Class Authority (1.29.0)

public final class Authority extends GeneratedMessageV3 implements AuthorityOrBuilder

Authority encodes how Google will recognize identities from this Membership. See the workload identity documentation for more details: https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity

Protobuf type google.cloud.gkehub.v1alpha2.Authority

Implements

AuthorityOrBuilder

Static Fields

IDENTITY_PROVIDER_FIELD_NUMBER

public static final int IDENTITY_PROVIDER_FIELD_NUMBER
Field Value
TypeDescription
int

ISSUER_FIELD_NUMBER

public static final int ISSUER_FIELD_NUMBER
Field Value
TypeDescription
int

OIDC_JWKS_FIELD_NUMBER

public static final int OIDC_JWKS_FIELD_NUMBER
Field Value
TypeDescription
int

WORKLOAD_IDENTITY_POOL_FIELD_NUMBER

public static final int WORKLOAD_IDENTITY_POOL_FIELD_NUMBER
Field Value
TypeDescription
int

Static Methods

getDefaultInstance()

public static Authority getDefaultInstance()
Returns
TypeDescription
Authority

getDescriptor()

public static final Descriptors.Descriptor getDescriptor()
Returns
TypeDescription
Descriptor

newBuilder()

public static Authority.Builder newBuilder()
Returns
TypeDescription
Authority.Builder

newBuilder(Authority prototype)

public static Authority.Builder newBuilder(Authority prototype)
Parameter
NameDescription
prototypeAuthority
Returns
TypeDescription
Authority.Builder

parseDelimitedFrom(InputStream input)

public static Authority parseDelimitedFrom(InputStream input)
Parameter
NameDescription
inputInputStream
Returns
TypeDescription
Authority
Exceptions
TypeDescription
IOException

parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)

public static Authority parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
NameDescription
inputInputStream
extensionRegistryExtensionRegistryLite
Returns
TypeDescription
Authority
Exceptions
TypeDescription
IOException

parseFrom(byte[] data)

public static Authority parseFrom(byte[] data)
Parameter
NameDescription
databyte[]
Returns
TypeDescription
Authority
Exceptions
TypeDescription
InvalidProtocolBufferException

parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)

public static Authority parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
Parameters
NameDescription
databyte[]
extensionRegistryExtensionRegistryLite
Returns
TypeDescription
Authority
Exceptions
TypeDescription
InvalidProtocolBufferException

parseFrom(ByteString data)

public static Authority parseFrom(ByteString data)
Parameter
NameDescription
dataByteString
Returns
TypeDescription
Authority
Exceptions
TypeDescription
InvalidProtocolBufferException

parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)

public static Authority parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
Parameters
NameDescription
dataByteString
extensionRegistryExtensionRegistryLite
Returns
TypeDescription
Authority
Exceptions
TypeDescription
InvalidProtocolBufferException

parseFrom(CodedInputStream input)

public static Authority parseFrom(CodedInputStream input)
Parameter
NameDescription
inputCodedInputStream
Returns
TypeDescription
Authority
Exceptions
TypeDescription
IOException

parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)

public static Authority parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
NameDescription
inputCodedInputStream
extensionRegistryExtensionRegistryLite
Returns
TypeDescription
Authority
Exceptions
TypeDescription
IOException

parseFrom(InputStream input)

public static Authority parseFrom(InputStream input)
Parameter
NameDescription
inputInputStream
Returns
TypeDescription
Authority
Exceptions
TypeDescription
IOException

parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)

public static Authority parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
NameDescription
inputInputStream
extensionRegistryExtensionRegistryLite
Returns
TypeDescription
Authority
Exceptions
TypeDescription
IOException

parseFrom(ByteBuffer data)

public static Authority parseFrom(ByteBuffer data)
Parameter
NameDescription
dataByteBuffer
Returns
TypeDescription
Authority
Exceptions
TypeDescription
InvalidProtocolBufferException

parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)

public static Authority parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
Parameters
NameDescription
dataByteBuffer
extensionRegistryExtensionRegistryLite
Returns
TypeDescription
Authority
Exceptions
TypeDescription
InvalidProtocolBufferException

parser()

public static Parser<Authority> parser()
Returns
TypeDescription
Parser<Authority>

Methods

equals(Object obj)

public boolean equals(Object obj)
Parameter
NameDescription
objObject
Returns
TypeDescription
boolean
Overrides

getDefaultInstanceForType()

public Authority getDefaultInstanceForType()
Returns
TypeDescription
Authority

getIdentityProvider()

public String getIdentityProvider()

Output only. An identity provider that reflects the issuer in the workload identity pool.

string identity_provider = 3 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
TypeDescription
String

The identityProvider.

getIdentityProviderBytes()

public ByteString getIdentityProviderBytes()

Output only. An identity provider that reflects the issuer in the workload identity pool.

string identity_provider = 3 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
TypeDescription
ByteString

The bytes for identityProvider.

getIssuer()

public String getIssuer()

Optional. A JSON Web Token (JWT) issuer URI. issuer must start with https:// and be a valid URL with length <2000 characters.

If set, then Google will allow valid OIDC tokens from this issuer to authenticate within the workload_identity_pool. OIDC discovery will be performed on this URI to validate tokens from the issuer, unless oidc_jwks is set.

Clearing issuer disables Workload Identity. issuer cannot be directly modified; it must be cleared (and Workload Identity disabled) before using a new issuer (and re-enabling Workload Identity).

string issuer = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
String

The issuer.

getIssuerBytes()

public ByteString getIssuerBytes()

Optional. A JSON Web Token (JWT) issuer URI. issuer must start with https:// and be a valid URL with length <2000 characters.

If set, then Google will allow valid OIDC tokens from this issuer to authenticate within the workload_identity_pool. OIDC discovery will be performed on this URI to validate tokens from the issuer, unless oidc_jwks is set.

Clearing issuer disables Workload Identity. issuer cannot be directly modified; it must be cleared (and Workload Identity disabled) before using a new issuer (and re-enabling Workload Identity).

string issuer = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
ByteString

The bytes for issuer.

getOidcJwks()

public ByteString getOidcJwks()

Optional. OIDC verification keys for this Membership in JWKS format (RFC 7517).

When this field is set, OIDC discovery will NOT be performed on issuer, and instead OIDC tokens will be validated using this field.

bytes oidc_jwks = 5 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
ByteString

The oidcJwks.

getParserForType()

public Parser<Authority> getParserForType()
Returns
TypeDescription
Parser<Authority>
Overrides

getSerializedSize()

public int getSerializedSize()
Returns
TypeDescription
int
Overrides

getWorkloadIdentityPool()

public String getWorkloadIdentityPool()

Output only. The name of the workload identity pool in which issuer will be recognized.

There is a single Workload Identity Pool per Hub that is shared between all Memberships that belong to that Hub. For a Hub hosted in {PROJECT_ID}, the workload pool format is {PROJECT_ID}.hub.id.goog, although this is subject to change in newer versions of this API.

string workload_identity_pool = 4 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
TypeDescription
String

The workloadIdentityPool.

getWorkloadIdentityPoolBytes()

public ByteString getWorkloadIdentityPoolBytes()

Output only. The name of the workload identity pool in which issuer will be recognized.

There is a single Workload Identity Pool per Hub that is shared between all Memberships that belong to that Hub. For a Hub hosted in {PROJECT_ID}, the workload pool format is {PROJECT_ID}.hub.id.goog, although this is subject to change in newer versions of this API.

string workload_identity_pool = 4 [(.google.api.field_behavior) = OUTPUT_ONLY];

Returns
TypeDescription
ByteString

The bytes for workloadIdentityPool.

hashCode()

public int hashCode()
Returns
TypeDescription
int
Overrides

internalGetFieldAccessorTable()

protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Returns
TypeDescription
FieldAccessorTable
Overrides

isInitialized()

public final boolean isInitialized()
Returns
TypeDescription
boolean
Overrides

newBuilderForType()

public Authority.Builder newBuilderForType()
Returns
TypeDescription
Authority.Builder

newBuilderForType(GeneratedMessageV3.BuilderParent parent)

protected Authority.Builder newBuilderForType(GeneratedMessageV3.BuilderParent parent)
Parameter
NameDescription
parentBuilderParent
Returns
TypeDescription
Authority.Builder
Overrides

newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)

protected Object newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
Parameter
NameDescription
unusedUnusedPrivateParameter
Returns
TypeDescription
Object
Overrides

toBuilder()

public Authority.Builder toBuilder()
Returns
TypeDescription
Authority.Builder

writeTo(CodedOutputStream output)

public void writeTo(CodedOutputStream output)
Parameter
NameDescription
outputCodedOutputStream
Overrides
Exceptions
TypeDescription
IOException