Skip to content

Commit

Permalink
Add tainted field to upstream authority messages (#39)
Browse files Browse the repository at this point in the history
* Add tainted propagation to upstream authorities.

Signed-off-by: Marcos Yacob <[email protected]>
  • Loading branch information
MarcosDY authored May 2, 2023
1 parent 648f8c7 commit b364a36
Show file tree
Hide file tree
Showing 4 changed files with 40 additions and 12 deletions.
23 changes: 17 additions & 6 deletions proto/spire/plugin/types/jwtkey.pb.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 3 additions & 0 deletions proto/spire/plugin/types/jwtkey.proto
Original file line number Diff line number Diff line change
Expand Up @@ -12,4 +12,7 @@ message JWTKey {
// When the key expires (seconds since Unix epoch). If zero, the key does
// not expire.
int64 expires_at = 3;

// Indicates if the key has been tainted. A tainted key is not safe to be used anymore.
bool tainted = 4;
}
23 changes: 17 additions & 6 deletions proto/spire/plugin/types/x509certificate.pb.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 3 additions & 0 deletions proto/spire/plugin/types/x509certificate.proto
Original file line number Diff line number Diff line change
Expand Up @@ -5,4 +5,7 @@ option go_package = "github.com/spiffe/spire-plugin-sdk/proto/spire/plugin/types
message X509Certificate {
// The ASN.1 DER encoded bytes of the X.509 certificate.
bytes asn1 = 1;

// Indicates if the authority has been tainted. A tainted authority is not safe to be used anymore.
bool tainted = 2;
}

0 comments on commit b364a36

Please sign in to comment.