pulumi-gcp-kotlin/com.pulumi.gcp.networksecurity.kotlin.inputs/ServerTlsPolicyMtlsPolicyArgs

ServerTlsPolicyMtlsPolicyArgs

data class ServerTlsPolicyMtlsPolicyArgs(val clientValidationCas: Output<List<ServerTlsPolicyMtlsPolicyClientValidationCaArgs>>? = null, val clientValidationMode: Output<String>? = null, val clientValidationTrustConfig: Output<String>? = null) : ConvertibleToJava<ServerTlsPolicyMtlsPolicyArgs>

Constructors

Link copied to clipboard
constructor(clientValidationCas: Output<List<ServerTlsPolicyMtlsPolicyClientValidationCaArgs>>? = null, clientValidationMode: Output<String>? = null, clientValidationTrustConfig: Output<String>? = null)

Properties

Link copied to clipboard
val clientValidationCas: Output<List<ServerTlsPolicyMtlsPolicyClientValidationCaArgs>>? = null

Required if the policy is to be used with Traffic Director. For external HTTPS load balancers it must be empty. Defines the mechanism to obtain the Certificate Authority certificate to validate the client certificate. Structure is documented below.

Link copied to clipboard
val clientValidationMode: Output<String>? = null

When the client presents an invalid certificate or no certificate to the load balancer, the clientValidationMode specifies how the client connection is handled. Required if the policy is to be used with the external HTTPS load balancing. For Traffic Director it must be empty. Possible values are: CLIENT_VALIDATION_MODE_UNSPECIFIED, ALLOW_INVALID_OR_MISSING_CLIENT_CERT, REJECT_INVALID.

Link copied to clipboard
val clientValidationTrustConfig: Output<String>? = null

Reference to the TrustConfig from certificatemanager.googleapis.com namespace. If specified, the chain validation will be performed against certificates configured in the given TrustConfig. Allowed only if the policy is to be used with external HTTPS load balancers.

Functions

Link copied to clipboard
open override fun toJava(): ServerTlsPolicyMtlsPolicyArgs