseFrom
(ByteBuffer data) static DownstreamTlsContext
parseFrom
(ByteBuffer data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static com.google.protobuf.Parser
<DownstreamTlsContext> parser()
void
writeTo
(com.google.protobuf.CodedOutputStream output) Methods inherited from class com.google.protobuf.GeneratedMessage
canUseUnsafe, computeStringSize, computeStringSizeNoTag, emptyBooleanList, emptyDoubleList, emptyFloatList, emptyIntList, emptyList, emptyLongList, getAllFields, getDescriptorForType, getField, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof, internalGetMapField, internalGetMapFieldReflection, isStringEmpty, makeMutableCopy, makeMutableCopy, mergeFromAndMakeImmutableInternal, newFileScopedGeneratedExtension, newInstance, newMessageScopedGeneratedExtension, parseDelimitedWithIOException, parseDelimitedWithIOException, parseUnknownField, parseUnknownFieldProto3, parseWithIOException, parseWithIOException, parseWithIOException, parseWithIOException, serializeBooleanMapTo, serializeIntegerMapTo, serializeLongMapTo, serializeStringMapTo, writeReplace, writeString, writeStringNoTag
Methods inherited from class com.google.protobuf.AbstractMessage
findInitializationErrors, getInitializationErrorString, hashFields, toString
Methods inherited from class com.google.protobuf.AbstractMessageLite
addAll, checkByteStringIsUtf8, toByteArray, toByteString, writeDelimitedTo, writeTo
Methods inherited from class java.lang.Object
clone, finalize, getClass, notify, notifyAll, wait, wait, wait
Methods inherited from interface com.google.protobuf.MessageLite
toByteArray, toByteString, writeDelimitedTo, writeTo
Methods inherited from interface com.google.protobuf.MessageOrBuilder
findInitializationErrors, getAllFields, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof
-
Field Details
-
serialVersionUID
private static final long serialVersionUID- See Also:
-
bitField0_
private int bitField0_ -
sessionTicketKeysTypeCase_
private int sessionTicketKeysTypeCase_ -
sessionTicketKeysType_
-
COMMON_TLS_CONTEXT_FIELD_NUMBER
public static final int COMMON_TLS_CONTEXT_FIELD_NUMBER- See Also:
-
commonTlsContext_
-
REQUIRE_CLIENT_CERTIFICATE_FIELD_NUMBER
public static final int REQUIRE_CLIENT_CERTIFICATE_FIELD_NUMBER- See Also:
-
requireClientCertificate_
private com.google.protobuf.BoolValue requireClientCertificate_ -
REQUIRE_SNI_FIELD_NUMBER
public static final int REQUIRE_SNI_FIELD_NUMBER- See Also:
-
requireSni_
private com.google.protobuf.BoolValue requireSni_ -
SESSION_TICKET_KEYS_FIELD_NUMBER
public static final int SESSION_TICKET_KEYS_FIELD_NUMBER- See Also:
-
SESSION_TICKET_KEYS_SDS_SECRET_CONFIG_FIELD_NUMBER
public static final int SESSION_TICKET_KEYS_SDS_SECRET_CONFIG_FIELD_NUMBER- See Also:
-
DISABLE_STATELESS_SESSION_RESUMPTION_FIELD_NUMBER
public static final int DISABLE_STATELESS_SESSION_RESUMPTION_FIELD_NUMBER- See Also:
-
DISABLE_STATEFUL_SESSION_RESUMPTION_FIELD_NUMBER
public static final int DISABLE_STATEFUL_SESSION_RESUMPTION_FIELD_NUMBER- See Also:
-
disableStatefulSessionResumption_
private boolean disableStatefulSessionResumption_ -
SESSION_TIMEOUT_FIELD_NUMBER
public static final int SESSION_TIMEOUT_FIELD_NUMBER- See Also:
-
sessionTimeout_
private com.google.protobuf.Duration sessionTimeout_ -
OCSP_STAPLE_POLICY_FIELD_NUMBER
public static final int OCSP_STAPLE_POLICY_FIELD_NUMBER- See Also:
-
ocspStaplePolicy_
private int ocspStaplePolicy_ -
FULL_SCAN_CERTS_ON_SNI_MISMATCH_FIELD_NUMBER
public static final int FULL_SCAN_CERTS_ON_SNI_MISMATCH_FIELD_NUMBER- See Also:
-
fullScanCertsOnSniMismatch_
private com.google.protobuf.BoolValue fullScanCertsOnSniMismatch_ -
memoizedIsInitialized
private byte memoizedIsInitialized -
DEFAULT_INSTANCE
-
PARSER
-
-
Constructor Details
-
DownstreamTlsContext
private DownstreamTlsContext(com.google.protobuf.GeneratedMessage.Builder<?> builder) -
DownstreamTlsContext
private DownstreamTlsContext()
-
-
Method Details
-
getDescriptor
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() -
internalGetFieldAccessorTable
protected com.google.protobuf.GeneratedMessage.FieldAccessorTable internalGetFieldAccessorTable()- Specified by:
internalGetFieldAccessorTable
in classcom.google.protobuf.GeneratedMessage
-
getSessionTicketKeysTypeCase
- Specified by:
getSessionTicketKeysTypeCase
in interfaceDownstreamTlsContextOrBuilder
-
hasCommonTlsContext
public boolean hasCommonTlsContext()Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
- Specified by:
hasCommonTlsContext
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the commonTlsContext field is set.
-
getCommonTlsContext
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
- Specified by:
getCommonTlsContext
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The commonTlsContext.
-
getCommonTlsContextOrBuilder
Common TLS context settings.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext common_tls_context = 1;
- Specified by:
getCommonTlsContextOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
hasRequireClientCertificate
public boolean hasRequireClientCertificate()If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
- Specified by:
hasRequireClientCertificate
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the requireClientCertificate field is set.
-
getRequireClientCertificate
public com.google.protobuf.BoolValue getRequireClientCertificate()If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
- Specified by:
getRequireClientCertificate
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The requireClientCertificate.
-
getRequireClientCertificateOrBuilder
public com.google.protobuf.BoolValueOrBuilder getRequireClientCertificateOrBuilder()If specified, Envoy will reject connections without a valid client certificate.
.google.protobuf.BoolValue require_client_certificate = 2;
- Specified by:
getRequireClientCertificateOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
hasRequireSni
public boolean hasRequireSni()If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
- Specified by:
hasRequireSni
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the requireSni field is set.
-
getRequireSni
public com.google.protobuf.BoolValue getRequireSni()If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
- Specified by:
getRequireSni
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The requireSni.
-
getRequireSniOrBuilder
public com.google.protobuf.BoolValueOrBuilder getRequireSniOrBuilder()If specified, Envoy will reject connections without a valid and matching SNI. [#not-implemented-hide:]
.google.protobuf.BoolValue require_sni = 3;
- Specified by:
getRequireSniOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
hasSessionTicketKeys
public boolean hasSessionTicketKeys()TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
- Specified by:
hasSessionTicketKeys
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the sessionTicketKeys field is set.
-
getSessionTicketKeys
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
- Specified by:
getSessionTicketKeys
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The sessionTicketKeys.
-
getSessionTicketKeysOrBuilder
TLS session ticket key settings.
.envoy.extensions.transport_sockets.tls.v3.TlsSessionTicketKeys session_ticket_keys = 4;
- Specified by:
getSessionTicketKeysOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
hasSessionTicketKeysSdsSecretConfig
public boolean hasSessionTicketKeysSdsSecretConfig()Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
- Specified by:
hasSessionTicketKeysSdsSecretConfig
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the sessionTicketKeysSdsSecretConfig field is set.
-
getSessionTicketKeysSdsSecretConfig
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
- Specified by:
getSessionTicketKeysSdsSecretConfig
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The sessionTicketKeysSdsSecretConfig.
-
getSessionTicketKeysSdsSecretConfigOrBuilder
Config for fetching TLS session ticket keys via SDS API.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig session_ticket_keys_sds_secret_config = 5;
- Specified by:
getSessionTicketKeysSdsSecretConfigOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
hasDisableStatelessSessionResumption
public boolean hasDisableStatelessSessionResumption()Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;
- Specified by:
hasDisableStatelessSessionResumption
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the disableStatelessSessionResumption field is set.
-
getDisableStatelessSessionResumption
public boolean getDisableStatelessSessionResumption()Config for controlling stateless TLS session resumption: setting this to true will cause the TLS server to not issue TLS session tickets for the purposes of stateless TLS session resumption. If set to false, the TLS server will issue TLS session tickets and encrypt/decrypt them using the keys specified through either :ref:`session_ticket_keys <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys>` or :ref:`session_ticket_keys_sds_secret_config <envoy_v3_api_field_extensions.transport_sockets.tls.v3.DownstreamTlsContext.session_ticket_keys_sds_secret_config>`. If this config is set to false and no keys are explicitly configured, the TLS server will issue TLS session tickets and encrypt/decrypt them using an internally-generated and managed key, with the implication that sessions cannot be resumed across hot restarts or on different hosts.
bool disable_stateless_session_resumption = 7;
- Specified by:
getDisableStatelessSessionResumption
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The disableStatelessSessionResumption.
-
getDisableStatefulSessionResumption
public boolean getDisableStatefulSessionResumption()If set to true, the TLS server will not maintain a session cache of TLS sessions. (This is relevant only for TLSv1.2 and earlier.)
bool disable_stateful_session_resumption = 10;
- Specified by:
getDisableStatefulSessionResumption
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The disableStatefulSessionResumption.
-
hasSessionTimeout
public boolean hasSessionTimeout()If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
- Specified by:
hasSessionTimeout
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the sessionTimeout field is set.
-
getSessionTimeout
public com.google.protobuf.Duration getSessionTimeout()If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
- Specified by:
getSessionTimeout
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The sessionTimeout.
-
getSessionTimeoutOrBuilder
public com.google.protobuf.DurationOrBuilder getSessionTimeoutOrBuilder()If specified, ``session_timeout`` will change the maximum lifetime (in seconds) of the TLS session. Currently this value is used as a hint for the `TLS session ticket lifetime (for TLSv1.2) <https://tools.ietf.org/html/rfc5077#section-5.6>`_. Only seconds can be specified (fractional seconds are ignored).
.google.protobuf.Duration session_timeout = 6 [(.validate.rules) = { ... }
- Specified by:
getSessionTimeoutOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
getOcspStaplePolicyValue
public int getOcspStaplePolicyValue()Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }
- Specified by:
getOcspStaplePolicyValue
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The enum numeric value on the wire for ocspStaplePolicy.
-
getOcspStaplePolicy
Config for whether to use certificates if they do not have an accompanying OCSP response or if the response expires at runtime. Defaults to LENIENT_STAPLING
.envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext.OcspStaplePolicy ocsp_staple_policy = 8 [(.validate.rules) = { ... }
- Specified by:
getOcspStaplePolicy
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The ocspStaplePolicy.
-
hasFullScanCertsOnSniMismatch
public boolean hasFullScanCertsOnSniMismatch()Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
- Specified by:
hasFullScanCertsOnSniMismatch
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- Whether the fullScanCertsOnSniMismatch field is set.
-
getFullScanCertsOnSniMismatch
public com.google.protobuf.BoolValue getFullScanCertsOnSniMismatch()Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
- Specified by:
getFullScanCertsOnSniMismatch
in interfaceDownstreamTlsContextOrBuilder
- Returns:
- The fullScanCertsOnSniMismatch.
-
getFullScanCertsOnSniMismatchOrBuilder
public com.google.protobuf.BoolValueOrBuilder getFullScanCertsOnSniMismatchOrBuilder()Multiple certificates are allowed in Downstream transport socket to serve different SNI. If the client provides SNI but no such cert matched, it will decide to full scan certificates or not based on this config. Defaults to false. See more details in :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>`.
.google.protobuf.BoolValue full_scan_certs_on_sni_mismatch = 9;
- Specified by:
getFullScanCertsOnSniMismatchOrBuilder
in interfaceDownstreamTlsContextOrBuilder
-
isInitialized
public final boolean isInitialized()- Specified by:
isInitialized
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Overrides:
isInitialized
in classcom.google.protobuf.GeneratedMessage
-
writeTo
- Specified by:
writeTo
in interfacecom.google.protobuf.MessageLite
- Overrides:
writeTo
in classcom.google.protobuf.GeneratedMessage
- Throws:
IOException
-
getSerializedSize
public int getSerializedSize()- Specified by:
getSerializedSize
in interfacecom.google.protobuf.MessageLite
- Overrides:
getSerializedSize
in classcom.google.protobuf.GeneratedMessage
-
equals
- Specified by:
equals
in interfacecom.google.protobuf.Message
- Overrides:
equals
in classcom.google.protobuf.AbstractMessage
-
hashCode
public int hashCode()- Specified by:
hashCode
in interfacecom.google.protobuf.Message
- Overrides:
hashCode
in classcom.google.protobuf.AbstractMessage
-
parseFrom
public static DownstreamTlsContext parseFrom(ByteBuffer data) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static DownstreamTlsContext parseFrom(ByteBuffer data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static DownstreamTlsContext parseFrom(com.google.protobuf.ByteString data) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static DownstreamTlsContext parseFrom(com.google.protobuf.ByteString data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static DownstreamTlsContext parseFrom(byte[] data) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static DownstreamTlsContext parseFrom(byte[] data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
- Throws:
IOException
-
parseFrom
public static DownstreamTlsContext parseFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException - Throws:
IOException
-
parseDelimitedFrom
- Throws:
IOException
-
parseDelimitedFrom
public static DownstreamTlsContext parseDelimitedFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException - Throws:
IOException
-
parseFrom
public static DownstreamTlsContext parseFrom(com.google.protobuf.CodedInputStream input) throws IOException - Throws:
IOException
-
parseFrom
public static DownstreamTlsContext parseFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException - Throws:
IOException
-
newBuilderForType
- Specified by:
newBuilderForType
in interfacecom.google.protobuf.Message
- Specified by:
newBuilderForType
in interfacecom.google.protobuf.MessageLite
-
newBuilder
-
newBuilder
-
toBuilder
- Specified by:
toBuilder
in interfacecom.google.protobuf.Message
- Specified by:
toBuilder
in interfacecom.google.protobuf.MessageLite
-
newBuilderForType
protected DownstreamTlsContext.Builder newBuilderForType(com.google.protobuf.AbstractMessage.BuilderParent parent) - Overrides:
newBuilderForType
in classcom.google.protobuf.AbstractMessage
-
getDefaultInstance
-
parser
-
getParserForType
- Specified by:
getParserForType
in interfacecom.google.protobuf.Message
- Specified by:
getParserForType
in interfacecom.google.protobuf.MessageLite
- Overrides:
getParserForType
in classcom.google.protobuf.GeneratedMessage
-
getDefaultInstanceForType
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageOrBuilder
-