pulumi-google-native-kotlin/com.pulumi.googlenative.binaryauthorization.v1beta1.kotlin.inputs/AttestorPublicKeyArgs

AttestorPublicKeyArgs

data class AttestorPublicKeyArgs(val asciiArmoredPgpPublicKey: Output<String>? = null, val comment: Output<String>? = null, val id: Output<String>? = null, val pkixPublicKey: Output<PkixPublicKeyArgs>? = null) : ConvertibleToJava<AttestorPublicKeyArgs>

An attestor public key that will be used to verify attestations signed by this attestor.

Constructors

Link copied to clipboard
fun AttestorPublicKeyArgs(asciiArmoredPgpPublicKey: Output<String>? = null, comment: Output<String>? = null, id: Output<String>? = null, pkixPublicKey: Output<PkixPublicKeyArgs>? = null)

Functions

Link copied to clipboard
open override fun toJava(): AttestorPublicKeyArgs

Properties

Link copied to clipboard
val asciiArmoredPgpPublicKey: Output<String>? = null

ASCII-armored representation of a PGP public key, as the entire output by the command gpg --export --armor foo@example.com (either LF or CRLF line endings). When using this field, id should be left blank. The BinAuthz API handlers will calculate the ID and fill it in automatically. BinAuthz computes this ID as the OpenPGP RFC4880 V4 fingerprint, represented as upper-case hex. If id is provided by the caller, it will be overwritten by the API-calculated ID.

Link copied to clipboard
val comment: Output<String>? = null

Optional. A descriptive comment. This field may be updated.

Link copied to clipboard
val id: Output<String>? = null

The ID of this public key. Signatures verified by BinAuthz must include the ID of the public key that can be used to verify them, and that ID must match the contents of this field exactly. Additional restrictions on this field can be imposed based on which public key type is encapsulated. See the documentation on public_key cases below for details.

Link copied to clipboard
val pkixPublicKey: Output<PkixPublicKeyArgs>? = null

A raw PKIX SubjectPublicKeyInfo format public key. NOTE: id may be explicitly provided by the caller when using this type of public key, but it MUST be a valid RFC3986 URI. If id is left blank, a default one will be computed based on the digest of the DER encoding of the public key.