Target
data class TargetSSLProxyArgs(val backendService: Output<String>? = null, val certificateMap: Output<String>? = null, val description: Output<String>? = null, val name: Output<String>? = null, val project: Output<String>? = null, val proxyHeader: Output<String>? = null, val sslCertificates: Output<List<String>>? = null, val sslPolicy: Output<String>? = null) : ConvertibleToJava<TargetSSLProxyArgs>
Represents a TargetSslProxy resource, which is used by one or more global forwarding rule to route incoming SSL requests to a backend service. To get more information about TargetSslProxy, see:
Example Usage
Target Ssl Proxy Basic
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
import * as std from "@pulumi/std";
const defaultSSLCertificate = new gcp.compute.SSLCertificate("default", {
name: "default-cert",
privateKey: std.file({
input: "path/to/private.key",
}).then(invoke => invoke.result),
certificate: std.file({
input: "path/to/certificate.crt",
}).then(invoke => invoke.result),
});
const defaultHealthCheck = new gcp.compute.HealthCheck("default", {
name: "health-check",
checkIntervalSec: 1,
timeoutSec: 1,
tcpHealthCheck: {
port: 443,
},
});
const defaultBackendService = new gcp.compute.BackendService("default", {
name: "backend-service",
protocol: "SSL",
healthChecks: defaultHealthCheck.id,
});
const _default = new gcp.compute.TargetSSLProxy("default", {
name: "test-proxy",
backendService: defaultBackendService.id,
sslCertificates: [defaultSSLCertificate.id],
});Content copied to clipboard
import pulumi
import pulumi_gcp as gcp
import pulumi_std as std
default_ssl_certificate = gcp.compute.SSLCertificate("default",
name="default-cert",
private_key=std.file(input="path/to/private.key").result,
certificate=std.file(input="path/to/certificate.crt").result)
default_health_check = gcp.compute.HealthCheck("default",
name="health-check",
check_interval_sec=1,
timeout_sec=1,
tcp_health_check={
"port": 443,
})
default_backend_service = gcp.compute.BackendService("default",
name="backend-service",
protocol="SSL",
health_checks=default_health_check.id)
default = gcp.compute.TargetSSLProxy("default",
name="test-proxy",
backend_service=default_backend_service.id,
ssl_certificates=[default_ssl_certificate.id])Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
using Std = Pulumi.Std;
return await Deployment.RunAsync(() =>
{
var defaultSSLCertificate = new Gcp.Compute.SSLCertificate("default", new()
{
Name = "default-cert",
PrivateKey = Std.File.Invoke(new()
{
Input = "path/to/private.key",
}).Apply(invoke => invoke.Result),
Certificate = Std.File.Invoke(new()
{
Input = "path/to/certificate.crt",
}).Apply(invoke => invoke.Result),
});
var defaultHealthCheck = new Gcp.Compute.HealthCheck("default", new()
{
Name = "health-check",
CheckIntervalSec = 1,
TimeoutSec = 1,
TcpHealthCheck = new Gcp.Compute.Inputs.HealthCheckTcpHealthCheckArgs
{
Port = 443,
},
});
var defaultBackendService = new Gcp.Compute.BackendService("default", new()
{
Name = "backend-service",
Protocol = "SSL",
HealthChecks = defaultHealthCheck.Id,
});
var @default = new Gcp.Compute.TargetSSLProxy("default", new()
{
Name = "test-proxy",
BackendService = defaultBackendService.Id,
SslCertificates = new[]
{
defaultSSLCertificate.Id,
},
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-gcp/sdk/v8/go/gcp/compute"
"github.com/pulumi/pulumi-std/sdk/go/std"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
invokeFile, err := std.File(ctx, &std.FileArgs{
Input: "path/to/private.key",
}, nil)
if err != nil {
return err
}
invokeFile1, err := std.File(ctx, &std.FileArgs{
Input: "path/to/certificate.crt",
}, nil)
if err != nil {
return err
}
defaultSSLCertificate, err := compute.NewSSLCertificate(ctx, "default", &compute.SSLCertificateArgs{
Name: pulumi.String("default-cert"),
PrivateKey: pulumi.String(invokeFile.Result),
Certificate: pulumi.String(invokeFile1.Result),
})
if err != nil {
return err
}
defaultHealthCheck, err := compute.NewHealthCheck(ctx, "default", &compute.HealthCheckArgs{
Name: pulumi.String("health-check"),
CheckIntervalSec: pulumi.Int(1),
TimeoutSec: pulumi.Int(1),
TcpHealthCheck: &compute.HealthCheckTcpHealthCheckArgs{
Port: pulumi.Int(443),
},
})
if err != nil {
return err
}
defaultBackendService, err := compute.NewBackendService(ctx, "default", &compute.BackendServiceArgs{
Name: pulumi.String("backend-service"),
Protocol: pulumi.String("SSL"),
HealthChecks: defaultHealthCheck.ID(),
})
if err != nil {
return err
}
_, err = compute.NewTargetSSLProxy(ctx, "default", &compute.TargetSSLProxyArgs{
Name: pulumi.String("test-proxy"),
BackendService: defaultBackendService.ID(),
SslCertificates: pulumi.StringArray{
defaultSSLCertificate.ID(),
},
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.compute.SSLCertificate;
import com.pulumi.gcp.compute.SSLCertificateArgs;
import com.pulumi.std.StdFunctions;
import com.pulumi.std.inputs.FileArgs;
import com.pulumi.gcp.compute.HealthCheck;
import com.pulumi.gcp.compute.HealthCheckArgs;
import com.pulumi.gcp.compute.inputs.HealthCheckTcpHealthCheckArgs;
import com.pulumi.gcp.compute.BackendService;
import com.pulumi.gcp.compute.BackendServiceArgs;
import com.pulumi.gcp.compute.TargetSSLProxy;
import com.pulumi.gcp.compute.TargetSSLProxyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var defaultSSLCertificate = new SSLCertificate("defaultSSLCertificate", SSLCertificateArgs.builder()
.name("default-cert")
.privateKey(StdFunctions.file(FileArgs.builder()
.input("path/to/private.key")
.build()).result())
.certificate(StdFunctions.file(FileArgs.builder()
.input("path/to/certificate.crt")
.build()).result())
.build());
var defaultHealthCheck = new HealthCheck("defaultHealthCheck", HealthCheckArgs.builder()
.name("health-check")
.checkIntervalSec(1)
.timeoutSec(1)
.tcpHealthCheck(HealthCheckTcpHealthCheckArgs.builder()
.port(443)
.build())
.build());
var defaultBackendService = new BackendService("defaultBackendService", BackendServiceArgs.builder()
.name("backend-service")
.protocol("SSL")
.healthChecks(defaultHealthCheck.id())
.build());
var default_ = new TargetSSLProxy("default", TargetSSLProxyArgs.builder()
.name("test-proxy")
.backendService(defaultBackendService.id())
.sslCertificates(defaultSSLCertificate.id())
.build());
}
}Content copied to clipboard
resources:
default:
type: gcp:compute:TargetSSLProxy
properties:
name: test-proxy
backendService: ${defaultBackendService.id}
sslCertificates:
- ${defaultSSLCertificate.id}
defaultSSLCertificate:
type: gcp:compute:SSLCertificate
name: default
properties:
name: default-cert
privateKey:
fn::invoke:
function: std:file
arguments:
input: path/to/private.key
return: result
certificate:
fn::invoke:
function: std:file
arguments:
input: path/to/certificate.crt
return: result
defaultBackendService:
type: gcp:compute:BackendService
name: default
properties:
name: backend-service
protocol: SSL
healthChecks: ${defaultHealthCheck.id}
defaultHealthCheck:
type: gcp:compute:HealthCheck
name: default
properties:
name: health-check
checkIntervalSec: 1
timeoutSec: 1
tcpHealthCheck:
port: '443'Content copied to clipboard
Import
TargetSslProxy can be imported using any of these accepted formats:
projects/{{project}}/global/targetSslProxies/{{name}}{{project}}/{{name}}{{name}}When using thepulumi importcommand, TargetSslProxy can be imported using one of the formats above. For example:
$ pulumi import gcp:compute/targetSSLProxy:TargetSSLProxy default projects/{{project}}/global/targetSslProxies/{{name}}Content copied to clipboard
$ pulumi import gcp:compute/targetSSLProxy:TargetSSLProxy default {{project}}/{{name}}Content copied to clipboard
$ pulumi import gcp:compute/targetSSLProxy:TargetSSLProxy default {{name}}Content copied to clipboard
Constructors
Link copied to clipboard
constructor(backendService: Output<String>? = null, certificateMap: Output<String>? = null, description: Output<String>? = null, name: Output<String>? = null, project: Output<String>? = null, proxyHeader: Output<String>? = null, sslCertificates: Output<List<String>>? = null, sslPolicy: Output<String>? = null)
Properties
Link copied to clipboard
A reference to the BackendService resource.
Link copied to clipboard
A reference to the CertificateMap resource uri that identifies a certificate map associated with the given target proxy. This field can only be set for global target proxies. Accepted format is //certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}.
Link copied to clipboard
An optional description of this resource.
Link copied to clipboard
Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
Link copied to clipboard
Specifies the type of proxy header to append before sending data to the backend. Default value is NONE. Possible values are: NONE, PROXY_V1.
Link copied to clipboard
A list of SslCertificate resources that are used to authenticate connections between users and the load balancer. At least one SSL certificate must be specified.