pulumi-gcp-kotlin/com.pulumi.gcp.networksecurity.kotlin.inputs/ServerTlsPolicyMtlsPolicyArgs

ServerTlsPolicyMtlsPolicyArgs

data class ServerTlsPolicyMtlsPolicyArgs(val clientValidationCas: Output<List<ServerTlsPolicyMtlsPolicyClientValidationCaArgs>>? = null, val clientValidationMode: Output<String>? = null, val clientValidationTrustConfig: Output<String>? = null) : ConvertibleToJava<ServerTlsPolicyMtlsPolicyArgs>

Constructors

fun ServerTlsPolicyMtlsPolicyArgs(clientValidationCas: Output<List<ServerTlsPolicyMtlsPolicyClientValidationCaArgs>>? = null, clientValidationMode: Output<String>? = null, clientValidationTrustConfig: Output<String>? = null)

Functions

toJava

open override fun toJava(): ServerTlsPolicyMtlsPolicyArgs

Properties

clientValidationCas

val clientValidationCas: Output<List<ServerTlsPolicyMtlsPolicyClientValidationCaArgs>>? = null

Required if the policy is to be used with Traffic Director. For external HTTPS load balancers it must be empty. Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate. Structure is documented below.

clientValidationMode

val clientValidationMode: Output<String>? = null

When the client presents an invalid certificate or no certificate to the load balancer, the clientValidationMode specifies how the client connection is handled. Required if the policy is to be used with the external HTTPS load balancing. For Traffic Director it must be empty. Possible values are: CLIENT_VALIDATION_MODE_UNSPECIFIED, ALLOW_INVALID_OR_MISSING_CLIENT_CERT, REJECT_INVALID.

clientValidationTrustConfig

val clientValidationTrustConfig: Output<String>? = null

Reference to the TrustConfig from certificatemanager.googleapis.com namespace. If specified, the chain validation will be performed against certificates configured in the given TrustConfig. Allowed only if the policy is to be used with external HTTPS load balancers.