class Google::Apis::PrivatecaV1beta1::CertificateAuthority

A CertificateAuthority represents an individual Certificate Authority. A CertificateAuthority can be used to create Certificates.

Attributes

access_urls[RW]

URLs where a CertificateAuthority will publish content. Corresponds to the JSON property `accessUrls` @return [Google::Apis::PrivatecaV1beta1::AccessUrls]

ca_certificate_descriptions[RW]

Output only. A structured description of this CertificateAuthority's CA certificate and its issuers. Ordered as self-to-root. Corresponds to the JSON property `caCertificateDescriptions` @return [Array<Google::Apis::PrivatecaV1beta1::CertificateDescription>]

certificate_policy[RW]

The issuing policy for a CertificateAuthority. Certificates will not be successfully issued from this CertificateAuthority if they violate the policy. Corresponds to the JSON property `certificatePolicy` @return [Google::Apis::PrivatecaV1beta1::CertificateAuthorityPolicy]

config[RW]

A CertificateConfig describes an X.509 certificate or CSR that is to be created, as an alternative to using ASN.1. Corresponds to the JSON property `config` @return [Google::Apis::PrivatecaV1beta1::CertificateConfig]

create_time[RW]

Output only. The time at which this CertificateAuthority was created. Corresponds to the JSON property `createTime` @return [String]

delete_time[RW]

Output only. The time at which this CertificateAuthority will be deleted, if scheduled for deletion. Corresponds to the JSON property `deleteTime` @return [String]

gcs_bucket[RW]

Immutable. The name of a Cloud Storage bucket where this CertificateAuthority will publish content, such as the CA certificate and CRLs. This must be a bucket name, without any prefixes (such as `gs://`) or suffixes (such as `. googleapis.com`). For example, to use a bucket named `my-bucket`, you would simply specify `my-bucket`. If not specified, a managed bucket will be created. Corresponds to the JSON property `gcsBucket` @return [String]

issuing_options[RW]

Options that affect all certificates issued by a CertificateAuthority. Corresponds to the JSON property `issuingOptions` @return [Google::Apis::PrivatecaV1beta1::IssuingOptions]

key_spec[RW]

A Cloud KMS key configuration that a CertificateAuthority will use. Corresponds to the JSON property `keySpec` @return [Google::Apis::PrivatecaV1beta1::KeyVersionSpec]

labels[RW]

Optional. Labels with user-defined metadata. Corresponds to the JSON property `labels` @return [Hash<String,String>]

lifetime[RW]

Required. The desired lifetime of the CA certificate. Used to create the “ not_before_time” and “not_after_time” fields inside an X.509 certificate. Corresponds to the JSON property `lifetime` @return [String]

name[RW]

Output only. The resource name for this CertificateAuthority in the format ` projects//locations//certificateAuthorities/*`. Corresponds to the JSON property `name` @return [String]

pem_ca_certificates[RW]

Output only. This CertificateAuthority's certificate chain, including the current CertificateAuthority's certificate. Ordered such that the root issuer is the final element (consistent with RFC 5246). For a self-signed CA, this will only list the current CertificateAuthority's certificate. Corresponds to the JSON property `pemCaCertificates` @return [Array<String>]

state[RW]

Output only. The State for this CertificateAuthority. Corresponds to the JSON property `state` @return [String]

subordinate_config[RW]

Describes a subordinate CA's issuers. This is either a resource path to a known issuing CertificateAuthority, or a PEM issuer certificate chain. Corresponds to the JSON property `subordinateConfig` @return [Google::Apis::PrivatecaV1beta1::SubordinateConfig]

tier[RW]

Required. Immutable. The Tier of this CertificateAuthority. Corresponds to the JSON property `tier` @return [String]

type[RW]

Required. Immutable. The Type of this CertificateAuthority. Corresponds to the JSON property `type` @return [String]

update_time[RW]

Output only. The time at which this CertificateAuthority was updated. Corresponds to the JSON property `updateTime` @return [String]

Public Class Methods

new(**args) click to toggle source
# File lib/google/apis/privateca_v1beta1/classes.rb, line 563
def initialize(**args)
   update!(**args)
end

Public Instance Methods

update!(**args) click to toggle source

Update properties of this object

# File lib/google/apis/privateca_v1beta1/classes.rb, line 568
def update!(**args)
  @access_urls = args[:access_urls] if args.key?(:access_urls)
  @ca_certificate_descriptions = args[:ca_certificate_descriptions] if args.key?(:ca_certificate_descriptions)
  @certificate_policy = args[:certificate_policy] if args.key?(:certificate_policy)
  @config = args[:config] if args.key?(:config)
  @create_time = args[:create_time] if args.key?(:create_time)
  @delete_time = args[:delete_time] if args.key?(:delete_time)
  @gcs_bucket = args[:gcs_bucket] if args.key?(:gcs_bucket)
  @issuing_options = args[:issuing_options] if args.key?(:issuing_options)
  @key_spec = args[:key_spec] if args.key?(:key_spec)
  @labels = args[:labels] if args.key?(:labels)
  @lifetime = args[:lifetime] if args.key?(:lifetime)
  @name = args[:name] if args.key?(:name)
  @pem_ca_certificates = args[:pem_ca_certificates] if args.key?(:pem_ca_certificates)
  @state = args[:state] if args.key?(:state)
  @subordinate_config = args[:subordinate_config] if args.key?(:subordinate_config)
  @tier = args[:tier] if args.key?(:tier)
  @type = args[:type] if args.key?(:type)
  @update_time = args[:update_time] if args.key?(:update_time)
end