tls

package
v1.6.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 31, 2020 License: Apache-2.0 Imports: 4 Imported by: 0

Documentation

Overview

nolint: lll

Package tls exports types, functions, subpackages for provisioning tls resources.// A Pulumi package to create TLS resources in Pulumi programs.

> This provider is a derived work of the [Terraform Provider](https://github.com/terraform-providers/terraform-provider-tls) > distributed under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/). If you encounter a bug or missing feature, > first check the [`pulumi/pulumi-tls` repo](https://github.com/pulumi/pulumi-tls/issues); however, if that doesn't turn up anything, > please consult the source [`terraform-providers/terraform-provider-tls` repo](https://github.com/terraform-providers/terraform-provider-tls/issues).

nolint: lll

nolint: lll

nolint: lll

nolint: lll

nolint: lll

nolint: lll

nolint: lll

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type CertRequest 

type CertRequest struct {
	pulumi.CustomResourceState

	// The certificate request data in PEM format.
	CertRequestPem pulumi.StringOutput `pulumi:"certRequestPem"`
	// List of DNS names for which a certificate is being requested.
	DnsNames pulumi.StringArrayOutput `pulumi:"dnsNames"`
	// List of IP addresses for which a certificate is being requested.
	IpAddresses pulumi.StringArrayOutput `pulumi:"ipAddresses"`
	// The name of the algorithm for the key provided
	// in `privateKeyPem`.
	KeyAlgorithm pulumi.StringOutput `pulumi:"keyAlgorithm"`
	// PEM-encoded private key that the certificate will belong to
	PrivateKeyPem pulumi.StringOutput `pulumi:"privateKeyPem"`
	// The subject for which a certificate is being requested. This is
	// a nested configuration block whose structure is described below.
	Subjects CertRequestSubjectArrayOutput `pulumi:"subjects"`
	// List of URIs for which a certificate is being requested.
	Uris pulumi.StringArrayOutput `pulumi:"uris"`
}

func GetCertRequest 

func GetCertRequest(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *CertRequestState, opts ...pulumi.ResourceOption) (*CertRequest, error)

GetCertRequest gets an existing CertRequest resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewCertRequest 

func NewCertRequest(ctx *pulumi.Context,
	name string, args *CertRequestArgs, opts ...pulumi.ResourceOption) (*CertRequest, error)

NewCertRequest registers a new resource with the given unique name, arguments, and options.

type CertRequestArgs 

type CertRequestArgs struct {
	// List of DNS names for which a certificate is being requested.
	DnsNames pulumi.StringArrayInput
	// List of IP addresses for which a certificate is being requested.
	IpAddresses pulumi.StringArrayInput
	// The name of the algorithm for the key provided
	// in `privateKeyPem`.
	KeyAlgorithm pulumi.StringInput
	// PEM-encoded private key that the certificate will belong to
	PrivateKeyPem pulumi.StringInput
	// The subject for which a certificate is being requested. This is
	// a nested configuration block whose structure is described below.
	Subjects CertRequestSubjectArrayInput
	// List of URIs for which a certificate is being requested.
	Uris pulumi.StringArrayInput
}

The set of arguments for constructing a CertRequest resource.

func (CertRequestArgs) ElementType 

func (CertRequestArgs) ElementType() reflect.Type

type CertRequestState 

type CertRequestState struct {
	// The certificate request data in PEM format.
	CertRequestPem pulumi.StringPtrInput
	// List of DNS names for which a certificate is being requested.
	DnsNames pulumi.StringArrayInput
	// List of IP addresses for which a certificate is being requested.
	IpAddresses pulumi.StringArrayInput
	// The name of the algorithm for the key provided
	// in `privateKeyPem`.
	KeyAlgorithm pulumi.StringPtrInput
	// PEM-encoded private key that the certificate will belong to
	PrivateKeyPem pulumi.StringPtrInput
	// The subject for which a certificate is being requested. This is
	// a nested configuration block whose structure is described below.
	Subjects CertRequestSubjectArrayInput
	// List of URIs for which a certificate is being requested.
	Uris pulumi.StringArrayInput
}

func (CertRequestState) ElementType 

func (CertRequestState) ElementType() reflect.Type

type CertRequestSubject 

type CertRequestSubject struct {
	CommonName         *string  `pulumi:"commonName"`
	Country            *string  `pulumi:"country"`
	Locality           *string  `pulumi:"locality"`
	Organization       *string  `pulumi:"organization"`
	OrganizationalUnit *string  `pulumi:"organizationalUnit"`
	PostalCode         *string  `pulumi:"postalCode"`
	Province           *string  `pulumi:"province"`
	SerialNumber       *string  `pulumi:"serialNumber"`
	StreetAddresses    []string `pulumi:"streetAddresses"`
}

type CertRequestSubjectArgs 

type CertRequestSubjectArgs struct {
	CommonName         pulumi.StringPtrInput   `pulumi:"commonName"`
	Country            pulumi.StringPtrInput   `pulumi:"country"`
	Locality           pulumi.StringPtrInput   `pulumi:"locality"`
	Organization       pulumi.StringPtrInput   `pulumi:"organization"`
	OrganizationalUnit pulumi.StringPtrInput   `pulumi:"organizationalUnit"`
	PostalCode         pulumi.StringPtrInput   `pulumi:"postalCode"`
	Province           pulumi.StringPtrInput   `pulumi:"province"`
	SerialNumber       pulumi.StringPtrInput   `pulumi:"serialNumber"`
	StreetAddresses    pulumi.StringArrayInput `pulumi:"streetAddresses"`
}

func (CertRequestSubjectArgs) ElementType 

func (CertRequestSubjectArgs) ElementType() reflect.Type

func (CertRequestSubjectArgs) ToCertRequestSubjectOutput 

func (i CertRequestSubjectArgs) ToCertRequestSubjectOutput() CertRequestSubjectOutput

func (CertRequestSubjectArgs) ToCertRequestSubjectOutputWithContext 

func (i CertRequestSubjectArgs) ToCertRequestSubjectOutputWithContext(ctx context.Context) CertRequestSubjectOutput

type CertRequestSubjectArray 

type CertRequestSubjectArray []CertRequestSubjectInput

func (CertRequestSubjectArray) ElementType 

func (CertRequestSubjectArray) ElementType() reflect.Type

func (CertRequestSubjectArray) ToCertRequestSubjectArrayOutput 

func (i CertRequestSubjectArray) ToCertRequestSubjectArrayOutput() CertRequestSubjectArrayOutput

func (CertRequestSubjectArray) ToCertRequestSubjectArrayOutputWithContext 

func (i CertRequestSubjectArray) ToCertRequestSubjectArrayOutputWithContext(ctx context.Context) CertRequestSubjectArrayOutput

type CertRequestSubjectArrayInput 

type CertRequestSubjectArrayInput interface {
	pulumi.Input

	ToCertRequestSubjectArrayOutput() CertRequestSubjectArrayOutput
	ToCertRequestSubjectArrayOutputWithContext(context.Context) CertRequestSubjectArrayOutput
}

type CertRequestSubjectArrayOutput 

type CertRequestSubjectArrayOutput struct{ *pulumi.OutputState }

func (CertRequestSubjectArrayOutput) ElementType 

func (CertRequestSubjectArrayOutput) ElementType() reflect.Type

func (CertRequestSubjectArrayOutput) Index 

func (o CertRequestSubjectArrayOutput) Index(i pulumi.IntInput) CertRequestSubjectOutput

func (CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutput 

func (o CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutput() CertRequestSubjectArrayOutput

func (CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutputWithContext 

func (o CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutputWithContext(ctx context.Context) CertRequestSubjectArrayOutput

type CertRequestSubjectInput 

type CertRequestSubjectInput interface {
	pulumi.Input

	ToCertRequestSubjectOutput() CertRequestSubjectOutput
	ToCertRequestSubjectOutputWithContext(context.Context) CertRequestSubjectOutput
}

type CertRequestSubjectOutput 

type CertRequestSubjectOutput struct{ *pulumi.OutputState }

func (CertRequestSubjectOutput) CommonName 

func (o CertRequestSubjectOutput) CommonName() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) Country 

func (o CertRequestSubjectOutput) Country() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) ElementType 

func (CertRequestSubjectOutput) ElementType() reflect.Type

func (CertRequestSubjectOutput) Locality 

func (o CertRequestSubjectOutput) Locality() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) Organization 

func (o CertRequestSubjectOutput) Organization() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) OrganizationalUnit 

func (o CertRequestSubjectOutput) OrganizationalUnit() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) PostalCode 

func (o CertRequestSubjectOutput) PostalCode() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) Province 

func (o CertRequestSubjectOutput) Province() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) SerialNumber 

func (o CertRequestSubjectOutput) SerialNumber() pulumi.StringPtrOutput

func (CertRequestSubjectOutput) StreetAddresses 

func (o CertRequestSubjectOutput) StreetAddresses() pulumi.StringArrayOutput

func (CertRequestSubjectOutput) ToCertRequestSubjectOutput 

func (o CertRequestSubjectOutput) ToCertRequestSubjectOutput() CertRequestSubjectOutput

func (CertRequestSubjectOutput) ToCertRequestSubjectOutputWithContext 

func (o CertRequestSubjectOutput) ToCertRequestSubjectOutputWithContext(ctx context.Context) CertRequestSubjectOutput

type GetPublicKeyArgs 

type GetPublicKeyArgs struct {
	// The private key to use. Currently-supported key types are "RSA" or "ECDSA".
	PrivateKeyPem string `pulumi:"privateKeyPem"`
}

A collection of arguments for invoking getPublicKey.

type GetPublicKeyResult 

type GetPublicKeyResult struct {
	Algorithm string `pulumi:"algorithm"`
	// id is the provider-assigned unique ID for this managed resource.
	Id string `pulumi:"id"`
	// The private key data in PEM format.
	PrivateKeyPem string `pulumi:"privateKeyPem"`
	// The md5 hash of the public key data in
	// OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the
	// selected private key format is compatible, as per the rules for
	// `publicKeyOpenssh`.
	PublicKeyFingerprintMd5 string `pulumi:"publicKeyFingerprintMd5"`
	// The public key data in OpenSSH `authorizedKeys`
	// format, if the selected private key format is compatible. All RSA keys
	// are supported, and ECDSA keys with curves "P256", "P384" and "P521"
	// are supported. This attribute is empty if an incompatible ECDSA curve
	// is selected.
	PublicKeyOpenssh string `pulumi:"publicKeyOpenssh"`
	// The public key data in PEM format.
	PublicKeyPem string `pulumi:"publicKeyPem"`
}

A collection of values returned by getPublicKey.

func GetPublicKey 

func GetPublicKey(ctx *pulumi.Context, args *GetPublicKeyArgs, opts ...pulumi.InvokeOption) (*GetPublicKeyResult, error)

Use this data source to get the public key from a PEM-encoded private key for use in other resources.

> This content is derived from https://github.com/terraform-providers/terraform-provider-tls/blob/master/website/docs/d/public_key.html.md.

type LocallySignedCert 

type LocallySignedCert struct {
	pulumi.CustomResourceState

	// List of keywords each describing a use that is permitted
	// for the issued certificate. The valid keywords are listed below.
	AllowedUses pulumi.StringArrayOutput `pulumi:"allowedUses"`
	// PEM-encoded certificate data for the CA.
	CaCertPem pulumi.StringOutput `pulumi:"caCertPem"`
	// The name of the algorithm for the key provided
	// in `caPrivateKeyPem`.
	CaKeyAlgorithm pulumi.StringOutput `pulumi:"caKeyAlgorithm"`
	// PEM-encoded private key data for the CA.
	// This can be read from a separate file using the “file“ interpolation
	// function.
	CaPrivateKeyPem pulumi.StringOutput `pulumi:"caPrivateKeyPem"`
	// The certificate data in PEM format.
	CertPem pulumi.StringOutput `pulumi:"certPem"`
	// PEM-encoded request certificate data.
	CertRequestPem pulumi.StringOutput `pulumi:"certRequestPem"`
	// Number of hours before the certificates expiry when a new certificate will be generated
	EarlyRenewalHours pulumi.IntPtrOutput `pulumi:"earlyRenewalHours"`
	// Boolean controlling whether the CA flag will be set in the
	// generated certificate. Defaults to `false`, meaning that the certificate does not represent
	// a certificate authority.
	IsCaCertificate pulumi.BoolPtrOutput `pulumi:"isCaCertificate"`
	ReadyForRenewal pulumi.BoolOutput    `pulumi:"readyForRenewal"`
	// If `true`, the certificate will include
	// the subject key identifier. Defaults to `false`, in which case the subject
	// key identifier is not set at all.
	SetSubjectKeyId pulumi.BoolPtrOutput `pulumi:"setSubjectKeyId"`
	// The time until which the certificate is invalid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityEndTime pulumi.StringOutput `pulumi:"validityEndTime"`
	// The number of hours after initial issuing that the
	// certificate will become invalid.
	ValidityPeriodHours pulumi.IntOutput `pulumi:"validityPeriodHours"`
	// The time after which the certificate is valid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityStartTime pulumi.StringOutput `pulumi:"validityStartTime"`
}

func GetLocallySignedCert 

func GetLocallySignedCert(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *LocallySignedCertState, opts ...pulumi.ResourceOption) (*LocallySignedCert, error)

GetLocallySignedCert gets an existing LocallySignedCert resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewLocallySignedCert 

func NewLocallySignedCert(ctx *pulumi.Context,
	name string, args *LocallySignedCertArgs, opts ...pulumi.ResourceOption) (*LocallySignedCert, error)

NewLocallySignedCert registers a new resource with the given unique name, arguments, and options.

type LocallySignedCertArgs 

type LocallySignedCertArgs struct {
	// List of keywords each describing a use that is permitted
	// for the issued certificate. The valid keywords are listed below.
	AllowedUses pulumi.StringArrayInput
	// PEM-encoded certificate data for the CA.
	CaCertPem pulumi.StringInput
	// The name of the algorithm for the key provided
	// in `caPrivateKeyPem`.
	CaKeyAlgorithm pulumi.StringInput
	// PEM-encoded private key data for the CA.
	// This can be read from a separate file using the “file“ interpolation
	// function.
	CaPrivateKeyPem pulumi.StringInput
	// PEM-encoded request certificate data.
	CertRequestPem pulumi.StringInput
	// Number of hours before the certificates expiry when a new certificate will be generated
	EarlyRenewalHours pulumi.IntPtrInput
	// Boolean controlling whether the CA flag will be set in the
	// generated certificate. Defaults to `false`, meaning that the certificate does not represent
	// a certificate authority.
	IsCaCertificate pulumi.BoolPtrInput
	// If `true`, the certificate will include
	// the subject key identifier. Defaults to `false`, in which case the subject
	// key identifier is not set at all.
	SetSubjectKeyId pulumi.BoolPtrInput
	// The number of hours after initial issuing that the
	// certificate will become invalid.
	ValidityPeriodHours pulumi.IntInput
}

The set of arguments for constructing a LocallySignedCert resource.

func (LocallySignedCertArgs) ElementType 

func (LocallySignedCertArgs) ElementType() reflect.Type

type LocallySignedCertState 

type LocallySignedCertState struct {
	// List of keywords each describing a use that is permitted
	// for the issued certificate. The valid keywords are listed below.
	AllowedUses pulumi.StringArrayInput
	// PEM-encoded certificate data for the CA.
	CaCertPem pulumi.StringPtrInput
	// The name of the algorithm for the key provided
	// in `caPrivateKeyPem`.
	CaKeyAlgorithm pulumi.StringPtrInput
	// PEM-encoded private key data for the CA.
	// This can be read from a separate file using the “file“ interpolation
	// function.
	CaPrivateKeyPem pulumi.StringPtrInput
	// The certificate data in PEM format.
	CertPem pulumi.StringPtrInput
	// PEM-encoded request certificate data.
	CertRequestPem pulumi.StringPtrInput
	// Number of hours before the certificates expiry when a new certificate will be generated
	EarlyRenewalHours pulumi.IntPtrInput
	// Boolean controlling whether the CA flag will be set in the
	// generated certificate. Defaults to `false`, meaning that the certificate does not represent
	// a certificate authority.
	IsCaCertificate pulumi.BoolPtrInput
	ReadyForRenewal pulumi.BoolPtrInput
	// If `true`, the certificate will include
	// the subject key identifier. Defaults to `false`, in which case the subject
	// key identifier is not set at all.
	SetSubjectKeyId pulumi.BoolPtrInput
	// The time until which the certificate is invalid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityEndTime pulumi.StringPtrInput
	// The number of hours after initial issuing that the
	// certificate will become invalid.
	ValidityPeriodHours pulumi.IntPtrInput
	// The time after which the certificate is valid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityStartTime pulumi.StringPtrInput
}

func (LocallySignedCertState) ElementType 

func (LocallySignedCertState) ElementType() reflect.Type

type PrivateKey 

type PrivateKey struct {
	pulumi.CustomResourceState

	// The name of the algorithm to use for
	// the key. Currently-supported values are "RSA" and "ECDSA".
	Algorithm pulumi.StringOutput `pulumi:"algorithm"`
	// When `algorithm` is "ECDSA", the name of the elliptic
	// curve to use. May be any one of "P224", "P256", "P384" or "P521", with "P224" as the
	// default.
	EcdsaCurve pulumi.StringPtrOutput `pulumi:"ecdsaCurve"`
	// The private key data in PEM format.
	PrivateKeyPem pulumi.StringOutput `pulumi:"privateKeyPem"`
	// The md5 hash of the public key data in
	// OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the
	// selected private key format is compatible, as per the rules for
	// `publicKeyOpenssh`.
	PublicKeyFingerprintMd5 pulumi.StringOutput `pulumi:"publicKeyFingerprintMd5"`
	// The public key data in OpenSSH `authorizedKeys`
	// format, if the selected private key format is compatible. All RSA keys
	// are supported, and ECDSA keys with curves "P256", "P384" and "P521"
	// are supported. This attribute is empty if an incompatible ECDSA curve
	// is selected.
	PublicKeyOpenssh pulumi.StringOutput `pulumi:"publicKeyOpenssh"`
	// The public key data in PEM format.
	PublicKeyPem pulumi.StringOutput `pulumi:"publicKeyPem"`
	// When `algorithm` is "RSA", the size of the generated
	// RSA key in bits. Defaults to 2048.
	RsaBits pulumi.IntPtrOutput `pulumi:"rsaBits"`
}

func GetPrivateKey 

func GetPrivateKey(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PrivateKeyState, opts ...pulumi.ResourceOption) (*PrivateKey, error)

GetPrivateKey gets an existing PrivateKey resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPrivateKey 

func NewPrivateKey(ctx *pulumi.Context,
	name string, args *PrivateKeyArgs, opts ...pulumi.ResourceOption) (*PrivateKey, error)

NewPrivateKey registers a new resource with the given unique name, arguments, and options.

type PrivateKeyArgs 

type PrivateKeyArgs struct {
	// The name of the algorithm to use for
	// the key. Currently-supported values are "RSA" and "ECDSA".
	Algorithm pulumi.StringInput
	// When `algorithm` is "ECDSA", the name of the elliptic
	// curve to use. May be any one of "P224", "P256", "P384" or "P521", with "P224" as the
	// default.
	EcdsaCurve pulumi.StringPtrInput
	// When `algorithm` is "RSA", the size of the generated
	// RSA key in bits. Defaults to 2048.
	RsaBits pulumi.IntPtrInput
}

The set of arguments for constructing a PrivateKey resource.

func (PrivateKeyArgs) ElementType 

func (PrivateKeyArgs) ElementType() reflect.Type

type PrivateKeyState 

type PrivateKeyState struct {
	// The name of the algorithm to use for
	// the key. Currently-supported values are "RSA" and "ECDSA".
	Algorithm pulumi.StringPtrInput
	// When `algorithm` is "ECDSA", the name of the elliptic
	// curve to use. May be any one of "P224", "P256", "P384" or "P521", with "P224" as the
	// default.
	EcdsaCurve pulumi.StringPtrInput
	// The private key data in PEM format.
	PrivateKeyPem pulumi.StringPtrInput
	// The md5 hash of the public key data in
	// OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the
	// selected private key format is compatible, as per the rules for
	// `publicKeyOpenssh`.
	PublicKeyFingerprintMd5 pulumi.StringPtrInput
	// The public key data in OpenSSH `authorizedKeys`
	// format, if the selected private key format is compatible. All RSA keys
	// are supported, and ECDSA keys with curves "P256", "P384" and "P521"
	// are supported. This attribute is empty if an incompatible ECDSA curve
	// is selected.
	PublicKeyOpenssh pulumi.StringPtrInput
	// The public key data in PEM format.
	PublicKeyPem pulumi.StringPtrInput
	// When `algorithm` is "RSA", the size of the generated
	// RSA key in bits. Defaults to 2048.
	RsaBits pulumi.IntPtrInput
}

func (PrivateKeyState) ElementType 

func (PrivateKeyState) ElementType() reflect.Type

type Provider 

type Provider struct {
	pulumi.ProviderResourceState
}

The provider type for the tls package. By default, resources use package-wide configuration settings, however an explicit `Provider` instance may be created and passed during resource construction to achieve fine-grained programmatic control over provider settings. See the [documentation](https://www.pulumi.com/docs/reference/programming-model/#providers) for more information.

> This content is derived from https://github.com/terraform-providers/terraform-provider-tls/blob/master/website/docs/index.html.markdown.

func NewProvider 

func NewProvider(ctx *pulumi.Context,
	name string, args *ProviderArgs, opts ...pulumi.ResourceOption) (*Provider, error)

NewProvider registers a new resource with the given unique name, arguments, and options.

type ProviderArgs 

type ProviderArgs struct {
}

The set of arguments for constructing a Provider resource.

func (ProviderArgs) ElementType 

func (ProviderArgs) ElementType() reflect.Type

type SelfSignedCert 

type SelfSignedCert struct {
	pulumi.CustomResourceState

	// List of keywords each describing a use that is permitted
	// for the issued certificate. The valid keywords are listed below.
	AllowedUses pulumi.StringArrayOutput `pulumi:"allowedUses"`
	// The certificate data in PEM format.
	CertPem pulumi.StringOutput `pulumi:"certPem"`
	// List of DNS names for which a certificate is being requested.
	DnsNames pulumi.StringArrayOutput `pulumi:"dnsNames"`
	// Number of hours before the certificates expiry when a new certificate will be generated
	EarlyRenewalHours pulumi.IntPtrOutput `pulumi:"earlyRenewalHours"`
	// List of IP addresses for which a certificate is being requested.
	IpAddresses pulumi.StringArrayOutput `pulumi:"ipAddresses"`
	// Boolean controlling whether the CA flag will be set in the
	// generated certificate. Defaults to `false`, meaning that the certificate does not represent
	// a certificate authority.
	IsCaCertificate pulumi.BoolPtrOutput `pulumi:"isCaCertificate"`
	// The name of the algorithm for the key provided
	// in `privateKeyPem`.
	KeyAlgorithm pulumi.StringOutput `pulumi:"keyAlgorithm"`
	// PEM-encoded private key that the certificate will belong to
	PrivateKeyPem   pulumi.StringOutput `pulumi:"privateKeyPem"`
	ReadyForRenewal pulumi.BoolOutput   `pulumi:"readyForRenewal"`
	// If `true`, the certificate will include
	// the subject key identifier. Defaults to `false`, in which case the subject
	// key identifier is not set at all.
	SetSubjectKeyId pulumi.BoolPtrOutput `pulumi:"setSubjectKeyId"`
	// The subject for which a certificate is being requested.
	// This is a nested configuration block whose structure matches the
	// corresponding block for `.CertRequest`.
	Subjects SelfSignedCertSubjectArrayOutput `pulumi:"subjects"`
	// List of URIs for which a certificate is being requested.
	Uris pulumi.StringArrayOutput `pulumi:"uris"`
	// The time until which the certificate is invalid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityEndTime pulumi.StringOutput `pulumi:"validityEndTime"`
	// The number of hours after initial issuing that the
	// certificate will become invalid.
	ValidityPeriodHours pulumi.IntOutput `pulumi:"validityPeriodHours"`
	// The time after which the certificate is valid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityStartTime pulumi.StringOutput `pulumi:"validityStartTime"`
}

func GetSelfSignedCert 

func GetSelfSignedCert(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *SelfSignedCertState, opts ...pulumi.ResourceOption) (*SelfSignedCert, error)

GetSelfSignedCert gets an existing SelfSignedCert resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewSelfSignedCert 

func NewSelfSignedCert(ctx *pulumi.Context,
	name string, args *SelfSignedCertArgs, opts ...pulumi.ResourceOption) (*SelfSignedCert, error)

NewSelfSignedCert registers a new resource with the given unique name, arguments, and options.

type SelfSignedCertArgs 

type SelfSignedCertArgs struct {
	// List of keywords each describing a use that is permitted
	// for the issued certificate. The valid keywords are listed below.
	AllowedUses pulumi.StringArrayInput
	// List of DNS names for which a certificate is being requested.
	DnsNames pulumi.StringArrayInput
	// Number of hours before the certificates expiry when a new certificate will be generated
	EarlyRenewalHours pulumi.IntPtrInput
	// List of IP addresses for which a certificate is being requested.
	IpAddresses pulumi.StringArrayInput
	// Boolean controlling whether the CA flag will be set in the
	// generated certificate. Defaults to `false`, meaning that the certificate does not represent
	// a certificate authority.
	IsCaCertificate pulumi.BoolPtrInput
	// The name of the algorithm for the key provided
	// in `privateKeyPem`.
	KeyAlgorithm pulumi.StringInput
	// PEM-encoded private key that the certificate will belong to
	PrivateKeyPem pulumi.StringInput
	// If `true`, the certificate will include
	// the subject key identifier. Defaults to `false`, in which case the subject
	// key identifier is not set at all.
	SetSubjectKeyId pulumi.BoolPtrInput
	// The subject for which a certificate is being requested.
	// This is a nested configuration block whose structure matches the
	// corresponding block for `.CertRequest`.
	Subjects SelfSignedCertSubjectArrayInput
	// List of URIs for which a certificate is being requested.
	Uris pulumi.StringArrayInput
	// The number of hours after initial issuing that the
	// certificate will become invalid.
	ValidityPeriodHours pulumi.IntInput
}

The set of arguments for constructing a SelfSignedCert resource.

func (SelfSignedCertArgs) ElementType 

func (SelfSignedCertArgs) ElementType() reflect.Type

type SelfSignedCertState 

type SelfSignedCertState struct {
	// List of keywords each describing a use that is permitted
	// for the issued certificate. The valid keywords are listed below.
	AllowedUses pulumi.StringArrayInput
	// The certificate data in PEM format.
	CertPem pulumi.StringPtrInput
	// List of DNS names for which a certificate is being requested.
	DnsNames pulumi.StringArrayInput
	// Number of hours before the certificates expiry when a new certificate will be generated
	EarlyRenewalHours pulumi.IntPtrInput
	// List of IP addresses for which a certificate is being requested.
	IpAddresses pulumi.StringArrayInput
	// Boolean controlling whether the CA flag will be set in the
	// generated certificate. Defaults to `false`, meaning that the certificate does not represent
	// a certificate authority.
	IsCaCertificate pulumi.BoolPtrInput
	// The name of the algorithm for the key provided
	// in `privateKeyPem`.
	KeyAlgorithm pulumi.StringPtrInput
	// PEM-encoded private key that the certificate will belong to
	PrivateKeyPem   pulumi.StringPtrInput
	ReadyForRenewal pulumi.BoolPtrInput
	// If `true`, the certificate will include
	// the subject key identifier. Defaults to `false`, in which case the subject
	// key identifier is not set at all.
	SetSubjectKeyId pulumi.BoolPtrInput
	// The subject for which a certificate is being requested.
	// This is a nested configuration block whose structure matches the
	// corresponding block for `.CertRequest`.
	Subjects SelfSignedCertSubjectArrayInput
	// List of URIs for which a certificate is being requested.
	Uris pulumi.StringArrayInput
	// The time until which the certificate is invalid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityEndTime pulumi.StringPtrInput
	// The number of hours after initial issuing that the
	// certificate will become invalid.
	ValidityPeriodHours pulumi.IntPtrInput
	// The time after which the certificate is valid, as an
	// [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityStartTime pulumi.StringPtrInput
}

func (SelfSignedCertState) ElementType 

func (SelfSignedCertState) ElementType() reflect.Type

type SelfSignedCertSubject 

type SelfSignedCertSubject struct {
	CommonName         *string  `pulumi:"commonName"`
	Country            *string  `pulumi:"country"`
	Locality           *string  `pulumi:"locality"`
	Organization       *string  `pulumi:"organization"`
	OrganizationalUnit *string  `pulumi:"organizationalUnit"`
	PostalCode         *string  `pulumi:"postalCode"`
	Province           *string  `pulumi:"province"`
	SerialNumber       *string  `pulumi:"serialNumber"`
	StreetAddresses    []string `pulumi:"streetAddresses"`
}

type SelfSignedCertSubjectArgs 

type SelfSignedCertSubjectArgs struct {
	CommonName         pulumi.StringPtrInput   `pulumi:"commonName"`
	Country            pulumi.StringPtrInput   `pulumi:"country"`
	Locality           pulumi.StringPtrInput   `pulumi:"locality"`
	Organization       pulumi.StringPtrInput   `pulumi:"organization"`
	OrganizationalUnit pulumi.StringPtrInput   `pulumi:"organizationalUnit"`
	PostalCode         pulumi.StringPtrInput   `pulumi:"postalCode"`
	Province           pulumi.StringPtrInput   `pulumi:"province"`
	SerialNumber       pulumi.StringPtrInput   `pulumi:"serialNumber"`
	StreetAddresses    pulumi.StringArrayInput `pulumi:"streetAddresses"`
}

func (SelfSignedCertSubjectArgs) ElementType 

func (SelfSignedCertSubjectArgs) ElementType() reflect.Type

func (SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutput 

func (i SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutput() SelfSignedCertSubjectOutput

func (SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutputWithContext 

func (i SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutputWithContext(ctx context.Context) SelfSignedCertSubjectOutput

type SelfSignedCertSubjectArray 

type SelfSignedCertSubjectArray []SelfSignedCertSubjectInput

func (SelfSignedCertSubjectArray) ElementType 

func (SelfSignedCertSubjectArray) ElementType() reflect.Type

func (SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutput 

func (i SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput

func (SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutputWithContext 

func (i SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutputWithContext(ctx context.Context) SelfSignedCertSubjectArrayOutput

type SelfSignedCertSubjectArrayInput 

type SelfSignedCertSubjectArrayInput interface {
	pulumi.Input

	ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput
	ToSelfSignedCertSubjectArrayOutputWithContext(context.Context) SelfSignedCertSubjectArrayOutput
}

type SelfSignedCertSubjectArrayOutput 

type SelfSignedCertSubjectArrayOutput struct{ *pulumi.OutputState }

func (SelfSignedCertSubjectArrayOutput) ElementType 

func (SelfSignedCertSubjectArrayOutput) ElementType() reflect.Type

func (SelfSignedCertSubjectArrayOutput) Index 

func (o SelfSignedCertSubjectArrayOutput) Index(i pulumi.IntInput) SelfSignedCertSubjectOutput

func (SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutput 

func (o SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput

func (SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutputWithContext 

func (o SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutputWithContext(ctx context.Context) SelfSignedCertSubjectArrayOutput

type SelfSignedCertSubjectInput 

type SelfSignedCertSubjectInput interface {
	pulumi.Input

	ToSelfSignedCertSubjectOutput() SelfSignedCertSubjectOutput
	ToSelfSignedCertSubjectOutputWithContext(context.Context) SelfSignedCertSubjectOutput
}

type SelfSignedCertSubjectOutput 

type SelfSignedCertSubjectOutput struct{ *pulumi.OutputState }

func (SelfSignedCertSubjectOutput) CommonName 

func (o SelfSignedCertSubjectOutput) CommonName() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) Country 

func (o SelfSignedCertSubjectOutput) Country() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) ElementType 

func (SelfSignedCertSubjectOutput) ElementType() reflect.Type

func (SelfSignedCertSubjectOutput) Locality 

func (o SelfSignedCertSubjectOutput) Locality() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) Organization 

func (o SelfSignedCertSubjectOutput) Organization() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) OrganizationalUnit 

func (o SelfSignedCertSubjectOutput) OrganizationalUnit() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) PostalCode 

func (o SelfSignedCertSubjectOutput) PostalCode() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) Province 

func (o SelfSignedCertSubjectOutput) Province() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) SerialNumber 

func (o SelfSignedCertSubjectOutput) SerialNumber() pulumi.StringPtrOutput

func (SelfSignedCertSubjectOutput) StreetAddresses 

func (o SelfSignedCertSubjectOutput) StreetAddresses() pulumi.StringArrayOutput

func (SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutput 

func (o SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutput() SelfSignedCertSubjectOutput

func (SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutputWithContext 

func (o SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutputWithContext(ctx context.Context) SelfSignedCertSubjectOutput

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.