Package com.marcnuri.yakc.model.io.k8s.api.certificates.v1alpha1

Class ClusterTrustBundleSpec

java.lang.Object

com.marcnuri.yakc.model.io.k8s.api.certificates.v1alpha1.ClusterTrustBundleSpec

All Implemented Interfaces:

com.marcnuri.yakc.model.Model

public class ClusterTrustBundleSpec
extends java.lang.Object
implements com.marcnuri.yakc.model.Model

ClusterTrustBundleSpec contains the signer and trust anchors.

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	ClusterTrustBundleSpec.Builder

Constructor Summary

Constructors

Constructor	Description
ClusterTrustBundleSpec()
ClusterTrustBundleSpec(java.lang.String signerName, @NonNull java.lang.String trustBundle)

Method Summary

Modifier and Type	Method	Description
static ClusterTrustBundleSpec.Builder	builder()
protected boolean	canEqual(java.lang.Object other)
boolean	equals(java.lang.Object o)
java.lang.String	getSignerName()	signerName indicates the associated signer, if any.
@NonNull java.lang.String	getTrustBundle()	trustBundle contains the individual X.509 trust anchors for this bundle, as PEM bundle of PEM-wrapped, DER-formatted X.509 certificates.
int	hashCode()
void	setSignerName(java.lang.String signerName)	signerName indicates the associated signer, if any.
void	setTrustBundle(@NonNull java.lang.String trustBundle)	trustBundle contains the individual X.509 trust anchors for this bundle, as PEM bundle of PEM-wrapped, DER-formatted X.509 certificates.
ClusterTrustBundleSpec.Builder	toBuilder()
java.lang.String	toString()

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Constructor Detail

ClusterTrustBundleSpec

public ClusterTrustBundleSpec(java.lang.String signerName,
                              @NonNull
                              @NonNull java.lang.String trustBundle)

ClusterTrustBundleSpec

public ClusterTrustBundleSpec()

Method Detail

builder

public static ClusterTrustBundleSpec.Builder builder()

toBuilder

public ClusterTrustBundleSpec.Builder toBuilder()

getSignerName

public java.lang.String getSignerName()

signerName indicates the associated signer, if any.

In order to create or update a ClusterTrustBundle that sets signerName, you must have the following cluster-scoped permission: group=certificates.k8s.io resource=signers resourceName=<the signer name> verb=attest.

If signerName is not empty, then the ClusterTrustBundle object must be named with the signer name as a prefix (translating slashes to colons). For example, for the signer name `example.com/foo`, valid ClusterTrustBundle object names include `example.com:foo:abc` and `example.com:foo:v1`.

If signerName is empty, then the ClusterTrustBundle object's name must not have such a prefix.

List/watch requests for ClusterTrustBundles can filter on this field using a `spec.signerName=NAME` field selector.

getTrustBundle

@NonNull
public @NonNull java.lang.String getTrustBundle()

trustBundle contains the individual X.509 trust anchors for this bundle, as PEM bundle of PEM-wrapped, DER-formatted X.509 certificates.

The data must consist only of PEM certificate blocks that parse as valid X.509 certificates. Each certificate must include a basic constraints extension with the CA bit set. The API server will reject objects that contain duplicate certificates, or that use PEM block headers.

Users of ClusterTrustBundles, including Kubelet, are free to reorder and deduplicate certificate blocks in this file according to their own logic, as well as to drop PEM block headers and inter-block data.

setSignerName

public void setSignerName(java.lang.String signerName)

signerName indicates the associated signer, if any.

In order to create or update a ClusterTrustBundle that sets signerName, you must have the following cluster-scoped permission: group=certificates.k8s.io resource=signers resourceName=<the signer name> verb=attest.

If signerName is not empty, then the ClusterTrustBundle object must be named with the signer name as a prefix (translating slashes to colons). For example, for the signer name `example.com/foo`, valid ClusterTrustBundle object names include `example.com:foo:abc` and `example.com:foo:v1`.

If signerName is empty, then the ClusterTrustBundle object's name must not have such a prefix.

List/watch requests for ClusterTrustBundles can filter on this field using a `spec.signerName=NAME` field selector.

setTrustBundle

public void setTrustBundle(@NonNull
                           @NonNull java.lang.String trustBundle)

trustBundle contains the individual X.509 trust anchors for this bundle, as PEM bundle of PEM-wrapped, DER-formatted X.509 certificates.

The data must consist only of PEM certificate blocks that parse as valid X.509 certificates. Each certificate must include a basic constraints extension with the CA bit set. The API server will reject objects that contain duplicate certificates, or that use PEM block headers.

Users of ClusterTrustBundles, including Kubelet, are free to reorder and deduplicate certificate blocks in this file according to their own logic, as well as to drop PEM block headers and inter-block data.

equals

public boolean equals(java.lang.Object o)

Overrides:

equals in class java.lang.Object

canEqual

protected boolean canEqual(java.lang.Object other)

hashCode

public int hashCode()

Overrides:

hashCode in class java.lang.Object

toString

public java.lang.String toString()

Overrides:

toString in class java.lang.Object