Expand description
The messages and enums that are part of this client library.
Modules§
- aws_
principal_ tags_ options - Defines additional types related to AwsPrincipalTagsOptions.
- token_
options - Defines additional types related to TokenOptions.
- tpm_
attestation - Defines additional types related to TpmAttestation.
- verify_
attestation_ request - Defines additional types related to VerifyAttestationRequest.
- verify_
confidential_ gke_ request - Defines additional types related to VerifyConfidentialGkeRequest.
- verify_
confidential_ space_ request - Defines additional types related to VerifyConfidentialSpaceRequest.
Structs§
- AwsPrincipal
Tags Options - Token options that only apply to the AWS Principal Tags token type.
- Challenge
- A Challenge from the server used to guarantee freshness of attestations
- Confidential
Space Info - ConfidentialSpaceInfo contains information related to the Confidential Space TEE.
- Container
Image Signature - ContainerImageSignature holds necessary metadata to verify a container image signature.
- Create
Challenge Request - Message for creating a Challenge
- GceShielded
Identity - GceShieldedIdentity contains information about a Compute Engine instance.
- GcpCredentials
- Credentials issued by GCP which are linked to the platform attestation. These will be verified server-side as part of attestaion verification.
- SevSnp
Attestation - An SEV-SNP Attestation Report. Contains the attestation report and the certificate bundle that the client collects.
- Signed
Entity - SignedEntity represents an OCI image object containing everything necessary to verify container image signatures.
- TdxCcel
Attestation - A TDX Attestation quote.
- Token
Options - Options to modify claims in the token to generate custom-purpose tokens.
- TpmAttestation
- TPM2 data containing everything necessary to validate any platform state measured into the TPM.
- Verify
Attestation Request - A request for an attestation token, providing all the necessary information needed for this service to verify the platform state of the requestor.
- Verify
Attestation Response - A response once an attestation has been successfully verified, containing a signed attestation token.
- Verify
Confidential GkeRequest - A request for an attestation token, providing all the necessary information needed for this service to verify Confidential GKE platform state of the requestor.
- Verify
Confidential GkeResponse - VerifyConfidentialGkeResponse response is returened once a Confidential GKE attestation has been successfully verified, containing a signed OIDC token.
- Verify
Confidential Space Request - A request for an attestation token, providing all the necessary information needed for this service to verify the platform state of the requestor.
- Verify
Confidential Space Response - VerifyConfidentialSpaceResponse is returned once a Confidential Space attestation has been successfully verified, containing a signed token.
Enums§
- Signature
Type - SignatureType enumerates supported signature types for attestation tokens.
- Signing
Algorithm - SigningAlgorithm enumerates all the supported signing algorithms.
- Token
Profile - TokenProfile enumerates the supported token claims profiles.
- Token
Type - Token type enum contains the different types of token responses Confidential Space supports