Package Classes (0.4.14)

Summary of entries of Classes for confidentialcomputing.

Classes

ConfidentialComputingAsyncClient

Service describing handlers for resources

ConfidentialComputingClient

Service describing handlers for resources

Challenge

A Challenge from the server used to guarantee freshness of attestations

ConfidentialSpaceInfo

ConfidentialSpaceInfo contains information related to the Confidential Space TEE.

ContainerImageSignature

ContainerImageSignature holds necessary metadata to verify a container image signature.

CreateChallengeRequest

Message for creating a Challenge

GcpCredentials

Credentials issued by GCP which are linked to the platform attestation. These will be verified server-side as part of attestaion verification.

SevSnpAttestation

An SEV-SNP Attestation Report. Contains the attestation report and the certificate bundle that the client collects.

SignedEntity

SignedEntity represents an OCI image object containing everything necessary to verify container image signatures.

SigningAlgorithm

SigningAlgorithm enumerates all the supported signing algorithms.

TdxCcelAttestation

A TDX Attestation quote.

TokenOptions

Options to modify claims in the token to generate custom-purpose tokens.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

AwsPrincipalTagsOptions

Token options that only apply to the AWS Principal Tags token type.

AllowedPrincipalTags

Allowed principal tags is used to define what principal tags will be placed in the token.

ContainerImageSignatures

Allowed Container Image Signatures. Key IDs are required to allow this claim to fit within the narrow AWS IAM restrictions.

TokenType

Token type enum contains the different types of token responses Confidential Space supports

TpmAttestation

TPM2 data containing everything necessary to validate any platform state measured into the TPM.

Quote

Information about Platform Control Registers (PCRs) including a signature over their values, which can be used for remote validation.

PcrValuesEntry

The abstract base class for a message.

VerifyAttestationRequest

A request for an OIDC token, providing all the necessary information needed for this service to verify the plaform state of the requestor.

This message has oneof_ fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

VerifyAttestationResponse

A response once an attestation has been successfully verified, containing a signed OIDC token.