API documentation for confidentialcomputing_v1.types package.
Classes
Challenge
A Challenge from the server used to guarantee freshness of attestations
ConfidentialSpaceInfo
ConfidentialSpaceInfo contains information related to the Confidential Space TEE.
ContainerImageSignature
ContainerImageSignature holds necessary metadata to verify a container image signature.
CreateChallengeRequest
Message for creating a Challenge
GcpCredentials
Credentials issued by GCP which are linked to the platform attestation. These will be verified server-side as part of attestaion verification.
SignedEntity
SignedEntity represents an OCI image object containing everything necessary to verify container image signatures.
SigningAlgorithm
SigningAlgorithm enumerates all the supported signing algorithms.
Values: SIGNING_ALGORITHM_UNSPECIFIED (0): Unspecified signing algorithm. RSASSA_PSS_SHA256 (1): RSASSA-PSS with a SHA256 digest. RSASSA_PKCS1V15_SHA256 (2): RSASSA-PKCS1 v1.5 with a SHA256 digest. ECDSA_P256_SHA256 (3): ECDSA on the P-256 Curve with a SHA256 digest.
TokenOptions
Options to modify claims in the token to generate custom-purpose tokens.
TokenType
Token type enum contains the different types of token responses Confidential Space supports
Values: TOKEN_TYPE_UNSPECIFIED (0): Unspecified token type TOKEN_TYPE_OIDC (1): OpenID Connect (OIDC) token type TOKEN_TYPE_PKI (2): Public Key Infrastructure (PKI) token type TOKEN_TYPE_LIMITED_AWS (3): Limited claim token type for AWS integration
TpmAttestation
TPM2 data containing everything necessary to validate any platform state measured into the TPM.
VerifyAttestationRequest
A request for an OIDC token, providing all the necessary information needed for this service to verify the plaform state of the requestor.
VerifyAttestationResponse
A response once an attestation has been successfully verified, containing a signed OIDC token.