Reference documentation and code samples for the Certificate Authority Service V1beta1 API class Google::Cloud::Security::PrivateCA::V1beta1::CertificateAuthority::KeyVersionSpec.
A Cloud KMS key configuration that a CertificateAuthority will use.
Inherits
- Object
Extended By
- Google::Protobuf::MessageExts::ClassMethods
Includes
- Google::Protobuf::MessageExts
Methods
#algorithm
def algorithm() -> ::Google::Cloud::Security::PrivateCA::V1beta1::CertificateAuthority::SignHashAlgorithm-
(::Google::Cloud::Security::PrivateCA::V1beta1::CertificateAuthority::SignHashAlgorithm) — Required. The algorithm to use for creating a managed Cloud KMS key for a for a
simplified experience. All managed keys will be have their
[ProtectionLevel][google.cloud.kms.v1.ProtectionLevel] as
HSM.Note: The following fields are mutually exclusive:
algorithm,cloud_kms_key_version. If a field in that set is populated, all other fields in the set will automatically be cleared.
#algorithm=
def algorithm=(value) -> ::Google::Cloud::Security::PrivateCA::V1beta1::CertificateAuthority::SignHashAlgorithm-
value (::Google::Cloud::Security::PrivateCA::V1beta1::CertificateAuthority::SignHashAlgorithm) — Required. The algorithm to use for creating a managed Cloud KMS key for a for a
simplified experience. All managed keys will be have their
[ProtectionLevel][google.cloud.kms.v1.ProtectionLevel] as
HSM.Note: The following fields are mutually exclusive:
algorithm,cloud_kms_key_version. If a field in that set is populated, all other fields in the set will automatically be cleared.
-
(::Google::Cloud::Security::PrivateCA::V1beta1::CertificateAuthority::SignHashAlgorithm) — Required. The algorithm to use for creating a managed Cloud KMS key for a for a
simplified experience. All managed keys will be have their
[ProtectionLevel][google.cloud.kms.v1.ProtectionLevel] as
HSM.Note: The following fields are mutually exclusive:
algorithm,cloud_kms_key_version. If a field in that set is populated, all other fields in the set will automatically be cleared.
#cloud_kms_key_version
def cloud_kms_key_version() -> ::String-
(::String) — Required. The resource name for an existing Cloud KMS CryptoKeyVersion in the
format
projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*. This option enables full flexibility in the key's capabilities and properties.Note: The following fields are mutually exclusive:
cloud_kms_key_version,algorithm. If a field in that set is populated, all other fields in the set will automatically be cleared.
#cloud_kms_key_version=
def cloud_kms_key_version=(value) -> ::String-
value (::String) — Required. The resource name for an existing Cloud KMS CryptoKeyVersion in the
format
projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*. This option enables full flexibility in the key's capabilities and properties.Note: The following fields are mutually exclusive:
cloud_kms_key_version,algorithm. If a field in that set is populated, all other fields in the set will automatically be cleared.
-
(::String) — Required. The resource name for an existing Cloud KMS CryptoKeyVersion in the
format
projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*. This option enables full flexibility in the key's capabilities and properties.Note: The following fields are mutually exclusive:
cloud_kms_key_version,algorithm. If a field in that set is populated, all other fields in the set will automatically be cleared.