Package io.fabric8.kubernetes.api.model.certificates.v1beta1

Class CertificateSigningRequestSpec

  • All Implemented Interfaces:
    io.fabric8.kubernetes.api.builder.Editable<CertificateSigningRequestSpecBuilder>, io.fabric8.kubernetes.api.model.KubernetesResource, Serializable
    @Generated("io.fabric8.kubernetes.schema.generator.model.ModelGenerator")
public class CertificateSigningRequestSpec
extends Object
implements io.fabric8.kubernetes.api.builder.Editable<CertificateSigningRequestSpecBuilder>, io.fabric8.kubernetes.api.model.KubernetesResource
    This information is immutable after the request is created. Only the Request and Usages fields can be set on creation, other fields are derived by Kubernetes and cannot be modified by users.
    See Also:
    Serialized Form

    • Constructor Detail

      • CertificateSigningRequestSpec

        public CertificateSigningRequestSpec()
        No args constructor for use in serialization

    • Method Detail

      • getExtra

        public Map<String,​List<String>> getExtra()
        Extra information about the requesting user. See user.Info interface for details.

      • setExtra

        public void setExtra​(Map<String,​List<String>> extra)
        Extra information about the requesting user. See user.Info interface for details.

      • getGroups

        public List<String> getGroups()
        Group information about the requesting user. See user.Info interface for details.

      • setGroups

        public void setGroups​(List<String> groups)
        Group information about the requesting user. See user.Info interface for details.

      • getRequest

        public String getRequest()
        Base64-encoded PKCS#10 CSR data

      • setRequest

        public void setRequest​(String request)
        Base64-encoded PKCS#10 CSR data

      • getSignerName

        public String getSignerName()
        Requested signer for the request. It is a qualified name in the form: `scope-hostname.io/name`. If empty, it will be defaulted:

        1. If it's a kubelet client certificate, it is assigned

        "kubernetes.io/kube-apiserver-client-kubelet".

        2. If it's a kubelet serving certificate, it is assigned

        "kubernetes.io/kubelet-serving".

        3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".

        Distribution of trust for signers happens out of band. You can select on this field using `spec.signerName`.

      • setSignerName

        public void setSignerName​(String signerName)
        Requested signer for the request. It is a qualified name in the form: `scope-hostname.io/name`. If empty, it will be defaulted:

        1. If it's a kubelet client certificate, it is assigned

        "kubernetes.io/kube-apiserver-client-kubelet".

        2. If it's a kubelet serving certificate, it is assigned

        "kubernetes.io/kubelet-serving".

        3. Otherwise, it is assigned "kubernetes.io/legacy-unknown".

        Distribution of trust for signers happens out of band. You can select on this field using `spec.signerName`.

      • getUid

        public String getUid()
        UID information about the requesting user. See user.Info interface for details.

      • setUid

        public void setUid​(String uid)
        UID information about the requesting user. See user.Info interface for details.

      • getUsages

        public List<String> getUsages()
        allowedUsages specifies a set of usage contexts the key will be valid for. See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3

        https://tools.ietf.org/html/rfc5280#section-4.2.1.12

        Valid values are:

        "signing",

        "digital signature",

        "content commitment",

        "key encipherment",

        "key agreement",

        "data encipherment",

        "cert sign",

        "crl sign",

        "encipher only",

        "decipher only",

        "any",

        "server auth",

        "client auth",

        "code signing",

        "email protection",

        "s/mime",

        "ipsec end system",

        "ipsec tunnel",

        "ipsec user",

        "timestamping",

        "ocsp signing",

        "microsoft sgc",

        "netscape sgc"

      • setUsages

        public void setUsages​(List<String> usages)
        allowedUsages specifies a set of usage contexts the key will be valid for. See: https://tools.ietf.org/html/rfc5280#section-4.2.1.3

        https://tools.ietf.org/html/rfc5280#section-4.2.1.12

        Valid values are:

        "signing",

        "digital signature",

        "content commitment",

        "key encipherment",

        "key agreement",

        "data encipherment",

        "cert sign",

        "crl sign",

        "encipher only",

        "decipher only",

        "any",

        "server auth",

        "client auth",

        "code signing",

        "email protection",

        "s/mime",

        "ipsec end system",

        "ipsec tunnel",

        "ipsec user",

        "timestamping",

        "ocsp signing",

        "microsoft sgc",

        "netscape sgc"

      • getUsername

        public String getUsername()
        Information about the requesting user. See user.Info interface for details.

      • setUsername

        public void setUsername​(String username)
        Information about the requesting user. See user.Info interface for details.

      • getAdditionalProperties

        public Map<String,​Object> getAdditionalProperties()

      • setAdditionalProperty

        public void setAdditionalProperty​(String name,
                                  Object value)

      • setAdditionalProperties

        public void setAdditionalProperties​(Map<String,​Object> additionalProperties)