Class CertificateTemplate (1.14.0)

CertificateTemplate(mapping=None, *, ignore_unknown_fields=False, **kwargs)

A CertificateTemplate refers to a managed template for certificate issuance.

Attributes

Name Description
name str
Output only. The resource name for this CertificateTemplate in the format projects/*/locations/*/certificateTemplates/*.
maximum_lifetime google.protobuf.duration_pb2.Duration
Optional. The maximum lifetime allowed for issued Certificates that use this template. If the issuing CaPool resource's IssuancePolicy specifies a maximum_lifetime the minimum of the two durations will be the maximum lifetime for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.
predefined_values google.cloud.security.privateca_v1.types.X509Parameters
Optional. A set of X.509 values that will be applied to all issued certificates that use this template. If the certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If the issuing CaPool's IssuancePolicy defines conflicting baseline_values for the same properties, the certificate issuance request will fail.
identity_constraints google.cloud.security.privateca_v1.types.CertificateIdentityConstraints
Optional. Describes constraints on identities that may be appear in Certificates issued using this template. If this is omitted, then this template will not add restrictions on a certificate's identity.
passthrough_extensions google.cloud.security.privateca_v1.types.CertificateExtensionConstraints
Optional. Describes the set of X.509 extensions that may appear in a Certificate issued using this CertificateTemplate. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If the issuing CaPool's IssuancePolicy defines baseline_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this template will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CertificateTemplate's predefined_values.
description str
Optional. A human-readable description of scenarios this template is intended for.
create_time google.protobuf.timestamp_pb2.Timestamp
Output only. The time at which this CertificateTemplate was created.
update_time google.protobuf.timestamp_pb2.Timestamp
Output only. The time at which this CertificateTemplate was updated.
labels MutableMapping[str, str]
Optional. Labels with user-defined metadata.

Classes

LabelsEntry

LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

The abstract base class for a message.

Parameters
Name Description
kwargs dict

Keys and values corresponding to the fields of the message.

mapping Union[dict, .Message]

A dictionary or message to be used to determine the values for this message.

ignore_unknown_fields Optional(bool)

If True, do not raise errors for unknown fields. Only applied if mapping is a mapping type or there are keyword parameters.