Class TlsCertificate.Builder
- java.lang.Object
-
- com.google.protobuf.AbstractMessageLite.Builder
-
- com.google.protobuf.AbstractMessage.Builder<BuilderT>
-
- com.google.protobuf.GeneratedMessage.Builder<TlsCertificate.Builder>
-
- io.envoyproxy.envoy.extensions.transport_sockets.tls.v3.TlsCertificate.Builder
-
- All Implemented Interfaces:
com.google.protobuf.Message.Builder
,com.google.protobuf.MessageLite.Builder
,com.google.protobuf.MessageLiteOrBuilder
,com.google.protobuf.MessageOrBuilder
,TlsCertificateOrBuilder
,java.lang.Cloneable
- Enclosing class:
- TlsCertificate
public static final class TlsCertificate.Builder extends com.google.protobuf.GeneratedMessage.Builder<TlsCertificate.Builder> implements TlsCertificateOrBuilder
[#next-free-field: 9]
Protobuf typeenvoy.extensions.transport_sockets.tls.v3.TlsCertificate
-
-
Field Summary
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description TlsCertificate.Builder
addAllSignedCertificateTimestamp(java.lang.Iterable<? extends DataSource> values)
[#not-implemented-hide:]TlsCertificate.Builder
addSignedCertificateTimestamp(int index, DataSource value)
[#not-implemented-hide:]TlsCertificate.Builder
addSignedCertificateTimestamp(int index, DataSource.Builder builderForValue)
[#not-implemented-hide:]TlsCertificate.Builder
addSignedCertificateTimestamp(DataSource value)
[#not-implemented-hide:]TlsCertificate.Builder
addSignedCertificateTimestamp(DataSource.Builder builderForValue)
[#not-implemented-hide:]DataSource.Builder
addSignedCertificateTimestampBuilder()
[#not-implemented-hide:]DataSource.Builder
addSignedCertificateTimestampBuilder(int index)
[#not-implemented-hide:]TlsCertificate
build()
TlsCertificate
buildPartial()
private void
buildPartial0(TlsCertificate result)
private void
buildPartialRepeatedFields(TlsCertificate result)
TlsCertificate.Builder
clear()
TlsCertificate.Builder
clearCertificateChain()
The TLS certificate chain.TlsCertificate.Builder
clearOcspStaple()
The OCSP response to be stapled with this certificate during the handshake.TlsCertificate.Builder
clearPassword()
The password to decrypt the TLS private key.TlsCertificate.Builder
clearPkcs12()
``Pkcs12`` data containing TLS certificate, chain, and private key.TlsCertificate.Builder
clearPrivateKey()
The TLS private key.TlsCertificate.Builder
clearPrivateKeyProvider()
BoringSSL private key method provider.TlsCertificate.Builder
clearSignedCertificateTimestamp()
[#not-implemented-hide:]TlsCertificate.Builder
clearWatchedDirectory()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.private void
ensureSignedCertificateTimestampIsMutable()
DataSource
getCertificateChain()
The TLS certificate chain.DataSource.Builder
getCertificateChainBuilder()
The TLS certificate chain.private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder>
getCertificateChainFieldBuilder()
The TLS certificate chain.DataSourceOrBuilder
getCertificateChainOrBuilder()
The TLS certificate chain.TlsCertificate
getDefaultInstanceForType()
static com.google.protobuf.Descriptors.Descriptor
getDescriptor()
com.google.protobuf.Descriptors.Descriptor
getDescriptorForType()
DataSource
getOcspStaple()
The OCSP response to be stapled with this certificate during the handshake.DataSource.Builder
getOcspStapleBuilder()
The OCSP response to be stapled with this certificate during the handshake.private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder>
getOcspStapleFieldBuilder()
The OCSP response to be stapled with this certificate during the handshake.DataSourceOrBuilder
getOcspStapleOrBuilder()
The OCSP response to be stapled with this certificate during the handshake.DataSource
getPassword()
The password to decrypt the TLS private key.DataSource.Builder
getPasswordBuilder()
The password to decrypt the TLS private key.private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder>
getPasswordFieldBuilder()
The password to decrypt the TLS private key.DataSourceOrBuilder
getPasswordOrBuilder()
The password to decrypt the TLS private key.DataSource
getPkcs12()
``Pkcs12`` data containing TLS certificate, chain, and private key.DataSource.Builder
getPkcs12Builder()
``Pkcs12`` data containing TLS certificate, chain, and private key.private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder>
getPkcs12FieldBuilder()
``Pkcs12`` data containing TLS certificate, chain, and private key.DataSourceOrBuilder
getPkcs12OrBuilder()
``Pkcs12`` data containing TLS certificate, chain, and private key.DataSource
getPrivateKey()
The TLS private key.DataSource.Builder
getPrivateKeyBuilder()
The TLS private key.private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder>
getPrivateKeyFieldBuilder()
The TLS private key.DataSourceOrBuilder
getPrivateKeyOrBuilder()
The TLS private key.PrivateKeyProvider
getPrivateKeyProvider()
BoringSSL private key method provider.PrivateKeyProvider.Builder
getPrivateKeyProviderBuilder()
BoringSSL private key method provider.private com.google.protobuf.SingleFieldBuilder<PrivateKeyProvider,PrivateKeyProvider.Builder,PrivateKeyProviderOrBuilder>
getPrivateKeyProviderFieldBuilder()
BoringSSL private key method provider.PrivateKeyProviderOrBuilder
getPrivateKeyProviderOrBuilder()
BoringSSL private key method provider.DataSource
getSignedCertificateTimestamp(int index)
[#not-implemented-hide:]DataSource.Builder
getSignedCertificateTimestampBuilder(int index)
[#not-implemented-hide:]java.util.List<DataSource.Builder>
getSignedCertificateTimestampBuilderList()
[#not-implemented-hide:]int
getSignedCertificateTimestampCount()
[#not-implemented-hide:]private com.google.protobuf.RepeatedFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder>
getSignedCertificateTimestampFieldBuilder()
java.util.List<DataSource>
getSignedCertificateTimestampList()
[#not-implemented-hide:]DataSourceOrBuilder
getSignedCertificateTimestampOrBuilder(int index)
[#not-implemented-hide:]java.util.List<? extends DataSourceOrBuilder>
getSignedCertificateTimestampOrBuilderList()
[#not-implemented-hide:]WatchedDirectory
getWatchedDirectory()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.WatchedDirectory.Builder
getWatchedDirectoryBuilder()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.private com.google.protobuf.SingleFieldBuilder<WatchedDirectory,WatchedDirectory.Builder,WatchedDirectoryOrBuilder>
getWatchedDirectoryFieldBuilder()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.WatchedDirectoryOrBuilder
getWatchedDirectoryOrBuilder()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.boolean
hasCertificateChain()
The TLS certificate chain.boolean
hasOcspStaple()
The OCSP response to be stapled with this certificate during the handshake.boolean
hasPassword()
The password to decrypt the TLS private key.boolean
hasPkcs12()
``Pkcs12`` data containing TLS certificate, chain, and private key.boolean
hasPrivateKey()
The TLS private key.boolean
hasPrivateKeyProvider()
BoringSSL private key method provider.boolean
hasWatchedDirectory()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.protected com.google.protobuf.GeneratedMessage.FieldAccessorTable
internalGetFieldAccessorTable()
boolean
isInitialized()
private void
maybeForceBuilderInitialization()
TlsCertificate.Builder
mergeCertificateChain(DataSource value)
The TLS certificate chain.TlsCertificate.Builder
mergeFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry)
TlsCertificate.Builder
mergeFrom(com.google.protobuf.Message other)
TlsCertificate.Builder
mergeFrom(TlsCertificate other)
TlsCertificate.Builder
mergeOcspStaple(DataSource value)
The OCSP response to be stapled with this certificate during the handshake.TlsCertificate.Builder
mergePassword(DataSource value)
The password to decrypt the TLS private key.TlsCertificate.Builder
mergePkcs12(DataSource value)
``Pkcs12`` data containing TLS certificate, chain, and private key.TlsCertificate.Builder
mergePrivateKey(DataSource value)
The TLS private key.TlsCertificate.Builder
mergePrivateKeyProvider(PrivateKeyProvider value)
BoringSSL private key method provider.TlsCertificate.Builder
mergeWatchedDirectory(WatchedDirectory value)
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.TlsCertificate.Builder
removeSignedCertificateTimestamp(int index)
[#not-implemented-hide:]TlsCertificate.Builder
setCertificateChain(DataSource value)
The TLS certificate chain.TlsCertificate.Builder
setCertificateChain(DataSource.Builder builderForValue)
The TLS certificate chain.TlsCertificate.Builder
setOcspStaple(DataSource value)
The OCSP response to be stapled with this certificate during the handshake.TlsCertificate.Builder
setOcspStaple(DataSource.Builder builderForValue)
The OCSP response to be stapled with this certificate during the handshake.TlsCertificate.Builder
setPassword(DataSource value)
The password to decrypt the TLS private key.TlsCertificate.Builder
setPassword(DataSource.Builder builderForValue)
The password to decrypt the TLS private key.TlsCertificate.Builder
setPkcs12(DataSource value)
``Pkcs12`` data containing TLS certificate, chain, and private key.TlsCertificate.Builder
setPkcs12(DataSource.Builder builderForValue)
``Pkcs12`` data containing TLS certificate, chain, and private key.TlsCertificate.Builder
setPrivateKey(DataSource value)
The TLS private key.TlsCertificate.Builder
setPrivateKey(DataSource.Builder builderForValue)
The TLS private key.TlsCertificate.Builder
setPrivateKeyProvider(PrivateKeyProvider value)
BoringSSL private key method provider.TlsCertificate.Builder
setPrivateKeyProvider(PrivateKeyProvider.Builder builderForValue)
BoringSSL private key method provider.TlsCertificate.Builder
setSignedCertificateTimestamp(int index, DataSource value)
[#not-implemented-hide:]TlsCertificate.Builder
setSignedCertificateTimestamp(int index, DataSource.Builder builderForValue)
[#not-implemented-hide:]TlsCertificate.Builder
setWatchedDirectory(WatchedDirectory value)
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.TlsCertificate.Builder
setWatchedDirectory(WatchedDirectory.Builder builderForValue)
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch.-
Methods inherited from class com.google.protobuf.GeneratedMessage.Builder
addRepeatedField, clearField, clearOneof, clone, getAllFields, getField, getFieldBuilder, getOneofFieldDescriptor, getParentForChildren, getRepeatedField, getRepeatedFieldBuilder, getRepeatedFieldCount, getUnknownFields, getUnknownFieldSetBuilder, hasField, hasOneof, internalGetMapField, internalGetMapFieldReflection, internalGetMutableMapField, internalGetMutableMapFieldReflection, isClean, markClean, mergeUnknownFields, mergeUnknownLengthDelimitedField, mergeUnknownVarintField, newBuilderForField, onBuilt, onChanged, parseUnknownField, setField, setRepeatedField, setUnknownFields, setUnknownFieldSetBuilder, setUnknownFieldsProto3
-
Methods inherited from class com.google.protobuf.AbstractMessage.Builder
findInitializationErrors, getInitializationErrorString, internalMergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, mergeFrom, newUninitializedMessageException, toString
-
Methods inherited from class com.google.protobuf.AbstractMessageLite.Builder
addAll, addAll, mergeDelimitedFrom, mergeDelimitedFrom, mergeFrom, newUninitializedMessageException
-
Methods inherited from class java.lang.Object
equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
-
-
-
-
Field Detail
-
bitField0_
private int bitField0_
-
certificateChain_
private DataSource certificateChain_
-
certificateChainBuilder_
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> certificateChainBuilder_
-
privateKey_
private DataSource privateKey_
-
privateKeyBuilder_
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> privateKeyBuilder_
-
pkcs12_
private DataSource pkcs12_
-
pkcs12Builder_
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> pkcs12Builder_
-
watchedDirectory_
private WatchedDirectory watchedDirectory_
-
watchedDirectoryBuilder_
private com.google.protobuf.SingleFieldBuilder<WatchedDirectory,WatchedDirectory.Builder,WatchedDirectoryOrBuilder> watchedDirectoryBuilder_
-
privateKeyProvider_
private PrivateKeyProvider privateKeyProvider_
-
privateKeyProviderBuilder_
private com.google.protobuf.SingleFieldBuilder<PrivateKeyProvider,PrivateKeyProvider.Builder,PrivateKeyProviderOrBuilder> privateKeyProviderBuilder_
-
password_
private DataSource password_
-
passwordBuilder_
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> passwordBuilder_
-
ocspStaple_
private DataSource ocspStaple_
-
ocspStapleBuilder_
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> ocspStapleBuilder_
-
signedCertificateTimestamp_
private java.util.List<DataSource> signedCertificateTimestamp_
-
signedCertificateTimestampBuilder_
private com.google.protobuf.RepeatedFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> signedCertificateTimestampBuilder_
-
-
Method Detail
-
getDescriptor
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor()
-
internalGetFieldAccessorTable
protected com.google.protobuf.GeneratedMessage.FieldAccessorTable internalGetFieldAccessorTable()
- Specified by:
internalGetFieldAccessorTable
in classcom.google.protobuf.GeneratedMessage.Builder<TlsCertificate.Builder>
-
maybeForceBuilderInitialization
private void maybeForceBuilderInitialization()
-
clear
public TlsCertificate.Builder clear()
- Specified by:
clear
in interfacecom.google.protobuf.Message.Builder
- Specified by:
clear
in interfacecom.google.protobuf.MessageLite.Builder
- Overrides:
clear
in classcom.google.protobuf.GeneratedMessage.Builder<TlsCertificate.Builder>
-
getDescriptorForType
public com.google.protobuf.Descriptors.Descriptor getDescriptorForType()
- Specified by:
getDescriptorForType
in interfacecom.google.protobuf.Message.Builder
- Specified by:
getDescriptorForType
in interfacecom.google.protobuf.MessageOrBuilder
- Overrides:
getDescriptorForType
in classcom.google.protobuf.GeneratedMessage.Builder<TlsCertificate.Builder>
-
getDefaultInstanceForType
public TlsCertificate getDefaultInstanceForType()
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageOrBuilder
-
build
public TlsCertificate build()
- Specified by:
build
in interfacecom.google.protobuf.Message.Builder
- Specified by:
build
in interfacecom.google.protobuf.MessageLite.Builder
-
buildPartial
public TlsCertificate buildPartial()
- Specified by:
buildPartial
in interfacecom.google.protobuf.Message.Builder
- Specified by:
buildPartial
in interfacecom.google.protobuf.MessageLite.Builder
-
buildPartialRepeatedFields
private void buildPartialRepeatedFields(TlsCertificate result)
-
buildPartial0
private void buildPartial0(TlsCertificate result)
-
mergeFrom
public TlsCertificate.Builder mergeFrom(com.google.protobuf.Message other)
- Specified by:
mergeFrom
in interfacecom.google.protobuf.Message.Builder
- Overrides:
mergeFrom
in classcom.google.protobuf.AbstractMessage.Builder<TlsCertificate.Builder>
-
mergeFrom
public TlsCertificate.Builder mergeFrom(TlsCertificate other)
-
isInitialized
public final boolean isInitialized()
- Specified by:
isInitialized
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Overrides:
isInitialized
in classcom.google.protobuf.GeneratedMessage.Builder<TlsCertificate.Builder>
-
mergeFrom
public TlsCertificate.Builder mergeFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws java.io.IOException
- Specified by:
mergeFrom
in interfacecom.google.protobuf.Message.Builder
- Specified by:
mergeFrom
in interfacecom.google.protobuf.MessageLite.Builder
- Overrides:
mergeFrom
in classcom.google.protobuf.AbstractMessage.Builder<TlsCertificate.Builder>
- Throws:
java.io.IOException
-
hasCertificateChain
public boolean hasCertificateChain()
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
- Specified by:
hasCertificateChain
in interfaceTlsCertificateOrBuilder
- Returns:
- Whether the certificateChain field is set.
-
getCertificateChain
public DataSource getCertificateChain()
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
- Specified by:
getCertificateChain
in interfaceTlsCertificateOrBuilder
- Returns:
- The certificateChain.
-
setCertificateChain
public TlsCertificate.Builder setCertificateChain(DataSource value)
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
-
setCertificateChain
public TlsCertificate.Builder setCertificateChain(DataSource.Builder builderForValue)
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
-
mergeCertificateChain
public TlsCertificate.Builder mergeCertificateChain(DataSource value)
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
-
clearCertificateChain
public TlsCertificate.Builder clearCertificateChain()
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
-
getCertificateChainBuilder
public DataSource.Builder getCertificateChainBuilder()
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
-
getCertificateChainOrBuilder
public DataSourceOrBuilder getCertificateChainOrBuilder()
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
- Specified by:
getCertificateChainOrBuilder
in interfaceTlsCertificateOrBuilder
-
getCertificateChainFieldBuilder
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> getCertificateChainFieldBuilder()
The TLS certificate chain. If ``certificate_chain`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource certificate_chain = 1;
-
hasPrivateKey
public boolean hasPrivateKey()
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
- Specified by:
hasPrivateKey
in interfaceTlsCertificateOrBuilder
- Returns:
- Whether the privateKey field is set.
-
getPrivateKey
public DataSource getPrivateKey()
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
- Specified by:
getPrivateKey
in interfaceTlsCertificateOrBuilder
- Returns:
- The privateKey.
-
setPrivateKey
public TlsCertificate.Builder setPrivateKey(DataSource value)
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
-
setPrivateKey
public TlsCertificate.Builder setPrivateKey(DataSource.Builder builderForValue)
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
-
mergePrivateKey
public TlsCertificate.Builder mergePrivateKey(DataSource value)
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
-
clearPrivateKey
public TlsCertificate.Builder clearPrivateKey()
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
-
getPrivateKeyBuilder
public DataSource.Builder getPrivateKeyBuilder()
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
-
getPrivateKeyOrBuilder
public DataSourceOrBuilder getPrivateKeyOrBuilder()
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
- Specified by:
getPrivateKeyOrBuilder
in interfaceTlsCertificateOrBuilder
-
getPrivateKeyFieldBuilder
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> getPrivateKeyFieldBuilder()
The TLS private key. If ``private_key`` is a filesystem path, a watch will be added to the parent directory for any file moves to support rotation. This currently only applies to dynamic secrets, when the ``TlsCertificate`` is delivered via SDS.
.envoy.config.core.v3.DataSource private_key = 2 [(.udpa.annotations.sensitive) = true];
-
hasPkcs12
public boolean hasPkcs12()
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
- Specified by:
hasPkcs12
in interfaceTlsCertificateOrBuilder
- Returns:
- Whether the pkcs12 field is set.
-
getPkcs12
public DataSource getPkcs12()
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
- Specified by:
getPkcs12
in interfaceTlsCertificateOrBuilder
- Returns:
- The pkcs12.
-
setPkcs12
public TlsCertificate.Builder setPkcs12(DataSource value)
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
-
setPkcs12
public TlsCertificate.Builder setPkcs12(DataSource.Builder builderForValue)
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
-
mergePkcs12
public TlsCertificate.Builder mergePkcs12(DataSource value)
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
-
clearPkcs12
public TlsCertificate.Builder clearPkcs12()
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
-
getPkcs12Builder
public DataSource.Builder getPkcs12Builder()
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
-
getPkcs12OrBuilder
public DataSourceOrBuilder getPkcs12OrBuilder()
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
- Specified by:
getPkcs12OrBuilder
in interfaceTlsCertificateOrBuilder
-
getPkcs12FieldBuilder
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> getPkcs12FieldBuilder()
``Pkcs12`` data containing TLS certificate, chain, and private key. If ``pkcs12`` is a filesystem path, the file will be read, but no watch will be added to the parent directory, since ``pkcs12`` isn't used by SDS. This field is mutually exclusive with ``certificate_chain``, ``private_key`` and ``private_key_provider``. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>`, :ref:`certificate_chain <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.certificate_chain>`, or :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` and :ref:`pkcs12 <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.pkcs12>` fields will result in an error. Use :ref:`password <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.password>` to specify the password to unprotect the ``PKCS12`` data, if necessary.
.envoy.config.core.v3.DataSource pkcs12 = 8 [(.udpa.annotations.sensitive) = true];
-
hasWatchedDirectory
public boolean hasWatchedDirectory()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
- Specified by:
hasWatchedDirectory
in interfaceTlsCertificateOrBuilder
- Returns:
- Whether the watchedDirectory field is set.
-
getWatchedDirectory
public WatchedDirectory getWatchedDirectory()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
- Specified by:
getWatchedDirectory
in interfaceTlsCertificateOrBuilder
- Returns:
- The watchedDirectory.
-
setWatchedDirectory
public TlsCertificate.Builder setWatchedDirectory(WatchedDirectory value)
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
-
setWatchedDirectory
public TlsCertificate.Builder setWatchedDirectory(WatchedDirectory.Builder builderForValue)
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
-
mergeWatchedDirectory
public TlsCertificate.Builder mergeWatchedDirectory(WatchedDirectory value)
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
-
clearWatchedDirectory
public TlsCertificate.Builder clearWatchedDirectory()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
-
getWatchedDirectoryBuilder
public WatchedDirectory.Builder getWatchedDirectoryBuilder()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
-
getWatchedDirectoryOrBuilder
public WatchedDirectoryOrBuilder getWatchedDirectoryOrBuilder()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
- Specified by:
getWatchedDirectoryOrBuilder
in interfaceTlsCertificateOrBuilder
-
getWatchedDirectoryFieldBuilder
private com.google.protobuf.SingleFieldBuilder<WatchedDirectory,WatchedDirectory.Builder,WatchedDirectoryOrBuilder> getWatchedDirectoryFieldBuilder()
If specified, updates of file-based ``certificate_chain`` and ``private_key`` sources will be triggered by this watch. The certificate/key pair will be read together and validated for atomic read consistency (i.e. no intervening modification occurred between cert/key read, verified by file hash comparisons). This allows explicit control over the path watched, by default the parent directories of the filesystem paths in ``certificate_chain`` and ``private_key`` are watched if this field is not specified. This only applies when a ``TlsCertificate`` is delivered by SDS with references to filesystem paths. See the :ref:`SDS key rotation <sds_key_rotation>` documentation for further details.
.envoy.config.core.v3.WatchedDirectory watched_directory = 7;
-
hasPrivateKeyProvider
public boolean hasPrivateKeyProvider()
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
- Specified by:
hasPrivateKeyProvider
in interfaceTlsCertificateOrBuilder
- Returns:
- Whether the privateKeyProvider field is set.
-
getPrivateKeyProvider
public PrivateKeyProvider getPrivateKeyProvider()
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
- Specified by:
getPrivateKeyProvider
in interfaceTlsCertificateOrBuilder
- Returns:
- The privateKeyProvider.
-
setPrivateKeyProvider
public TlsCertificate.Builder setPrivateKeyProvider(PrivateKeyProvider value)
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
-
setPrivateKeyProvider
public TlsCertificate.Builder setPrivateKeyProvider(PrivateKeyProvider.Builder builderForValue)
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
-
mergePrivateKeyProvider
public TlsCertificate.Builder mergePrivateKeyProvider(PrivateKeyProvider value)
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
-
clearPrivateKeyProvider
public TlsCertificate.Builder clearPrivateKeyProvider()
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
-
getPrivateKeyProviderBuilder
public PrivateKeyProvider.Builder getPrivateKeyProviderBuilder()
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
-
getPrivateKeyProviderOrBuilder
public PrivateKeyProviderOrBuilder getPrivateKeyProviderOrBuilder()
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
- Specified by:
getPrivateKeyProviderOrBuilder
in interfaceTlsCertificateOrBuilder
-
getPrivateKeyProviderFieldBuilder
private com.google.protobuf.SingleFieldBuilder<PrivateKeyProvider,PrivateKeyProvider.Builder,PrivateKeyProviderOrBuilder> getPrivateKeyProviderFieldBuilder()
BoringSSL private key method provider. This is an alternative to :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` field. This can't be marked as ``oneof`` due to API compatibility reasons. Setting both :ref:`private_key <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key>` and :ref:`private_key_provider <envoy_v3_api_field_extensions.transport_sockets.tls.v3.TlsCertificate.private_key_provider>` fields will result in an error.
.envoy.extensions.transport_sockets.tls.v3.PrivateKeyProvider private_key_provider = 6;
-
hasPassword
public boolean hasPassword()
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
- Specified by:
hasPassword
in interfaceTlsCertificateOrBuilder
- Returns:
- Whether the password field is set.
-
getPassword
public DataSource getPassword()
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
- Specified by:
getPassword
in interfaceTlsCertificateOrBuilder
- Returns:
- The password.
-
setPassword
public TlsCertificate.Builder setPassword(DataSource value)
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
-
setPassword
public TlsCertificate.Builder setPassword(DataSource.Builder builderForValue)
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
-
mergePassword
public TlsCertificate.Builder mergePassword(DataSource value)
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
-
clearPassword
public TlsCertificate.Builder clearPassword()
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
-
getPasswordBuilder
public DataSource.Builder getPasswordBuilder()
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
-
getPasswordOrBuilder
public DataSourceOrBuilder getPasswordOrBuilder()
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
- Specified by:
getPasswordOrBuilder
in interfaceTlsCertificateOrBuilder
-
getPasswordFieldBuilder
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> getPasswordFieldBuilder()
The password to decrypt the TLS private key. If this field is not set, it is assumed that the TLS private key is not password encrypted.
.envoy.config.core.v3.DataSource password = 3 [(.udpa.annotations.sensitive) = true];
-
hasOcspStaple
public boolean hasOcspStaple()
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
- Specified by:
hasOcspStaple
in interfaceTlsCertificateOrBuilder
- Returns:
- Whether the ocspStaple field is set.
-
getOcspStaple
public DataSource getOcspStaple()
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
- Specified by:
getOcspStaple
in interfaceTlsCertificateOrBuilder
- Returns:
- The ocspStaple.
-
setOcspStaple
public TlsCertificate.Builder setOcspStaple(DataSource value)
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
-
setOcspStaple
public TlsCertificate.Builder setOcspStaple(DataSource.Builder builderForValue)
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
-
mergeOcspStaple
public TlsCertificate.Builder mergeOcspStaple(DataSource value)
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
-
clearOcspStaple
public TlsCertificate.Builder clearOcspStaple()
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
-
getOcspStapleBuilder
public DataSource.Builder getOcspStapleBuilder()
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
-
getOcspStapleOrBuilder
public DataSourceOrBuilder getOcspStapleOrBuilder()
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
- Specified by:
getOcspStapleOrBuilder
in interfaceTlsCertificateOrBuilder
-
getOcspStapleFieldBuilder
private com.google.protobuf.SingleFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> getOcspStapleFieldBuilder()
The OCSP response to be stapled with this certificate during the handshake. The response must be DER-encoded and may only be provided via ``filename`` or ``inline_bytes``. The response may pertain to only one certificate.
.envoy.config.core.v3.DataSource ocsp_staple = 4;
-
ensureSignedCertificateTimestampIsMutable
private void ensureSignedCertificateTimestampIsMutable()
-
getSignedCertificateTimestampList
public java.util.List<DataSource> getSignedCertificateTimestampList()
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
- Specified by:
getSignedCertificateTimestampList
in interfaceTlsCertificateOrBuilder
-
getSignedCertificateTimestampCount
public int getSignedCertificateTimestampCount()
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
- Specified by:
getSignedCertificateTimestampCount
in interfaceTlsCertificateOrBuilder
-
getSignedCertificateTimestamp
public DataSource getSignedCertificateTimestamp(int index)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
- Specified by:
getSignedCertificateTimestamp
in interfaceTlsCertificateOrBuilder
-
setSignedCertificateTimestamp
public TlsCertificate.Builder setSignedCertificateTimestamp(int index, DataSource value)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
setSignedCertificateTimestamp
public TlsCertificate.Builder setSignedCertificateTimestamp(int index, DataSource.Builder builderForValue)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
addSignedCertificateTimestamp
public TlsCertificate.Builder addSignedCertificateTimestamp(DataSource value)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
addSignedCertificateTimestamp
public TlsCertificate.Builder addSignedCertificateTimestamp(int index, DataSource value)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
addSignedCertificateTimestamp
public TlsCertificate.Builder addSignedCertificateTimestamp(DataSource.Builder builderForValue)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
addSignedCertificateTimestamp
public TlsCertificate.Builder addSignedCertificateTimestamp(int index, DataSource.Builder builderForValue)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
addAllSignedCertificateTimestamp
public TlsCertificate.Builder addAllSignedCertificateTimestamp(java.lang.Iterable<? extends DataSource> values)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
clearSignedCertificateTimestamp
public TlsCertificate.Builder clearSignedCertificateTimestamp()
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
removeSignedCertificateTimestamp
public TlsCertificate.Builder removeSignedCertificateTimestamp(int index)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
getSignedCertificateTimestampBuilder
public DataSource.Builder getSignedCertificateTimestampBuilder(int index)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
getSignedCertificateTimestampOrBuilder
public DataSourceOrBuilder getSignedCertificateTimestampOrBuilder(int index)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
- Specified by:
getSignedCertificateTimestampOrBuilder
in interfaceTlsCertificateOrBuilder
-
getSignedCertificateTimestampOrBuilderList
public java.util.List<? extends DataSourceOrBuilder> getSignedCertificateTimestampOrBuilderList()
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
- Specified by:
getSignedCertificateTimestampOrBuilderList
in interfaceTlsCertificateOrBuilder
-
addSignedCertificateTimestampBuilder
public DataSource.Builder addSignedCertificateTimestampBuilder()
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
addSignedCertificateTimestampBuilder
public DataSource.Builder addSignedCertificateTimestampBuilder(int index)
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
getSignedCertificateTimestampBuilderList
public java.util.List<DataSource.Builder> getSignedCertificateTimestampBuilderList()
[#not-implemented-hide:]
repeated .envoy.config.core.v3.DataSource signed_certificate_timestamp = 5;
-
getSignedCertificateTimestampFieldBuilder
private com.google.protobuf.RepeatedFieldBuilder<DataSource,DataSource.Builder,DataSourceOrBuilder> getSignedCertificateTimestampFieldBuilder()
-
-