pulumi-google-native-kotlin/com.pulumi.googlenative.privateca.v1.kotlin.inputs/CertificateIdentityConstraintsArgs

CertificateIdentityConstraintsArgs

data class CertificateIdentityConstraintsArgs(val allowSubjectAltNamesPassthrough: Output<Boolean>, val allowSubjectPassthrough: Output<Boolean>, val celExpression: Output<ExprArgs>? = null) : ConvertibleToJava<CertificateIdentityConstraintsArgs>

Describes constraints on a Certificate's Subject and SubjectAltNames.

Constructors

Link copied to clipboard
constructor(allowSubjectAltNamesPassthrough: Output<Boolean>, allowSubjectPassthrough: Output<Boolean>, celExpression: Output<ExprArgs>? = null)

Properties

Link copied to clipboard
val allowSubjectAltNamesPassthrough: Output<Boolean>

If this is true, the SubjectAltNames extension may be copied from a certificate request into the signed certificate. Otherwise, the requested SubjectAltNames will be discarded.

Link copied to clipboard
val allowSubjectPassthrough: Output<Boolean>

If this is true, the Subject field may be copied from a certificate request into the signed certificate. Otherwise, the requested Subject will be discarded.

Link copied to clipboard
val celExpression: Output<ExprArgs>? = null

Optional. A CEL expression that may be used to validate the resolved X.509 Subject and/or Subject Alternative Name before a certificate is signed. To see the full allowed syntax and some examples, see https://cloud.google.com/certificate-authority-service/docs/using-cel

Functions

Link copied to clipboard
open override fun toJava(): CertificateIdentityConstraintsArgs