- Resource: CertificateIssuanceConfig
- CertificateAuthorityConfig
- CertificateAuthorityServiceConfig
- KeyAlgorithm
- Methods
Resource: CertificateIssuanceConfig
CertificateIssuanceConfig specifies how to issue and manage a certificate.
JSON representation |
---|
{ "name": string, "createTime": string, "updateTime": string, "labels": { string: string, ... }, "description": string, "certificateAuthorityConfig": { object ( |
Fields | |
---|---|
name |
Identifier. A user-defined name of the certificate issuance config. CertificateIssuanceConfig names must be unique globally and match pattern |
createTime |
Output only. The creation timestamp of a CertificateIssuanceConfig. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
updateTime |
Output only. The last update timestamp of a CertificateIssuanceConfig. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
labels |
Optional. Set of labels associated with a CertificateIssuanceConfig. An object containing a list of |
description |
Optional. One or more paragraphs of text description of a CertificateIssuanceConfig. |
certificateAuthorityConfig |
Required. The CA that issues the workload certificate. It includes the CA address, type, authentication to CA service, etc. |
lifetime |
Required. Workload certificate lifetime requested. A duration in seconds with up to nine fractional digits, ending with ' |
rotationWindowPercentage |
Required. Specifies the percentage of elapsed time of the certificate lifetime to wait before renewing the certificate. Must be a number between 1-99, inclusive. |
keyAlgorithm |
Required. The key algorithm to use when generating the private key. |
CertificateAuthorityConfig
The CA that issues the workload certificate. It includes CA address, type, authentication to CA service, etc.
JSON representation |
---|
{ // Union field |
Fields | |
---|---|
Union field kind . The kind of CA config. kind can be only one of the following: |
|
certificateAuthorityServiceConfig |
Defines a CertificateAuthorityServiceConfig. |
CertificateAuthorityServiceConfig
Contains information required to contact CA service.
JSON representation |
---|
{ "caPool": string } |
Fields | |
---|---|
caPool |
Required. A CA pool resource used to issue a certificate. The CA pool string has a relative resource path following the form "projects/{project}/locations/{location}/caPools/{caPool}". |
KeyAlgorithm
The type of keypair to generate.
Enums | |
---|---|
KEY_ALGORITHM_UNSPECIFIED |
Unspecified key algorithm. |
RSA_2048 |
Specifies RSA with a 2048-bit modulus. |
ECDSA_P256 |
Specifies ECDSA with curve P256. |
Methods |
|
---|---|
|
Creates a new CertificateIssuanceConfig in a given project and location. |
|
Deletes a single CertificateIssuanceConfig. |
|
Gets details of a single CertificateIssuanceConfig. |
|
Lists CertificateIssuanceConfigs in a given project and location. |
|
Updates a CertificateIssuanceConfig. |