pulumi-google-native-kotlin/com.pulumi.googlenative.compute.alpha.kotlin.inputs/ClientTlsSettingsArgs

ClientTlsSettingsArgs

data class ClientTlsSettingsArgs(val clientTlsContext: Output<TlsContextArgs>? = null, val mode: Output<ClientTlsSettingsMode>? = null, val sni: Output<String>? = null, val subjectAltNames: Output<List<String>>? = null) : ConvertibleToJava<ClientTlsSettingsArgs>

Deprecated The client side authentication settings for connection originating from the backend service. the backend service.

Constructors

fun ClientTlsSettingsArgs(clientTlsContext: Output<TlsContextArgs>? = null, mode: Output<ClientTlsSettingsMode>? = null, sni: Output<String>? = null, subjectAltNames: Output<List<String>>? = null)

Functions

toJava

open override fun toJava(): ClientTlsSettingsArgs

Properties

clientTlsContext

val clientTlsContext: Output<TlsContextArgs>? = null

Configures the mechanism to obtain client-side security certificates and identity information. This field is only applicable when mode is set to MUTUAL.

mode

val mode: Output<ClientTlsSettingsMode>? = null

Indicates whether connections to this port should be secured using TLS. The value of this field determines how TLS is enforced. This can be set to one of the following values: DISABLE: Do not setup a TLS connection to the backends. SIMPLE: Originate a TLS connection to the backends. MUTUAL: Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

sni

val sni: Output<String>? = null

SNI string to present to the server during TLS handshake. This field is applicable only when mode is SIMPLE or MUTUAL.

subjectAltNames

val subjectAltNames: Output<List<String>>? = null

A list of alternate names to verify the subject identity in the certificate.If specified, the proxy will verify that the server certificate's subject alt name matches one of the specified values. This field is applicable only when mode is SIMPLE or MUTUAL.