- 2.55.0 (latest)
- 2.54.0
- 2.53.0
- 2.51.0
- 2.50.0
- 2.49.0
- 2.48.0
- 2.47.0
- 2.46.0
- 2.45.0
- 2.44.0
- 2.43.0
- 2.42.0
- 2.41.0
- 2.39.0
- 2.38.0
- 2.37.0
- 2.36.0
- 2.35.0
- 2.34.0
- 2.33.0
- 2.32.0
- 2.31.0
- 2.30.0
- 2.29.0
- 2.26.0
- 2.25.0
- 2.24.0
- 2.23.0
- 2.22.0
- 2.21.0
- 2.20.0
- 2.19.0
- 2.18.0
- 2.17.0
- 2.16.0
- 2.15.0
- 2.14.0
- 2.13.0
- 2.11.0
- 2.10.0
- 2.9.0
- 2.8.0
- 2.7.0
- 2.6.0
- 2.5.4
- 2.4.0
- 2.3.0
- 2.2.5
public static final class CaPool.IssuancePolicy.Builder extends GeneratedMessageV3.Builder<CaPool.IssuancePolicy.Builder> implements CaPool.IssuancePolicyOrBuilder
Defines controls over all certificate issuance within a CaPool.
Protobuf type google.cloud.security.privateca.v1.CaPool.IssuancePolicy
Inheritance
Object > AbstractMessageLite.Builder<MessageType,BuilderType> > AbstractMessage.Builder<BuilderType> > GeneratedMessageV3.Builder > CaPool.IssuancePolicy.BuilderImplements
CaPool.IssuancePolicyOrBuilderStatic Methods
getDescriptor()
public static final Descriptors.Descriptor getDescriptor()
Type | Description |
Descriptor |
Methods
addAllAllowedKeyTypes(Iterable<? extends CaPool.IssuancePolicy.AllowedKeyType> values)
public CaPool.IssuancePolicy.Builder addAllAllowedKeyTypes(Iterable<? extends CaPool.IssuancePolicy.AllowedKeyType> values)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
values | Iterable<? extends com.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType> |
Type | Description |
CaPool.IssuancePolicy.Builder |
addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType value)
public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType value)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | CaPool.IssuancePolicy.AllowedKeyType |
Type | Description |
CaPool.IssuancePolicy.Builder |
addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)
public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
builderForValue | CaPool.IssuancePolicy.AllowedKeyType.Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)
public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
value | CaPool.IssuancePolicy.AllowedKeyType |
Type | Description |
CaPool.IssuancePolicy.Builder |
addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)
public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
builderForValue | CaPool.IssuancePolicy.AllowedKeyType.Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
addAllowedKeyTypesBuilder()
public CaPool.IssuancePolicy.AllowedKeyType.Builder addAllowedKeyTypesBuilder()
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.AllowedKeyType.Builder |
addAllowedKeyTypesBuilder(int index)
public CaPool.IssuancePolicy.AllowedKeyType.Builder addAllowedKeyTypesBuilder(int index)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
Type | Description |
CaPool.IssuancePolicy.AllowedKeyType.Builder |
addRepeatedField(Descriptors.FieldDescriptor field, Object value)
public CaPool.IssuancePolicy.Builder addRepeatedField(Descriptors.FieldDescriptor field, Object value)
Name | Description |
field | FieldDescriptor |
value | Object |
Type | Description |
CaPool.IssuancePolicy.Builder |
build()
public CaPool.IssuancePolicy build()
Type | Description |
CaPool.IssuancePolicy |
buildPartial()
public CaPool.IssuancePolicy buildPartial()
Type | Description |
CaPool.IssuancePolicy |
clear()
public CaPool.IssuancePolicy.Builder clear()
Type | Description |
CaPool.IssuancePolicy.Builder |
clearAllowedIssuanceModes()
public CaPool.IssuancePolicy.Builder clearAllowedIssuanceModes()
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.Builder |
clearAllowedKeyTypes()
public CaPool.IssuancePolicy.Builder clearAllowedKeyTypes()
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.Builder |
clearBaselineValues()
public CaPool.IssuancePolicy.Builder clearBaselineValues()
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.Builder |
clearField(Descriptors.FieldDescriptor field)
public CaPool.IssuancePolicy.Builder clearField(Descriptors.FieldDescriptor field)
Name | Description |
field | FieldDescriptor |
Type | Description |
CaPool.IssuancePolicy.Builder |
clearIdentityConstraints()
public CaPool.IssuancePolicy.Builder clearIdentityConstraints()
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.Builder |
clearMaximumLifetime()
public CaPool.IssuancePolicy.Builder clearMaximumLifetime()
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.Builder |
clearOneof(Descriptors.OneofDescriptor oneof)
public CaPool.IssuancePolicy.Builder clearOneof(Descriptors.OneofDescriptor oneof)
Name | Description |
oneof | OneofDescriptor |
Type | Description |
CaPool.IssuancePolicy.Builder |
clearPassthroughExtensions()
public CaPool.IssuancePolicy.Builder clearPassthroughExtensions()
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.Builder |
clone()
public CaPool.IssuancePolicy.Builder clone()
Type | Description |
CaPool.IssuancePolicy.Builder |
getAllowedIssuanceModes()
public CaPool.IssuancePolicy.IssuanceModes getAllowedIssuanceModes()
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.IssuanceModes | The allowedIssuanceModes. |
getAllowedIssuanceModesBuilder()
public CaPool.IssuancePolicy.IssuanceModes.Builder getAllowedIssuanceModesBuilder()
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.IssuanceModes.Builder |
getAllowedIssuanceModesOrBuilder()
public CaPool.IssuancePolicy.IssuanceModesOrBuilder getAllowedIssuanceModesOrBuilder()
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CaPool.IssuancePolicy.IssuanceModesOrBuilder |
getAllowedKeyTypes(int index)
public CaPool.IssuancePolicy.AllowedKeyType getAllowedKeyTypes(int index)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
Type | Description |
CaPool.IssuancePolicy.AllowedKeyType |
getAllowedKeyTypesBuilder(int index)
public CaPool.IssuancePolicy.AllowedKeyType.Builder getAllowedKeyTypesBuilder(int index)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
Type | Description |
CaPool.IssuancePolicy.AllowedKeyType.Builder |
getAllowedKeyTypesBuilderList()
public List<CaPool.IssuancePolicy.AllowedKeyType.Builder> getAllowedKeyTypesBuilderList()
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
List<Builder> |
getAllowedKeyTypesCount()
public int getAllowedKeyTypesCount()
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
int |
getAllowedKeyTypesList()
public List<CaPool.IssuancePolicy.AllowedKeyType> getAllowedKeyTypesList()
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
List<AllowedKeyType> |
getAllowedKeyTypesOrBuilder(int index)
public CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder getAllowedKeyTypesOrBuilder(int index)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
Type | Description |
CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder |
getAllowedKeyTypesOrBuilderList()
public List<? extends CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder> getAllowedKeyTypesOrBuilderList()
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
List<? extends com.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder> |
getBaselineValues()
public X509Parameters getBaselineValues()
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
X509Parameters | The baselineValues. |
getBaselineValuesBuilder()
public X509Parameters.Builder getBaselineValuesBuilder()
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
X509Parameters.Builder |
getBaselineValuesOrBuilder()
public X509ParametersOrBuilder getBaselineValuesOrBuilder()
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
X509ParametersOrBuilder |
getDefaultInstanceForType()
public CaPool.IssuancePolicy getDefaultInstanceForType()
Type | Description |
CaPool.IssuancePolicy |
getDescriptorForType()
public Descriptors.Descriptor getDescriptorForType()
Type | Description |
Descriptor |
getIdentityConstraints()
public CertificateIdentityConstraints getIdentityConstraints()
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CertificateIdentityConstraints | The identityConstraints. |
getIdentityConstraintsBuilder()
public CertificateIdentityConstraints.Builder getIdentityConstraintsBuilder()
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CertificateIdentityConstraints.Builder |
getIdentityConstraintsOrBuilder()
public CertificateIdentityConstraintsOrBuilder getIdentityConstraintsOrBuilder()
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CertificateIdentityConstraintsOrBuilder |
getMaximumLifetime()
public Duration getMaximumLifetime()
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
Duration | The maximumLifetime. |
getMaximumLifetimeBuilder()
public Duration.Builder getMaximumLifetimeBuilder()
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
Builder |
getMaximumLifetimeOrBuilder()
public DurationOrBuilder getMaximumLifetimeOrBuilder()
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
DurationOrBuilder |
getPassthroughExtensions()
public CertificateExtensionConstraints getPassthroughExtensions()
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CertificateExtensionConstraints | The passthroughExtensions. |
getPassthroughExtensionsBuilder()
public CertificateExtensionConstraints.Builder getPassthroughExtensionsBuilder()
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CertificateExtensionConstraints.Builder |
getPassthroughExtensionsOrBuilder()
public CertificateExtensionConstraintsOrBuilder getPassthroughExtensionsOrBuilder()
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
CertificateExtensionConstraintsOrBuilder |
hasAllowedIssuanceModes()
public boolean hasAllowedIssuanceModes()
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
boolean | Whether the allowedIssuanceModes field is set. |
hasBaselineValues()
public boolean hasBaselineValues()
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
boolean | Whether the baselineValues field is set. |
hasIdentityConstraints()
public boolean hasIdentityConstraints()
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
boolean | Whether the identityConstraints field is set. |
hasMaximumLifetime()
public boolean hasMaximumLifetime()
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
boolean | Whether the maximumLifetime field is set. |
hasPassthroughExtensions()
public boolean hasPassthroughExtensions()
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Type | Description |
boolean | Whether the passthroughExtensions field is set. |
internalGetFieldAccessorTable()
protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Type | Description |
FieldAccessorTable |
isInitialized()
public final boolean isInitialized()
Type | Description |
boolean |
mergeAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)
public CaPool.IssuancePolicy.Builder mergeAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | CaPool.IssuancePolicy.IssuanceModes |
Type | Description |
CaPool.IssuancePolicy.Builder |
mergeBaselineValues(X509Parameters value)
public CaPool.IssuancePolicy.Builder mergeBaselineValues(X509Parameters value)
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | X509Parameters |
Type | Description |
CaPool.IssuancePolicy.Builder |
mergeFrom(CaPool.IssuancePolicy other)
public CaPool.IssuancePolicy.Builder mergeFrom(CaPool.IssuancePolicy other)
Name | Description |
other | CaPool.IssuancePolicy |
Type | Description |
CaPool.IssuancePolicy.Builder |
mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
public CaPool.IssuancePolicy.Builder mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Name | Description |
input | CodedInputStream |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
CaPool.IssuancePolicy.Builder |
Type | Description |
IOException |
mergeFrom(Message other)
public CaPool.IssuancePolicy.Builder mergeFrom(Message other)
Name | Description |
other | Message |
Type | Description |
CaPool.IssuancePolicy.Builder |
mergeIdentityConstraints(CertificateIdentityConstraints value)
public CaPool.IssuancePolicy.Builder mergeIdentityConstraints(CertificateIdentityConstraints value)
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | CertificateIdentityConstraints |
Type | Description |
CaPool.IssuancePolicy.Builder |
mergeMaximumLifetime(Duration value)
public CaPool.IssuancePolicy.Builder mergeMaximumLifetime(Duration value)
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | Duration |
Type | Description |
CaPool.IssuancePolicy.Builder |
mergePassthroughExtensions(CertificateExtensionConstraints value)
public CaPool.IssuancePolicy.Builder mergePassthroughExtensions(CertificateExtensionConstraints value)
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | CertificateExtensionConstraints |
Type | Description |
CaPool.IssuancePolicy.Builder |
mergeUnknownFields(UnknownFieldSet unknownFields)
public final CaPool.IssuancePolicy.Builder mergeUnknownFields(UnknownFieldSet unknownFields)
Name | Description |
unknownFields | UnknownFieldSet |
Type | Description |
CaPool.IssuancePolicy.Builder |
removeAllowedKeyTypes(int index)
public CaPool.IssuancePolicy.Builder removeAllowedKeyTypes(int index)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
Type | Description |
CaPool.IssuancePolicy.Builder |
setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)
public CaPool.IssuancePolicy.Builder setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | CaPool.IssuancePolicy.IssuanceModes |
Type | Description |
CaPool.IssuancePolicy.Builder |
setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes.Builder builderForValue)
public CaPool.IssuancePolicy.Builder setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes.Builder builderForValue)
Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.
.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
builderForValue | CaPool.IssuancePolicy.IssuanceModes.Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)
public CaPool.IssuancePolicy.Builder setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
value | CaPool.IssuancePolicy.AllowedKeyType |
Type | Description |
CaPool.IssuancePolicy.Builder |
setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)
public CaPool.IssuancePolicy.Builder setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)
Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.
repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
index | int |
builderForValue | CaPool.IssuancePolicy.AllowedKeyType.Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
setBaselineValues(X509Parameters value)
public CaPool.IssuancePolicy.Builder setBaselineValues(X509Parameters value)
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | X509Parameters |
Type | Description |
CaPool.IssuancePolicy.Builder |
setBaselineValues(X509Parameters.Builder builderForValue)
public CaPool.IssuancePolicy.Builder setBaselineValues(X509Parameters.Builder builderForValue)
Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.
.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
builderForValue | X509Parameters.Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
setField(Descriptors.FieldDescriptor field, Object value)
public CaPool.IssuancePolicy.Builder setField(Descriptors.FieldDescriptor field, Object value)
Name | Description |
field | FieldDescriptor |
value | Object |
Type | Description |
CaPool.IssuancePolicy.Builder |
setIdentityConstraints(CertificateIdentityConstraints value)
public CaPool.IssuancePolicy.Builder setIdentityConstraints(CertificateIdentityConstraints value)
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | CertificateIdentityConstraints |
Type | Description |
CaPool.IssuancePolicy.Builder |
setIdentityConstraints(CertificateIdentityConstraints.Builder builderForValue)
public CaPool.IssuancePolicy.Builder setIdentityConstraints(CertificateIdentityConstraints.Builder builderForValue)
Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.
.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
builderForValue | CertificateIdentityConstraints.Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
setMaximumLifetime(Duration value)
public CaPool.IssuancePolicy.Builder setMaximumLifetime(Duration value)
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | Duration |
Type | Description |
CaPool.IssuancePolicy.Builder |
setMaximumLifetime(Duration.Builder builderForValue)
public CaPool.IssuancePolicy.Builder setMaximumLifetime(Duration.Builder builderForValue)
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
builderForValue | Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
setPassthroughExtensions(CertificateExtensionConstraints value)
public CaPool.IssuancePolicy.Builder setPassthroughExtensions(CertificateExtensionConstraints value)
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
value | CertificateExtensionConstraints |
Type | Description |
CaPool.IssuancePolicy.Builder |
setPassthroughExtensions(CertificateExtensionConstraints.Builder builderForValue)
public CaPool.IssuancePolicy.Builder setPassthroughExtensions(CertificateExtensionConstraints.Builder builderForValue)
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.
.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];
Name | Description |
builderForValue | CertificateExtensionConstraints.Builder |
Type | Description |
CaPool.IssuancePolicy.Builder |
setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
public CaPool.IssuancePolicy.Builder setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
Name | Description |
field | FieldDescriptor |
index | int |
value | Object |
Type | Description |
CaPool.IssuancePolicy.Builder |
setUnknownFields(UnknownFieldSet unknownFields)
public final CaPool.IssuancePolicy.Builder setUnknownFields(UnknownFieldSet unknownFields)
Name | Description |
unknownFields | UnknownFieldSet |
Type | Description |
CaPool.IssuancePolicy.Builder |