...
1syntax = "proto3";
2
3package envoy.admin.v4alpha;
4
5import "google/protobuf/timestamp.proto";
6
7import "udpa/annotations/status.proto";
8import "udpa/annotations/versioning.proto";
9
10option java_package = "io.envoyproxy.envoy.admin.v4alpha";
11option java_outer_classname = "CertsProto";
12option java_multiple_files = true;
13option (udpa.annotations.file_status).package_version_status = NEXT_MAJOR_VERSION_CANDIDATE;
14
15// [#protodoc-title: Certificates]
16
17// Proto representation of certificate details. Admin endpoint uses this wrapper for `/certs` to
18// display certificate information. See :ref:`/certs <operations_admin_interface_certs>` for more
19// information.
20message Certificates {
21 option (udpa.annotations.versioning).previous_message_type = "envoy.admin.v3.Certificates";
22
23 // List of certificates known to an Envoy.
24 repeated Certificate certificates = 1;
25}
26
27message Certificate {
28 option (udpa.annotations.versioning).previous_message_type = "envoy.admin.v3.Certificate";
29
30 // Details of CA certificate.
31 repeated CertificateDetails ca_cert = 1;
32
33 // Details of Certificate Chain
34 repeated CertificateDetails cert_chain = 2;
35}
36
37// [#next-free-field: 8]
38message CertificateDetails {
39 option (udpa.annotations.versioning).previous_message_type = "envoy.admin.v3.CertificateDetails";
40
41 message OcspDetails {
42 option (udpa.annotations.versioning).previous_message_type =
43 "envoy.admin.v3.CertificateDetails.OcspDetails";
44
45 // Indicates the time from which the OCSP response is valid.
46 google.protobuf.Timestamp valid_from = 1;
47
48 // Indicates the time at which the OCSP response expires.
49 google.protobuf.Timestamp expiration = 2;
50 }
51
52 // Path of the certificate.
53 string path = 1;
54
55 // Certificate Serial Number.
56 string serial_number = 2;
57
58 // List of Subject Alternate names.
59 repeated SubjectAlternateName subject_alt_names = 3;
60
61 // Minimum of days until expiration of certificate and it's chain.
62 uint64 days_until_expiration = 4;
63
64 // Indicates the time from which the certificate is valid.
65 google.protobuf.Timestamp valid_from = 5;
66
67 // Indicates the time at which the certificate expires.
68 google.protobuf.Timestamp expiration_time = 6;
69
70 // Details related to the OCSP response associated with this certificate, if any.
71 OcspDetails ocsp_details = 7;
72}
73
74message SubjectAlternateName {
75 option (udpa.annotations.versioning).previous_message_type =
76 "envoy.admin.v3.SubjectAlternateName";
77
78 // Subject Alternate Name.
79 oneof name {
80 string dns = 1;
81
82 string uri = 2;
83
84 string ip_address = 3;
85 }
86}
View as plain text