Ca
data class CaPoolIssuancePolicyIdentityConstraints(val allowSubjectAltNamesPassthrough: Boolean, val allowSubjectPassthrough: Boolean, val celExpression: CaPoolIssuancePolicyIdentityConstraintsCelExpression? = null)
Constructors
Link copied to clipboard
constructor(allowSubjectAltNamesPassthrough: Boolean, allowSubjectPassthrough: Boolean, celExpression: CaPoolIssuancePolicyIdentityConstraintsCelExpression? = null)
Properties
Link copied to clipboard
If this is set, the SubjectAltNames extension may be copied from a certificate request into the signed certificate. Otherwise, the requested SubjectAltNames will be discarded.
Link copied to clipboard
If this is set, the Subject field may be copied from a certificate request into the signed certificate. Otherwise, the requested Subject will be discarded.
Link copied to clipboard
A CEL expression that may be used to validate the resolved X.509 Subject and/or Subject Alternative Name before a certificate is signed. To see the full allowed syntax and some examples, see https://cloud.google.com/certificate-authority-service/docs/cel-guide Structure is documented below.