pulumi-gcp-kotlin/com.pulumi.gcp.certificateauthority.kotlin.inputs/CaPoolIssuancePolicyArgs

CaPoolIssuancePolicyArgs

data class CaPoolIssuancePolicyArgs(val allowedIssuanceModes: Output<CaPoolIssuancePolicyAllowedIssuanceModesArgs>? = null, val allowedKeyTypes: Output<List<CaPoolIssuancePolicyAllowedKeyTypeArgs>>? = null, val baselineValues: Output<CaPoolIssuancePolicyBaselineValuesArgs>? = null, val identityConstraints: Output<CaPoolIssuancePolicyIdentityConstraintsArgs>? = null, val maximumLifetime: Output<String>? = null) : ConvertibleToJava<CaPoolIssuancePolicyArgs>

Constructors

Link copied to clipboard
constructor(allowedIssuanceModes: Output<CaPoolIssuancePolicyAllowedIssuanceModesArgs>? = null, allowedKeyTypes: Output<List<CaPoolIssuancePolicyAllowedKeyTypeArgs>>? = null, baselineValues: Output<CaPoolIssuancePolicyBaselineValuesArgs>? = null, identityConstraints: Output<CaPoolIssuancePolicyIdentityConstraintsArgs>? = null, maximumLifetime: Output<String>? = null)

Properties

Link copied to clipboard
val allowedIssuanceModes: Output<CaPoolIssuancePolicyAllowedIssuanceModesArgs>? = null

IssuanceModes specifies the allowed ways in which Certificates may be requested from this CaPool. Structure is documented below.

Link copied to clipboard
val allowedKeyTypes: Output<List<CaPoolIssuancePolicyAllowedKeyTypeArgs>>? = null

If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used. Structure is documented below.

Link copied to clipboard
val baselineValues: Output<CaPoolIssuancePolicyBaselineValuesArgs>? = null

A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefinedValues for the same properties, the certificate issuance request will fail. Structure is documented below.

Link copied to clipboard
val identityConstraints: Output<CaPoolIssuancePolicyIdentityConstraintsArgs>? = null

Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity. Structure is documented below.

Link copied to clipboard
val maximumLifetime: Output<String>? = null

The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximumLifetime, the effective lifetime will be explicitly truncated to match it.

Functions

Link copied to clipboard
open override fun toJava(): CaPoolIssuancePolicyArgs