We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
moby
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 56da020e6b
Branches Tags
moby
/
vendor
/
github.com
/
docker
/
swarmkit
/
api
/
ca.proto

ca.proto 2.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. syntax = "proto3";
    2. 

  2. 

  3. package docker.swarmkit.v1;
    4. 

  4. 

  5. import "types.proto";
    6. 

  6. import "specs.proto";
    7. 

  7. import "gogoproto/gogo.proto";
    8. 

  8. import "plugin/plugin.proto";
    9. 

  9. 

  10. // CA defines the RPC methods for requesting certificates from a CA.
    11. 

  11. 

  12. service CA {
    13. 

  13. 	rpc GetRootCACertificate(GetRootCACertificateRequest) returns (GetRootCACertificateResponse) {
    14. 

  14. 		option (docker.protobuf.plugin.tls_authorization) = { insecure: true };
    15. 

  15. 	};
    16. 

  16. 	// GetUnlockKey returns the current unlock key for the cluster for the role of the client
    17. 

  17. 	// asking.
    18. 

  18. 	rpc GetUnlockKey(GetUnlockKeyRequest) returns (GetUnlockKeyResponse) {
    19. 

  19. 		option (docker.protobuf.plugin.tls_authorization) = { roles: ["swarm-manager"] };
    20. 

  20. 	};
    21. 

  21. }
    22. 

  22. 

  23. service NodeCA {
    24. 

  24. 	rpc IssueNodeCertificate(IssueNodeCertificateRequest) returns (IssueNodeCertificateResponse) {
    25. 

  25. 		option (docker.protobuf.plugin.tls_authorization) = { insecure: true };
    26. 

  26. 	};
    27. 

  27. 	rpc NodeCertificateStatus(NodeCertificateStatusRequest) returns (NodeCertificateStatusResponse) {
    28. 

  28. 		option (docker.protobuf.plugin.tls_authorization) = { insecure: true };
    29. 

  29. 	};
    30. 

  30. }
    31. 

  31. 

  32. message NodeCertificateStatusRequest {
    33. 

  33. 	string node_id = 1;
    34. 

  34. }
    35. 

  35. 

  36. message NodeCertificateStatusResponse {
    37. 

  37. 	IssuanceStatus status = 1;
    38. 

  38. 	Certificate certificate = 2;
    39. 

  39. }
    40. 

  40. 

  41. message IssueNodeCertificateRequest {
    42. 

  42. 	// DEPRECATED: Role is now selected based on which secret is matched.
    43. 

  43. 	NodeRole role = 1 [deprecated=true];
    44. 

  44. 

  45. 	// CSR is the certificate signing request.
    46. 

  46. 	bytes csr = 2 [(gogoproto.customname) = "CSR"];
    47. 

  47. 

  48. 	// Token represents a user-provided string that is necessary for new
    49. 

  49. 	// nodes to join the cluster
    50. 

  50. 	string token = 3;
    51. 

  51. 

  52. 	// Availability allows a user to control the current scheduling status of a node
    53. 

  53. 	NodeSpec.Availability availability = 4;
    54. 

  54. }
    55. 

  55. 

  56. message IssueNodeCertificateResponse {
    57. 

  57. 	string node_id = 1;
    58. 

  58. 	NodeSpec.Membership node_membership = 2;
    59. 

  59. }
    60. 

  60. 

  61. message GetRootCACertificateRequest {}
    62. 

  62. 

  63. message GetRootCACertificateResponse {
    64. 

  64. 	bytes certificate = 1;
    65. 

  65. }
    66. 

  66. 

  67. message GetUnlockKeyRequest {}
    68. 

  68. 

  69. message GetUnlockKeyResponse {
    70. 

  70. 	bytes unlock_key = 1;
    71. 

  71. 	Version version = 2 [(gogoproto.nullable) = false];
    72. 

  72. }
    73.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5