pulumi-alicloud 3.62.1a1726481120__py3-none-any.whl → 3.63.0__py3-none-any.whl

pulumi_alicloud/ddos/domain_resource.py

@@ -21,30 +21,67 @@ class DomainResourceArgs:
                  proxy_types: pulumi.Input[Sequence[pulumi.Input['DomainResourceProxyTypeArgs']]],
                  real_servers: pulumi.Input[Sequence[pulumi.Input[str]]],
                  rs_type: pulumi.Input[int],
+                 cert: Optional[pulumi.Input[str]] = None,
+                 cert_identifier: Optional[pulumi.Input[str]] = None,
+                 cert_name: Optional[pulumi.Input[str]] = None,
+                 cert_region: Optional[pulumi.Input[str]] = None,
                  https_ext: Optional[pulumi.Input[str]] = None,
+                 key: Optional[pulumi.Input[str]] = None,
                  ocsp_enabled: Optional[pulumi.Input[bool]] = None):
         """
         The set of arguments for constructing a DomainResource resource.
-        :param pulumi.Input[str] domain: The domain name of the website that you want to add to the instance.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: A list of instance ID that you want to associate. If this parameter is empty, only the domain name of the website is added but no instance is associated with the website.
-               > **NOTE:** There is a potential diff error because of the order of `instance_ids` values indefinite. So, from version 1.161.0, `instance_ids` type has been updated as `set` from `list`, and you can use tolist to convert it to a list.
+        :param pulumi.Input[str] domain: The domain name for which you want to configure the Static Page Caching policy.
+               
+               > **NOTE:**  You can call the [DescribeDomains](https://www.alibabacloud.com/help/en/doc-detail/91724.html) operation to query all the domain names that are added to Anti-DDoS Pro or Anti-DDoS Premium.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: InstanceIds
         :param pulumi.Input[Sequence[pulumi.Input['DomainResourceProxyTypeArgs']]] proxy_types: Protocol type and port number information. See `proxy_types` below.
-               > **NOTE:** From version 1.206.0, `proxy_types` can be modified.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: the IP address. This field is required and must be a string array.
-        :param pulumi.Input[int] rs_type: The address type of the origin server. Use the domain name of the origin server if you deploy proxies, such as Web Application Firewall (WAF), between the origin server and the Anti-DDoS Pro or Anti-DDoS Premium instance. If you use the domain name, you must enter the address of the proxy, such as the CNAME of WAF. Valid values:
-        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of ProxyType includes https. This parameter is a string that contains a JSON struct. The JSON struct includes the following fields:
-               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enforce HTTPS Routing is turned off. The value `1` indicates that Enforce HTTPS Routing is turned on. The default value is `0`. If your website supports both HTTP and HTTPS, this feature suits your needs. If you turn on the switch, all HTTP requests are redirected to HTTPS requests on port 443 by default.
-               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP is turned off. The value `1` indicates that Enable HTTP is turned on. The default value is `0`. If your website does not support HTTPS, this feature suits your needs. If you turn on the switch, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. The feature can also redirect WebSockets requests to WebSocket requests. All requests are redirected over port 80.
-               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP/2 is turned off. The value `1` indicates that Enable HTTP/2 is turned on. The default value is `0`. After you turn on the switch, the protocol type is HTTP/2.
-        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Default value: `false`. Valid values:
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: Server address information of the source station.
+        :param pulumi.Input[int] rs_type: The address type of the origin server. Valid values:
+        :param pulumi.Input[str] cert: The private key of the certificate that you want to associate. This parameter must be used together with the CertName and Cert parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_identifier: The name of the certificate.
+               
+               > **NOTE:**   You can specify the name of the certificate that you want to associate.
+        :param pulumi.Input[str] cert_name: The public key of the certificate that you want to associate. This parameter must be used together with the CertName and Key parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_region: The region of the certificate. `cn-hangzhou` and `ap-southeast-1` are supported. The default value is `cn-hangzhou`.
+        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of the `ProxyType` parameter includes `https`. The value is a string that consists of a JSON struct. The JSON struct contains the following fields:
+               
+               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enforce HTTPS Routing is turned off. The value 1 indicates that Enforce HTTPS Routing is turned on. The default value is 0.
+               
+               If your website supports both HTTP and HTTPS, this feature meets your business requirements. If you enable this feature, all HTTP requests to access the website are redirected to HTTPS requests on the standard port 443.
+               
+               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP is turned off. The value 1 indicates that Enable HTTP is turned on. The default value is 0.
+               
+               If your website does not support HTTPS, this feature meets your business requirements If this feature is enabled, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. This feature can redirect WebSockets requests to WebSocket requests. Requests are redirected over the standard port 80.
+               
+               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional. Data type: integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP/2 is turned off. The value 1 indicates that Enable HTTP/2 is turned on. The default value is 0.
+               
+               After you turn on the switch, HTTP/2 is used.
+        :param pulumi.Input[str] key: The globally unique ID of the certificate. The value is in the "Certificate ID-cn-hangzhou" format. For example, if the ID of the certificate is 123, the value of the CertIdentifier parameter is 123-cn-hangzhou.
+               
+               > **NOTE:**   You can specify only one of this parameter and the CertId parameter.
+        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Valid values:
         """
         pulumi.set(__self__, "domain", domain)
         pulumi.set(__self__, "instance_ids", instance_ids)
         pulumi.set(__self__, "proxy_types", proxy_types)
         pulumi.set(__self__, "real_servers", real_servers)
         pulumi.set(__self__, "rs_type", rs_type)
+        if cert is not None:
+            pulumi.set(__self__, "cert", cert)
+        if cert_identifier is not None:
+            pulumi.set(__self__, "cert_identifier", cert_identifier)
+        if cert_name is not None:
+            pulumi.set(__self__, "cert_name", cert_name)
+        if cert_region is not None:
+            pulumi.set(__self__, "cert_region", cert_region)
         if https_ext is not None:
             pulumi.set(__self__, "https_ext", https_ext)
+        if key is not None:
+            pulumi.set(__self__, "key", key)
         if ocsp_enabled is not None:
             pulumi.set(__self__, "ocsp_enabled", ocsp_enabled)
 
@@ -52,7 +89,9 @@ class DomainResourceArgs:
     @pulumi.getter
     def domain(self) -> pulumi.Input[str]:
         """
-        The domain name of the website that you want to add to the instance.
+        The domain name for which you want to configure the Static Page Caching policy.
+
+        > **NOTE:**  You can call the [DescribeDomains](https://www.alibabacloud.com/help/en/doc-detail/91724.html) operation to query all the domain names that are added to Anti-DDoS Pro or Anti-DDoS Premium.
         """
         return pulumi.get(self, "domain")
 
@@ -64,8 +103,7 @@ class DomainResourceArgs:
     @pulumi.getter(name="instanceIds")
     def instance_ids(self) -> pulumi.Input[Sequence[pulumi.Input[str]]]:
         """
-        A list of instance ID that you want to associate. If this parameter is empty, only the domain name of the website is added but no instance is associated with the website.
-        > **NOTE:** There is a potential diff error because of the order of `instance_ids` values indefinite. So, from version 1.161.0, `instance_ids` type has been updated as `set` from `list`, and you can use tolist to convert it to a list.
+        InstanceIds
         """
         return pulumi.get(self, "instance_ids")
 
@@ -78,7 +116,6 @@ class DomainResourceArgs:
     def proxy_types(self) -> pulumi.Input[Sequence[pulumi.Input['DomainResourceProxyTypeArgs']]]:
         """
         Protocol type and port number information. See `proxy_types` below.
-        > **NOTE:** From version 1.206.0, `proxy_types` can be modified.
         """
         return pulumi.get(self, "proxy_types")
 
@@ -90,7 +127,7 @@ class DomainResourceArgs:
     @pulumi.getter(name="realServers")
     def real_servers(self) -> pulumi.Input[Sequence[pulumi.Input[str]]]:
         """
-        the IP address. This field is required and must be a string array.
+        Server address information of the source station.
         """
         return pulumi.get(self, "real_servers")
 
@@ -102,7 +139,7 @@ class DomainResourceArgs:
     @pulumi.getter(name="rsType")
     def rs_type(self) -> pulumi.Input[int]:
         """
-        The address type of the origin server. Use the domain name of the origin server if you deploy proxies, such as Web Application Firewall (WAF), between the origin server and the Anti-DDoS Pro or Anti-DDoS Premium instance. If you use the domain name, you must enter the address of the proxy, such as the CNAME of WAF. Valid values:
+        The address type of the origin server. Valid values:
         """
         return pulumi.get(self, "rs_type")
 
@@ -110,14 +147,77 @@ class DomainResourceArgs:
     def rs_type(self, value: pulumi.Input[int]):
         pulumi.set(self, "rs_type", value)
 
+    @property
+    @pulumi.getter
+    def cert(self) -> Optional[pulumi.Input[str]]:
+        """
+        The private key of the certificate that you want to associate. This parameter must be used together with the CertName and Cert parameters.
+
+        > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        """
+        return pulumi.get(self, "cert")
+
+    @cert.setter
+    def cert(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert", value)
+
+    @property
+    @pulumi.getter(name="certIdentifier")
+    def cert_identifier(self) -> Optional[pulumi.Input[str]]:
+        """
+        The name of the certificate.
+
+        > **NOTE:**   You can specify the name of the certificate that you want to associate.
+        """
+        return pulumi.get(self, "cert_identifier")
+
+    @cert_identifier.setter
+    def cert_identifier(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert_identifier", value)
+
+    @property
+    @pulumi.getter(name="certName")
+    def cert_name(self) -> Optional[pulumi.Input[str]]:
+        """
+        The public key of the certificate that you want to associate. This parameter must be used together with the CertName and Key parameters.
+
+        > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        """
+        return pulumi.get(self, "cert_name")
+
+    @cert_name.setter
+    def cert_name(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert_name", value)
+
+    @property
+    @pulumi.getter(name="certRegion")
+    def cert_region(self) -> Optional[pulumi.Input[str]]:
+        """
+        The region of the certificate. `cn-hangzhou` and `ap-southeast-1` are supported. The default value is `cn-hangzhou`.
+        """
+        return pulumi.get(self, "cert_region")
+
+    @cert_region.setter
+    def cert_region(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert_region", value)
+
     @property
     @pulumi.getter(name="httpsExt")
     def https_ext(self) -> Optional[pulumi.Input[str]]:
         """
-        The advanced HTTPS settings. This parameter takes effect only when the value of ProxyType includes https. This parameter is a string that contains a JSON struct. The JSON struct includes the following fields:
-        - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enforce HTTPS Routing is turned off. The value `1` indicates that Enforce HTTPS Routing is turned on. The default value is `0`. If your website supports both HTTP and HTTPS, this feature suits your needs. If you turn on the switch, all HTTP requests are redirected to HTTPS requests on port 443 by default.
-        - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP is turned off. The value `1` indicates that Enable HTTP is turned on. The default value is `0`. If your website does not support HTTPS, this feature suits your needs. If you turn on the switch, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. The feature can also redirect WebSockets requests to WebSocket requests. All requests are redirected over port 80.
-        - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP/2 is turned off. The value `1` indicates that Enable HTTP/2 is turned on. The default value is `0`. After you turn on the switch, the protocol type is HTTP/2.
+        The advanced HTTPS settings. This parameter takes effect only when the value of the `ProxyType` parameter includes `https`. The value is a string that consists of a JSON struct. The JSON struct contains the following fields:
+
+        - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enforce HTTPS Routing is turned off. The value 1 indicates that Enforce HTTPS Routing is turned on. The default value is 0.
+
+        If your website supports both HTTP and HTTPS, this feature meets your business requirements. If you enable this feature, all HTTP requests to access the website are redirected to HTTPS requests on the standard port 443.
+
+        - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP is turned off. The value 1 indicates that Enable HTTP is turned on. The default value is 0.
+
+        If your website does not support HTTPS, this feature meets your business requirements If this feature is enabled, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. This feature can redirect WebSockets requests to WebSocket requests. Requests are redirected over the standard port 80.
+
+        - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional. Data type: integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP/2 is turned off. The value 1 indicates that Enable HTTP/2 is turned on. The default value is 0.
+
+        After you turn on the switch, HTTP/2 is used.
         """
         return pulumi.get(self, "https_ext")
 
@@ -125,11 +225,25 @@ class DomainResourceArgs:
     def https_ext(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "https_ext", value)
 
+    @property
+    @pulumi.getter
+    def key(self) -> Optional[pulumi.Input[str]]:
+        """
+        The globally unique ID of the certificate. The value is in the "Certificate ID-cn-hangzhou" format. For example, if the ID of the certificate is 123, the value of the CertIdentifier parameter is 123-cn-hangzhou.
+
+        > **NOTE:**   You can specify only one of this parameter and the CertId parameter.
+        """
+        return pulumi.get(self, "key")
+
+    @key.setter
+    def key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "key", value)
+
     @property
     @pulumi.getter(name="ocspEnabled")
     def ocsp_enabled(self) -> Optional[pulumi.Input[bool]]:
         """
-        Specifies whether to enable the OCSP feature. Default value: `false`. Valid values:
+        Specifies whether to enable the OCSP feature. Valid values:
         """
         return pulumi.get(self, "ocsp_enabled")
 
@@ -141,30 +255,65 @@ class DomainResourceArgs:
 @pulumi.input_type
 class _DomainResourceState:
     def __init__(__self__, *,
+                 cert: Optional[pulumi.Input[str]] = None,
+                 cert_identifier: Optional[pulumi.Input[str]] = None,
+                 cert_name: Optional[pulumi.Input[str]] = None,
+                 cert_region: Optional[pulumi.Input[str]] = None,
                  cname: Optional[pulumi.Input[str]] = None,
                  domain: Optional[pulumi.Input[str]] = None,
                  https_ext: Optional[pulumi.Input[str]] = None,
                  instance_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 key: Optional[pulumi.Input[str]] = None,
                  ocsp_enabled: Optional[pulumi.Input[bool]] = None,
                  proxy_types: Optional[pulumi.Input[Sequence[pulumi.Input['DomainResourceProxyTypeArgs']]]] = None,
                  real_servers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  rs_type: Optional[pulumi.Input[int]] = None):
         """
         Input properties used for looking up and filtering DomainResource resources.
-        :param pulumi.Input[str] cname: (Available since v1.207.2) The CNAME assigned to the domain name.
-        :param pulumi.Input[str] domain: The domain name of the website that you want to add to the instance.
-        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of ProxyType includes https. This parameter is a string that contains a JSON struct. The JSON struct includes the following fields:
-               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enforce HTTPS Routing is turned off. The value `1` indicates that Enforce HTTPS Routing is turned on. The default value is `0`. If your website supports both HTTP and HTTPS, this feature suits your needs. If you turn on the switch, all HTTP requests are redirected to HTTPS requests on port 443 by default.
-               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP is turned off. The value `1` indicates that Enable HTTP is turned on. The default value is `0`. If your website does not support HTTPS, this feature suits your needs. If you turn on the switch, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. The feature can also redirect WebSockets requests to WebSocket requests. All requests are redirected over port 80.
-               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP/2 is turned off. The value `1` indicates that Enable HTTP/2 is turned on. The default value is `0`. After you turn on the switch, the protocol type is HTTP/2.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: A list of instance ID that you want to associate. If this parameter is empty, only the domain name of the website is added but no instance is associated with the website.
-               > **NOTE:** There is a potential diff error because of the order of `instance_ids` values indefinite. So, from version 1.161.0, `instance_ids` type has been updated as `set` from `list`, and you can use tolist to convert it to a list.
-        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Default value: `false`. Valid values:
+        :param pulumi.Input[str] cert: The private key of the certificate that you want to associate. This parameter must be used together with the CertName and Cert parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_identifier: The name of the certificate.
+               
+               > **NOTE:**   You can specify the name of the certificate that you want to associate.
+        :param pulumi.Input[str] cert_name: The public key of the certificate that you want to associate. This parameter must be used together with the CertName and Key parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_region: The region of the certificate. `cn-hangzhou` and `ap-southeast-1` are supported. The default value is `cn-hangzhou`.
+        :param pulumi.Input[str] cname: The CNAME address to query.
+        :param pulumi.Input[str] domain: The domain name for which you want to configure the Static Page Caching policy.
+               
+               > **NOTE:**  You can call the [DescribeDomains](https://www.alibabacloud.com/help/en/doc-detail/91724.html) operation to query all the domain names that are added to Anti-DDoS Pro or Anti-DDoS Premium.
+        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of the `ProxyType` parameter includes `https`. The value is a string that consists of a JSON struct. The JSON struct contains the following fields:
+               
+               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enforce HTTPS Routing is turned off. The value 1 indicates that Enforce HTTPS Routing is turned on. The default value is 0.
+               
+               If your website supports both HTTP and HTTPS, this feature meets your business requirements. If you enable this feature, all HTTP requests to access the website are redirected to HTTPS requests on the standard port 443.
+               
+               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP is turned off. The value 1 indicates that Enable HTTP is turned on. The default value is 0.
+               
+               If your website does not support HTTPS, this feature meets your business requirements If this feature is enabled, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. This feature can redirect WebSockets requests to WebSocket requests. Requests are redirected over the standard port 80.
+               
+               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional. Data type: integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP/2 is turned off. The value 1 indicates that Enable HTTP/2 is turned on. The default value is 0.
+               
+               After you turn on the switch, HTTP/2 is used.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: InstanceIds
+        :param pulumi.Input[str] key: The globally unique ID of the certificate. The value is in the "Certificate ID-cn-hangzhou" format. For example, if the ID of the certificate is 123, the value of the CertIdentifier parameter is 123-cn-hangzhou.
+               
+               > **NOTE:**   You can specify only one of this parameter and the CertId parameter.
+        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Valid values:
         :param pulumi.Input[Sequence[pulumi.Input['DomainResourceProxyTypeArgs']]] proxy_types: Protocol type and port number information. See `proxy_types` below.
-               > **NOTE:** From version 1.206.0, `proxy_types` can be modified.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: the IP address. This field is required and must be a string array.
-        :param pulumi.Input[int] rs_type: The address type of the origin server. Use the domain name of the origin server if you deploy proxies, such as Web Application Firewall (WAF), between the origin server and the Anti-DDoS Pro or Anti-DDoS Premium instance. If you use the domain name, you must enter the address of the proxy, such as the CNAME of WAF. Valid values:
-        """
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: Server address information of the source station.
+        :param pulumi.Input[int] rs_type: The address type of the origin server. Valid values:
+        """
+        if cert is not None:
+            pulumi.set(__self__, "cert", cert)
+        if cert_identifier is not None:
+            pulumi.set(__self__, "cert_identifier", cert_identifier)
+        if cert_name is not None:
+            pulumi.set(__self__, "cert_name", cert_name)
+        if cert_region is not None:
+            pulumi.set(__self__, "cert_region", cert_region)
         if cname is not None:
             pulumi.set(__self__, "cname", cname)
         if domain is not None:
@@ -173,6 +322,8 @@ class _DomainResourceState:
             pulumi.set(__self__, "https_ext", https_ext)
         if instance_ids is not None:
             pulumi.set(__self__, "instance_ids", instance_ids)
+        if key is not None:
+            pulumi.set(__self__, "key", key)
         if ocsp_enabled is not None:
             pulumi.set(__self__, "ocsp_enabled", ocsp_enabled)
         if proxy_types is not None:
@@ -182,11 +333,65 @@ class _DomainResourceState:
         if rs_type is not None:
             pulumi.set(__self__, "rs_type", rs_type)
 
+    @property
+    @pulumi.getter
+    def cert(self) -> Optional[pulumi.Input[str]]:
+        """
+        The private key of the certificate that you want to associate. This parameter must be used together with the CertName and Cert parameters.
+
+        > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        """
+        return pulumi.get(self, "cert")
+
+    @cert.setter
+    def cert(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert", value)
+
+    @property
+    @pulumi.getter(name="certIdentifier")
+    def cert_identifier(self) -> Optional[pulumi.Input[str]]:
+        """
+        The name of the certificate.
+
+        > **NOTE:**   You can specify the name of the certificate that you want to associate.
+        """
+        return pulumi.get(self, "cert_identifier")
+
+    @cert_identifier.setter
+    def cert_identifier(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert_identifier", value)
+
+    @property
+    @pulumi.getter(name="certName")
+    def cert_name(self) -> Optional[pulumi.Input[str]]:
+        """
+        The public key of the certificate that you want to associate. This parameter must be used together with the CertName and Key parameters.
+
+        > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        """
+        return pulumi.get(self, "cert_name")
+
+    @cert_name.setter
+    def cert_name(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert_name", value)
+
+    @property
+    @pulumi.getter(name="certRegion")
+    def cert_region(self) -> Optional[pulumi.Input[str]]:
+        """
+        The region of the certificate. `cn-hangzhou` and `ap-southeast-1` are supported. The default value is `cn-hangzhou`.
+        """
+        return pulumi.get(self, "cert_region")
+
+    @cert_region.setter
+    def cert_region(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "cert_region", value)
+
     @property
     @pulumi.getter
     def cname(self) -> Optional[pulumi.Input[str]]:
         """
-        (Available since v1.207.2) The CNAME assigned to the domain name.
+        The CNAME address to query.
         """
         return pulumi.get(self, "cname")
 
@@ -198,7 +403,9 @@ class _DomainResourceState:
     @pulumi.getter
     def domain(self) -> Optional[pulumi.Input[str]]:
         """
-        The domain name of the website that you want to add to the instance.
+        The domain name for which you want to configure the Static Page Caching policy.
+
+        > **NOTE:**  You can call the [DescribeDomains](https://www.alibabacloud.com/help/en/doc-detail/91724.html) operation to query all the domain names that are added to Anti-DDoS Pro or Anti-DDoS Premium.
         """
         return pulumi.get(self, "domain")
 
@@ -210,10 +417,19 @@ class _DomainResourceState:
     @pulumi.getter(name="httpsExt")
     def https_ext(self) -> Optional[pulumi.Input[str]]:
         """
-        The advanced HTTPS settings. This parameter takes effect only when the value of ProxyType includes https. This parameter is a string that contains a JSON struct. The JSON struct includes the following fields:
-        - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enforce HTTPS Routing is turned off. The value `1` indicates that Enforce HTTPS Routing is turned on. The default value is `0`. If your website supports both HTTP and HTTPS, this feature suits your needs. If you turn on the switch, all HTTP requests are redirected to HTTPS requests on port 443 by default.
-        - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP is turned off. The value `1` indicates that Enable HTTP is turned on. The default value is `0`. If your website does not support HTTPS, this feature suits your needs. If you turn on the switch, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. The feature can also redirect WebSockets requests to WebSocket requests. All requests are redirected over port 80.
-        - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP/2 is turned off. The value `1` indicates that Enable HTTP/2 is turned on. The default value is `0`. After you turn on the switch, the protocol type is HTTP/2.
+        The advanced HTTPS settings. This parameter takes effect only when the value of the `ProxyType` parameter includes `https`. The value is a string that consists of a JSON struct. The JSON struct contains the following fields:
+
+        - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enforce HTTPS Routing is turned off. The value 1 indicates that Enforce HTTPS Routing is turned on. The default value is 0.
+
+        If your website supports both HTTP and HTTPS, this feature meets your business requirements. If you enable this feature, all HTTP requests to access the website are redirected to HTTPS requests on the standard port 443.
+
+        - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP is turned off. The value 1 indicates that Enable HTTP is turned on. The default value is 0.
+
+        If your website does not support HTTPS, this feature meets your business requirements If this feature is enabled, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. This feature can redirect WebSockets requests to WebSocket requests. Requests are redirected over the standard port 80.
+
+        - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional. Data type: integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP/2 is turned off. The value 1 indicates that Enable HTTP/2 is turned on. The default value is 0.
+
+        After you turn on the switch, HTTP/2 is used.
         """
         return pulumi.get(self, "https_ext")
 
@@ -225,8 +441,7 @@ class _DomainResourceState:
     @pulumi.getter(name="instanceIds")
     def instance_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        A list of instance ID that you want to associate. If this parameter is empty, only the domain name of the website is added but no instance is associated with the website.
-        > **NOTE:** There is a potential diff error because of the order of `instance_ids` values indefinite. So, from version 1.161.0, `instance_ids` type has been updated as `set` from `list`, and you can use tolist to convert it to a list.
+        InstanceIds
         """
         return pulumi.get(self, "instance_ids")
 
@@ -234,11 +449,25 @@ class _DomainResourceState:
     def instance_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
         pulumi.set(self, "instance_ids", value)
 
+    @property
+    @pulumi.getter
+    def key(self) -> Optional[pulumi.Input[str]]:
+        """
+        The globally unique ID of the certificate. The value is in the "Certificate ID-cn-hangzhou" format. For example, if the ID of the certificate is 123, the value of the CertIdentifier parameter is 123-cn-hangzhou.
+
+        > **NOTE:**   You can specify only one of this parameter and the CertId parameter.
+        """
+        return pulumi.get(self, "key")
+
+    @key.setter
+    def key(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "key", value)
+
     @property
     @pulumi.getter(name="ocspEnabled")
     def ocsp_enabled(self) -> Optional[pulumi.Input[bool]]:
         """
-        Specifies whether to enable the OCSP feature. Default value: `false`. Valid values:
+        Specifies whether to enable the OCSP feature. Valid values:
         """
         return pulumi.get(self, "ocsp_enabled")
 
@@ -251,7 +480,6 @@ class _DomainResourceState:
     def proxy_types(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['DomainResourceProxyTypeArgs']]]]:
         """
         Protocol type and port number information. See `proxy_types` below.
-        > **NOTE:** From version 1.206.0, `proxy_types` can be modified.
         """
         return pulumi.get(self, "proxy_types")
 
@@ -263,7 +491,7 @@ class _DomainResourceState:
     @pulumi.getter(name="realServers")
     def real_servers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        the IP address. This field is required and must be a string array.
+        Server address information of the source station.
         """
         return pulumi.get(self, "real_servers")
 
@@ -275,7 +503,7 @@ class _DomainResourceState:
     @pulumi.getter(name="rsType")
     def rs_type(self) -> Optional[pulumi.Input[int]]:
         """
-        The address type of the origin server. Use the domain name of the origin server if you deploy proxies, such as Web Application Firewall (WAF), between the origin server and the Anti-DDoS Pro or Anti-DDoS Premium instance. If you use the domain name, you must enter the address of the proxy, such as the CNAME of WAF. Valid values:
+        The address type of the origin server. Valid values:
         """
         return pulumi.get(self, "rs_type")
 
@@ -289,18 +517,23 @@ class DomainResource(pulumi.CustomResource):
     def __init__(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
+                 cert: Optional[pulumi.Input[str]] = None,
+                 cert_identifier: Optional[pulumi.Input[str]] = None,
+                 cert_name: Optional[pulumi.Input[str]] = None,
+                 cert_region: Optional[pulumi.Input[str]] = None,
                  domain: Optional[pulumi.Input[str]] = None,
                  https_ext: Optional[pulumi.Input[str]] = None,
                  instance_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 key: Optional[pulumi.Input[str]] = None,
                  ocsp_enabled: Optional[pulumi.Input[bool]] = None,
                  proxy_types: Optional[pulumi.Input[Sequence[pulumi.Input[Union['DomainResourceProxyTypeArgs', 'DomainResourceProxyTypeArgsDict']]]]] = None,
                  real_servers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
                  rs_type: Optional[pulumi.Input[int]] = None,
                  __props__=None):
         """
-        Provides a Anti-DDoS Pro Domain Resource resource.
+        Provides a Ddos Coo Domain Resource resource.
 
-        For information about Anti-DDoS Pro Domain Resource and how to use it, see [What is Domain Resource](https://www.alibabacloud.com/help/en/ddos-protection/latest/api-ddoscoo-2020-01-01-createwebrule).
+        For information about Ddos Coo Domain Resource and how to use it, see [What is Domain Resource](https://www.alibabacloud.com/help/en/anti-ddos/anti-ddos-pro-and-premium/developer-reference/api-ddoscoo-2020-01-01-createdomainresource).
 
         > **NOTE:** Available since v1.123.0.
 
@@ -342,26 +575,48 @@ class DomainResource(pulumi.CustomResource):
 
         ## Import
 
-        Anti-DDoS Pro Domain Resource can be imported using the id, e.g.
+        Ddos Coo Domain Resource can be imported using the id, e.g.
 
         ```sh
-        $ pulumi import alicloud:ddos/domainResource:DomainResource example <domain>
+        $ pulumi import alicloud:ddos/domainResource:DomainResource example <id>
         ```
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] domain: The domain name of the website that you want to add to the instance.
-        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of ProxyType includes https. This parameter is a string that contains a JSON struct. The JSON struct includes the following fields:
-               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enforce HTTPS Routing is turned off. The value `1` indicates that Enforce HTTPS Routing is turned on. The default value is `0`. If your website supports both HTTP and HTTPS, this feature suits your needs. If you turn on the switch, all HTTP requests are redirected to HTTPS requests on port 443 by default.
-               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP is turned off. The value `1` indicates that Enable HTTP is turned on. The default value is `0`. If your website does not support HTTPS, this feature suits your needs. If you turn on the switch, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. The feature can also redirect WebSockets requests to WebSocket requests. All requests are redirected over port 80.
-               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP/2 is turned off. The value `1` indicates that Enable HTTP/2 is turned on. The default value is `0`. After you turn on the switch, the protocol type is HTTP/2.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: A list of instance ID that you want to associate. If this parameter is empty, only the domain name of the website is added but no instance is associated with the website.
-               > **NOTE:** There is a potential diff error because of the order of `instance_ids` values indefinite. So, from version 1.161.0, `instance_ids` type has been updated as `set` from `list`, and you can use tolist to convert it to a list.
-        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Default value: `false`. Valid values:
+        :param pulumi.Input[str] cert: The private key of the certificate that you want to associate. This parameter must be used together with the CertName and Cert parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_identifier: The name of the certificate.
+               
+               > **NOTE:**   You can specify the name of the certificate that you want to associate.
+        :param pulumi.Input[str] cert_name: The public key of the certificate that you want to associate. This parameter must be used together with the CertName and Key parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_region: The region of the certificate. `cn-hangzhou` and `ap-southeast-1` are supported. The default value is `cn-hangzhou`.
+        :param pulumi.Input[str] domain: The domain name for which you want to configure the Static Page Caching policy.
+               
+               > **NOTE:**  You can call the [DescribeDomains](https://www.alibabacloud.com/help/en/doc-detail/91724.html) operation to query all the domain names that are added to Anti-DDoS Pro or Anti-DDoS Premium.
+        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of the `ProxyType` parameter includes `https`. The value is a string that consists of a JSON struct. The JSON struct contains the following fields:
+               
+               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enforce HTTPS Routing is turned off. The value 1 indicates that Enforce HTTPS Routing is turned on. The default value is 0.
+               
+               If your website supports both HTTP and HTTPS, this feature meets your business requirements. If you enable this feature, all HTTP requests to access the website are redirected to HTTPS requests on the standard port 443.
+               
+               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP is turned off. The value 1 indicates that Enable HTTP is turned on. The default value is 0.
+               
+               If your website does not support HTTPS, this feature meets your business requirements If this feature is enabled, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. This feature can redirect WebSockets requests to WebSocket requests. Requests are redirected over the standard port 80.
+               
+               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional. Data type: integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP/2 is turned off. The value 1 indicates that Enable HTTP/2 is turned on. The default value is 0.
+               
+               After you turn on the switch, HTTP/2 is used.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: InstanceIds
+        :param pulumi.Input[str] key: The globally unique ID of the certificate. The value is in the "Certificate ID-cn-hangzhou" format. For example, if the ID of the certificate is 123, the value of the CertIdentifier parameter is 123-cn-hangzhou.
+               
+               > **NOTE:**   You can specify only one of this parameter and the CertId parameter.
+        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Valid values:
         :param pulumi.Input[Sequence[pulumi.Input[Union['DomainResourceProxyTypeArgs', 'DomainResourceProxyTypeArgsDict']]]] proxy_types: Protocol type and port number information. See `proxy_types` below.
-               > **NOTE:** From version 1.206.0, `proxy_types` can be modified.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: the IP address. This field is required and must be a string array.
-        :param pulumi.Input[int] rs_type: The address type of the origin server. Use the domain name of the origin server if you deploy proxies, such as Web Application Firewall (WAF), between the origin server and the Anti-DDoS Pro or Anti-DDoS Premium instance. If you use the domain name, you must enter the address of the proxy, such as the CNAME of WAF. Valid values:
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: Server address information of the source station.
+        :param pulumi.Input[int] rs_type: The address type of the origin server. Valid values:
         """
         ...
     @overload
@@ -370,9 +625,9 @@ class DomainResource(pulumi.CustomResource):
                  args: DomainResourceArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
-        Provides a Anti-DDoS Pro Domain Resource resource.
+        Provides a Ddos Coo Domain Resource resource.
 
-        For information about Anti-DDoS Pro Domain Resource and how to use it, see [What is Domain Resource](https://www.alibabacloud.com/help/en/ddos-protection/latest/api-ddoscoo-2020-01-01-createwebrule).
+        For information about Ddos Coo Domain Resource and how to use it, see [What is Domain Resource](https://www.alibabacloud.com/help/en/anti-ddos/anti-ddos-pro-and-premium/developer-reference/api-ddoscoo-2020-01-01-createdomainresource).
 
         > **NOTE:** Available since v1.123.0.
 
@@ -414,10 +669,10 @@ class DomainResource(pulumi.CustomResource):
 
         ## Import
 
-        Anti-DDoS Pro Domain Resource can be imported using the id, e.g.
+        Ddos Coo Domain Resource can be imported using the id, e.g.
 
         ```sh
-        $ pulumi import alicloud:ddos/domainResource:DomainResource example <domain>
+        $ pulumi import alicloud:ddos/domainResource:DomainResource example <id>
         ```
 
         :param str resource_name: The name of the resource.
@@ -435,9 +690,14 @@ class DomainResource(pulumi.CustomResource):
     def _internal_init(__self__,
                  resource_name: str,
                  opts: Optional[pulumi.ResourceOptions] = None,
+                 cert: Optional[pulumi.Input[str]] = None,
+                 cert_identifier: Optional[pulumi.Input[str]] = None,
+                 cert_name: Optional[pulumi.Input[str]] = None,
+                 cert_region: Optional[pulumi.Input[str]] = None,
                  domain: Optional[pulumi.Input[str]] = None,
                  https_ext: Optional[pulumi.Input[str]] = None,
                  instance_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+                 key: Optional[pulumi.Input[str]] = None,
                  ocsp_enabled: Optional[pulumi.Input[bool]] = None,
                  proxy_types: Optional[pulumi.Input[Sequence[pulumi.Input[Union['DomainResourceProxyTypeArgs', 'DomainResourceProxyTypeArgsDict']]]]] = None,
                  real_servers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
@@ -451,6 +711,10 @@ class DomainResource(pulumi.CustomResource):
                 raise TypeError('__props__ is only valid when passed in combination with a valid opts.id to get an existing resource')
             __props__ = DomainResourceArgs.__new__(DomainResourceArgs)
 
+            __props__.__dict__["cert"] = None if cert is None else pulumi.Output.secret(cert)
+            __props__.__dict__["cert_identifier"] = cert_identifier
+            __props__.__dict__["cert_name"] = cert_name
+            __props__.__dict__["cert_region"] = None if cert_region is None else pulumi.Output.secret(cert_region)
             if domain is None and not opts.urn:
                 raise TypeError("Missing required property 'domain'")
             __props__.__dict__["domain"] = domain
@@ -458,6 +722,7 @@ class DomainResource(pulumi.CustomResource):
             if instance_ids is None and not opts.urn:
                 raise TypeError("Missing required property 'instance_ids'")
             __props__.__dict__["instance_ids"] = instance_ids
+            __props__.__dict__["key"] = None if key is None else pulumi.Output.secret(key)
             __props__.__dict__["ocsp_enabled"] = ocsp_enabled
             if proxy_types is None and not opts.urn:
                 raise TypeError("Missing required property 'proxy_types'")
@@ -469,6 +734,8 @@ class DomainResource(pulumi.CustomResource):
                 raise TypeError("Missing required property 'rs_type'")
             __props__.__dict__["rs_type"] = rs_type
             __props__.__dict__["cname"] = None
+        secret_opts = pulumi.ResourceOptions(additional_secret_outputs=["cert", "certRegion", "key"])
+        opts = pulumi.ResourceOptions.merge(opts, secret_opts)
         super(DomainResource, __self__).__init__(
             'alicloud:ddos/domainResource:DomainResource',
             resource_name,
@@ -479,10 +746,15 @@ class DomainResource(pulumi.CustomResource):
     def get(resource_name: str,
             id: pulumi.Input[str],
             opts: Optional[pulumi.ResourceOptions] = None,
+            cert: Optional[pulumi.Input[str]] = None,
+            cert_identifier: Optional[pulumi.Input[str]] = None,
+            cert_name: Optional[pulumi.Input[str]] = None,
+            cert_region: Optional[pulumi.Input[str]] = None,
             cname: Optional[pulumi.Input[str]] = None,
             domain: Optional[pulumi.Input[str]] = None,
             https_ext: Optional[pulumi.Input[str]] = None,
             instance_ids: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
+            key: Optional[pulumi.Input[str]] = None,
             ocsp_enabled: Optional[pulumi.Input[bool]] = None,
             proxy_types: Optional[pulumi.Input[Sequence[pulumi.Input[Union['DomainResourceProxyTypeArgs', 'DomainResourceProxyTypeArgsDict']]]]] = None,
             real_servers: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
@@ -494,39 +766,104 @@ class DomainResource(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[str] cname: (Available since v1.207.2) The CNAME assigned to the domain name.
-        :param pulumi.Input[str] domain: The domain name of the website that you want to add to the instance.
-        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of ProxyType includes https. This parameter is a string that contains a JSON struct. The JSON struct includes the following fields:
-               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enforce HTTPS Routing is turned off. The value `1` indicates that Enforce HTTPS Routing is turned on. The default value is `0`. If your website supports both HTTP and HTTPS, this feature suits your needs. If you turn on the switch, all HTTP requests are redirected to HTTPS requests on port 443 by default.
-               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP is turned off. The value `1` indicates that Enable HTTP is turned on. The default value is `0`. If your website does not support HTTPS, this feature suits your needs. If you turn on the switch, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. The feature can also redirect WebSockets requests to WebSocket requests. All requests are redirected over port 80.
-               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP/2 is turned off. The value `1` indicates that Enable HTTP/2 is turned on. The default value is `0`. After you turn on the switch, the protocol type is HTTP/2.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: A list of instance ID that you want to associate. If this parameter is empty, only the domain name of the website is added but no instance is associated with the website.
-               > **NOTE:** There is a potential diff error because of the order of `instance_ids` values indefinite. So, from version 1.161.0, `instance_ids` type has been updated as `set` from `list`, and you can use tolist to convert it to a list.
-        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Default value: `false`. Valid values:
+        :param pulumi.Input[str] cert: The private key of the certificate that you want to associate. This parameter must be used together with the CertName and Cert parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_identifier: The name of the certificate.
+               
+               > **NOTE:**   You can specify the name of the certificate that you want to associate.
+        :param pulumi.Input[str] cert_name: The public key of the certificate that you want to associate. This parameter must be used together with the CertName and Key parameters.
+               
+               > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        :param pulumi.Input[str] cert_region: The region of the certificate. `cn-hangzhou` and `ap-southeast-1` are supported. The default value is `cn-hangzhou`.
+        :param pulumi.Input[str] cname: The CNAME address to query.
+        :param pulumi.Input[str] domain: The domain name for which you want to configure the Static Page Caching policy.
+               
+               > **NOTE:**  You can call the [DescribeDomains](https://www.alibabacloud.com/help/en/doc-detail/91724.html) operation to query all the domain names that are added to Anti-DDoS Pro or Anti-DDoS Premium.
+        :param pulumi.Input[str] https_ext: The advanced HTTPS settings. This parameter takes effect only when the value of the `ProxyType` parameter includes `https`. The value is a string that consists of a JSON struct. The JSON struct contains the following fields:
+               
+               - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enforce HTTPS Routing is turned off. The value 1 indicates that Enforce HTTPS Routing is turned on. The default value is 0.
+               
+               If your website supports both HTTP and HTTPS, this feature meets your business requirements. If you enable this feature, all HTTP requests to access the website are redirected to HTTPS requests on the standard port 443.
+               
+               - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP is turned off. The value 1 indicates that Enable HTTP is turned on. The default value is 0.
+               
+               If your website does not support HTTPS, this feature meets your business requirements If this feature is enabled, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. This feature can redirect WebSockets requests to WebSocket requests. Requests are redirected over the standard port 80.
+               
+               - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional. Data type: integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP/2 is turned off. The value 1 indicates that Enable HTTP/2 is turned on. The default value is 0.
+               
+               After you turn on the switch, HTTP/2 is used.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] instance_ids: InstanceIds
+        :param pulumi.Input[str] key: The globally unique ID of the certificate. The value is in the "Certificate ID-cn-hangzhou" format. For example, if the ID of the certificate is 123, the value of the CertIdentifier parameter is 123-cn-hangzhou.
+               
+               > **NOTE:**   You can specify only one of this parameter and the CertId parameter.
+        :param pulumi.Input[bool] ocsp_enabled: Specifies whether to enable the OCSP feature. Valid values:
         :param pulumi.Input[Sequence[pulumi.Input[Union['DomainResourceProxyTypeArgs', 'DomainResourceProxyTypeArgsDict']]]] proxy_types: Protocol type and port number information. See `proxy_types` below.
-               > **NOTE:** From version 1.206.0, `proxy_types` can be modified.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: the IP address. This field is required and must be a string array.
-        :param pulumi.Input[int] rs_type: The address type of the origin server. Use the domain name of the origin server if you deploy proxies, such as Web Application Firewall (WAF), between the origin server and the Anti-DDoS Pro or Anti-DDoS Premium instance. If you use the domain name, you must enter the address of the proxy, such as the CNAME of WAF. Valid values:
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] real_servers: Server address information of the source station.
+        :param pulumi.Input[int] rs_type: The address type of the origin server. Valid values:
         """
         opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
 
         __props__ = _DomainResourceState.__new__(_DomainResourceState)
 
+        __props__.__dict__["cert"] = cert
+        __props__.__dict__["cert_identifier"] = cert_identifier
+        __props__.__dict__["cert_name"] = cert_name
+        __props__.__dict__["cert_region"] = cert_region
         __props__.__dict__["cname"] = cname
         __props__.__dict__["domain"] = domain
         __props__.__dict__["https_ext"] = https_ext
         __props__.__dict__["instance_ids"] = instance_ids
+        __props__.__dict__["key"] = key
         __props__.__dict__["ocsp_enabled"] = ocsp_enabled
         __props__.__dict__["proxy_types"] = proxy_types
         __props__.__dict__["real_servers"] = real_servers
         __props__.__dict__["rs_type"] = rs_type
         return DomainResource(resource_name, opts=opts, __props__=__props__)
 
+    @property
+    @pulumi.getter
+    def cert(self) -> pulumi.Output[Optional[str]]:
+        """
+        The private key of the certificate that you want to associate. This parameter must be used together with the CertName and Cert parameters.
+
+        > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        """
+        return pulumi.get(self, "cert")
+
+    @property
+    @pulumi.getter(name="certIdentifier")
+    def cert_identifier(self) -> pulumi.Output[Optional[str]]:
+        """
+        The name of the certificate.
+
+        > **NOTE:**   You can specify the name of the certificate that you want to associate.
+        """
+        return pulumi.get(self, "cert_identifier")
+
+    @property
+    @pulumi.getter(name="certName")
+    def cert_name(self) -> pulumi.Output[str]:
+        """
+        The public key of the certificate that you want to associate. This parameter must be used together with the CertName and Key parameters.
+
+        > **NOTE:**   If you specify a value for the CertName, Cert, and Key parameters, you do not need to specify a value for the CertId parameter.
+        """
+        return pulumi.get(self, "cert_name")
+
+    @property
+    @pulumi.getter(name="certRegion")
+    def cert_region(self) -> pulumi.Output[Optional[str]]:
+        """
+        The region of the certificate. `cn-hangzhou` and `ap-southeast-1` are supported. The default value is `cn-hangzhou`.
+        """
+        return pulumi.get(self, "cert_region")
+
     @property
     @pulumi.getter
     def cname(self) -> pulumi.Output[str]:
         """
-        (Available since v1.207.2) The CNAME assigned to the domain name.
+        The CNAME address to query.
         """
         return pulumi.get(self, "cname")
 
@@ -534,7 +871,9 @@ class DomainResource(pulumi.CustomResource):
     @pulumi.getter
     def domain(self) -> pulumi.Output[str]:
         """
-        The domain name of the website that you want to add to the instance.
+        The domain name for which you want to configure the Static Page Caching policy.
+
+        > **NOTE:**  You can call the [DescribeDomains](https://www.alibabacloud.com/help/en/doc-detail/91724.html) operation to query all the domain names that are added to Anti-DDoS Pro or Anti-DDoS Premium.
         """
         return pulumi.get(self, "domain")
 
@@ -542,10 +881,19 @@ class DomainResource(pulumi.CustomResource):
     @pulumi.getter(name="httpsExt")
     def https_ext(self) -> pulumi.Output[str]:
         """
-        The advanced HTTPS settings. This parameter takes effect only when the value of ProxyType includes https. This parameter is a string that contains a JSON struct. The JSON struct includes the following fields:
-        - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enforce HTTPS Routing is turned off. The value `1` indicates that Enforce HTTPS Routing is turned on. The default value is `0`. If your website supports both HTTP and HTTPS, this feature suits your needs. If you turn on the switch, all HTTP requests are redirected to HTTPS requests on port 443 by default.
-        - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP is turned off. The value `1` indicates that Enable HTTP is turned on. The default value is `0`. If your website does not support HTTPS, this feature suits your needs. If you turn on the switch, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. The feature can also redirect WebSockets requests to WebSocket requests. All requests are redirected over port 80.
-        - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional and must be an integer. Valid values: `0` and `1`. The value `0` indicates that Enable HTTP/2 is turned off. The value `1` indicates that Enable HTTP/2 is turned on. The default value is `0`. After you turn on the switch, the protocol type is HTTP/2.
+        The advanced HTTPS settings. This parameter takes effect only when the value of the `ProxyType` parameter includes `https`. The value is a string that consists of a JSON struct. The JSON struct contains the following fields:
+
+        - `Http2https`: specifies whether to turn on Enforce HTTPS Routing. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enforce HTTPS Routing is turned off. The value 1 indicates that Enforce HTTPS Routing is turned on. The default value is 0.
+
+        If your website supports both HTTP and HTTPS, this feature meets your business requirements. If you enable this feature, all HTTP requests to access the website are redirected to HTTPS requests on the standard port 443.
+
+        - `Https2http`: specifies whether to turn on Enable HTTP. This field is optional and must be an integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP is turned off. The value 1 indicates that Enable HTTP is turned on. The default value is 0.
+
+        If your website does not support HTTPS, this feature meets your business requirements If this feature is enabled, all HTTPS requests are redirected to HTTP requests and forwarded to origin servers. This feature can redirect WebSockets requests to WebSocket requests. Requests are redirected over the standard port 80.
+
+        - `Http2`: specifies whether to turn on Enable HTTP/2. This field is optional. Data type: integer. Valid values: `0` and `1`. The value 0 indicates that Enable HTTP/2 is turned off. The value 1 indicates that Enable HTTP/2 is turned on. The default value is 0.
+
+        After you turn on the switch, HTTP/2 is used.
         """
         return pulumi.get(self, "https_ext")
 
@@ -553,16 +901,25 @@ class DomainResource(pulumi.CustomResource):
     @pulumi.getter(name="instanceIds")
     def instance_ids(self) -> pulumi.Output[Sequence[str]]:
         """
-        A list of instance ID that you want to associate. If this parameter is empty, only the domain name of the website is added but no instance is associated with the website.
-        > **NOTE:** There is a potential diff error because of the order of `instance_ids` values indefinite. So, from version 1.161.0, `instance_ids` type has been updated as `set` from `list`, and you can use tolist to convert it to a list.
+        InstanceIds
         """
         return pulumi.get(self, "instance_ids")
 
+    @property
+    @pulumi.getter
+    def key(self) -> pulumi.Output[Optional[str]]:
+        """
+        The globally unique ID of the certificate. The value is in the "Certificate ID-cn-hangzhou" format. For example, if the ID of the certificate is 123, the value of the CertIdentifier parameter is 123-cn-hangzhou.
+
+        > **NOTE:**   You can specify only one of this parameter and the CertId parameter.
+        """
+        return pulumi.get(self, "key")
+
     @property
     @pulumi.getter(name="ocspEnabled")
     def ocsp_enabled(self) -> pulumi.Output[Optional[bool]]:
         """
-        Specifies whether to enable the OCSP feature. Default value: `false`. Valid values:
+        Specifies whether to enable the OCSP feature. Valid values:
         """
         return pulumi.get(self, "ocsp_enabled")
 
@@ -571,7 +928,6 @@ class DomainResource(pulumi.CustomResource):
     def proxy_types(self) -> pulumi.Output[Sequence['outputs.DomainResourceProxyType']]:
         """
         Protocol type and port number information. See `proxy_types` below.
-        > **NOTE:** From version 1.206.0, `proxy_types` can be modified.
         """
         return pulumi.get(self, "proxy_types")
 
@@ -579,7 +935,7 @@ class DomainResource(pulumi.CustomResource):
     @pulumi.getter(name="realServers")
     def real_servers(self) -> pulumi.Output[Sequence[str]]:
         """
-        the IP address. This field is required and must be a string array.
+        Server address information of the source station.
         """
         return pulumi.get(self, "real_servers")
 
@@ -587,7 +943,7 @@ class DomainResource(pulumi.CustomResource):
     @pulumi.getter(name="rsType")
     def rs_type(self) -> pulumi.Output[int]:
         """
-        The address type of the origin server. Use the domain name of the origin server if you deploy proxies, such as Web Application Firewall (WAF), between the origin server and the Anti-DDoS Pro or Anti-DDoS Premium instance. If you use the domain name, you must enter the address of the proxy, such as the CNAME of WAF. Valid values:
+        The address type of the origin server. Valid values:
         """
         return pulumi.get(self, "rs_type")