Reference documentation and code samples for the Certificate Authority v1 API enum SubjectRequestMode.
Describes the way in which a
[Certificate][google.cloud.security.privateca.v1.Certificate]'s
[Subject][google.cloud.security.privateca.v1.Subject] and/or
[SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] will be
resolved.
The default mode used in most cases. Indicates that the certificate's
[Subject][google.cloud.security.privateca.v1.Subject] and/or
[SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] are
specified in the certificate request. This mode requires the caller to have
the privateca.certificates.create permission.
ReflectedSpiffe
A mode reserved for special cases. Indicates that the certificate should
have one SPIFFE
[SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] set
by the service based on the caller's identity. This mode will ignore any
explicitly specified [Subject][google.cloud.security.privateca.v1.Subject]
and/or
[SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] in
the certificate request. This mode requires the caller to have the
privateca.certificates.createForSelf permission.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-03-21 UTC."],[[["The documentation covers the `SubjectRequestMode` enum within the Google Cloud Security Private CA v1 API, specifically for .NET."],["Version 3.9.0 is the latest version of the API, while version 3.6.0 is the base version referenced on the provided page, with older versions down to 1.0.0 also available."],["`SubjectRequestMode` defines how a certificate's `Subject` and `SubjectAltNames` are resolved, with options including `Default`, `ReflectedSpiffe`, and `Unspecified`."],["The `Default` mode requires explicit specification of the certificate's `Subject` and `SubjectAltNames` in the request and requires the `privateca.certificates.create` permission, while the `ReflectedSpiffe` mode uses the caller's identity for `SubjectAltNames` and needs the `privateca.certificates.createForSelf` permission."]]],[]]
