Package dev.sigstore.proto.trustroot.v1

Interface CertificateAuthorityOrBuilder

All Superinterfaces:

com.google.protobuf.MessageLiteOrBuilder, com.google.protobuf.MessageOrBuilder

All Known Implementing Classes:

CertificateAuthority, CertificateAuthority.Builder

public interface CertificateAuthorityOrBuilder
extends com.google.protobuf.MessageOrBuilder

Method Summary

Modifier and Type	Method	Description
X509CertificateChain	getCertChain()	The certificate chain for this CA.
X509CertificateChainOrBuilder	getCertChainOrBuilder()	The certificate chain for this CA.
DistinguishedName	getSubject()	The root certificate MUST be self-signed, and so the subject and issuer are the same.
DistinguishedNameOrBuilder	getSubjectOrBuilder()	The root certificate MUST be self-signed, and so the subject and issuer are the same.
java.lang.String	getUri()	The URI identifies the certificate authority.
com.google.protobuf.ByteString	getUriBytes()	The URI identifies the certificate authority.
TimeRange	getValidFor()	The time the *entire* chain was valid.
TimeRangeOrBuilder	getValidForOrBuilder()	The time the *entire* chain was valid.
boolean	hasCertChain()	The certificate chain for this CA.
boolean	hasSubject()	The root certificate MUST be self-signed, and so the subject and issuer are the same.
boolean	hasValidFor()	The time the *entire* chain was valid.

Methods inherited from interface com.google.protobuf.MessageLiteOrBuilder

isInitialized

Methods inherited from interface com.google.protobuf.MessageOrBuilder

findInitializationErrors, getAllFields, getDefaultInstanceForType, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneof

Method Detail

hasSubject

boolean hasSubject()

 The root certificate MUST be self-signed, and so the subject and
 issuer are the same.
 

.dev.sigstore.common.v1.DistinguishedName subject = 1;

Returns:

Whether the subject field is set.

getSubject

DistinguishedName getSubject()

 The root certificate MUST be self-signed, and so the subject and
 issuer are the same.
 

.dev.sigstore.common.v1.DistinguishedName subject = 1;

Returns:

The subject.

getSubjectOrBuilder

DistinguishedNameOrBuilder getSubjectOrBuilder()

 The root certificate MUST be self-signed, and so the subject and
 issuer are the same.
 

.dev.sigstore.common.v1.DistinguishedName subject = 1;

getUri

java.lang.String getUri()

 The URI identifies the certificate authority.

 It is RECOMMENDED that the URI is the base URL for the certificate
 authority, that can be provided to any SDK/client provided
 by the certificate authority to interact with the certificate
 authority.
 

string uri = 2;

Returns:

The uri.

getUriBytes

com.google.protobuf.ByteString getUriBytes()

 The URI identifies the certificate authority.

 It is RECOMMENDED that the URI is the base URL for the certificate
 authority, that can be provided to any SDK/client provided
 by the certificate authority to interact with the certificate
 authority.
 

string uri = 2;

Returns:

The bytes for uri.

hasCertChain

boolean hasCertChain()

 The certificate chain for this CA. The last certificate in the chain
 MUST be the trust anchor. The trust anchor MAY be a self-signed root
 CA certificate or MAY be an intermediate CA certificate.
 

.dev.sigstore.common.v1.X509CertificateChain cert_chain = 3;

Returns:

Whether the certChain field is set.

getCertChain

X509CertificateChain getCertChain()

 The certificate chain for this CA. The last certificate in the chain
 MUST be the trust anchor. The trust anchor MAY be a self-signed root
 CA certificate or MAY be an intermediate CA certificate.
 

.dev.sigstore.common.v1.X509CertificateChain cert_chain = 3;

Returns:

The certChain.

getCertChainOrBuilder

X509CertificateChainOrBuilder getCertChainOrBuilder()

 The certificate chain for this CA. The last certificate in the chain
 MUST be the trust anchor. The trust anchor MAY be a self-signed root
 CA certificate or MAY be an intermediate CA certificate.
 

.dev.sigstore.common.v1.X509CertificateChain cert_chain = 3;

hasValidFor

boolean hasValidFor()

 The time the *entire* chain was valid. This is at max the
 longest interval when *all* certificates in the chain were valid,
 but it MAY be shorter. Clients MUST check timestamps against *both*
 the `valid_for` time range *and* the entire certificate chain.

 The TimeRange should be considered valid *inclusive* of the
 endpoints.
 

.dev.sigstore.common.v1.TimeRange valid_for = 4;

Returns:

Whether the validFor field is set.

getValidFor

TimeRange getValidFor()

 The time the *entire* chain was valid. This is at max the
 longest interval when *all* certificates in the chain were valid,
 but it MAY be shorter. Clients MUST check timestamps against *both*
 the `valid_for` time range *and* the entire certificate chain.

 The TimeRange should be considered valid *inclusive* of the
 endpoints.
 

.dev.sigstore.common.v1.TimeRange valid_for = 4;

Returns:

The validFor.

getValidForOrBuilder

TimeRangeOrBuilder getValidForOrBuilder()

 The time the *entire* chain was valid. This is at max the
 longest interval when *all* certificates in the chain were valid,
 but it MAY be shorter. Clients MUST check timestamps against *both*
 the `valid_for` time range *and* the entire certificate chain.

 The TimeRange should be considered valid *inclusive* of the
 endpoints.
 

.dev.sigstore.common.v1.TimeRange valid_for = 4;