Class: Google::Cloud::ConfidentialComputing::V1::TokenOptions

Inherits:

Object

• Object
• Google::Cloud::ConfidentialComputing::V1::TokenOptions

Extended by:

Protobuf::MessageExts::ClassMethods

Includes:

Protobuf::MessageExts

Defined in:

proto_docs/google/cloud/confidentialcomputing/v1/service.rb

Overview

Options to modify claims in the token to generate custom-purpose tokens.

Defined Under Namespace

Classes: AwsPrincipalTagsOptions

Instance Attribute Summary

• #audience ⇒ ::String

  Optional.

• #aws_principal_tags_options ⇒ ::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions

  Optional.

• #nonce ⇒ ::Array<::String>

  Optional.

• #token_type ⇒ ::Google::Cloud::ConfidentialComputing::V1::TokenType

  Optional.

Instance Attribute Details

#audience ⇒ ::String

Returns Optional. Optional string to issue the token with a custom audience claim. Required if one or more nonces are specified.

Returns:

• (::String) —

  Optional. Optional string to issue the token with a custom audience claim. Required if one or more nonces are specified.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 175

class TokenOptions
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Token options that only apply to the AWS Principal Tags token type.
  # @!attribute [rw] allowed_principal_tags
  #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags]
  #     Optional. Principal tags to allow in the token.
  class AwsPrincipalTagsOptions
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Allowed principal tags is used to define what principal tags will be
    # placed in the token.
    # @!attribute [rw] container_image_signatures
    #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags::ContainerImageSignatures]
    #     Optional. Container image signatures allowed in the token.
    class AllowedPrincipalTags
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods

      # Allowed Container Image Signatures. Key IDs are required to allow this
      # claim to fit within the narrow AWS IAM restrictions.
      # @!attribute [rw] key_ids
      #   @return [::Array<::String>]
      #     Optional. List of key ids to filter into the Principal tags. Only
      #     keys that have been validated and added to the token will be filtered
      #     into principal tags. Unrecognized key ids will be ignored.
      class ContainerImageSignatures
        include ::Google::Protobuf::MessageExts
        extend ::Google::Protobuf::MessageExts::ClassMethods
      end
    end
  end
end

#aws_principal_tags_options ⇒ ::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions

Returns Optional. Options for the Limited AWS token type.

Returns:

• (::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions) —

  Optional. Options for the Limited AWS token type.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 175

class TokenOptions
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Token options that only apply to the AWS Principal Tags token type.
  # @!attribute [rw] allowed_principal_tags
  #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags]
  #     Optional. Principal tags to allow in the token.
  class AwsPrincipalTagsOptions
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Allowed principal tags is used to define what principal tags will be
    # placed in the token.
    # @!attribute [rw] container_image_signatures
    #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags::ContainerImageSignatures]
    #     Optional. Container image signatures allowed in the token.
    class AllowedPrincipalTags
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods

      # Allowed Container Image Signatures. Key IDs are required to allow this
      # claim to fit within the narrow AWS IAM restrictions.
      # @!attribute [rw] key_ids
      #   @return [::Array<::String>]
      #     Optional. List of key ids to filter into the Principal tags. Only
      #     keys that have been validated and added to the token will be filtered
      #     into principal tags. Unrecognized key ids will be ignored.
      class ContainerImageSignatures
        include ::Google::Protobuf::MessageExts
        extend ::Google::Protobuf::MessageExts::ClassMethods
      end
    end
  end
end

#nonce ⇒ ::Array<::String>

Returns Optional. Optional parameter to place one or more nonces in the eat_nonce claim in the output token. The minimum size for JSON-encoded EATs is 10 bytes and the maximum size is 74 bytes.

Returns:

• (::Array<::String>) —

  Optional. Optional parameter to place one or more nonces in the eat_nonce claim in the output token. The minimum size for JSON-encoded EATs is 10 bytes and the maximum size is 74 bytes.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 175

class TokenOptions
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Token options that only apply to the AWS Principal Tags token type.
  # @!attribute [rw] allowed_principal_tags
  #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags]
  #     Optional. Principal tags to allow in the token.
  class AwsPrincipalTagsOptions
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Allowed principal tags is used to define what principal tags will be
    # placed in the token.
    # @!attribute [rw] container_image_signatures
    #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags::ContainerImageSignatures]
    #     Optional. Container image signatures allowed in the token.
    class AllowedPrincipalTags
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods

      # Allowed Container Image Signatures. Key IDs are required to allow this
      # claim to fit within the narrow AWS IAM restrictions.
      # @!attribute [rw] key_ids
      #   @return [::Array<::String>]
      #     Optional. List of key ids to filter into the Principal tags. Only
      #     keys that have been validated and added to the token will be filtered
      #     into principal tags. Unrecognized key ids will be ignored.
      class ContainerImageSignatures
        include ::Google::Protobuf::MessageExts
        extend ::Google::Protobuf::MessageExts::ClassMethods
      end
    end
  end
end

#token_type ⇒ ::Google::Cloud::ConfidentialComputing::V1::TokenType

Returns Optional. Optional token type to select what type of token to return.

Returns:

• (::Google::Cloud::ConfidentialComputing::V1::TokenType) —

  Optional. Optional token type to select what type of token to return.

# File 'proto_docs/google/cloud/confidentialcomputing/v1/service.rb', line 175

class TokenOptions
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Token options that only apply to the AWS Principal Tags token type.
  # @!attribute [rw] allowed_principal_tags
  #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags]
  #     Optional. Principal tags to allow in the token.
  class AwsPrincipalTagsOptions
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Allowed principal tags is used to define what principal tags will be
    # placed in the token.
    # @!attribute [rw] container_image_signatures
    #   @return [::Google::Cloud::ConfidentialComputing::V1::TokenOptions::AwsPrincipalTagsOptions::AllowedPrincipalTags::ContainerImageSignatures]
    #     Optional. Container image signatures allowed in the token.
    class AllowedPrincipalTags
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods

      # Allowed Container Image Signatures. Key IDs are required to allow this
      # claim to fit within the narrow AWS IAM restrictions.
      # @!attribute [rw] key_ids
      #   @return [::Array<::String>]
      #     Optional. List of key ids to filter into the Principal tags. Only
      #     keys that have been validated and added to the token will be filtered
      #     into principal tags. Unrecognized key ids will be ignored.
      class ContainerImageSignatures
        include ::Google::Protobuf::MessageExts
        extend ::Google::Protobuf::MessageExts::ClassMethods
      end
    end
  end
end