Package-level declarations
Types
Describes a "type" of key that may be used in a Certificate issued from a CaPool. Note that a single AllowedKeyType may refer to either a fully-qualified key algorithm, such as RSA 4096, or a family of key algorithms, such as any RSA key.
Builder for AllowedKeyTypeArgs.
Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both allServices
and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": "user:jose@example.com" }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": "user:aliya@example.com" } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts jose@example.com
from DATA_READ logging, and aliya@example.com
from DATA_WRITE logging.
Builder for AuditConfigArgs.
Provides the configuration for logging a type of permissions. Example: { "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": "user:jose@example.com" }, { "log_type": "DATA_WRITE" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.
Builder for AuditLogConfigArgs.
Associates members
, or principals, with a role
.
Builder for BindingArgs.
Describes values that are relevant in a CA certificate.
Builder for CaOptionsArgs.
A CertificateConfig describes an X.509 certificate or CSR that is to be created, as an alternative to using ASN.1.
Builder for CertificateConfigArgs.
Describes a set of X.509 extensions that may be part of some certificate issuance controls.
Describes constraints on a Certificate's Subject and SubjectAltNames.
Builder for CertificateIdentityConstraintsArgs.
Describes an Elliptic Curve key that may be used in a Certificate issued from a CaPool.
Builder for EcKeyTypeArgs.
Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: "Summary size limit" description: "Determines if a summary is less than 100 chars" expression: "document.summary.size() < 100" Example (Equality): title: "Requestor is owner" description: "Determines if requestor is the document owner" expression: "document.owner == request.auth.claims.email" Example (Logic): title: "Public documents" description: "Determine whether the document should be publicly visible" expression: "document.type != 'private' && document.type != 'internal'" Example (Data Manipulation): title: "Notification string" description: "Create a notification string with a timestamp." expression: "'New message received at ' + string(document.create_time)" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.
Builder for ExprArgs.
KeyUsage.ExtendedKeyUsageOptions has fields that correspond to certain common OIDs that could be specified as an extended key usage value.
Builder for ExtendedKeyUsageOptionsArgs.
Builder for GetCaPoolIamPolicyPlainArgs.
Builder for GetCaPoolPlainArgs.
Builder for GetCertificateAuthorityPlainArgs.
Builder for GetCertificatePlainArgs.
Builder for GetCertificateTemplatePlainArgs.
IssuanceModes specifies the allowed ways in which Certificates may be requested from this CaPool.
Builder for IssuanceModesArgs.
Defines controls over all certificate issuance within a CaPool.
Builder for IssuancePolicyArgs.
A KeyUsage describes key usage values that may appear in an X.509 certificate.
Builder for KeyUsageArgs.
KeyUsage.KeyUsageOptions corresponds to the key usage values described in https://tools.ietf.org/html/rfc5280#section-4.2.1.3.
Builder for KeyUsageOptionsArgs.
A Cloud KMS key configuration that a CertificateAuthority will use.
Builder for KeyVersionSpecArgs.
Describes the X.509 name constraints extension, per https://tools.ietf.org/html/rfc5280#section-4.2.1.10
Builder for NameConstraintsArgs.
An ObjectId specifies an object identifier (OID). These provide context and describe types in ASN.1 messages.
Builder for ObjectIdArgs.
A PublicKey describes a public key.
Builder for PublicKeyArgs.
Options relating to the publication of each CertificateAuthority's CA certificate and CRLs and their inclusion as extensions in issued Certificates. The options set here apply to certificates issued by any CertificateAuthority in the CaPool.
Builder for PublishingOptionsArgs.
Describes an RSA key that may be used in a Certificate issued from a CaPool.
Builder for RsaKeyTypeArgs.
SubjectAltNames corresponds to a more modern way of listing what the asserted identity is in a certificate (i.e., compared to the "common name" in the distinguished name).
Builder for SubjectAltNamesArgs.
Subject describes parts of a distinguished name that, in turn, describes the subject of the certificate.
Builder for SubjectArgs.
These values are used to create the distinguished name and subject alternative name fields in an X.509 certificate.
Builder for SubjectConfigArgs.
Describes a subordinate CA's issuers. This is either a resource name to a known issuing CertificateAuthority, or a PEM issuer certificate chain.
Builder for SubordinateConfigArgs.
This message describes a subordinate CA's issuer certificate chain. This wrapper exists for compatibility reasons.
Builder for SubordinateConfigChainArgs.
An X509Extension specifies an X.509 extension, which may be used in different parts of X.509 objects like certificates, CSRs, and CRLs.
Builder for X509ExtensionArgs.
An X509Parameters is used to describe certain fields of an X.509 certificate, such as the key usage fields, fields specific to CA certificates, certificate policy extensions and custom extensions.
Builder for X509ParametersArgs.