Documentation ¶
Overview ¶
nolint: lll
Package tls exports types, functions, subpackages for provisioning tls resources.// A Pulumi package to create TLS resources in Pulumi programs.
> This provider is a derived work of the [Terraform Provider](https://github.com/terraform-providers/terraform-provider-tls) > distributed under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/). If you encounter a bug or missing feature, > first check the [`pulumi/pulumi-tls` repo](https://github.com/pulumi/pulumi-tls/issues); however, if that doesn't turn up anything, > please consult the source [`terraform-providers/terraform-provider-tls` repo](https://github.com/terraform-providers/terraform-provider-tls/issues).
nolint: lll
nolint: lll
nolint: lll
nolint: lll
nolint: lll
nolint: lll
nolint: lll
Index ¶
- type CertRequest
- type CertRequestArgs
- type CertRequestState
- type CertRequestSubject
- type CertRequestSubjectArgs
- type CertRequestSubjectArray
- type CertRequestSubjectArrayInput
- type CertRequestSubjectArrayOutput
- func (CertRequestSubjectArrayOutput) ElementType() reflect.Type
- func (o CertRequestSubjectArrayOutput) Index(i pulumi.IntInput) CertRequestSubjectOutput
- func (o CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutput() CertRequestSubjectArrayOutput
- func (o CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutputWithContext(ctx context.Context) CertRequestSubjectArrayOutput
- type CertRequestSubjectInput
- type CertRequestSubjectOutput
- func (o CertRequestSubjectOutput) CommonName() pulumi.StringPtrOutput
- func (o CertRequestSubjectOutput) Country() pulumi.StringPtrOutput
- func (CertRequestSubjectOutput) ElementType() reflect.Type
- func (o CertRequestSubjectOutput) Locality() pulumi.StringPtrOutput
- func (o CertRequestSubjectOutput) Organization() pulumi.StringPtrOutput
- func (o CertRequestSubjectOutput) OrganizationalUnit() pulumi.StringPtrOutput
- func (o CertRequestSubjectOutput) PostalCode() pulumi.StringPtrOutput
- func (o CertRequestSubjectOutput) Province() pulumi.StringPtrOutput
- func (o CertRequestSubjectOutput) SerialNumber() pulumi.StringPtrOutput
- func (o CertRequestSubjectOutput) StreetAddresses() pulumi.StringArrayOutput
- func (o CertRequestSubjectOutput) ToCertRequestSubjectOutput() CertRequestSubjectOutput
- func (o CertRequestSubjectOutput) ToCertRequestSubjectOutputWithContext(ctx context.Context) CertRequestSubjectOutput
- type GetPublicKeyArgs
- type GetPublicKeyResult
- type LocallySignedCert
- type LocallySignedCertArgs
- type LocallySignedCertState
- type PrivateKey
- type PrivateKeyArgs
- type PrivateKeyState
- type Provider
- type ProviderArgs
- type SelfSignedCert
- type SelfSignedCertArgs
- type SelfSignedCertState
- type SelfSignedCertSubject
- type SelfSignedCertSubjectArgs
- type SelfSignedCertSubjectArray
- func (SelfSignedCertSubjectArray) ElementType() reflect.Type
- func (i SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput
- func (i SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutputWithContext(ctx context.Context) SelfSignedCertSubjectArrayOutput
- type SelfSignedCertSubjectArrayInput
- type SelfSignedCertSubjectArrayOutput
- func (SelfSignedCertSubjectArrayOutput) ElementType() reflect.Type
- func (o SelfSignedCertSubjectArrayOutput) Index(i pulumi.IntInput) SelfSignedCertSubjectOutput
- func (o SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput
- func (o SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutputWithContext(ctx context.Context) SelfSignedCertSubjectArrayOutput
- type SelfSignedCertSubjectInput
- type SelfSignedCertSubjectOutput
- func (o SelfSignedCertSubjectOutput) CommonName() pulumi.StringPtrOutput
- func (o SelfSignedCertSubjectOutput) Country() pulumi.StringPtrOutput
- func (SelfSignedCertSubjectOutput) ElementType() reflect.Type
- func (o SelfSignedCertSubjectOutput) Locality() pulumi.StringPtrOutput
- func (o SelfSignedCertSubjectOutput) Organization() pulumi.StringPtrOutput
- func (o SelfSignedCertSubjectOutput) OrganizationalUnit() pulumi.StringPtrOutput
- func (o SelfSignedCertSubjectOutput) PostalCode() pulumi.StringPtrOutput
- func (o SelfSignedCertSubjectOutput) Province() pulumi.StringPtrOutput
- func (o SelfSignedCertSubjectOutput) SerialNumber() pulumi.StringPtrOutput
- func (o SelfSignedCertSubjectOutput) StreetAddresses() pulumi.StringArrayOutput
- func (o SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutput() SelfSignedCertSubjectOutput
- func (o SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutputWithContext(ctx context.Context) SelfSignedCertSubjectOutput
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type CertRequest ¶
type CertRequest struct { pulumi.CustomResourceState // The certificate request data in PEM format. CertRequestPem pulumi.StringOutput `pulumi:"certRequestPem"` // List of DNS names for which a certificate is being requested. DnsNames pulumi.StringArrayOutput `pulumi:"dnsNames"` // List of IP addresses for which a certificate is being requested. IpAddresses pulumi.StringArrayOutput `pulumi:"ipAddresses"` // The name of the algorithm for the key provided // in `privateKeyPem`. KeyAlgorithm pulumi.StringOutput `pulumi:"keyAlgorithm"` // PEM-encoded private key that the certificate will belong to PrivateKeyPem pulumi.StringOutput `pulumi:"privateKeyPem"` // The subject for which a certificate is being requested. This is // a nested configuration block whose structure is described below. Subjects CertRequestSubjectArrayOutput `pulumi:"subjects"` // List of URIs for which a certificate is being requested. Uris pulumi.StringArrayOutput `pulumi:"uris"` }
func GetCertRequest ¶
func GetCertRequest(ctx *pulumi.Context, name string, id pulumi.IDInput, state *CertRequestState, opts ...pulumi.ResourceOption) (*CertRequest, error)
GetCertRequest gets an existing CertRequest resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewCertRequest ¶
func NewCertRequest(ctx *pulumi.Context, name string, args *CertRequestArgs, opts ...pulumi.ResourceOption) (*CertRequest, error)
NewCertRequest registers a new resource with the given unique name, arguments, and options.
type CertRequestArgs ¶
type CertRequestArgs struct { // List of DNS names for which a certificate is being requested. DnsNames pulumi.StringArrayInput // List of IP addresses for which a certificate is being requested. IpAddresses pulumi.StringArrayInput // The name of the algorithm for the key provided // in `privateKeyPem`. KeyAlgorithm pulumi.StringInput // PEM-encoded private key that the certificate will belong to PrivateKeyPem pulumi.StringInput // The subject for which a certificate is being requested. This is // a nested configuration block whose structure is described below. Subjects CertRequestSubjectArrayInput // List of URIs for which a certificate is being requested. Uris pulumi.StringArrayInput }
The set of arguments for constructing a CertRequest resource.
func (CertRequestArgs) ElementType ¶
func (CertRequestArgs) ElementType() reflect.Type
type CertRequestState ¶
type CertRequestState struct { // The certificate request data in PEM format. CertRequestPem pulumi.StringPtrInput // List of DNS names for which a certificate is being requested. DnsNames pulumi.StringArrayInput // List of IP addresses for which a certificate is being requested. IpAddresses pulumi.StringArrayInput // The name of the algorithm for the key provided // in `privateKeyPem`. KeyAlgorithm pulumi.StringPtrInput // PEM-encoded private key that the certificate will belong to PrivateKeyPem pulumi.StringPtrInput // The subject for which a certificate is being requested. This is // a nested configuration block whose structure is described below. Subjects CertRequestSubjectArrayInput // List of URIs for which a certificate is being requested. Uris pulumi.StringArrayInput }
func (CertRequestState) ElementType ¶
func (CertRequestState) ElementType() reflect.Type
type CertRequestSubject ¶
type CertRequestSubject struct { CommonName *string `pulumi:"commonName"` Country *string `pulumi:"country"` Locality *string `pulumi:"locality"` Organization *string `pulumi:"organization"` OrganizationalUnit *string `pulumi:"organizationalUnit"` PostalCode *string `pulumi:"postalCode"` Province *string `pulumi:"province"` SerialNumber *string `pulumi:"serialNumber"` StreetAddresses []string `pulumi:"streetAddresses"` }
type CertRequestSubjectArgs ¶
type CertRequestSubjectArgs struct { CommonName pulumi.StringPtrInput `pulumi:"commonName"` Country pulumi.StringPtrInput `pulumi:"country"` Locality pulumi.StringPtrInput `pulumi:"locality"` Organization pulumi.StringPtrInput `pulumi:"organization"` OrganizationalUnit pulumi.StringPtrInput `pulumi:"organizationalUnit"` PostalCode pulumi.StringPtrInput `pulumi:"postalCode"` Province pulumi.StringPtrInput `pulumi:"province"` SerialNumber pulumi.StringPtrInput `pulumi:"serialNumber"` StreetAddresses pulumi.StringArrayInput `pulumi:"streetAddresses"` }
func (CertRequestSubjectArgs) ElementType ¶
func (CertRequestSubjectArgs) ElementType() reflect.Type
func (CertRequestSubjectArgs) ToCertRequestSubjectOutput ¶
func (i CertRequestSubjectArgs) ToCertRequestSubjectOutput() CertRequestSubjectOutput
func (CertRequestSubjectArgs) ToCertRequestSubjectOutputWithContext ¶
func (i CertRequestSubjectArgs) ToCertRequestSubjectOutputWithContext(ctx context.Context) CertRequestSubjectOutput
type CertRequestSubjectArray ¶
type CertRequestSubjectArray []CertRequestSubjectInput
func (CertRequestSubjectArray) ElementType ¶
func (CertRequestSubjectArray) ElementType() reflect.Type
func (CertRequestSubjectArray) ToCertRequestSubjectArrayOutput ¶
func (i CertRequestSubjectArray) ToCertRequestSubjectArrayOutput() CertRequestSubjectArrayOutput
func (CertRequestSubjectArray) ToCertRequestSubjectArrayOutputWithContext ¶
func (i CertRequestSubjectArray) ToCertRequestSubjectArrayOutputWithContext(ctx context.Context) CertRequestSubjectArrayOutput
type CertRequestSubjectArrayInput ¶
type CertRequestSubjectArrayInput interface { pulumi.Input ToCertRequestSubjectArrayOutput() CertRequestSubjectArrayOutput ToCertRequestSubjectArrayOutputWithContext(context.Context) CertRequestSubjectArrayOutput }
type CertRequestSubjectArrayOutput ¶
type CertRequestSubjectArrayOutput struct{ *pulumi.OutputState }
func (CertRequestSubjectArrayOutput) ElementType ¶
func (CertRequestSubjectArrayOutput) ElementType() reflect.Type
func (CertRequestSubjectArrayOutput) Index ¶
func (o CertRequestSubjectArrayOutput) Index(i pulumi.IntInput) CertRequestSubjectOutput
func (CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutput ¶
func (o CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutput() CertRequestSubjectArrayOutput
func (CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutputWithContext ¶
func (o CertRequestSubjectArrayOutput) ToCertRequestSubjectArrayOutputWithContext(ctx context.Context) CertRequestSubjectArrayOutput
type CertRequestSubjectInput ¶
type CertRequestSubjectInput interface { pulumi.Input ToCertRequestSubjectOutput() CertRequestSubjectOutput ToCertRequestSubjectOutputWithContext(context.Context) CertRequestSubjectOutput }
type CertRequestSubjectOutput ¶
type CertRequestSubjectOutput struct{ *pulumi.OutputState }
func (CertRequestSubjectOutput) CommonName ¶
func (o CertRequestSubjectOutput) CommonName() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) Country ¶
func (o CertRequestSubjectOutput) Country() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) ElementType ¶
func (CertRequestSubjectOutput) ElementType() reflect.Type
func (CertRequestSubjectOutput) Locality ¶
func (o CertRequestSubjectOutput) Locality() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) Organization ¶
func (o CertRequestSubjectOutput) Organization() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) OrganizationalUnit ¶
func (o CertRequestSubjectOutput) OrganizationalUnit() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) PostalCode ¶
func (o CertRequestSubjectOutput) PostalCode() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) Province ¶
func (o CertRequestSubjectOutput) Province() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) SerialNumber ¶
func (o CertRequestSubjectOutput) SerialNumber() pulumi.StringPtrOutput
func (CertRequestSubjectOutput) StreetAddresses ¶
func (o CertRequestSubjectOutput) StreetAddresses() pulumi.StringArrayOutput
func (CertRequestSubjectOutput) ToCertRequestSubjectOutput ¶
func (o CertRequestSubjectOutput) ToCertRequestSubjectOutput() CertRequestSubjectOutput
func (CertRequestSubjectOutput) ToCertRequestSubjectOutputWithContext ¶
func (o CertRequestSubjectOutput) ToCertRequestSubjectOutputWithContext(ctx context.Context) CertRequestSubjectOutput
type GetPublicKeyArgs ¶
type GetPublicKeyArgs struct { // The private key to use. Currently-supported key types are "RSA" or "ECDSA". PrivateKeyPem string `pulumi:"privateKeyPem"` }
A collection of arguments for invoking getPublicKey.
type GetPublicKeyResult ¶
type GetPublicKeyResult struct { Algorithm string `pulumi:"algorithm"` // id is the provider-assigned unique ID for this managed resource. Id string `pulumi:"id"` // The private key data in PEM format. PrivateKeyPem string `pulumi:"privateKeyPem"` // The md5 hash of the public key data in // OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the // selected private key format is compatible, as per the rules for // `publicKeyOpenssh`. PublicKeyFingerprintMd5 string `pulumi:"publicKeyFingerprintMd5"` // The public key data in OpenSSH `authorizedKeys` // format, if the selected private key format is compatible. All RSA keys // are supported, and ECDSA keys with curves "P256", "P384" and "P521" // are supported. This attribute is empty if an incompatible ECDSA curve // is selected. PublicKeyOpenssh string `pulumi:"publicKeyOpenssh"` // The public key data in PEM format. PublicKeyPem string `pulumi:"publicKeyPem"` }
A collection of values returned by getPublicKey.
func GetPublicKey ¶
func GetPublicKey(ctx *pulumi.Context, args *GetPublicKeyArgs, opts ...pulumi.InvokeOption) (*GetPublicKeyResult, error)
Use this data source to get the public key from a PEM-encoded private key for use in other resources.
> This content is derived from https://github.com/terraform-providers/terraform-provider-tls/blob/master/website/docs/d/public_key.html.md.
type LocallySignedCert ¶
type LocallySignedCert struct { pulumi.CustomResourceState // List of keywords each describing a use that is permitted // for the issued certificate. The valid keywords are listed below. AllowedUses pulumi.StringArrayOutput `pulumi:"allowedUses"` // PEM-encoded certificate data for the CA. CaCertPem pulumi.StringOutput `pulumi:"caCertPem"` // The name of the algorithm for the key provided // in `caPrivateKeyPem`. CaKeyAlgorithm pulumi.StringOutput `pulumi:"caKeyAlgorithm"` // PEM-encoded private key data for the CA. // This can be read from a separate file using the “file“ interpolation // function. CaPrivateKeyPem pulumi.StringOutput `pulumi:"caPrivateKeyPem"` // The certificate data in PEM format. CertPem pulumi.StringOutput `pulumi:"certPem"` // PEM-encoded request certificate data. CertRequestPem pulumi.StringOutput `pulumi:"certRequestPem"` // Number of hours before the certificates expiry when a new certificate will be generated EarlyRenewalHours pulumi.IntPtrOutput `pulumi:"earlyRenewalHours"` // Boolean controlling whether the CA flag will be set in the // generated certificate. Defaults to `false`, meaning that the certificate does not represent // a certificate authority. IsCaCertificate pulumi.BoolPtrOutput `pulumi:"isCaCertificate"` ReadyForRenewal pulumi.BoolOutput `pulumi:"readyForRenewal"` // If `true`, the certificate will include // the subject key identifier. Defaults to `false`, in which case the subject // key identifier is not set at all. SetSubjectKeyId pulumi.BoolPtrOutput `pulumi:"setSubjectKeyId"` // The time until which the certificate is invalid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityEndTime pulumi.StringOutput `pulumi:"validityEndTime"` // The number of hours after initial issuing that the // certificate will become invalid. ValidityPeriodHours pulumi.IntOutput `pulumi:"validityPeriodHours"` // The time after which the certificate is valid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityStartTime pulumi.StringOutput `pulumi:"validityStartTime"` }
func GetLocallySignedCert ¶
func GetLocallySignedCert(ctx *pulumi.Context, name string, id pulumi.IDInput, state *LocallySignedCertState, opts ...pulumi.ResourceOption) (*LocallySignedCert, error)
GetLocallySignedCert gets an existing LocallySignedCert resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewLocallySignedCert ¶
func NewLocallySignedCert(ctx *pulumi.Context, name string, args *LocallySignedCertArgs, opts ...pulumi.ResourceOption) (*LocallySignedCert, error)
NewLocallySignedCert registers a new resource with the given unique name, arguments, and options.
type LocallySignedCertArgs ¶
type LocallySignedCertArgs struct { // List of keywords each describing a use that is permitted // for the issued certificate. The valid keywords are listed below. AllowedUses pulumi.StringArrayInput // PEM-encoded certificate data for the CA. CaCertPem pulumi.StringInput // The name of the algorithm for the key provided // in `caPrivateKeyPem`. CaKeyAlgorithm pulumi.StringInput // PEM-encoded private key data for the CA. // This can be read from a separate file using the “file“ interpolation // function. CaPrivateKeyPem pulumi.StringInput // PEM-encoded request certificate data. CertRequestPem pulumi.StringInput // Number of hours before the certificates expiry when a new certificate will be generated EarlyRenewalHours pulumi.IntPtrInput // Boolean controlling whether the CA flag will be set in the // generated certificate. Defaults to `false`, meaning that the certificate does not represent // a certificate authority. IsCaCertificate pulumi.BoolPtrInput // If `true`, the certificate will include // the subject key identifier. Defaults to `false`, in which case the subject // key identifier is not set at all. SetSubjectKeyId pulumi.BoolPtrInput // The number of hours after initial issuing that the // certificate will become invalid. ValidityPeriodHours pulumi.IntInput }
The set of arguments for constructing a LocallySignedCert resource.
func (LocallySignedCertArgs) ElementType ¶
func (LocallySignedCertArgs) ElementType() reflect.Type
type LocallySignedCertState ¶
type LocallySignedCertState struct { // List of keywords each describing a use that is permitted // for the issued certificate. The valid keywords are listed below. AllowedUses pulumi.StringArrayInput // PEM-encoded certificate data for the CA. CaCertPem pulumi.StringPtrInput // The name of the algorithm for the key provided // in `caPrivateKeyPem`. CaKeyAlgorithm pulumi.StringPtrInput // PEM-encoded private key data for the CA. // This can be read from a separate file using the “file“ interpolation // function. CaPrivateKeyPem pulumi.StringPtrInput // The certificate data in PEM format. CertPem pulumi.StringPtrInput // PEM-encoded request certificate data. CertRequestPem pulumi.StringPtrInput // Number of hours before the certificates expiry when a new certificate will be generated EarlyRenewalHours pulumi.IntPtrInput // Boolean controlling whether the CA flag will be set in the // generated certificate. Defaults to `false`, meaning that the certificate does not represent // a certificate authority. IsCaCertificate pulumi.BoolPtrInput ReadyForRenewal pulumi.BoolPtrInput // If `true`, the certificate will include // the subject key identifier. Defaults to `false`, in which case the subject // key identifier is not set at all. SetSubjectKeyId pulumi.BoolPtrInput // The time until which the certificate is invalid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityEndTime pulumi.StringPtrInput // The number of hours after initial issuing that the // certificate will become invalid. ValidityPeriodHours pulumi.IntPtrInput // The time after which the certificate is valid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityStartTime pulumi.StringPtrInput }
func (LocallySignedCertState) ElementType ¶
func (LocallySignedCertState) ElementType() reflect.Type
type PrivateKey ¶
type PrivateKey struct { pulumi.CustomResourceState // The name of the algorithm to use for // the key. Currently-supported values are "RSA" and "ECDSA". Algorithm pulumi.StringOutput `pulumi:"algorithm"` // When `algorithm` is "ECDSA", the name of the elliptic // curve to use. May be any one of "P224", "P256", "P384" or "P521", with "P224" as the // default. EcdsaCurve pulumi.StringPtrOutput `pulumi:"ecdsaCurve"` // The private key data in PEM format. PrivateKeyPem pulumi.StringOutput `pulumi:"privateKeyPem"` // The md5 hash of the public key data in // OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the // selected private key format is compatible, as per the rules for // `publicKeyOpenssh`. PublicKeyFingerprintMd5 pulumi.StringOutput `pulumi:"publicKeyFingerprintMd5"` // The public key data in OpenSSH `authorizedKeys` // format, if the selected private key format is compatible. All RSA keys // are supported, and ECDSA keys with curves "P256", "P384" and "P521" // are supported. This attribute is empty if an incompatible ECDSA curve // is selected. PublicKeyOpenssh pulumi.StringOutput `pulumi:"publicKeyOpenssh"` // The public key data in PEM format. PublicKeyPem pulumi.StringOutput `pulumi:"publicKeyPem"` // When `algorithm` is "RSA", the size of the generated // RSA key in bits. Defaults to 2048. RsaBits pulumi.IntPtrOutput `pulumi:"rsaBits"` }
func GetPrivateKey ¶
func GetPrivateKey(ctx *pulumi.Context, name string, id pulumi.IDInput, state *PrivateKeyState, opts ...pulumi.ResourceOption) (*PrivateKey, error)
GetPrivateKey gets an existing PrivateKey resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewPrivateKey ¶
func NewPrivateKey(ctx *pulumi.Context, name string, args *PrivateKeyArgs, opts ...pulumi.ResourceOption) (*PrivateKey, error)
NewPrivateKey registers a new resource with the given unique name, arguments, and options.
type PrivateKeyArgs ¶
type PrivateKeyArgs struct { // The name of the algorithm to use for // the key. Currently-supported values are "RSA" and "ECDSA". Algorithm pulumi.StringInput // When `algorithm` is "ECDSA", the name of the elliptic // curve to use. May be any one of "P224", "P256", "P384" or "P521", with "P224" as the // default. EcdsaCurve pulumi.StringPtrInput // When `algorithm` is "RSA", the size of the generated // RSA key in bits. Defaults to 2048. RsaBits pulumi.IntPtrInput }
The set of arguments for constructing a PrivateKey resource.
func (PrivateKeyArgs) ElementType ¶
func (PrivateKeyArgs) ElementType() reflect.Type
type PrivateKeyState ¶
type PrivateKeyState struct { // The name of the algorithm to use for // the key. Currently-supported values are "RSA" and "ECDSA". Algorithm pulumi.StringPtrInput // When `algorithm` is "ECDSA", the name of the elliptic // curve to use. May be any one of "P224", "P256", "P384" or "P521", with "P224" as the // default. EcdsaCurve pulumi.StringPtrInput // The private key data in PEM format. PrivateKeyPem pulumi.StringPtrInput // The md5 hash of the public key data in // OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the // selected private key format is compatible, as per the rules for // `publicKeyOpenssh`. PublicKeyFingerprintMd5 pulumi.StringPtrInput // The public key data in OpenSSH `authorizedKeys` // format, if the selected private key format is compatible. All RSA keys // are supported, and ECDSA keys with curves "P256", "P384" and "P521" // are supported. This attribute is empty if an incompatible ECDSA curve // is selected. PublicKeyOpenssh pulumi.StringPtrInput // The public key data in PEM format. PublicKeyPem pulumi.StringPtrInput // When `algorithm` is "RSA", the size of the generated // RSA key in bits. Defaults to 2048. RsaBits pulumi.IntPtrInput }
func (PrivateKeyState) ElementType ¶
func (PrivateKeyState) ElementType() reflect.Type
type Provider ¶
type Provider struct {
pulumi.ProviderResourceState
}
The provider type for the tls package. By default, resources use package-wide configuration settings, however an explicit `Provider` instance may be created and passed during resource construction to achieve fine-grained programmatic control over provider settings. See the [documentation](https://www.pulumi.com/docs/reference/programming-model/#providers) for more information.
> This content is derived from https://github.com/terraform-providers/terraform-provider-tls/blob/master/website/docs/index.html.markdown.
func NewProvider ¶
func NewProvider(ctx *pulumi.Context, name string, args *ProviderArgs, opts ...pulumi.ResourceOption) (*Provider, error)
NewProvider registers a new resource with the given unique name, arguments, and options.
type ProviderArgs ¶
type ProviderArgs struct { }
The set of arguments for constructing a Provider resource.
func (ProviderArgs) ElementType ¶
func (ProviderArgs) ElementType() reflect.Type
type SelfSignedCert ¶
type SelfSignedCert struct { pulumi.CustomResourceState // List of keywords each describing a use that is permitted // for the issued certificate. The valid keywords are listed below. AllowedUses pulumi.StringArrayOutput `pulumi:"allowedUses"` // The certificate data in PEM format. CertPem pulumi.StringOutput `pulumi:"certPem"` // List of DNS names for which a certificate is being requested. DnsNames pulumi.StringArrayOutput `pulumi:"dnsNames"` // Number of hours before the certificates expiry when a new certificate will be generated EarlyRenewalHours pulumi.IntPtrOutput `pulumi:"earlyRenewalHours"` // List of IP addresses for which a certificate is being requested. IpAddresses pulumi.StringArrayOutput `pulumi:"ipAddresses"` // Boolean controlling whether the CA flag will be set in the // generated certificate. Defaults to `false`, meaning that the certificate does not represent // a certificate authority. IsCaCertificate pulumi.BoolPtrOutput `pulumi:"isCaCertificate"` // The name of the algorithm for the key provided // in `privateKeyPem`. KeyAlgorithm pulumi.StringOutput `pulumi:"keyAlgorithm"` // PEM-encoded private key that the certificate will belong to PrivateKeyPem pulumi.StringOutput `pulumi:"privateKeyPem"` ReadyForRenewal pulumi.BoolOutput `pulumi:"readyForRenewal"` // If `true`, the certificate will include // the subject key identifier. Defaults to `false`, in which case the subject // key identifier is not set at all. SetSubjectKeyId pulumi.BoolPtrOutput `pulumi:"setSubjectKeyId"` // The subject for which a certificate is being requested. // This is a nested configuration block whose structure matches the // corresponding block for `.CertRequest`. Subjects SelfSignedCertSubjectArrayOutput `pulumi:"subjects"` // List of URIs for which a certificate is being requested. Uris pulumi.StringArrayOutput `pulumi:"uris"` // The time until which the certificate is invalid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityEndTime pulumi.StringOutput `pulumi:"validityEndTime"` // The number of hours after initial issuing that the // certificate will become invalid. ValidityPeriodHours pulumi.IntOutput `pulumi:"validityPeriodHours"` // The time after which the certificate is valid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityStartTime pulumi.StringOutput `pulumi:"validityStartTime"` }
func GetSelfSignedCert ¶
func GetSelfSignedCert(ctx *pulumi.Context, name string, id pulumi.IDInput, state *SelfSignedCertState, opts ...pulumi.ResourceOption) (*SelfSignedCert, error)
GetSelfSignedCert gets an existing SelfSignedCert resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).
func NewSelfSignedCert ¶
func NewSelfSignedCert(ctx *pulumi.Context, name string, args *SelfSignedCertArgs, opts ...pulumi.ResourceOption) (*SelfSignedCert, error)
NewSelfSignedCert registers a new resource with the given unique name, arguments, and options.
type SelfSignedCertArgs ¶
type SelfSignedCertArgs struct { // List of keywords each describing a use that is permitted // for the issued certificate. The valid keywords are listed below. AllowedUses pulumi.StringArrayInput // List of DNS names for which a certificate is being requested. DnsNames pulumi.StringArrayInput // Number of hours before the certificates expiry when a new certificate will be generated EarlyRenewalHours pulumi.IntPtrInput // List of IP addresses for which a certificate is being requested. IpAddresses pulumi.StringArrayInput // Boolean controlling whether the CA flag will be set in the // generated certificate. Defaults to `false`, meaning that the certificate does not represent // a certificate authority. IsCaCertificate pulumi.BoolPtrInput // The name of the algorithm for the key provided // in `privateKeyPem`. KeyAlgorithm pulumi.StringInput // PEM-encoded private key that the certificate will belong to PrivateKeyPem pulumi.StringInput // If `true`, the certificate will include // the subject key identifier. Defaults to `false`, in which case the subject // key identifier is not set at all. SetSubjectKeyId pulumi.BoolPtrInput // The subject for which a certificate is being requested. // This is a nested configuration block whose structure matches the // corresponding block for `.CertRequest`. Subjects SelfSignedCertSubjectArrayInput // List of URIs for which a certificate is being requested. Uris pulumi.StringArrayInput // The number of hours after initial issuing that the // certificate will become invalid. ValidityPeriodHours pulumi.IntInput }
The set of arguments for constructing a SelfSignedCert resource.
func (SelfSignedCertArgs) ElementType ¶
func (SelfSignedCertArgs) ElementType() reflect.Type
type SelfSignedCertState ¶
type SelfSignedCertState struct { // List of keywords each describing a use that is permitted // for the issued certificate. The valid keywords are listed below. AllowedUses pulumi.StringArrayInput // The certificate data in PEM format. CertPem pulumi.StringPtrInput // List of DNS names for which a certificate is being requested. DnsNames pulumi.StringArrayInput // Number of hours before the certificates expiry when a new certificate will be generated EarlyRenewalHours pulumi.IntPtrInput // List of IP addresses for which a certificate is being requested. IpAddresses pulumi.StringArrayInput // Boolean controlling whether the CA flag will be set in the // generated certificate. Defaults to `false`, meaning that the certificate does not represent // a certificate authority. IsCaCertificate pulumi.BoolPtrInput // The name of the algorithm for the key provided // in `privateKeyPem`. KeyAlgorithm pulumi.StringPtrInput // PEM-encoded private key that the certificate will belong to PrivateKeyPem pulumi.StringPtrInput ReadyForRenewal pulumi.BoolPtrInput // If `true`, the certificate will include // the subject key identifier. Defaults to `false`, in which case the subject // key identifier is not set at all. SetSubjectKeyId pulumi.BoolPtrInput // The subject for which a certificate is being requested. // This is a nested configuration block whose structure matches the // corresponding block for `.CertRequest`. Subjects SelfSignedCertSubjectArrayInput // List of URIs for which a certificate is being requested. Uris pulumi.StringArrayInput // The time until which the certificate is invalid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityEndTime pulumi.StringPtrInput // The number of hours after initial issuing that the // certificate will become invalid. ValidityPeriodHours pulumi.IntPtrInput // The time after which the certificate is valid, as an // [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp. ValidityStartTime pulumi.StringPtrInput }
func (SelfSignedCertState) ElementType ¶
func (SelfSignedCertState) ElementType() reflect.Type
type SelfSignedCertSubject ¶
type SelfSignedCertSubject struct { CommonName *string `pulumi:"commonName"` Country *string `pulumi:"country"` Locality *string `pulumi:"locality"` Organization *string `pulumi:"organization"` OrganizationalUnit *string `pulumi:"organizationalUnit"` PostalCode *string `pulumi:"postalCode"` Province *string `pulumi:"province"` SerialNumber *string `pulumi:"serialNumber"` StreetAddresses []string `pulumi:"streetAddresses"` }
type SelfSignedCertSubjectArgs ¶
type SelfSignedCertSubjectArgs struct { CommonName pulumi.StringPtrInput `pulumi:"commonName"` Country pulumi.StringPtrInput `pulumi:"country"` Locality pulumi.StringPtrInput `pulumi:"locality"` Organization pulumi.StringPtrInput `pulumi:"organization"` OrganizationalUnit pulumi.StringPtrInput `pulumi:"organizationalUnit"` PostalCode pulumi.StringPtrInput `pulumi:"postalCode"` Province pulumi.StringPtrInput `pulumi:"province"` SerialNumber pulumi.StringPtrInput `pulumi:"serialNumber"` StreetAddresses pulumi.StringArrayInput `pulumi:"streetAddresses"` }
func (SelfSignedCertSubjectArgs) ElementType ¶
func (SelfSignedCertSubjectArgs) ElementType() reflect.Type
func (SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutput ¶
func (i SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutput() SelfSignedCertSubjectOutput
func (SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutputWithContext ¶
func (i SelfSignedCertSubjectArgs) ToSelfSignedCertSubjectOutputWithContext(ctx context.Context) SelfSignedCertSubjectOutput
type SelfSignedCertSubjectArray ¶
type SelfSignedCertSubjectArray []SelfSignedCertSubjectInput
func (SelfSignedCertSubjectArray) ElementType ¶
func (SelfSignedCertSubjectArray) ElementType() reflect.Type
func (SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutput ¶
func (i SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput
func (SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutputWithContext ¶
func (i SelfSignedCertSubjectArray) ToSelfSignedCertSubjectArrayOutputWithContext(ctx context.Context) SelfSignedCertSubjectArrayOutput
type SelfSignedCertSubjectArrayInput ¶
type SelfSignedCertSubjectArrayInput interface { pulumi.Input ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput ToSelfSignedCertSubjectArrayOutputWithContext(context.Context) SelfSignedCertSubjectArrayOutput }
type SelfSignedCertSubjectArrayOutput ¶
type SelfSignedCertSubjectArrayOutput struct{ *pulumi.OutputState }
func (SelfSignedCertSubjectArrayOutput) ElementType ¶
func (SelfSignedCertSubjectArrayOutput) ElementType() reflect.Type
func (SelfSignedCertSubjectArrayOutput) Index ¶
func (o SelfSignedCertSubjectArrayOutput) Index(i pulumi.IntInput) SelfSignedCertSubjectOutput
func (SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutput ¶
func (o SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutput() SelfSignedCertSubjectArrayOutput
func (SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutputWithContext ¶
func (o SelfSignedCertSubjectArrayOutput) ToSelfSignedCertSubjectArrayOutputWithContext(ctx context.Context) SelfSignedCertSubjectArrayOutput
type SelfSignedCertSubjectInput ¶
type SelfSignedCertSubjectInput interface { pulumi.Input ToSelfSignedCertSubjectOutput() SelfSignedCertSubjectOutput ToSelfSignedCertSubjectOutputWithContext(context.Context) SelfSignedCertSubjectOutput }
type SelfSignedCertSubjectOutput ¶
type SelfSignedCertSubjectOutput struct{ *pulumi.OutputState }
func (SelfSignedCertSubjectOutput) CommonName ¶
func (o SelfSignedCertSubjectOutput) CommonName() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) Country ¶
func (o SelfSignedCertSubjectOutput) Country() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) ElementType ¶
func (SelfSignedCertSubjectOutput) ElementType() reflect.Type
func (SelfSignedCertSubjectOutput) Locality ¶
func (o SelfSignedCertSubjectOutput) Locality() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) Organization ¶
func (o SelfSignedCertSubjectOutput) Organization() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) OrganizationalUnit ¶
func (o SelfSignedCertSubjectOutput) OrganizationalUnit() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) PostalCode ¶
func (o SelfSignedCertSubjectOutput) PostalCode() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) Province ¶
func (o SelfSignedCertSubjectOutput) Province() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) SerialNumber ¶
func (o SelfSignedCertSubjectOutput) SerialNumber() pulumi.StringPtrOutput
func (SelfSignedCertSubjectOutput) StreetAddresses ¶
func (o SelfSignedCertSubjectOutput) StreetAddresses() pulumi.StringArrayOutput
func (SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutput ¶
func (o SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutput() SelfSignedCertSubjectOutput
func (SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutputWithContext ¶
func (o SelfSignedCertSubjectOutput) ToSelfSignedCertSubjectOutputWithContext(ctx context.Context) SelfSignedCertSubjectOutput