Uses of Class
io.envoyproxy.envoy.extensions.transport_sockets.tls.v3.CertificateValidationContext.Builder
Packages that use CertificateValidationContext.Builder
-
Uses of CertificateValidationContext.Builder in io.envoyproxy.envoy.extensions.transport_sockets.tls.v3
Fields in io.envoyproxy.envoy.extensions.transport_sockets.tls.v3 with type parameters of type CertificateValidationContext.BuilderModifier and TypeFieldDescriptionprivate com.google.protobuf.SingleFieldBuilder
<CertificateValidationContext, CertificateValidationContext.Builder, CertificateValidationContextOrBuilder> CommonTlsContext.CombinedCertificateValidationContext.Builder.defaultValidationContextBuilder_
private com.google.protobuf.SingleFieldBuilder
<CertificateValidationContext, CertificateValidationContext.Builder, CertificateValidationContextOrBuilder> CommonTlsContext.Builder.validationContextBuilder_
private com.google.protobuf.SingleFieldBuilder
<CertificateValidationContext, CertificateValidationContext.Builder, CertificateValidationContextOrBuilder> Secret.Builder.validationContextBuilder_
Methods in io.envoyproxy.envoy.extensions.transport_sockets.tls.v3 that return CertificateValidationContext.BuilderModifier and TypeMethodDescriptionCertificateValidationContext.Builder.addAllMatchSubjectAltNames
(Iterable<? extends StringMatcher> values) Deprecated.CertificateValidationContext.Builder.addAllMatchTypedSubjectAltNames
(Iterable<? extends SubjectAltNameMatcher> values) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.addAllVerifyCertificateHash
(Iterable<String> values) An optional list of hex-encoded SHA-256 hashes.CertificateValidationContext.Builder.addAllVerifyCertificateSpki
(Iterable<String> values) An optional list of base64-encoded SHA-256 hashes.CertificateValidationContext.Builder.addMatchSubjectAltNames
(int index, StringMatcher value) Deprecated.CertificateValidationContext.Builder.addMatchSubjectAltNames
(int index, StringMatcher.Builder builderForValue) Deprecated.CertificateValidationContext.Builder.addMatchSubjectAltNames
(StringMatcher value) Deprecated.CertificateValidationContext.Builder.addMatchSubjectAltNames
(StringMatcher.Builder builderForValue) Deprecated.CertificateValidationContext.Builder.addMatchTypedSubjectAltNames
(int index, SubjectAltNameMatcher value) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.addMatchTypedSubjectAltNames
(int index, SubjectAltNameMatcher.Builder builderForValue) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.addMatchTypedSubjectAltNames
(SubjectAltNameMatcher value) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.addMatchTypedSubjectAltNames
(SubjectAltNameMatcher.Builder builderForValue) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.addVerifyCertificateHash
(String value) An optional list of hex-encoded SHA-256 hashes.CertificateValidationContext.Builder.addVerifyCertificateHashBytes
(com.google.protobuf.ByteString value) An optional list of hex-encoded SHA-256 hashes.CertificateValidationContext.Builder.addVerifyCertificateSpki
(String value) An optional list of base64-encoded SHA-256 hashes.CertificateValidationContext.Builder.addVerifyCertificateSpkiBytes
(com.google.protobuf.ByteString value) An optional list of base64-encoded SHA-256 hashes.CertificateValidationContext.Builder.clear()
CertificateValidationContext.Builder.clearAllowExpiredCertificate()
If specified, Envoy will not reject expired certificates.CertificateValidationContext.Builder.clearCaCertificateProviderInstance()
Certificate provider instance for fetching TLS certificates.CertificateValidationContext.Builder.clearCrl()
An optional `certificate revocation list <https://en.wikipedia.org/wiki/Certificate_revocation_list>`_ (in PEM format).CertificateValidationContext.Builder.clearCustomValidatorConfig()
The configuration of an extension specific certificate validator.CertificateValidationContext.Builder.clearMatchSubjectAltNames()
Deprecated.CertificateValidationContext.Builder.clearMatchTypedSubjectAltNames()
An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.clearMaxVerifyDepth()
Defines maximum depth of a certificate chain accepted in verification, the default limit is 100, though this can be system-dependent.CertificateValidationContext.Builder.clearOnlyVerifyLeafCertCrl()
If this option is set to true, only the certificate at the end of the certificate chain will be subject to validation by :ref:`CRL <envoy_v3_api_field_extensions.transport_sockets.tls.v3.CertificateValidationContext.crl>`.CertificateValidationContext.Builder.clearRequireSignedCertificateTimestamp()
[#not-implemented-hide:] Must present signed certificate time-stamp.CertificateValidationContext.Builder.clearSystemRootCerts()
Use system root certs for validation.CertificateValidationContext.Builder.clearTrustChainVerification()
Certificate trust chain verification mode.CertificateValidationContext.Builder.clearTrustedCa()
TLS certificate data containing certificate authority certificates to use in verifying a presented peer certificate (e.g.CertificateValidationContext.Builder.clearVerifyCertificateHash()
An optional list of hex-encoded SHA-256 hashes.CertificateValidationContext.Builder.clearVerifyCertificateSpki()
An optional list of base64-encoded SHA-256 hashes.CertificateValidationContext.Builder.clearWatchedDirectory()
If specified, updates of a file-based ``trusted_ca`` source will be triggered by this watch.CommonTlsContext.CombinedCertificateValidationContext.Builder.getDefaultValidationContextBuilder()
How to validate peer certificates.CommonTlsContext.Builder.getValidationContextBuilder()
How to validate peer certificates.Secret.Builder.getValidationContextBuilder()
.envoy.extensions.transport_sockets.tls.v3.CertificateValidationContext validation_context = 4;
CertificateValidationContext.Builder.mergeCaCertificateProviderInstance
(CertificateProviderPluginInstance value) Certificate provider instance for fetching TLS certificates.CertificateValidationContext.Builder.mergeCrl
(DataSource value) An optional `certificate revocation list <https://en.wikipedia.org/wiki/Certificate_revocation_list>`_ (in PEM format).CertificateValidationContext.Builder.mergeCustomValidatorConfig
(TypedExtensionConfig value) The configuration of an extension specific certificate validator.CertificateValidationContext.Builder.mergeFrom
(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) CertificateValidationContext.Builder.mergeFrom
(com.google.protobuf.Message other) CertificateValidationContext.Builder.mergeFrom
(CertificateValidationContext other) CertificateValidationContext.Builder.mergeMaxVerifyDepth
(com.google.protobuf.UInt32Value value) Defines maximum depth of a certificate chain accepted in verification, the default limit is 100, though this can be system-dependent.CertificateValidationContext.Builder.mergeRequireSignedCertificateTimestamp
(com.google.protobuf.BoolValue value) [#not-implemented-hide:] Must present signed certificate time-stamp.CertificateValidationContext.Builder.mergeSystemRootCerts
(CertificateValidationContext.SystemRootCerts value) Use system root certs for validation.CertificateValidationContext.Builder.mergeTrustedCa
(DataSource value) TLS certificate data containing certificate authority certificates to use in verifying a presented peer certificate (e.g.CertificateValidationContext.Builder.mergeWatchedDirectory
(WatchedDirectory value) If specified, updates of a file-based ``trusted_ca`` source will be triggered by this watch.CertificateValidationContext.newBuilder()
CertificateValidationContext.newBuilder
(CertificateValidationContext prototype) CertificateValidationContext.newBuilderForType()
protected CertificateValidationContext.Builder
CertificateValidationContext.newBuilderForType
(com.google.protobuf.AbstractMessage.BuilderParent parent) CertificateValidationContext.Builder.removeMatchSubjectAltNames
(int index) Deprecated.CertificateValidationContext.Builder.removeMatchTypedSubjectAltNames
(int index) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.setAllowExpiredCertificate
(boolean value) If specified, Envoy will not reject expired certificates.CertificateValidationContext.Builder.setCaCertificateProviderInstance
(CertificateProviderPluginInstance value) Certificate provider instance for fetching TLS certificates.CertificateValidationContext.Builder.setCaCertificateProviderInstance
(CertificateProviderPluginInstance.Builder builderForValue) Certificate provider instance for fetching TLS certificates.CertificateValidationContext.Builder.setCrl
(DataSource value) An optional `certificate revocation list <https://en.wikipedia.org/wiki/Certificate_revocation_list>`_ (in PEM format).CertificateValidationContext.Builder.setCrl
(DataSource.Builder builderForValue) An optional `certificate revocation list <https://en.wikipedia.org/wiki/Certificate_revocation_list>`_ (in PEM format).CertificateValidationContext.Builder.setCustomValidatorConfig
(TypedExtensionConfig value) The configuration of an extension specific certificate validator.CertificateValidationContext.Builder.setCustomValidatorConfig
(TypedExtensionConfig.Builder builderForValue) The configuration of an extension specific certificate validator.CertificateValidationContext.Builder.setMatchSubjectAltNames
(int index, StringMatcher value) Deprecated.CertificateValidationContext.Builder.setMatchSubjectAltNames
(int index, StringMatcher.Builder builderForValue) Deprecated.CertificateValidationContext.Builder.setMatchTypedSubjectAltNames
(int index, SubjectAltNameMatcher value) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.setMatchTypedSubjectAltNames
(int index, SubjectAltNameMatcher.Builder builderForValue) An optional list of Subject Alternative name matchers.CertificateValidationContext.Builder.setMaxVerifyDepth
(com.google.protobuf.UInt32Value value) Defines maximum depth of a certificate chain accepted in verification, the default limit is 100, though this can be system-dependent.CertificateValidationContext.Builder.setMaxVerifyDepth
(com.google.protobuf.UInt32Value.Builder builderForValue) Defines maximum depth of a certificate chain accepted in verification, the default limit is 100, though this can be system-dependent.CertificateValidationContext.Builder.setOnlyVerifyLeafCertCrl
(boolean value) If this option is set to true, only the certificate at the end of the certificate chain will be subject to validation by :ref:`CRL <envoy_v3_api_field_extensions.transport_sockets.tls.v3.CertificateValidationContext.crl>`.CertificateValidationContext.Builder.setRequireSignedCertificateTimestamp
(com.google.protobuf.BoolValue value) [#not-implemented-hide:] Must present signed certificate time-stamp.CertificateValidationContext.Builder.setRequireSignedCertificateTimestamp
(com.google.protobuf.BoolValue.Builder builderForValue) [#not-implemented-hide:] Must present signed certificate time-stamp.CertificateValidationContext.Builder.setSystemRootCerts
(CertificateValidationContext.SystemRootCerts value) Use system root certs for validation.CertificateValidationContext.Builder.setSystemRootCerts
(CertificateValidationContext.SystemRootCerts.Builder builderForValue) Use system root certs for validation.CertificateValidationContext.Builder.setTrustChainVerification
(CertificateValidationContext.TrustChainVerification value) Certificate trust chain verification mode.CertificateValidationContext.Builder.setTrustChainVerificationValue
(int value) Certificate trust chain verification mode.CertificateValidationContext.Builder.setTrustedCa
(DataSource value) TLS certificate data containing certificate authority certificates to use in verifying a presented peer certificate (e.g.CertificateValidationContext.Builder.setTrustedCa
(DataSource.Builder builderForValue) TLS certificate data containing certificate authority certificates to use in verifying a presented peer certificate (e.g.CertificateValidationContext.Builder.setVerifyCertificateHash
(int index, String value) An optional list of hex-encoded SHA-256 hashes.CertificateValidationContext.Builder.setVerifyCertificateSpki
(int index, String value) An optional list of base64-encoded SHA-256 hashes.CertificateValidationContext.Builder.setWatchedDirectory
(WatchedDirectory value) If specified, updates of a file-based ``trusted_ca`` source will be triggered by this watch.CertificateValidationContext.Builder.setWatchedDirectory
(WatchedDirectory.Builder builderForValue) If specified, updates of a file-based ``trusted_ca`` source will be triggered by this watch.CertificateValidationContext.toBuilder()
Methods in io.envoyproxy.envoy.extensions.transport_sockets.tls.v3 that return types with arguments of type CertificateValidationContext.BuilderModifier and TypeMethodDescriptionprivate com.google.protobuf.SingleFieldBuilder
<CertificateValidationContext, CertificateValidationContext.Builder, CertificateValidationContextOrBuilder> CommonTlsContext.CombinedCertificateValidationContext.Builder.getDefaultValidationContextFieldBuilder()
How to validate peer certificates.private com.google.protobuf.SingleFieldBuilder
<CertificateValidationContext, CertificateValidationContext.Builder, CertificateValidationContextOrBuilder> CommonTlsContext.Builder.getValidationContextFieldBuilder()
How to validate peer certificates.private com.google.protobuf.SingleFieldBuilder
<CertificateValidationContext, CertificateValidationContext.Builder, CertificateValidationContextOrBuilder> Secret.Builder.getValidationContextFieldBuilder()
.envoy.extensions.transport_sockets.tls.v3.CertificateValidationContext validation_context = 4;
Methods in io.envoyproxy.envoy.extensions.transport_sockets.tls.v3 with parameters of type CertificateValidationContext.BuilderModifier and TypeMethodDescriptionCommonTlsContext.CombinedCertificateValidationContext.Builder.setDefaultValidationContext
(CertificateValidationContext.Builder builderForValue) How to validate peer certificates.CommonTlsContext.Builder.setValidationContext
(CertificateValidationContext.Builder builderForValue) How to validate peer certificates.Secret.Builder.setValidationContext
(CertificateValidationContext.Builder builderForValue) .envoy.extensions.transport_sockets.tls.v3.CertificateValidationContext validation_context = 4;