Skip to content

Commit a7c8737

Browse files
marainomaraino
authored
Merge pull request smallstep#86 from smallstep/mariano/ott
Add PostOneTimeToken and revocation reason code
2 parents 43649ff + 1f08ce8 commit a7c8737

File tree

1 file changed

+18
-0
lines changed

1 file changed

+18
-0
lines changed

spec/linkedca/majordomo.proto

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,7 @@ option go_package = "go.step.sm/linkedca";
66

77
import "linkedca/admin.proto";
88
import "linkedca/provisioners.proto";
9+
import "google/protobuf/timestamp.proto";
910

1011
// Majordomo is the public service used to sync configurations to CA's and post
1112
// certificates.
@@ -43,6 +44,8 @@ service Majordomo {
4344
rpc PostCertificate(CertificateRequest) returns (CertificateResponse);
4445
// PostSSHCertificate sends a signed SSH certificate to majordomo.
4546
rpc PostSSHCertificate(SSHCertificateRequest) returns (SSHCertificateResponse);
47+
// PostOneTimeToken sends a one time token to majordomo.
48+
rpc PostOneTimeToken(OneTimeTokenRequest) returns (OneTimeTokenResponse);
4649
// RevokeCertificate marks an X.509 certificate as revoked.
4750
rpc RevokeCertificate(RevokeCertificateRequest) returns (RevokeCertificateResponse);
4851
// RevokeSSHCertificate marks an SSH certificate as revoked.
@@ -177,6 +180,15 @@ message SSHCertificateResponse {
177180
string id = 1;
178181
}
179182

183+
message OneTimeTokenRequest {
184+
string jti = 1;
185+
string token = 2;
186+
}
187+
188+
message OneTimeTokenResponse {
189+
string id = 1;
190+
}
191+
180192
enum RevocationStatus {
181193
UNKNOWN = 0;
182194
ACTIVE = 1;
@@ -203,6 +215,7 @@ message RevokeCertificateRequest {
203215
string reason = 3;
204216
RevocationReasonCode reason_code = 4;
205217
bool passive = 5;
218+
google.protobuf.Timestamp revoked_at = 6;
206219
}
207220

208221
message RevokeCertificateResponse {
@@ -215,6 +228,7 @@ message RevokeSSHCertificateRequest {
215228
string reason = 3;
216229
RevocationReasonCode reason_code = 4;
217230
bool passive = 5;
231+
google.protobuf.Timestamp revoked_at = 6;
218232
}
219233

220234
message RevokeSSHCertificateResponse {
@@ -237,6 +251,8 @@ message GetCertificateStatusRequest {
237251

238252
message GetCertificateStatusResponse {
239253
RevocationStatus status = 1;
254+
RevocationReasonCode reason_code = 2;
255+
google.protobuf.Timestamp revoked_at = 3;
240256
}
241257

242258
message GetSSHCertificateStatusRequest {
@@ -245,4 +261,6 @@ message GetSSHCertificateStatusRequest {
245261

246262
message GetSSHCertificateStatusResponse {
247263
RevocationStatus status = 1;
264+
RevocationReasonCode reason_code = 2;
265+
google.protobuf.Timestamp revoked_at = 3;
248266
}

0 commit comments

Comments
 (0)