Class CommonTlsContext
java.lang.Object
com.google.protobuf.AbstractMessageLite
com.google.protobuf.AbstractMessage
com.google.protobuf.GeneratedMessage
io.envoyproxy.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext
- All Implemented Interfaces:
com.google.protobuf.Message
,com.google.protobuf.MessageLite
,com.google.protobuf.MessageLiteOrBuilder
,com.google.protobuf.MessageOrBuilder
,CommonTlsContextOrBuilder
,Serializable
public final class CommonTlsContext
extends com.google.protobuf.GeneratedMessage
implements CommonTlsContextOrBuilder
TLS context shared by both client and server TLS contexts. [#next-free-field: 16]Protobuf type
envoy.extensions.transport_sockets.tls.v3.CommonTlsContext
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeClassDescriptionstatic final class
TLS context shared by both client and server TLS contexts.static final class
Config for Certificate provider to get certificates.static final class
Similar to CertificateProvider above, but allows the provider instances to be configured on the client side instead of being sent from the control plane.static interface
static interface
static final class
Protobuf typeenvoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CombinedCertificateValidationContext
static interface
static enum
Nested classes/interfaces inherited from class com.google.protobuf.GeneratedMessage
com.google.protobuf.GeneratedMessage.ExtendableBuilder<MessageT extends com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT>,
BuilderT extends com.google.protobuf.GeneratedMessage.ExtendableBuilder<MessageT, BuilderT>>, com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT extends com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT>>, com.google.protobuf.GeneratedMessage.ExtendableMessageOrBuilder<MessageT extends com.google.protobuf.GeneratedMessage.ExtendableMessage<MessageT>>, com.google.protobuf.GeneratedMessage.FieldAccessorTable, com.google.protobuf.GeneratedMessage.GeneratedExtension<ContainingT extends com.google.protobuf.Message, T>, com.google.protobuf.GeneratedMessage.UnusedPrivateParameter Nested classes/interfaces inherited from class com.google.protobuf.AbstractMessage
com.google.protobuf.AbstractMessage.BuilderParent
Nested classes/interfaces inherited from class com.google.protobuf.AbstractMessageLite
com.google.protobuf.AbstractMessageLite.InternalOneOfEnum
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final int
private com.google.protobuf.LazyStringArrayList
private int
static final int
static final int
private TypedExtensionConfig
private static final CommonTlsContext
static final int
private TlsKeyLog
private byte
private static final com.google.protobuf.Parser
<CommonTlsContext> private static final long
static final int
static final int
static final int
static final int
static final int
static final int
private List
<TlsCertificate> private List
<SdsSecretConfig> private TlsParameters
static final int
static final int
static final int
static final int
private Object
private int
Fields inherited from class com.google.protobuf.GeneratedMessage
alwaysUseFieldBuilders, unknownFields
Fields inherited from class com.google.protobuf.AbstractMessage
memoizedSize
Fields inherited from class com.google.protobuf.AbstractMessageLite
memoizedHashCode
-
Constructor Summary
ConstructorsModifierConstructorDescriptionprivate
private
CommonTlsContext
(com.google.protobuf.GeneratedMessage.Builder<?> builder) -
Method Summary
Modifier and TypeMethodDescriptionboolean
getAlpnProtocols
(int index) Supplies the list of ALPN protocols that the listener should expose.com.google.protobuf.ByteString
getAlpnProtocolsBytes
(int index) Supplies the list of ALPN protocols that the listener should expose.int
Supplies the list of ALPN protocols that the listener should expose.com.google.protobuf.ProtocolStringList
Supplies the list of ALPN protocols that the listener should expose.Combined certificate validation context holds a default CertificateValidationContext and SDS config.Combined certificate validation context holds a default CertificateValidationContext and SDS config.Custom TLS handshaker.Custom TLS handshaker.static CommonTlsContext
static final com.google.protobuf.Descriptors.Descriptor
TLS key log configurationTLS key log configurationcom.google.protobuf.Parser
<CommonTlsContext> int
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider is deprecated.Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider_instance is deprecated.Deprecated.Deprecated.Certificate provider instance for fetching TLS certs.Certificate provider instance for fetching TLS certs.getTlsCertificates
(int index) Only a single TLS certificate is supported in client contexts.int
Only a single TLS certificate is supported in client contexts.getTlsCertificateSdsSecretConfigs
(int index) Configs for fetching TLS certificates via SDS API.int
Configs for fetching TLS certificates via SDS API.Configs for fetching TLS certificates via SDS API.getTlsCertificateSdsSecretConfigsOrBuilder
(int index) Configs for fetching TLS certificates via SDS API.List
<? extends SdsSecretConfigOrBuilder> Configs for fetching TLS certificates via SDS API.Only a single TLS certificate is supported in client contexts.getTlsCertificatesOrBuilder
(int index) Only a single TLS certificate is supported in client contexts.List
<? extends TlsCertificateOrBuilder> Only a single TLS certificate is supported in client contexts.TLS protocol versions, cipher suites etc.TLS protocol versions, cipher suites etc.How to validate peer certificates.Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider is deprecated.Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider_instance is deprecated.Deprecated.Deprecated.How to validate peer certificates.Config for fetching validation context via SDS API.Config for fetching validation context via SDS API.boolean
Combined certificate validation context holds a default CertificateValidationContext and SDS config.boolean
Custom TLS handshaker.int
hashCode()
boolean
TLS key log configurationboolean
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider is deprecated.boolean
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider_instance is deprecated.boolean
Certificate provider instance for fetching TLS certs.boolean
TLS protocol versions, cipher suites etc.boolean
How to validate peer certificates.boolean
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider is deprecated.boolean
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider_instance is deprecated.boolean
Config for fetching validation context via SDS API.protected com.google.protobuf.GeneratedMessage.FieldAccessorTable
final boolean
static CommonTlsContext.Builder
static CommonTlsContext.Builder
newBuilder
(CommonTlsContext prototype) protected CommonTlsContext.Builder
newBuilderForType
(com.google.protobuf.AbstractMessage.BuilderParent parent) static CommonTlsContext
parseDelimitedFrom
(InputStream input) static CommonTlsContext
parseDelimitedFrom
(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static CommonTlsContext
parseFrom
(byte[] data) static CommonTlsContext
parseFrom
(byte[] data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static CommonTlsContext
parseFrom
(com.google.protobuf.ByteString data) static CommonTlsContext
parseFrom
(com.google.protobuf.ByteString data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static CommonTlsContext
parseFrom
(com.google.protobuf.CodedInputStream input) static CommonTlsContext
parseFrom
(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static CommonTlsContext
parseFrom
(InputStream input) static CommonTlsContext
parseFrom
(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static CommonTlsContext
parseFrom
(ByteBuffer data) static CommonTlsContext
parseFrom
(ByteBuffer data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) static com.google.protobuf.Parser
<CommonTlsContext> parser()
void
writeTo
(com.google.protobuf.CodedOutputStream output) Methods inherited from class com.google.protobuf.GeneratedMessage
canUseUnsafe, computeStringSize, computeStringSizeNoTag, emptyBooleanList, emptyDoubleList, emptyFloatList, emptyIntList, emptyList, emptyLongList, getAllFields, getDescriptorForType, getField, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof, internalGetMapField, internalGetMapFieldReflection, isStringEmpty, makeMutableCopy, makeMutableCopy, mergeFromAndMakeImmutableInternal, newFileScopedGeneratedExtension, newInstance, newMessageScopedGeneratedExtension, parseDelimitedWithIOException, parseDelimitedWithIOException, parseUnknownField, parseUnknownFieldProto3, parseWithIOException, parseWithIOException, parseWithIOException, parseWithIOException, serializeBooleanMapTo, serializeIntegerMapTo, serializeLongMapTo, serializeStringMapTo, writeReplace, writeString, writeStringNoTag
Methods inherited from class com.google.protobuf.AbstractMessage
findInitializationErrors, getInitializationErrorString, hashFields, toString
Methods inherited from class com.google.protobuf.AbstractMessageLite
addAll, checkByteStringIsUtf8, toByteArray, toByteString, writeDelimitedTo, writeTo
Methods inherited from class java.lang.Object
clone, finalize, getClass, notify, notifyAll, wait, wait, wait
Methods inherited from interface com.google.protobuf.MessageLite
toByteArray, toByteString, writeDelimitedTo, writeTo
Methods inherited from interface com.google.protobuf.MessageOrBuilder
findInitializationErrors, getAllFields, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof
-
Field Details
-
serialVersionUID
private static final long serialVersionUID- See Also:
-
bitField0_
private int bitField0_ -
validationContextTypeCase_
private int validationContextTypeCase_ -
validationContextType_
-
TLS_PARAMS_FIELD_NUMBER
public static final int TLS_PARAMS_FIELD_NUMBER- See Also:
-
tlsParams_
-
TLS_CERTIFICATES_FIELD_NUMBER
public static final int TLS_CERTIFICATES_FIELD_NUMBER- See Also:
-
tlsCertificates_
-
TLS_CERTIFICATE_SDS_SECRET_CONFIGS_FIELD_NUMBER
public static final int TLS_CERTIFICATE_SDS_SECRET_CONFIGS_FIELD_NUMBER- See Also:
-
tlsCertificateSdsSecretConfigs_
-
TLS_CERTIFICATE_PROVIDER_INSTANCE_FIELD_NUMBER
public static final int TLS_CERTIFICATE_PROVIDER_INSTANCE_FIELD_NUMBER- See Also:
-
tlsCertificateProviderInstance_
-
TLS_CERTIFICATE_CERTIFICATE_PROVIDER_FIELD_NUMBER
public static final int TLS_CERTIFICATE_CERTIFICATE_PROVIDER_FIELD_NUMBER- See Also:
-
tlsCertificateCertificateProvider_
-
TLS_CERTIFICATE_CERTIFICATE_PROVIDER_INSTANCE_FIELD_NUMBER
public static final int TLS_CERTIFICATE_CERTIFICATE_PROVIDER_INSTANCE_FIELD_NUMBER- See Also:
-
tlsCertificateCertificateProviderInstance_
-
VALIDATION_CONTEXT_FIELD_NUMBER
public static final int VALIDATION_CONTEXT_FIELD_NUMBER- See Also:
-
VALIDATION_CONTEXT_SDS_SECRET_CONFIG_FIELD_NUMBER
public static final int VALIDATION_CONTEXT_SDS_SECRET_CONFIG_FIELD_NUMBER- See Also:
-
COMBINED_VALIDATION_CONTEXT_FIELD_NUMBER
public static final int COMBINED_VALIDATION_CONTEXT_FIELD_NUMBER- See Also:
-
VALIDATION_CONTEXT_CERTIFICATE_PROVIDER_FIELD_NUMBER
public static final int VALIDATION_CONTEXT_CERTIFICATE_PROVIDER_FIELD_NUMBER- See Also:
-
VALIDATION_CONTEXT_CERTIFICATE_PROVIDER_INSTANCE_FIELD_NUMBER
public static final int VALIDATION_CONTEXT_CERTIFICATE_PROVIDER_INSTANCE_FIELD_NUMBER- See Also:
-
ALPN_PROTOCOLS_FIELD_NUMBER
public static final int ALPN_PROTOCOLS_FIELD_NUMBER- See Also:
-
alpnProtocols_
private com.google.protobuf.LazyStringArrayList alpnProtocols_ -
CUSTOM_HANDSHAKER_FIELD_NUMBER
public static final int CUSTOM_HANDSHAKER_FIELD_NUMBER- See Also:
-
customHandshaker_
-
KEY_LOG_FIELD_NUMBER
public static final int KEY_LOG_FIELD_NUMBER- See Also:
-
keyLog_
-
memoizedIsInitialized
private byte memoizedIsInitialized -
DEFAULT_INSTANCE
-
PARSER
-
-
Constructor Details
-
CommonTlsContext
private CommonTlsContext(com.google.protobuf.GeneratedMessage.Builder<?> builder) -
CommonTlsContext
private CommonTlsContext()
-
-
Method Details
-
getDescriptor
public static final com.google.protobuf.Descriptors.Descriptor getDescriptor() -
internalGetFieldAccessorTable
protected com.google.protobuf.GeneratedMessage.FieldAccessorTable internalGetFieldAccessorTable()- Specified by:
internalGetFieldAccessorTable
in classcom.google.protobuf.GeneratedMessage
-
getValidationContextTypeCase
- Specified by:
getValidationContextTypeCase
in interfaceCommonTlsContextOrBuilder
-
hasTlsParams
public boolean hasTlsParams()TLS protocol versions, cipher suites etc.
.envoy.extensions.transport_sockets.tls.v3.TlsParameters tls_params = 1;
- Specified by:
hasTlsParams
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the tlsParams field is set.
-
getTlsParams
TLS protocol versions, cipher suites etc.
.envoy.extensions.transport_sockets.tls.v3.TlsParameters tls_params = 1;
- Specified by:
getTlsParams
in interfaceCommonTlsContextOrBuilder
- Returns:
- The tlsParams.
-
getTlsParamsOrBuilder
TLS protocol versions, cipher suites etc.
.envoy.extensions.transport_sockets.tls.v3.TlsParameters tls_params = 1;
- Specified by:
getTlsParamsOrBuilder
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificatesList
Only a single TLS certificate is supported in client contexts. In server contexts, :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates and support SNI-based selection. If ``tls_certificate_provider_instance`` is set, this field is ignored. If this field is set, ``tls_certificate_sds_secret_configs`` is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.TlsCertificate tls_certificates = 2;
- Specified by:
getTlsCertificatesList
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificatesOrBuilderList
Only a single TLS certificate is supported in client contexts. In server contexts, :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates and support SNI-based selection. If ``tls_certificate_provider_instance`` is set, this field is ignored. If this field is set, ``tls_certificate_sds_secret_configs`` is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.TlsCertificate tls_certificates = 2;
- Specified by:
getTlsCertificatesOrBuilderList
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificatesCount
public int getTlsCertificatesCount()Only a single TLS certificate is supported in client contexts. In server contexts, :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates and support SNI-based selection. If ``tls_certificate_provider_instance`` is set, this field is ignored. If this field is set, ``tls_certificate_sds_secret_configs`` is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.TlsCertificate tls_certificates = 2;
- Specified by:
getTlsCertificatesCount
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificates
Only a single TLS certificate is supported in client contexts. In server contexts, :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates and support SNI-based selection. If ``tls_certificate_provider_instance`` is set, this field is ignored. If this field is set, ``tls_certificate_sds_secret_configs`` is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.TlsCertificate tls_certificates = 2;
- Specified by:
getTlsCertificates
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificatesOrBuilder
Only a single TLS certificate is supported in client contexts. In server contexts, :ref:`Multiple TLS certificates <arch_overview_ssl_cert_select>` can be associated with the same context to allow both RSA and ECDSA certificates and support SNI-based selection. If ``tls_certificate_provider_instance`` is set, this field is ignored. If this field is set, ``tls_certificate_sds_secret_configs`` is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.TlsCertificate tls_certificates = 2;
- Specified by:
getTlsCertificatesOrBuilder
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificateSdsSecretConfigsList
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake. The same number and types of certificates as :ref:`tls_certificates <envoy_v3_api_field_extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificates>` are valid in the the certificates fetched through this setting. If ``tls_certificates`` or ``tls_certificate_provider_instance`` are set, this field is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig tls_certificate_sds_secret_configs = 6;
- Specified by:
getTlsCertificateSdsSecretConfigsList
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificateSdsSecretConfigsOrBuilderList
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake. The same number and types of certificates as :ref:`tls_certificates <envoy_v3_api_field_extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificates>` are valid in the the certificates fetched through this setting. If ``tls_certificates`` or ``tls_certificate_provider_instance`` are set, this field is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig tls_certificate_sds_secret_configs = 6;
- Specified by:
getTlsCertificateSdsSecretConfigsOrBuilderList
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificateSdsSecretConfigsCount
public int getTlsCertificateSdsSecretConfigsCount()Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake. The same number and types of certificates as :ref:`tls_certificates <envoy_v3_api_field_extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificates>` are valid in the the certificates fetched through this setting. If ``tls_certificates`` or ``tls_certificate_provider_instance`` are set, this field is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig tls_certificate_sds_secret_configs = 6;
- Specified by:
getTlsCertificateSdsSecretConfigsCount
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificateSdsSecretConfigs
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake. The same number and types of certificates as :ref:`tls_certificates <envoy_v3_api_field_extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificates>` are valid in the the certificates fetched through this setting. If ``tls_certificates`` or ``tls_certificate_provider_instance`` are set, this field is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig tls_certificate_sds_secret_configs = 6;
- Specified by:
getTlsCertificateSdsSecretConfigs
in interfaceCommonTlsContextOrBuilder
-
getTlsCertificateSdsSecretConfigsOrBuilder
Configs for fetching TLS certificates via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake. The same number and types of certificates as :ref:`tls_certificates <envoy_v3_api_field_extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificates>` are valid in the the certificates fetched through this setting. If ``tls_certificates`` or ``tls_certificate_provider_instance`` are set, this field is ignored.
repeated .envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig tls_certificate_sds_secret_configs = 6;
- Specified by:
getTlsCertificateSdsSecretConfigsOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasTlsCertificateProviderInstance
public boolean hasTlsCertificateProviderInstance()Certificate provider instance for fetching TLS certs. If this field is set, ``tls_certificates`` and ``tls_certificate_provider_instance`` are ignored. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CertificateProviderPluginInstance tls_certificate_provider_instance = 14;
- Specified by:
hasTlsCertificateProviderInstance
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the tlsCertificateProviderInstance field is set.
-
getTlsCertificateProviderInstance
Certificate provider instance for fetching TLS certs. If this field is set, ``tls_certificates`` and ``tls_certificate_provider_instance`` are ignored. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CertificateProviderPluginInstance tls_certificate_provider_instance = 14;
- Specified by:
getTlsCertificateProviderInstance
in interfaceCommonTlsContextOrBuilder
- Returns:
- The tlsCertificateProviderInstance.
-
getTlsCertificateProviderInstanceOrBuilder
Certificate provider instance for fetching TLS certs. If this field is set, ``tls_certificates`` and ``tls_certificate_provider_instance`` are ignored. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CertificateProviderPluginInstance tls_certificate_provider_instance = 14;
- Specified by:
getTlsCertificateProviderInstanceOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasTlsCertificateCertificateProvider
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=273Certificate provider for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProvider tls_certificate_certificate_provider = 9 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
hasTlsCertificateCertificateProvider
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the tlsCertificateCertificateProvider field is set.
-
getTlsCertificateCertificateProvider
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=273Certificate provider for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProvider tls_certificate_certificate_provider = 9 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getTlsCertificateCertificateProvider
in interfaceCommonTlsContextOrBuilder
- Returns:
- The tlsCertificateCertificateProvider.
-
getTlsCertificateCertificateProviderOrBuilder
@Deprecated public CommonTlsContext.CertificateProviderOrBuilder getTlsCertificateCertificateProviderOrBuilder()Deprecated.Certificate provider for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProvider tls_certificate_certificate_provider = 9 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getTlsCertificateCertificateProviderOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasTlsCertificateCertificateProviderInstance
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider_instance is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=278Certificate provider instance for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProviderInstance tls_certificate_certificate_provider_instance = 11 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
hasTlsCertificateCertificateProviderInstance
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the tlsCertificateCertificateProviderInstance field is set.
-
getTlsCertificateCertificateProviderInstance
@Deprecated public CommonTlsContext.CertificateProviderInstance getTlsCertificateCertificateProviderInstance()Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.tls_certificate_certificate_provider_instance is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=278Certificate provider instance for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProviderInstance tls_certificate_certificate_provider_instance = 11 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getTlsCertificateCertificateProviderInstance
in interfaceCommonTlsContextOrBuilder
- Returns:
- The tlsCertificateCertificateProviderInstance.
-
getTlsCertificateCertificateProviderInstanceOrBuilder
@Deprecated public CommonTlsContext.CertificateProviderInstanceOrBuilder getTlsCertificateCertificateProviderInstanceOrBuilder()Deprecated.Certificate provider instance for fetching TLS certificates. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProviderInstance tls_certificate_certificate_provider_instance = 11 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getTlsCertificateCertificateProviderInstanceOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasValidationContext
public boolean hasValidationContext()How to validate peer certificates.
.envoy.extensions.transport_sockets.tls.v3.CertificateValidationContext validation_context = 3;
- Specified by:
hasValidationContext
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the validationContext field is set.
-
getValidationContext
How to validate peer certificates.
.envoy.extensions.transport_sockets.tls.v3.CertificateValidationContext validation_context = 3;
- Specified by:
getValidationContext
in interfaceCommonTlsContextOrBuilder
- Returns:
- The validationContext.
-
getValidationContextOrBuilder
How to validate peer certificates.
.envoy.extensions.transport_sockets.tls.v3.CertificateValidationContext validation_context = 3;
- Specified by:
getValidationContextOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasValidationContextSdsSecretConfig
public boolean hasValidationContextSdsSecretConfig()Config for fetching validation context via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig validation_context_sds_secret_config = 7;
- Specified by:
hasValidationContextSdsSecretConfig
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the validationContextSdsSecretConfig field is set.
-
getValidationContextSdsSecretConfig
Config for fetching validation context via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig validation_context_sds_secret_config = 7;
- Specified by:
getValidationContextSdsSecretConfig
in interfaceCommonTlsContextOrBuilder
- Returns:
- The validationContextSdsSecretConfig.
-
getValidationContextSdsSecretConfigOrBuilder
Config for fetching validation context via SDS API. Note SDS API allows certificates to be fetched/refreshed over the network asynchronously with respect to the TLS handshake.
.envoy.extensions.transport_sockets.tls.v3.SdsSecretConfig validation_context_sds_secret_config = 7;
- Specified by:
getValidationContextSdsSecretConfigOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasCombinedValidationContext
public boolean hasCombinedValidationContext()Combined certificate validation context holds a default CertificateValidationContext and SDS config. When SDS server returns dynamic CertificateValidationContext, both dynamic and default CertificateValidationContext are merged into a new CertificateValidationContext for validation. This merge is done by Message::MergeFrom(), so dynamic CertificateValidationContext overwrites singular fields in default CertificateValidationContext, and concatenates repeated fields to default CertificateValidationContext, and logical OR is applied to boolean fields.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CombinedCertificateValidationContext combined_validation_context = 8;
- Specified by:
hasCombinedValidationContext
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the combinedValidationContext field is set.
-
getCombinedValidationContext
Combined certificate validation context holds a default CertificateValidationContext and SDS config. When SDS server returns dynamic CertificateValidationContext, both dynamic and default CertificateValidationContext are merged into a new CertificateValidationContext for validation. This merge is done by Message::MergeFrom(), so dynamic CertificateValidationContext overwrites singular fields in default CertificateValidationContext, and concatenates repeated fields to default CertificateValidationContext, and logical OR is applied to boolean fields.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CombinedCertificateValidationContext combined_validation_context = 8;
- Specified by:
getCombinedValidationContext
in interfaceCommonTlsContextOrBuilder
- Returns:
- The combinedValidationContext.
-
getCombinedValidationContextOrBuilder
public CommonTlsContext.CombinedCertificateValidationContextOrBuilder getCombinedValidationContextOrBuilder()Combined certificate validation context holds a default CertificateValidationContext and SDS config. When SDS server returns dynamic CertificateValidationContext, both dynamic and default CertificateValidationContext are merged into a new CertificateValidationContext for validation. This merge is done by Message::MergeFrom(), so dynamic CertificateValidationContext overwrites singular fields in default CertificateValidationContext, and concatenates repeated fields to default CertificateValidationContext, and logical OR is applied to boolean fields.
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CombinedCertificateValidationContext combined_validation_context = 8;
- Specified by:
getCombinedValidationContextOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasValidationContextCertificateProvider
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=300Certificate provider for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProvider validation_context_certificate_provider = 10 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
hasValidationContextCertificateProvider
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the validationContextCertificateProvider field is set.
-
getValidationContextCertificateProvider
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=300Certificate provider for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProvider validation_context_certificate_provider = 10 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getValidationContextCertificateProvider
in interfaceCommonTlsContextOrBuilder
- Returns:
- The validationContextCertificateProvider.
-
getValidationContextCertificateProviderOrBuilder
@Deprecated public CommonTlsContext.CertificateProviderOrBuilder getValidationContextCertificateProviderOrBuilder()Deprecated.Certificate provider for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProvider validation_context_certificate_provider = 10 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getValidationContextCertificateProviderOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasValidationContextCertificateProviderInstance
Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider_instance is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=305Certificate provider instance for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProviderInstance validation_context_certificate_provider_instance = 12 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
hasValidationContextCertificateProviderInstance
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the validationContextCertificateProviderInstance field is set.
-
getValidationContextCertificateProviderInstance
@Deprecated public CommonTlsContext.CertificateProviderInstance getValidationContextCertificateProviderInstance()Deprecated.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.validation_context_certificate_provider_instance is deprecated. See envoy/extensions/transport_sockets/tls/v3/tls.proto;l=305Certificate provider instance for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProviderInstance validation_context_certificate_provider_instance = 12 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getValidationContextCertificateProviderInstance
in interfaceCommonTlsContextOrBuilder
- Returns:
- The validationContextCertificateProviderInstance.
-
getValidationContextCertificateProviderInstanceOrBuilder
@Deprecated public CommonTlsContext.CertificateProviderInstanceOrBuilder getValidationContextCertificateProviderInstanceOrBuilder()Deprecated.Certificate provider instance for fetching validation context. [#not-implemented-hide:]
.envoy.extensions.transport_sockets.tls.v3.CommonTlsContext.CertificateProviderInstance validation_context_certificate_provider_instance = 12 [deprecated = true, (.envoy.annotations.deprecated_at_minor_version) = "3.0"];
- Specified by:
getValidationContextCertificateProviderInstanceOrBuilder
in interfaceCommonTlsContextOrBuilder
-
getAlpnProtocolsList
public com.google.protobuf.ProtocolStringList getAlpnProtocolsList()Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_v3_api_field_extensions.filters.network.http_connection_manager.v3.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;
- Specified by:
getAlpnProtocolsList
in interfaceCommonTlsContextOrBuilder
- Returns:
- A list containing the alpnProtocols.
-
getAlpnProtocolsCount
public int getAlpnProtocolsCount()Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_v3_api_field_extensions.filters.network.http_connection_manager.v3.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;
- Specified by:
getAlpnProtocolsCount
in interfaceCommonTlsContextOrBuilder
- Returns:
- The count of alpnProtocols.
-
getAlpnProtocols
Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_v3_api_field_extensions.filters.network.http_connection_manager.v3.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;
- Specified by:
getAlpnProtocols
in interfaceCommonTlsContextOrBuilder
- Parameters:
index
- The index of the element to return.- Returns:
- The alpnProtocols at the given index.
-
getAlpnProtocolsBytes
public com.google.protobuf.ByteString getAlpnProtocolsBytes(int index) Supplies the list of ALPN protocols that the listener should expose. In practice this is likely to be set to one of two values (see the :ref:`codec_type <envoy_v3_api_field_extensions.filters.network.http_connection_manager.v3.HttpConnectionManager.codec_type>` parameter in the HTTP connection manager for more information): * "h2,http/1.1" If the listener is going to support both HTTP/2 and HTTP/1.1. * "http/1.1" If the listener is only going to support HTTP/1.1. There is no default for this parameter. If empty, Envoy will not expose ALPN.
repeated string alpn_protocols = 4;
- Specified by:
getAlpnProtocolsBytes
in interfaceCommonTlsContextOrBuilder
- Parameters:
index
- The index of the value to return.- Returns:
- The bytes of the alpnProtocols at the given index.
-
hasCustomHandshaker
public boolean hasCustomHandshaker()Custom TLS handshaker. If empty, defaults to native TLS handshaking behavior.
.envoy.config.core.v3.TypedExtensionConfig custom_handshaker = 13;
- Specified by:
hasCustomHandshaker
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the customHandshaker field is set.
-
getCustomHandshaker
Custom TLS handshaker. If empty, defaults to native TLS handshaking behavior.
.envoy.config.core.v3.TypedExtensionConfig custom_handshaker = 13;
- Specified by:
getCustomHandshaker
in interfaceCommonTlsContextOrBuilder
- Returns:
- The customHandshaker.
-
getCustomHandshakerOrBuilder
Custom TLS handshaker. If empty, defaults to native TLS handshaking behavior.
.envoy.config.core.v3.TypedExtensionConfig custom_handshaker = 13;
- Specified by:
getCustomHandshakerOrBuilder
in interfaceCommonTlsContextOrBuilder
-
hasKeyLog
public boolean hasKeyLog()TLS key log configuration
.envoy.extensions.transport_sockets.tls.v3.TlsKeyLog key_log = 15;
- Specified by:
hasKeyLog
in interfaceCommonTlsContextOrBuilder
- Returns:
- Whether the keyLog field is set.
-
getKeyLog
TLS key log configuration
.envoy.extensions.transport_sockets.tls.v3.TlsKeyLog key_log = 15;
- Specified by:
getKeyLog
in interfaceCommonTlsContextOrBuilder
- Returns:
- The keyLog.
-
getKeyLogOrBuilder
TLS key log configuration
.envoy.extensions.transport_sockets.tls.v3.TlsKeyLog key_log = 15;
- Specified by:
getKeyLogOrBuilder
in interfaceCommonTlsContextOrBuilder
-
isInitialized
public final boolean isInitialized()- Specified by:
isInitialized
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Overrides:
isInitialized
in classcom.google.protobuf.GeneratedMessage
-
writeTo
- Specified by:
writeTo
in interfacecom.google.protobuf.MessageLite
- Overrides:
writeTo
in classcom.google.protobuf.GeneratedMessage
- Throws:
IOException
-
getSerializedSize
public int getSerializedSize()- Specified by:
getSerializedSize
in interfacecom.google.protobuf.MessageLite
- Overrides:
getSerializedSize
in classcom.google.protobuf.GeneratedMessage
-
equals
- Specified by:
equals
in interfacecom.google.protobuf.Message
- Overrides:
equals
in classcom.google.protobuf.AbstractMessage
-
hashCode
public int hashCode()- Specified by:
hashCode
in interfacecom.google.protobuf.Message
- Overrides:
hashCode
in classcom.google.protobuf.AbstractMessage
-
parseFrom
public static CommonTlsContext parseFrom(ByteBuffer data) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static CommonTlsContext parseFrom(ByteBuffer data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static CommonTlsContext parseFrom(com.google.protobuf.ByteString data) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static CommonTlsContext parseFrom(com.google.protobuf.ByteString data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static CommonTlsContext parseFrom(byte[] data) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
public static CommonTlsContext parseFrom(byte[] data, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws com.google.protobuf.InvalidProtocolBufferException - Throws:
com.google.protobuf.InvalidProtocolBufferException
-
parseFrom
- Throws:
IOException
-
parseFrom
public static CommonTlsContext parseFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException - Throws:
IOException
-
parseDelimitedFrom
- Throws:
IOException
-
parseDelimitedFrom
public static CommonTlsContext parseDelimitedFrom(InputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException - Throws:
IOException
-
parseFrom
public static CommonTlsContext parseFrom(com.google.protobuf.CodedInputStream input) throws IOException - Throws:
IOException
-
parseFrom
public static CommonTlsContext parseFrom(com.google.protobuf.CodedInputStream input, com.google.protobuf.ExtensionRegistryLite extensionRegistry) throws IOException - Throws:
IOException
-
newBuilderForType
- Specified by:
newBuilderForType
in interfacecom.google.protobuf.Message
- Specified by:
newBuilderForType
in interfacecom.google.protobuf.MessageLite
-
newBuilder
-
newBuilder
-
toBuilder
- Specified by:
toBuilder
in interfacecom.google.protobuf.Message
- Specified by:
toBuilder
in interfacecom.google.protobuf.MessageLite
-
newBuilderForType
protected CommonTlsContext.Builder newBuilderForType(com.google.protobuf.AbstractMessage.BuilderParent parent) - Overrides:
newBuilderForType
in classcom.google.protobuf.AbstractMessage
-
getDefaultInstance
-
parser
-
getParserForType
- Specified by:
getParserForType
in interfacecom.google.protobuf.Message
- Specified by:
getParserForType
in interfacecom.google.protobuf.MessageLite
- Overrides:
getParserForType
in classcom.google.protobuf.GeneratedMessage
-
getDefaultInstanceForType
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageLiteOrBuilder
- Specified by:
getDefaultInstanceForType
in interfacecom.google.protobuf.MessageOrBuilder
-