pulumi-venafi 1.11.0a1743575958__py3-none-any.whl → 1.11.0a1744267226__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of pulumi-venafi might be problematic. Click here for more details.
- pulumi_venafi/__init__.py +1 -0
- pulumi_venafi/certificate.py +364 -363
- pulumi_venafi/cloud_keystore_installation.py +71 -70
- pulumi_venafi/config/__init__.py +1 -0
- pulumi_venafi/config/__init__.pyi +1 -0
- pulumi_venafi/config/vars.py +1 -0
- pulumi_venafi/get_cloud_keystore.py +14 -13
- pulumi_venafi/get_cloud_provider.py +11 -10
- pulumi_venafi/policy.py +29 -28
- pulumi_venafi/provider.py +109 -108
- pulumi_venafi/pulumi-plugin.json +1 -1
- pulumi_venafi/ssh_certificate.py +281 -280
- pulumi_venafi/ssh_config.py +29 -28
- {pulumi_venafi-1.11.0a1743575958.dist-info → pulumi_venafi-1.11.0a1744267226.dist-info}/METADATA +1 -1
- pulumi_venafi-1.11.0a1744267226.dist-info/RECORD +19 -0
- pulumi_venafi-1.11.0a1743575958.dist-info/RECORD +0 -19
- {pulumi_venafi-1.11.0a1743575958.dist-info → pulumi_venafi-1.11.0a1744267226.dist-info}/WHEEL +0 -0
- {pulumi_venafi-1.11.0a1743575958.dist-info → pulumi_venafi-1.11.0a1744267226.dist-info}/top_level.txt +0 -0
pulumi_venafi/certificate.py
CHANGED
|
@@ -2,6 +2,7 @@
|
|
|
2
2
|
# *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
4
|
|
|
5
|
+
import builtins
|
|
5
6
|
import copy
|
|
6
7
|
import warnings
|
|
7
8
|
import sys
|
|
@@ -19,63 +20,63 @@ __all__ = ['CertificateArgs', 'Certificate']
|
|
|
19
20
|
@pulumi.input_type
|
|
20
21
|
class CertificateArgs:
|
|
21
22
|
def __init__(__self__, *,
|
|
22
|
-
common_name: pulumi.Input[str],
|
|
23
|
-
algorithm: Optional[pulumi.Input[str]] = None,
|
|
24
|
-
certificate_dn: Optional[pulumi.Input[str]] = None,
|
|
25
|
-
country: Optional[pulumi.Input[str]] = None,
|
|
26
|
-
csr_origin: Optional[pulumi.Input[str]] = None,
|
|
27
|
-
csr_pem: Optional[pulumi.Input[str]] = None,
|
|
28
|
-
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
|
29
|
-
ecdsa_curve: Optional[pulumi.Input[str]] = None,
|
|
30
|
-
expiration_window: Optional[pulumi.Input[int]] = None,
|
|
31
|
-
issuer_hint: Optional[pulumi.Input[str]] = None,
|
|
32
|
-
key_password: Optional[pulumi.Input[str]] = None,
|
|
33
|
-
locality: Optional[pulumi.Input[str]] = None,
|
|
34
|
-
nickname: Optional[pulumi.Input[str]] = None,
|
|
35
|
-
organization: Optional[pulumi.Input[str]] = None,
|
|
36
|
-
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
37
|
-
pkcs12: Optional[pulumi.Input[str]] = None,
|
|
38
|
-
private_key_pem: Optional[pulumi.Input[str]] = None,
|
|
39
|
-
renew_required: Optional[pulumi.Input[bool]] = None,
|
|
40
|
-
rsa_bits: Optional[pulumi.Input[int]] = None,
|
|
41
|
-
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
42
|
-
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
43
|
-
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
44
|
-
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
45
|
-
state: Optional[pulumi.Input[str]] = None,
|
|
46
|
-
valid_days: Optional[pulumi.Input[int]] = None):
|
|
23
|
+
common_name: pulumi.Input[builtins.str],
|
|
24
|
+
algorithm: Optional[pulumi.Input[builtins.str]] = None,
|
|
25
|
+
certificate_dn: Optional[pulumi.Input[builtins.str]] = None,
|
|
26
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
|
27
|
+
csr_origin: Optional[pulumi.Input[builtins.str]] = None,
|
|
28
|
+
csr_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
29
|
+
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
|
30
|
+
ecdsa_curve: Optional[pulumi.Input[builtins.str]] = None,
|
|
31
|
+
expiration_window: Optional[pulumi.Input[builtins.int]] = None,
|
|
32
|
+
issuer_hint: Optional[pulumi.Input[builtins.str]] = None,
|
|
33
|
+
key_password: Optional[pulumi.Input[builtins.str]] = None,
|
|
34
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
|
35
|
+
nickname: Optional[pulumi.Input[builtins.str]] = None,
|
|
36
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
|
37
|
+
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
38
|
+
pkcs12: Optional[pulumi.Input[builtins.str]] = None,
|
|
39
|
+
private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
40
|
+
renew_required: Optional[pulumi.Input[builtins.bool]] = None,
|
|
41
|
+
rsa_bits: Optional[pulumi.Input[builtins.int]] = None,
|
|
42
|
+
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
43
|
+
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
44
|
+
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
45
|
+
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
46
|
+
state: Optional[pulumi.Input[builtins.str]] = None,
|
|
47
|
+
valid_days: Optional[pulumi.Input[builtins.int]] = None):
|
|
47
48
|
"""
|
|
48
49
|
The set of arguments for constructing a Certificate resource.
|
|
49
|
-
:param pulumi.Input[str] common_name: The common name of the certificate.
|
|
50
|
-
:param pulumi.Input[str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
51
|
-
:param pulumi.Input[str] country: Country of the certificate (C)
|
|
52
|
-
:param pulumi.Input[str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
50
|
+
:param pulumi.Input[builtins.str] common_name: The common name of the certificate.
|
|
51
|
+
:param pulumi.Input[builtins.str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
52
|
+
:param pulumi.Input[builtins.str] country: Country of the certificate (C)
|
|
53
|
+
:param pulumi.Input[builtins.str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
53
54
|
`local`.
|
|
54
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
55
|
-
:param pulumi.Input[str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
56
|
-
:param pulumi.Input[int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
55
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
56
|
+
:param pulumi.Input[builtins.str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
57
|
+
:param pulumi.Input[builtins.int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
57
58
|
Defaults to `168`.
|
|
58
|
-
:param pulumi.Input[str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
59
|
+
:param pulumi.Input[builtins.str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
59
60
|
Platform. Relevant values are: `DigiCert`, `Entrust`, and `Microsoft`.
|
|
60
|
-
:param pulumi.Input[str] key_password: The password used to encrypt the private key.
|
|
61
|
-
:param pulumi.Input[str] locality: Locality/City of the certificate (L)
|
|
62
|
-
:param pulumi.Input[str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
61
|
+
:param pulumi.Input[builtins.str] key_password: The password used to encrypt the private key.
|
|
62
|
+
:param pulumi.Input[builtins.str] locality: Locality/City of the certificate (L)
|
|
63
|
+
:param pulumi.Input[builtins.str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
63
64
|
in a policy. Only valid for Trust Protection Platform.
|
|
64
|
-
:param pulumi.Input[str] organization: Organization of the certificate (O)
|
|
65
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
66
|
-
:param pulumi.Input[str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
65
|
+
:param pulumi.Input[builtins.str] organization: Organization of the certificate (O)
|
|
66
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
67
|
+
:param pulumi.Input[builtins.str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
67
68
|
azure key_vault_certificate.
|
|
68
|
-
:param pulumi.Input[str] private_key_pem: The private key in PEM format.
|
|
69
|
-
:param pulumi.Input[bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
70
|
-
:param pulumi.Input[int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
69
|
+
:param pulumi.Input[builtins.str] private_key_pem: The private key in PEM format.
|
|
70
|
+
:param pulumi.Input[builtins.bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
71
|
+
:param pulumi.Input[builtins.int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
71
72
|
Defaults to `2048`.
|
|
72
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
73
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
74
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
75
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
73
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
74
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
75
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
76
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
76
77
|
the certificate.
|
|
77
|
-
:param pulumi.Input[str] state: State of the certificate (S)
|
|
78
|
-
:param pulumi.Input[int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
78
|
+
:param pulumi.Input[builtins.str] state: State of the certificate (S)
|
|
79
|
+
:param pulumi.Input[builtins.int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
79
80
|
"""
|
|
80
81
|
pulumi.set(__self__, "common_name", common_name)
|
|
81
82
|
if algorithm is not None:
|
|
@@ -129,52 +130,52 @@ class CertificateArgs:
|
|
|
129
130
|
|
|
130
131
|
@property
|
|
131
132
|
@pulumi.getter(name="commonName")
|
|
132
|
-
def common_name(self) -> pulumi.Input[str]:
|
|
133
|
+
def common_name(self) -> pulumi.Input[builtins.str]:
|
|
133
134
|
"""
|
|
134
135
|
The common name of the certificate.
|
|
135
136
|
"""
|
|
136
137
|
return pulumi.get(self, "common_name")
|
|
137
138
|
|
|
138
139
|
@common_name.setter
|
|
139
|
-
def common_name(self, value: pulumi.Input[str]):
|
|
140
|
+
def common_name(self, value: pulumi.Input[builtins.str]):
|
|
140
141
|
pulumi.set(self, "common_name", value)
|
|
141
142
|
|
|
142
143
|
@property
|
|
143
144
|
@pulumi.getter
|
|
144
|
-
def algorithm(self) -> Optional[pulumi.Input[str]]:
|
|
145
|
+
def algorithm(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
145
146
|
"""
|
|
146
147
|
Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
147
148
|
"""
|
|
148
149
|
return pulumi.get(self, "algorithm")
|
|
149
150
|
|
|
150
151
|
@algorithm.setter
|
|
151
|
-
def algorithm(self, value: Optional[pulumi.Input[str]]):
|
|
152
|
+
def algorithm(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
152
153
|
pulumi.set(self, "algorithm", value)
|
|
153
154
|
|
|
154
155
|
@property
|
|
155
156
|
@pulumi.getter(name="certificateDn")
|
|
156
|
-
def certificate_dn(self) -> Optional[pulumi.Input[str]]:
|
|
157
|
+
def certificate_dn(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
157
158
|
return pulumi.get(self, "certificate_dn")
|
|
158
159
|
|
|
159
160
|
@certificate_dn.setter
|
|
160
|
-
def certificate_dn(self, value: Optional[pulumi.Input[str]]):
|
|
161
|
+
def certificate_dn(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
161
162
|
pulumi.set(self, "certificate_dn", value)
|
|
162
163
|
|
|
163
164
|
@property
|
|
164
165
|
@pulumi.getter
|
|
165
|
-
def country(self) -> Optional[pulumi.Input[str]]:
|
|
166
|
+
def country(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
166
167
|
"""
|
|
167
168
|
Country of the certificate (C)
|
|
168
169
|
"""
|
|
169
170
|
return pulumi.get(self, "country")
|
|
170
171
|
|
|
171
172
|
@country.setter
|
|
172
|
-
def country(self, value: Optional[pulumi.Input[str]]):
|
|
173
|
+
def country(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
173
174
|
pulumi.set(self, "country", value)
|
|
174
175
|
|
|
175
176
|
@property
|
|
176
177
|
@pulumi.getter(name="csrOrigin")
|
|
177
|
-
def csr_origin(self) -> Optional[pulumi.Input[str]]:
|
|
178
|
+
def csr_origin(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
178
179
|
"""
|
|
179
180
|
Whether key-pair generation will be `local` or `service` generated. Default is
|
|
180
181
|
`local`.
|
|
@@ -182,45 +183,45 @@ class CertificateArgs:
|
|
|
182
183
|
return pulumi.get(self, "csr_origin")
|
|
183
184
|
|
|
184
185
|
@csr_origin.setter
|
|
185
|
-
def csr_origin(self, value: Optional[pulumi.Input[str]]):
|
|
186
|
+
def csr_origin(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
186
187
|
pulumi.set(self, "csr_origin", value)
|
|
187
188
|
|
|
188
189
|
@property
|
|
189
190
|
@pulumi.getter(name="csrPem")
|
|
190
|
-
def csr_pem(self) -> Optional[pulumi.Input[str]]:
|
|
191
|
+
def csr_pem(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
191
192
|
return pulumi.get(self, "csr_pem")
|
|
192
193
|
|
|
193
194
|
@csr_pem.setter
|
|
194
|
-
def csr_pem(self, value: Optional[pulumi.Input[str]]):
|
|
195
|
+
def csr_pem(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
195
196
|
pulumi.set(self, "csr_pem", value)
|
|
196
197
|
|
|
197
198
|
@property
|
|
198
199
|
@pulumi.getter(name="customFields")
|
|
199
|
-
def custom_fields(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
|
200
|
+
def custom_fields(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
|
|
200
201
|
"""
|
|
201
202
|
Collection of Custom Field name-value pairs to assign to the certificate.
|
|
202
203
|
"""
|
|
203
204
|
return pulumi.get(self, "custom_fields")
|
|
204
205
|
|
|
205
206
|
@custom_fields.setter
|
|
206
|
-
def custom_fields(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
|
207
|
+
def custom_fields(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
|
|
207
208
|
pulumi.set(self, "custom_fields", value)
|
|
208
209
|
|
|
209
210
|
@property
|
|
210
211
|
@pulumi.getter(name="ecdsaCurve")
|
|
211
|
-
def ecdsa_curve(self) -> Optional[pulumi.Input[str]]:
|
|
212
|
+
def ecdsa_curve(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
212
213
|
"""
|
|
213
214
|
ECDSA curve to use when generating a key
|
|
214
215
|
"""
|
|
215
216
|
return pulumi.get(self, "ecdsa_curve")
|
|
216
217
|
|
|
217
218
|
@ecdsa_curve.setter
|
|
218
|
-
def ecdsa_curve(self, value: Optional[pulumi.Input[str]]):
|
|
219
|
+
def ecdsa_curve(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
219
220
|
pulumi.set(self, "ecdsa_curve", value)
|
|
220
221
|
|
|
221
222
|
@property
|
|
222
223
|
@pulumi.getter(name="expirationWindow")
|
|
223
|
-
def expiration_window(self) -> Optional[pulumi.Input[int]]:
|
|
224
|
+
def expiration_window(self) -> Optional[pulumi.Input[builtins.int]]:
|
|
224
225
|
"""
|
|
225
226
|
Number of hours before certificate expiry to request a new certificate.
|
|
226
227
|
Defaults to `168`.
|
|
@@ -228,12 +229,12 @@ class CertificateArgs:
|
|
|
228
229
|
return pulumi.get(self, "expiration_window")
|
|
229
230
|
|
|
230
231
|
@expiration_window.setter
|
|
231
|
-
def expiration_window(self, value: Optional[pulumi.Input[int]]):
|
|
232
|
+
def expiration_window(self, value: Optional[pulumi.Input[builtins.int]]):
|
|
232
233
|
pulumi.set(self, "expiration_window", value)
|
|
233
234
|
|
|
234
235
|
@property
|
|
235
236
|
@pulumi.getter(name="issuerHint")
|
|
236
|
-
def issuer_hint(self) -> Optional[pulumi.Input[str]]:
|
|
237
|
+
def issuer_hint(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
237
238
|
"""
|
|
238
239
|
Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
239
240
|
Platform. Relevant values are: `DigiCert`, `Entrust`, and `Microsoft`.
|
|
@@ -241,36 +242,36 @@ class CertificateArgs:
|
|
|
241
242
|
return pulumi.get(self, "issuer_hint")
|
|
242
243
|
|
|
243
244
|
@issuer_hint.setter
|
|
244
|
-
def issuer_hint(self, value: Optional[pulumi.Input[str]]):
|
|
245
|
+
def issuer_hint(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
245
246
|
pulumi.set(self, "issuer_hint", value)
|
|
246
247
|
|
|
247
248
|
@property
|
|
248
249
|
@pulumi.getter(name="keyPassword")
|
|
249
|
-
def key_password(self) -> Optional[pulumi.Input[str]]:
|
|
250
|
+
def key_password(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
250
251
|
"""
|
|
251
252
|
The password used to encrypt the private key.
|
|
252
253
|
"""
|
|
253
254
|
return pulumi.get(self, "key_password")
|
|
254
255
|
|
|
255
256
|
@key_password.setter
|
|
256
|
-
def key_password(self, value: Optional[pulumi.Input[str]]):
|
|
257
|
+
def key_password(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
257
258
|
pulumi.set(self, "key_password", value)
|
|
258
259
|
|
|
259
260
|
@property
|
|
260
261
|
@pulumi.getter
|
|
261
|
-
def locality(self) -> Optional[pulumi.Input[str]]:
|
|
262
|
+
def locality(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
262
263
|
"""
|
|
263
264
|
Locality/City of the certificate (L)
|
|
264
265
|
"""
|
|
265
266
|
return pulumi.get(self, "locality")
|
|
266
267
|
|
|
267
268
|
@locality.setter
|
|
268
|
-
def locality(self, value: Optional[pulumi.Input[str]]):
|
|
269
|
+
def locality(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
269
270
|
pulumi.set(self, "locality", value)
|
|
270
271
|
|
|
271
272
|
@property
|
|
272
273
|
@pulumi.getter
|
|
273
|
-
def nickname(self) -> Optional[pulumi.Input[str]]:
|
|
274
|
+
def nickname(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
274
275
|
"""
|
|
275
276
|
Use to specify a name for the new certificate object that will be created and placed
|
|
276
277
|
in a policy. Only valid for Trust Protection Platform.
|
|
@@ -278,36 +279,36 @@ class CertificateArgs:
|
|
|
278
279
|
return pulumi.get(self, "nickname")
|
|
279
280
|
|
|
280
281
|
@nickname.setter
|
|
281
|
-
def nickname(self, value: Optional[pulumi.Input[str]]):
|
|
282
|
+
def nickname(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
282
283
|
pulumi.set(self, "nickname", value)
|
|
283
284
|
|
|
284
285
|
@property
|
|
285
286
|
@pulumi.getter
|
|
286
|
-
def organization(self) -> Optional[pulumi.Input[str]]:
|
|
287
|
+
def organization(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
287
288
|
"""
|
|
288
289
|
Organization of the certificate (O)
|
|
289
290
|
"""
|
|
290
291
|
return pulumi.get(self, "organization")
|
|
291
292
|
|
|
292
293
|
@organization.setter
|
|
293
|
-
def organization(self, value: Optional[pulumi.Input[str]]):
|
|
294
|
+
def organization(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
294
295
|
pulumi.set(self, "organization", value)
|
|
295
296
|
|
|
296
297
|
@property
|
|
297
298
|
@pulumi.getter(name="organizationalUnits")
|
|
298
|
-
def organizational_units(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
299
|
+
def organizational_units(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
299
300
|
"""
|
|
300
301
|
List of Organizational Units of the certificate (OU)
|
|
301
302
|
"""
|
|
302
303
|
return pulumi.get(self, "organizational_units")
|
|
303
304
|
|
|
304
305
|
@organizational_units.setter
|
|
305
|
-
def organizational_units(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
306
|
+
def organizational_units(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
306
307
|
pulumi.set(self, "organizational_units", value)
|
|
307
308
|
|
|
308
309
|
@property
|
|
309
310
|
@pulumi.getter
|
|
310
|
-
def pkcs12(self) -> Optional[pulumi.Input[str]]:
|
|
311
|
+
def pkcs12(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
311
312
|
"""
|
|
312
313
|
A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
313
314
|
azure key_vault_certificate.
|
|
@@ -315,36 +316,36 @@ class CertificateArgs:
|
|
|
315
316
|
return pulumi.get(self, "pkcs12")
|
|
316
317
|
|
|
317
318
|
@pkcs12.setter
|
|
318
|
-
def pkcs12(self, value: Optional[pulumi.Input[str]]):
|
|
319
|
+
def pkcs12(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
319
320
|
pulumi.set(self, "pkcs12", value)
|
|
320
321
|
|
|
321
322
|
@property
|
|
322
323
|
@pulumi.getter(name="privateKeyPem")
|
|
323
|
-
def private_key_pem(self) -> Optional[pulumi.Input[str]]:
|
|
324
|
+
def private_key_pem(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
324
325
|
"""
|
|
325
326
|
The private key in PEM format.
|
|
326
327
|
"""
|
|
327
328
|
return pulumi.get(self, "private_key_pem")
|
|
328
329
|
|
|
329
330
|
@private_key_pem.setter
|
|
330
|
-
def private_key_pem(self, value: Optional[pulumi.Input[str]]):
|
|
331
|
+
def private_key_pem(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
331
332
|
pulumi.set(self, "private_key_pem", value)
|
|
332
333
|
|
|
333
334
|
@property
|
|
334
335
|
@pulumi.getter(name="renewRequired")
|
|
335
|
-
def renew_required(self) -> Optional[pulumi.Input[bool]]:
|
|
336
|
+
def renew_required(self) -> Optional[pulumi.Input[builtins.bool]]:
|
|
336
337
|
"""
|
|
337
338
|
Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
338
339
|
"""
|
|
339
340
|
return pulumi.get(self, "renew_required")
|
|
340
341
|
|
|
341
342
|
@renew_required.setter
|
|
342
|
-
def renew_required(self, value: Optional[pulumi.Input[bool]]):
|
|
343
|
+
def renew_required(self, value: Optional[pulumi.Input[builtins.bool]]):
|
|
343
344
|
pulumi.set(self, "renew_required", value)
|
|
344
345
|
|
|
345
346
|
@property
|
|
346
347
|
@pulumi.getter(name="rsaBits")
|
|
347
|
-
def rsa_bits(self) -> Optional[pulumi.Input[int]]:
|
|
348
|
+
def rsa_bits(self) -> Optional[pulumi.Input[builtins.int]]:
|
|
348
349
|
"""
|
|
349
350
|
Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
350
351
|
Defaults to `2048`.
|
|
@@ -352,48 +353,48 @@ class CertificateArgs:
|
|
|
352
353
|
return pulumi.get(self, "rsa_bits")
|
|
353
354
|
|
|
354
355
|
@rsa_bits.setter
|
|
355
|
-
def rsa_bits(self, value: Optional[pulumi.Input[int]]):
|
|
356
|
+
def rsa_bits(self, value: Optional[pulumi.Input[builtins.int]]):
|
|
356
357
|
pulumi.set(self, "rsa_bits", value)
|
|
357
358
|
|
|
358
359
|
@property
|
|
359
360
|
@pulumi.getter(name="sanDns")
|
|
360
|
-
def san_dns(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
361
|
+
def san_dns(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
361
362
|
"""
|
|
362
363
|
List of DNS names to use as alternative subjects of the certificate.
|
|
363
364
|
"""
|
|
364
365
|
return pulumi.get(self, "san_dns")
|
|
365
366
|
|
|
366
367
|
@san_dns.setter
|
|
367
|
-
def san_dns(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
368
|
+
def san_dns(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
368
369
|
pulumi.set(self, "san_dns", value)
|
|
369
370
|
|
|
370
371
|
@property
|
|
371
372
|
@pulumi.getter(name="sanEmails")
|
|
372
|
-
def san_emails(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
373
|
+
def san_emails(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
373
374
|
"""
|
|
374
375
|
List of email addresses to use as alternative subjects of the certificate.
|
|
375
376
|
"""
|
|
376
377
|
return pulumi.get(self, "san_emails")
|
|
377
378
|
|
|
378
379
|
@san_emails.setter
|
|
379
|
-
def san_emails(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
380
|
+
def san_emails(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
380
381
|
pulumi.set(self, "san_emails", value)
|
|
381
382
|
|
|
382
383
|
@property
|
|
383
384
|
@pulumi.getter(name="sanIps")
|
|
384
|
-
def san_ips(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
385
|
+
def san_ips(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
385
386
|
"""
|
|
386
387
|
List of IP addresses to use as alternative subjects of the certificate.
|
|
387
388
|
"""
|
|
388
389
|
return pulumi.get(self, "san_ips")
|
|
389
390
|
|
|
390
391
|
@san_ips.setter
|
|
391
|
-
def san_ips(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
392
|
+
def san_ips(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
392
393
|
pulumi.set(self, "san_ips", value)
|
|
393
394
|
|
|
394
395
|
@property
|
|
395
396
|
@pulumi.getter(name="sanUris")
|
|
396
|
-
def san_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
397
|
+
def san_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
397
398
|
"""
|
|
398
399
|
List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
399
400
|
the certificate.
|
|
@@ -401,100 +402,100 @@ class CertificateArgs:
|
|
|
401
402
|
return pulumi.get(self, "san_uris")
|
|
402
403
|
|
|
403
404
|
@san_uris.setter
|
|
404
|
-
def san_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
405
|
+
def san_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
405
406
|
pulumi.set(self, "san_uris", value)
|
|
406
407
|
|
|
407
408
|
@property
|
|
408
409
|
@pulumi.getter
|
|
409
|
-
def state(self) -> Optional[pulumi.Input[str]]:
|
|
410
|
+
def state(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
410
411
|
"""
|
|
411
412
|
State of the certificate (S)
|
|
412
413
|
"""
|
|
413
414
|
return pulumi.get(self, "state")
|
|
414
415
|
|
|
415
416
|
@state.setter
|
|
416
|
-
def state(self, value: Optional[pulumi.Input[str]]):
|
|
417
|
+
def state(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
417
418
|
pulumi.set(self, "state", value)
|
|
418
419
|
|
|
419
420
|
@property
|
|
420
421
|
@pulumi.getter(name="validDays")
|
|
421
|
-
def valid_days(self) -> Optional[pulumi.Input[int]]:
|
|
422
|
+
def valid_days(self) -> Optional[pulumi.Input[builtins.int]]:
|
|
422
423
|
"""
|
|
423
424
|
Desired number of days for which the new certificate will be valid.
|
|
424
425
|
"""
|
|
425
426
|
return pulumi.get(self, "valid_days")
|
|
426
427
|
|
|
427
428
|
@valid_days.setter
|
|
428
|
-
def valid_days(self, value: Optional[pulumi.Input[int]]):
|
|
429
|
+
def valid_days(self, value: Optional[pulumi.Input[builtins.int]]):
|
|
429
430
|
pulumi.set(self, "valid_days", value)
|
|
430
431
|
|
|
431
432
|
|
|
432
433
|
@pulumi.input_type
|
|
433
434
|
class _CertificateState:
|
|
434
435
|
def __init__(__self__, *,
|
|
435
|
-
algorithm: Optional[pulumi.Input[str]] = None,
|
|
436
|
-
certificate: Optional[pulumi.Input[str]] = None,
|
|
437
|
-
certificate_dn: Optional[pulumi.Input[str]] = None,
|
|
438
|
-
certificate_id: Optional[pulumi.Input[str]] = None,
|
|
439
|
-
chain: Optional[pulumi.Input[str]] = None,
|
|
440
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
|
441
|
-
country: Optional[pulumi.Input[str]] = None,
|
|
442
|
-
csr_origin: Optional[pulumi.Input[str]] = None,
|
|
443
|
-
csr_pem: Optional[pulumi.Input[str]] = None,
|
|
444
|
-
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
|
445
|
-
ecdsa_curve: Optional[pulumi.Input[str]] = None,
|
|
446
|
-
expiration_window: Optional[pulumi.Input[int]] = None,
|
|
447
|
-
issuer_hint: Optional[pulumi.Input[str]] = None,
|
|
448
|
-
key_password: Optional[pulumi.Input[str]] = None,
|
|
449
|
-
locality: Optional[pulumi.Input[str]] = None,
|
|
450
|
-
nickname: Optional[pulumi.Input[str]] = None,
|
|
451
|
-
organization: Optional[pulumi.Input[str]] = None,
|
|
452
|
-
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
453
|
-
pkcs12: Optional[pulumi.Input[str]] = None,
|
|
454
|
-
private_key_pem: Optional[pulumi.Input[str]] = None,
|
|
455
|
-
renew_required: Optional[pulumi.Input[bool]] = None,
|
|
456
|
-
rsa_bits: Optional[pulumi.Input[int]] = None,
|
|
457
|
-
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
458
|
-
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
459
|
-
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
460
|
-
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
461
|
-
state: Optional[pulumi.Input[str]] = None,
|
|
462
|
-
valid_days: Optional[pulumi.Input[int]] = None):
|
|
436
|
+
algorithm: Optional[pulumi.Input[builtins.str]] = None,
|
|
437
|
+
certificate: Optional[pulumi.Input[builtins.str]] = None,
|
|
438
|
+
certificate_dn: Optional[pulumi.Input[builtins.str]] = None,
|
|
439
|
+
certificate_id: Optional[pulumi.Input[builtins.str]] = None,
|
|
440
|
+
chain: Optional[pulumi.Input[builtins.str]] = None,
|
|
441
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
|
442
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
|
443
|
+
csr_origin: Optional[pulumi.Input[builtins.str]] = None,
|
|
444
|
+
csr_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
445
|
+
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
|
446
|
+
ecdsa_curve: Optional[pulumi.Input[builtins.str]] = None,
|
|
447
|
+
expiration_window: Optional[pulumi.Input[builtins.int]] = None,
|
|
448
|
+
issuer_hint: Optional[pulumi.Input[builtins.str]] = None,
|
|
449
|
+
key_password: Optional[pulumi.Input[builtins.str]] = None,
|
|
450
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
|
451
|
+
nickname: Optional[pulumi.Input[builtins.str]] = None,
|
|
452
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
|
453
|
+
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
454
|
+
pkcs12: Optional[pulumi.Input[builtins.str]] = None,
|
|
455
|
+
private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
456
|
+
renew_required: Optional[pulumi.Input[builtins.bool]] = None,
|
|
457
|
+
rsa_bits: Optional[pulumi.Input[builtins.int]] = None,
|
|
458
|
+
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
459
|
+
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
460
|
+
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
461
|
+
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
462
|
+
state: Optional[pulumi.Input[builtins.str]] = None,
|
|
463
|
+
valid_days: Optional[pulumi.Input[builtins.int]] = None):
|
|
463
464
|
"""
|
|
464
465
|
Input properties used for looking up and filtering Certificate resources.
|
|
465
|
-
:param pulumi.Input[str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
466
|
-
:param pulumi.Input[str] certificate: The X509 certificate in PEM format.
|
|
467
|
-
:param pulumi.Input[str] certificate_id: ID of the issued certificate
|
|
468
|
-
:param pulumi.Input[str] chain: The trust chain of X509 certificate authority certificates in PEM format concatenated together.
|
|
469
|
-
:param pulumi.Input[str] common_name: The common name of the certificate.
|
|
470
|
-
:param pulumi.Input[str] country: Country of the certificate (C)
|
|
471
|
-
:param pulumi.Input[str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
466
|
+
:param pulumi.Input[builtins.str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
467
|
+
:param pulumi.Input[builtins.str] certificate: The X509 certificate in PEM format.
|
|
468
|
+
:param pulumi.Input[builtins.str] certificate_id: ID of the issued certificate
|
|
469
|
+
:param pulumi.Input[builtins.str] chain: The trust chain of X509 certificate authority certificates in PEM format concatenated together.
|
|
470
|
+
:param pulumi.Input[builtins.str] common_name: The common name of the certificate.
|
|
471
|
+
:param pulumi.Input[builtins.str] country: Country of the certificate (C)
|
|
472
|
+
:param pulumi.Input[builtins.str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
472
473
|
`local`.
|
|
473
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
474
|
-
:param pulumi.Input[str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
475
|
-
:param pulumi.Input[int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
474
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
475
|
+
:param pulumi.Input[builtins.str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
476
|
+
:param pulumi.Input[builtins.int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
476
477
|
Defaults to `168`.
|
|
477
|
-
:param pulumi.Input[str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
478
|
+
:param pulumi.Input[builtins.str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
478
479
|
Platform. Relevant values are: `DigiCert`, `Entrust`, and `Microsoft`.
|
|
479
|
-
:param pulumi.Input[str] key_password: The password used to encrypt the private key.
|
|
480
|
-
:param pulumi.Input[str] locality: Locality/City of the certificate (L)
|
|
481
|
-
:param pulumi.Input[str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
480
|
+
:param pulumi.Input[builtins.str] key_password: The password used to encrypt the private key.
|
|
481
|
+
:param pulumi.Input[builtins.str] locality: Locality/City of the certificate (L)
|
|
482
|
+
:param pulumi.Input[builtins.str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
482
483
|
in a policy. Only valid for Trust Protection Platform.
|
|
483
|
-
:param pulumi.Input[str] organization: Organization of the certificate (O)
|
|
484
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
485
|
-
:param pulumi.Input[str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
484
|
+
:param pulumi.Input[builtins.str] organization: Organization of the certificate (O)
|
|
485
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
486
|
+
:param pulumi.Input[builtins.str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
486
487
|
azure key_vault_certificate.
|
|
487
|
-
:param pulumi.Input[str] private_key_pem: The private key in PEM format.
|
|
488
|
-
:param pulumi.Input[bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
489
|
-
:param pulumi.Input[int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
488
|
+
:param pulumi.Input[builtins.str] private_key_pem: The private key in PEM format.
|
|
489
|
+
:param pulumi.Input[builtins.bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
490
|
+
:param pulumi.Input[builtins.int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
490
491
|
Defaults to `2048`.
|
|
491
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
492
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
493
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
494
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
492
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
493
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
494
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
495
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
495
496
|
the certificate.
|
|
496
|
-
:param pulumi.Input[str] state: State of the certificate (S)
|
|
497
|
-
:param pulumi.Input[int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
497
|
+
:param pulumi.Input[builtins.str] state: State of the certificate (S)
|
|
498
|
+
:param pulumi.Input[builtins.int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
498
499
|
"""
|
|
499
500
|
if algorithm is not None:
|
|
500
501
|
pulumi.set(__self__, "algorithm", algorithm)
|
|
@@ -555,88 +556,88 @@ class _CertificateState:
|
|
|
555
556
|
|
|
556
557
|
@property
|
|
557
558
|
@pulumi.getter
|
|
558
|
-
def algorithm(self) -> Optional[pulumi.Input[str]]:
|
|
559
|
+
def algorithm(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
559
560
|
"""
|
|
560
561
|
Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
561
562
|
"""
|
|
562
563
|
return pulumi.get(self, "algorithm")
|
|
563
564
|
|
|
564
565
|
@algorithm.setter
|
|
565
|
-
def algorithm(self, value: Optional[pulumi.Input[str]]):
|
|
566
|
+
def algorithm(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
566
567
|
pulumi.set(self, "algorithm", value)
|
|
567
568
|
|
|
568
569
|
@property
|
|
569
570
|
@pulumi.getter
|
|
570
|
-
def certificate(self) -> Optional[pulumi.Input[str]]:
|
|
571
|
+
def certificate(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
571
572
|
"""
|
|
572
573
|
The X509 certificate in PEM format.
|
|
573
574
|
"""
|
|
574
575
|
return pulumi.get(self, "certificate")
|
|
575
576
|
|
|
576
577
|
@certificate.setter
|
|
577
|
-
def certificate(self, value: Optional[pulumi.Input[str]]):
|
|
578
|
+
def certificate(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
578
579
|
pulumi.set(self, "certificate", value)
|
|
579
580
|
|
|
580
581
|
@property
|
|
581
582
|
@pulumi.getter(name="certificateDn")
|
|
582
|
-
def certificate_dn(self) -> Optional[pulumi.Input[str]]:
|
|
583
|
+
def certificate_dn(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
583
584
|
return pulumi.get(self, "certificate_dn")
|
|
584
585
|
|
|
585
586
|
@certificate_dn.setter
|
|
586
|
-
def certificate_dn(self, value: Optional[pulumi.Input[str]]):
|
|
587
|
+
def certificate_dn(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
587
588
|
pulumi.set(self, "certificate_dn", value)
|
|
588
589
|
|
|
589
590
|
@property
|
|
590
591
|
@pulumi.getter(name="certificateId")
|
|
591
|
-
def certificate_id(self) -> Optional[pulumi.Input[str]]:
|
|
592
|
+
def certificate_id(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
592
593
|
"""
|
|
593
594
|
ID of the issued certificate
|
|
594
595
|
"""
|
|
595
596
|
return pulumi.get(self, "certificate_id")
|
|
596
597
|
|
|
597
598
|
@certificate_id.setter
|
|
598
|
-
def certificate_id(self, value: Optional[pulumi.Input[str]]):
|
|
599
|
+
def certificate_id(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
599
600
|
pulumi.set(self, "certificate_id", value)
|
|
600
601
|
|
|
601
602
|
@property
|
|
602
603
|
@pulumi.getter
|
|
603
|
-
def chain(self) -> Optional[pulumi.Input[str]]:
|
|
604
|
+
def chain(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
604
605
|
"""
|
|
605
606
|
The trust chain of X509 certificate authority certificates in PEM format concatenated together.
|
|
606
607
|
"""
|
|
607
608
|
return pulumi.get(self, "chain")
|
|
608
609
|
|
|
609
610
|
@chain.setter
|
|
610
|
-
def chain(self, value: Optional[pulumi.Input[str]]):
|
|
611
|
+
def chain(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
611
612
|
pulumi.set(self, "chain", value)
|
|
612
613
|
|
|
613
614
|
@property
|
|
614
615
|
@pulumi.getter(name="commonName")
|
|
615
|
-
def common_name(self) -> Optional[pulumi.Input[str]]:
|
|
616
|
+
def common_name(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
616
617
|
"""
|
|
617
618
|
The common name of the certificate.
|
|
618
619
|
"""
|
|
619
620
|
return pulumi.get(self, "common_name")
|
|
620
621
|
|
|
621
622
|
@common_name.setter
|
|
622
|
-
def common_name(self, value: Optional[pulumi.Input[str]]):
|
|
623
|
+
def common_name(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
623
624
|
pulumi.set(self, "common_name", value)
|
|
624
625
|
|
|
625
626
|
@property
|
|
626
627
|
@pulumi.getter
|
|
627
|
-
def country(self) -> Optional[pulumi.Input[str]]:
|
|
628
|
+
def country(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
628
629
|
"""
|
|
629
630
|
Country of the certificate (C)
|
|
630
631
|
"""
|
|
631
632
|
return pulumi.get(self, "country")
|
|
632
633
|
|
|
633
634
|
@country.setter
|
|
634
|
-
def country(self, value: Optional[pulumi.Input[str]]):
|
|
635
|
+
def country(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
635
636
|
pulumi.set(self, "country", value)
|
|
636
637
|
|
|
637
638
|
@property
|
|
638
639
|
@pulumi.getter(name="csrOrigin")
|
|
639
|
-
def csr_origin(self) -> Optional[pulumi.Input[str]]:
|
|
640
|
+
def csr_origin(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
640
641
|
"""
|
|
641
642
|
Whether key-pair generation will be `local` or `service` generated. Default is
|
|
642
643
|
`local`.
|
|
@@ -644,45 +645,45 @@ class _CertificateState:
|
|
|
644
645
|
return pulumi.get(self, "csr_origin")
|
|
645
646
|
|
|
646
647
|
@csr_origin.setter
|
|
647
|
-
def csr_origin(self, value: Optional[pulumi.Input[str]]):
|
|
648
|
+
def csr_origin(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
648
649
|
pulumi.set(self, "csr_origin", value)
|
|
649
650
|
|
|
650
651
|
@property
|
|
651
652
|
@pulumi.getter(name="csrPem")
|
|
652
|
-
def csr_pem(self) -> Optional[pulumi.Input[str]]:
|
|
653
|
+
def csr_pem(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
653
654
|
return pulumi.get(self, "csr_pem")
|
|
654
655
|
|
|
655
656
|
@csr_pem.setter
|
|
656
|
-
def csr_pem(self, value: Optional[pulumi.Input[str]]):
|
|
657
|
+
def csr_pem(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
657
658
|
pulumi.set(self, "csr_pem", value)
|
|
658
659
|
|
|
659
660
|
@property
|
|
660
661
|
@pulumi.getter(name="customFields")
|
|
661
|
-
def custom_fields(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]:
|
|
662
|
+
def custom_fields(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
|
|
662
663
|
"""
|
|
663
664
|
Collection of Custom Field name-value pairs to assign to the certificate.
|
|
664
665
|
"""
|
|
665
666
|
return pulumi.get(self, "custom_fields")
|
|
666
667
|
|
|
667
668
|
@custom_fields.setter
|
|
668
|
-
def custom_fields(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]]):
|
|
669
|
+
def custom_fields(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
|
|
669
670
|
pulumi.set(self, "custom_fields", value)
|
|
670
671
|
|
|
671
672
|
@property
|
|
672
673
|
@pulumi.getter(name="ecdsaCurve")
|
|
673
|
-
def ecdsa_curve(self) -> Optional[pulumi.Input[str]]:
|
|
674
|
+
def ecdsa_curve(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
674
675
|
"""
|
|
675
676
|
ECDSA curve to use when generating a key
|
|
676
677
|
"""
|
|
677
678
|
return pulumi.get(self, "ecdsa_curve")
|
|
678
679
|
|
|
679
680
|
@ecdsa_curve.setter
|
|
680
|
-
def ecdsa_curve(self, value: Optional[pulumi.Input[str]]):
|
|
681
|
+
def ecdsa_curve(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
681
682
|
pulumi.set(self, "ecdsa_curve", value)
|
|
682
683
|
|
|
683
684
|
@property
|
|
684
685
|
@pulumi.getter(name="expirationWindow")
|
|
685
|
-
def expiration_window(self) -> Optional[pulumi.Input[int]]:
|
|
686
|
+
def expiration_window(self) -> Optional[pulumi.Input[builtins.int]]:
|
|
686
687
|
"""
|
|
687
688
|
Number of hours before certificate expiry to request a new certificate.
|
|
688
689
|
Defaults to `168`.
|
|
@@ -690,12 +691,12 @@ class _CertificateState:
|
|
|
690
691
|
return pulumi.get(self, "expiration_window")
|
|
691
692
|
|
|
692
693
|
@expiration_window.setter
|
|
693
|
-
def expiration_window(self, value: Optional[pulumi.Input[int]]):
|
|
694
|
+
def expiration_window(self, value: Optional[pulumi.Input[builtins.int]]):
|
|
694
695
|
pulumi.set(self, "expiration_window", value)
|
|
695
696
|
|
|
696
697
|
@property
|
|
697
698
|
@pulumi.getter(name="issuerHint")
|
|
698
|
-
def issuer_hint(self) -> Optional[pulumi.Input[str]]:
|
|
699
|
+
def issuer_hint(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
699
700
|
"""
|
|
700
701
|
Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
701
702
|
Platform. Relevant values are: `DigiCert`, `Entrust`, and `Microsoft`.
|
|
@@ -703,36 +704,36 @@ class _CertificateState:
|
|
|
703
704
|
return pulumi.get(self, "issuer_hint")
|
|
704
705
|
|
|
705
706
|
@issuer_hint.setter
|
|
706
|
-
def issuer_hint(self, value: Optional[pulumi.Input[str]]):
|
|
707
|
+
def issuer_hint(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
707
708
|
pulumi.set(self, "issuer_hint", value)
|
|
708
709
|
|
|
709
710
|
@property
|
|
710
711
|
@pulumi.getter(name="keyPassword")
|
|
711
|
-
def key_password(self) -> Optional[pulumi.Input[str]]:
|
|
712
|
+
def key_password(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
712
713
|
"""
|
|
713
714
|
The password used to encrypt the private key.
|
|
714
715
|
"""
|
|
715
716
|
return pulumi.get(self, "key_password")
|
|
716
717
|
|
|
717
718
|
@key_password.setter
|
|
718
|
-
def key_password(self, value: Optional[pulumi.Input[str]]):
|
|
719
|
+
def key_password(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
719
720
|
pulumi.set(self, "key_password", value)
|
|
720
721
|
|
|
721
722
|
@property
|
|
722
723
|
@pulumi.getter
|
|
723
|
-
def locality(self) -> Optional[pulumi.Input[str]]:
|
|
724
|
+
def locality(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
724
725
|
"""
|
|
725
726
|
Locality/City of the certificate (L)
|
|
726
727
|
"""
|
|
727
728
|
return pulumi.get(self, "locality")
|
|
728
729
|
|
|
729
730
|
@locality.setter
|
|
730
|
-
def locality(self, value: Optional[pulumi.Input[str]]):
|
|
731
|
+
def locality(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
731
732
|
pulumi.set(self, "locality", value)
|
|
732
733
|
|
|
733
734
|
@property
|
|
734
735
|
@pulumi.getter
|
|
735
|
-
def nickname(self) -> Optional[pulumi.Input[str]]:
|
|
736
|
+
def nickname(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
736
737
|
"""
|
|
737
738
|
Use to specify a name for the new certificate object that will be created and placed
|
|
738
739
|
in a policy. Only valid for Trust Protection Platform.
|
|
@@ -740,36 +741,36 @@ class _CertificateState:
|
|
|
740
741
|
return pulumi.get(self, "nickname")
|
|
741
742
|
|
|
742
743
|
@nickname.setter
|
|
743
|
-
def nickname(self, value: Optional[pulumi.Input[str]]):
|
|
744
|
+
def nickname(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
744
745
|
pulumi.set(self, "nickname", value)
|
|
745
746
|
|
|
746
747
|
@property
|
|
747
748
|
@pulumi.getter
|
|
748
|
-
def organization(self) -> Optional[pulumi.Input[str]]:
|
|
749
|
+
def organization(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
749
750
|
"""
|
|
750
751
|
Organization of the certificate (O)
|
|
751
752
|
"""
|
|
752
753
|
return pulumi.get(self, "organization")
|
|
753
754
|
|
|
754
755
|
@organization.setter
|
|
755
|
-
def organization(self, value: Optional[pulumi.Input[str]]):
|
|
756
|
+
def organization(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
756
757
|
pulumi.set(self, "organization", value)
|
|
757
758
|
|
|
758
759
|
@property
|
|
759
760
|
@pulumi.getter(name="organizationalUnits")
|
|
760
|
-
def organizational_units(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
761
|
+
def organizational_units(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
761
762
|
"""
|
|
762
763
|
List of Organizational Units of the certificate (OU)
|
|
763
764
|
"""
|
|
764
765
|
return pulumi.get(self, "organizational_units")
|
|
765
766
|
|
|
766
767
|
@organizational_units.setter
|
|
767
|
-
def organizational_units(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
768
|
+
def organizational_units(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
768
769
|
pulumi.set(self, "organizational_units", value)
|
|
769
770
|
|
|
770
771
|
@property
|
|
771
772
|
@pulumi.getter
|
|
772
|
-
def pkcs12(self) -> Optional[pulumi.Input[str]]:
|
|
773
|
+
def pkcs12(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
773
774
|
"""
|
|
774
775
|
A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
775
776
|
azure key_vault_certificate.
|
|
@@ -777,36 +778,36 @@ class _CertificateState:
|
|
|
777
778
|
return pulumi.get(self, "pkcs12")
|
|
778
779
|
|
|
779
780
|
@pkcs12.setter
|
|
780
|
-
def pkcs12(self, value: Optional[pulumi.Input[str]]):
|
|
781
|
+
def pkcs12(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
781
782
|
pulumi.set(self, "pkcs12", value)
|
|
782
783
|
|
|
783
784
|
@property
|
|
784
785
|
@pulumi.getter(name="privateKeyPem")
|
|
785
|
-
def private_key_pem(self) -> Optional[pulumi.Input[str]]:
|
|
786
|
+
def private_key_pem(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
786
787
|
"""
|
|
787
788
|
The private key in PEM format.
|
|
788
789
|
"""
|
|
789
790
|
return pulumi.get(self, "private_key_pem")
|
|
790
791
|
|
|
791
792
|
@private_key_pem.setter
|
|
792
|
-
def private_key_pem(self, value: Optional[pulumi.Input[str]]):
|
|
793
|
+
def private_key_pem(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
793
794
|
pulumi.set(self, "private_key_pem", value)
|
|
794
795
|
|
|
795
796
|
@property
|
|
796
797
|
@pulumi.getter(name="renewRequired")
|
|
797
|
-
def renew_required(self) -> Optional[pulumi.Input[bool]]:
|
|
798
|
+
def renew_required(self) -> Optional[pulumi.Input[builtins.bool]]:
|
|
798
799
|
"""
|
|
799
800
|
Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
800
801
|
"""
|
|
801
802
|
return pulumi.get(self, "renew_required")
|
|
802
803
|
|
|
803
804
|
@renew_required.setter
|
|
804
|
-
def renew_required(self, value: Optional[pulumi.Input[bool]]):
|
|
805
|
+
def renew_required(self, value: Optional[pulumi.Input[builtins.bool]]):
|
|
805
806
|
pulumi.set(self, "renew_required", value)
|
|
806
807
|
|
|
807
808
|
@property
|
|
808
809
|
@pulumi.getter(name="rsaBits")
|
|
809
|
-
def rsa_bits(self) -> Optional[pulumi.Input[int]]:
|
|
810
|
+
def rsa_bits(self) -> Optional[pulumi.Input[builtins.int]]:
|
|
810
811
|
"""
|
|
811
812
|
Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
812
813
|
Defaults to `2048`.
|
|
@@ -814,48 +815,48 @@ class _CertificateState:
|
|
|
814
815
|
return pulumi.get(self, "rsa_bits")
|
|
815
816
|
|
|
816
817
|
@rsa_bits.setter
|
|
817
|
-
def rsa_bits(self, value: Optional[pulumi.Input[int]]):
|
|
818
|
+
def rsa_bits(self, value: Optional[pulumi.Input[builtins.int]]):
|
|
818
819
|
pulumi.set(self, "rsa_bits", value)
|
|
819
820
|
|
|
820
821
|
@property
|
|
821
822
|
@pulumi.getter(name="sanDns")
|
|
822
|
-
def san_dns(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
823
|
+
def san_dns(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
823
824
|
"""
|
|
824
825
|
List of DNS names to use as alternative subjects of the certificate.
|
|
825
826
|
"""
|
|
826
827
|
return pulumi.get(self, "san_dns")
|
|
827
828
|
|
|
828
829
|
@san_dns.setter
|
|
829
|
-
def san_dns(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
830
|
+
def san_dns(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
830
831
|
pulumi.set(self, "san_dns", value)
|
|
831
832
|
|
|
832
833
|
@property
|
|
833
834
|
@pulumi.getter(name="sanEmails")
|
|
834
|
-
def san_emails(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
835
|
+
def san_emails(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
835
836
|
"""
|
|
836
837
|
List of email addresses to use as alternative subjects of the certificate.
|
|
837
838
|
"""
|
|
838
839
|
return pulumi.get(self, "san_emails")
|
|
839
840
|
|
|
840
841
|
@san_emails.setter
|
|
841
|
-
def san_emails(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
842
|
+
def san_emails(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
842
843
|
pulumi.set(self, "san_emails", value)
|
|
843
844
|
|
|
844
845
|
@property
|
|
845
846
|
@pulumi.getter(name="sanIps")
|
|
846
|
-
def san_ips(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
847
|
+
def san_ips(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
847
848
|
"""
|
|
848
849
|
List of IP addresses to use as alternative subjects of the certificate.
|
|
849
850
|
"""
|
|
850
851
|
return pulumi.get(self, "san_ips")
|
|
851
852
|
|
|
852
853
|
@san_ips.setter
|
|
853
|
-
def san_ips(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
854
|
+
def san_ips(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
854
855
|
pulumi.set(self, "san_ips", value)
|
|
855
856
|
|
|
856
857
|
@property
|
|
857
858
|
@pulumi.getter(name="sanUris")
|
|
858
|
-
def san_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
|
|
859
|
+
def san_uris(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
|
|
859
860
|
"""
|
|
860
861
|
List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
861
862
|
the certificate.
|
|
@@ -863,31 +864,31 @@ class _CertificateState:
|
|
|
863
864
|
return pulumi.get(self, "san_uris")
|
|
864
865
|
|
|
865
866
|
@san_uris.setter
|
|
866
|
-
def san_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]):
|
|
867
|
+
def san_uris(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
|
|
867
868
|
pulumi.set(self, "san_uris", value)
|
|
868
869
|
|
|
869
870
|
@property
|
|
870
871
|
@pulumi.getter
|
|
871
|
-
def state(self) -> Optional[pulumi.Input[str]]:
|
|
872
|
+
def state(self) -> Optional[pulumi.Input[builtins.str]]:
|
|
872
873
|
"""
|
|
873
874
|
State of the certificate (S)
|
|
874
875
|
"""
|
|
875
876
|
return pulumi.get(self, "state")
|
|
876
877
|
|
|
877
878
|
@state.setter
|
|
878
|
-
def state(self, value: Optional[pulumi.Input[str]]):
|
|
879
|
+
def state(self, value: Optional[pulumi.Input[builtins.str]]):
|
|
879
880
|
pulumi.set(self, "state", value)
|
|
880
881
|
|
|
881
882
|
@property
|
|
882
883
|
@pulumi.getter(name="validDays")
|
|
883
|
-
def valid_days(self) -> Optional[pulumi.Input[int]]:
|
|
884
|
+
def valid_days(self) -> Optional[pulumi.Input[builtins.int]]:
|
|
884
885
|
"""
|
|
885
886
|
Desired number of days for which the new certificate will be valid.
|
|
886
887
|
"""
|
|
887
888
|
return pulumi.get(self, "valid_days")
|
|
888
889
|
|
|
889
890
|
@valid_days.setter
|
|
890
|
-
def valid_days(self, value: Optional[pulumi.Input[int]]):
|
|
891
|
+
def valid_days(self, value: Optional[pulumi.Input[builtins.int]]):
|
|
891
892
|
pulumi.set(self, "valid_days", value)
|
|
892
893
|
|
|
893
894
|
|
|
@@ -896,66 +897,66 @@ class Certificate(pulumi.CustomResource):
|
|
|
896
897
|
def __init__(__self__,
|
|
897
898
|
resource_name: str,
|
|
898
899
|
opts: Optional[pulumi.ResourceOptions] = None,
|
|
899
|
-
algorithm: Optional[pulumi.Input[str]] = None,
|
|
900
|
-
certificate_dn: Optional[pulumi.Input[str]] = None,
|
|
901
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
|
902
|
-
country: Optional[pulumi.Input[str]] = None,
|
|
903
|
-
csr_origin: Optional[pulumi.Input[str]] = None,
|
|
904
|
-
csr_pem: Optional[pulumi.Input[str]] = None,
|
|
905
|
-
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
|
906
|
-
ecdsa_curve: Optional[pulumi.Input[str]] = None,
|
|
907
|
-
expiration_window: Optional[pulumi.Input[int]] = None,
|
|
908
|
-
issuer_hint: Optional[pulumi.Input[str]] = None,
|
|
909
|
-
key_password: Optional[pulumi.Input[str]] = None,
|
|
910
|
-
locality: Optional[pulumi.Input[str]] = None,
|
|
911
|
-
nickname: Optional[pulumi.Input[str]] = None,
|
|
912
|
-
organization: Optional[pulumi.Input[str]] = None,
|
|
913
|
-
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
914
|
-
pkcs12: Optional[pulumi.Input[str]] = None,
|
|
915
|
-
private_key_pem: Optional[pulumi.Input[str]] = None,
|
|
916
|
-
renew_required: Optional[pulumi.Input[bool]] = None,
|
|
917
|
-
rsa_bits: Optional[pulumi.Input[int]] = None,
|
|
918
|
-
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
919
|
-
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
920
|
-
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
921
|
-
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
922
|
-
state: Optional[pulumi.Input[str]] = None,
|
|
923
|
-
valid_days: Optional[pulumi.Input[int]] = None,
|
|
900
|
+
algorithm: Optional[pulumi.Input[builtins.str]] = None,
|
|
901
|
+
certificate_dn: Optional[pulumi.Input[builtins.str]] = None,
|
|
902
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
|
903
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
|
904
|
+
csr_origin: Optional[pulumi.Input[builtins.str]] = None,
|
|
905
|
+
csr_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
906
|
+
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
|
907
|
+
ecdsa_curve: Optional[pulumi.Input[builtins.str]] = None,
|
|
908
|
+
expiration_window: Optional[pulumi.Input[builtins.int]] = None,
|
|
909
|
+
issuer_hint: Optional[pulumi.Input[builtins.str]] = None,
|
|
910
|
+
key_password: Optional[pulumi.Input[builtins.str]] = None,
|
|
911
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
|
912
|
+
nickname: Optional[pulumi.Input[builtins.str]] = None,
|
|
913
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
|
914
|
+
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
915
|
+
pkcs12: Optional[pulumi.Input[builtins.str]] = None,
|
|
916
|
+
private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
917
|
+
renew_required: Optional[pulumi.Input[builtins.bool]] = None,
|
|
918
|
+
rsa_bits: Optional[pulumi.Input[builtins.int]] = None,
|
|
919
|
+
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
920
|
+
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
921
|
+
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
922
|
+
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
923
|
+
state: Optional[pulumi.Input[builtins.str]] = None,
|
|
924
|
+
valid_days: Optional[pulumi.Input[builtins.int]] = None,
|
|
924
925
|
__props__=None):
|
|
925
926
|
"""
|
|
926
927
|
Create a Certificate resource with the given unique name, props, and options.
|
|
927
928
|
:param str resource_name: The name of the resource.
|
|
928
929
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
|
929
|
-
:param pulumi.Input[str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
930
|
-
:param pulumi.Input[str] common_name: The common name of the certificate.
|
|
931
|
-
:param pulumi.Input[str] country: Country of the certificate (C)
|
|
932
|
-
:param pulumi.Input[str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
930
|
+
:param pulumi.Input[builtins.str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
931
|
+
:param pulumi.Input[builtins.str] common_name: The common name of the certificate.
|
|
932
|
+
:param pulumi.Input[builtins.str] country: Country of the certificate (C)
|
|
933
|
+
:param pulumi.Input[builtins.str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
933
934
|
`local`.
|
|
934
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
935
|
-
:param pulumi.Input[str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
936
|
-
:param pulumi.Input[int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
935
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
936
|
+
:param pulumi.Input[builtins.str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
937
|
+
:param pulumi.Input[builtins.int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
937
938
|
Defaults to `168`.
|
|
938
|
-
:param pulumi.Input[str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
939
|
+
:param pulumi.Input[builtins.str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
939
940
|
Platform. Relevant values are: `DigiCert`, `Entrust`, and `Microsoft`.
|
|
940
|
-
:param pulumi.Input[str] key_password: The password used to encrypt the private key.
|
|
941
|
-
:param pulumi.Input[str] locality: Locality/City of the certificate (L)
|
|
942
|
-
:param pulumi.Input[str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
941
|
+
:param pulumi.Input[builtins.str] key_password: The password used to encrypt the private key.
|
|
942
|
+
:param pulumi.Input[builtins.str] locality: Locality/City of the certificate (L)
|
|
943
|
+
:param pulumi.Input[builtins.str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
943
944
|
in a policy. Only valid for Trust Protection Platform.
|
|
944
|
-
:param pulumi.Input[str] organization: Organization of the certificate (O)
|
|
945
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
946
|
-
:param pulumi.Input[str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
945
|
+
:param pulumi.Input[builtins.str] organization: Organization of the certificate (O)
|
|
946
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
947
|
+
:param pulumi.Input[builtins.str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
947
948
|
azure key_vault_certificate.
|
|
948
|
-
:param pulumi.Input[str] private_key_pem: The private key in PEM format.
|
|
949
|
-
:param pulumi.Input[bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
950
|
-
:param pulumi.Input[int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
949
|
+
:param pulumi.Input[builtins.str] private_key_pem: The private key in PEM format.
|
|
950
|
+
:param pulumi.Input[builtins.bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
951
|
+
:param pulumi.Input[builtins.int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
951
952
|
Defaults to `2048`.
|
|
952
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
953
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
954
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
955
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
953
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
954
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
955
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
956
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
956
957
|
the certificate.
|
|
957
|
-
:param pulumi.Input[str] state: State of the certificate (S)
|
|
958
|
-
:param pulumi.Input[int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
958
|
+
:param pulumi.Input[builtins.str] state: State of the certificate (S)
|
|
959
|
+
:param pulumi.Input[builtins.int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
959
960
|
"""
|
|
960
961
|
...
|
|
961
962
|
@overload
|
|
@@ -980,31 +981,31 @@ class Certificate(pulumi.CustomResource):
|
|
|
980
981
|
def _internal_init(__self__,
|
|
981
982
|
resource_name: str,
|
|
982
983
|
opts: Optional[pulumi.ResourceOptions] = None,
|
|
983
|
-
algorithm: Optional[pulumi.Input[str]] = None,
|
|
984
|
-
certificate_dn: Optional[pulumi.Input[str]] = None,
|
|
985
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
|
986
|
-
country: Optional[pulumi.Input[str]] = None,
|
|
987
|
-
csr_origin: Optional[pulumi.Input[str]] = None,
|
|
988
|
-
csr_pem: Optional[pulumi.Input[str]] = None,
|
|
989
|
-
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
|
990
|
-
ecdsa_curve: Optional[pulumi.Input[str]] = None,
|
|
991
|
-
expiration_window: Optional[pulumi.Input[int]] = None,
|
|
992
|
-
issuer_hint: Optional[pulumi.Input[str]] = None,
|
|
993
|
-
key_password: Optional[pulumi.Input[str]] = None,
|
|
994
|
-
locality: Optional[pulumi.Input[str]] = None,
|
|
995
|
-
nickname: Optional[pulumi.Input[str]] = None,
|
|
996
|
-
organization: Optional[pulumi.Input[str]] = None,
|
|
997
|
-
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
998
|
-
pkcs12: Optional[pulumi.Input[str]] = None,
|
|
999
|
-
private_key_pem: Optional[pulumi.Input[str]] = None,
|
|
1000
|
-
renew_required: Optional[pulumi.Input[bool]] = None,
|
|
1001
|
-
rsa_bits: Optional[pulumi.Input[int]] = None,
|
|
1002
|
-
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1003
|
-
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1004
|
-
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1005
|
-
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1006
|
-
state: Optional[pulumi.Input[str]] = None,
|
|
1007
|
-
valid_days: Optional[pulumi.Input[int]] = None,
|
|
984
|
+
algorithm: Optional[pulumi.Input[builtins.str]] = None,
|
|
985
|
+
certificate_dn: Optional[pulumi.Input[builtins.str]] = None,
|
|
986
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
|
987
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
|
988
|
+
csr_origin: Optional[pulumi.Input[builtins.str]] = None,
|
|
989
|
+
csr_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
990
|
+
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
|
991
|
+
ecdsa_curve: Optional[pulumi.Input[builtins.str]] = None,
|
|
992
|
+
expiration_window: Optional[pulumi.Input[builtins.int]] = None,
|
|
993
|
+
issuer_hint: Optional[pulumi.Input[builtins.str]] = None,
|
|
994
|
+
key_password: Optional[pulumi.Input[builtins.str]] = None,
|
|
995
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
|
996
|
+
nickname: Optional[pulumi.Input[builtins.str]] = None,
|
|
997
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
|
998
|
+
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
999
|
+
pkcs12: Optional[pulumi.Input[builtins.str]] = None,
|
|
1000
|
+
private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
1001
|
+
renew_required: Optional[pulumi.Input[builtins.bool]] = None,
|
|
1002
|
+
rsa_bits: Optional[pulumi.Input[builtins.int]] = None,
|
|
1003
|
+
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1004
|
+
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1005
|
+
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1006
|
+
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1007
|
+
state: Optional[pulumi.Input[builtins.str]] = None,
|
|
1008
|
+
valid_days: Optional[pulumi.Input[builtins.int]] = None,
|
|
1008
1009
|
__props__=None):
|
|
1009
1010
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
|
1010
1011
|
if not isinstance(opts, pulumi.ResourceOptions):
|
|
@@ -1056,34 +1057,34 @@ class Certificate(pulumi.CustomResource):
|
|
|
1056
1057
|
def get(resource_name: str,
|
|
1057
1058
|
id: pulumi.Input[str],
|
|
1058
1059
|
opts: Optional[pulumi.ResourceOptions] = None,
|
|
1059
|
-
algorithm: Optional[pulumi.Input[str]] = None,
|
|
1060
|
-
certificate: Optional[pulumi.Input[str]] = None,
|
|
1061
|
-
certificate_dn: Optional[pulumi.Input[str]] = None,
|
|
1062
|
-
certificate_id: Optional[pulumi.Input[str]] = None,
|
|
1063
|
-
chain: Optional[pulumi.Input[str]] = None,
|
|
1064
|
-
common_name: Optional[pulumi.Input[str]] = None,
|
|
1065
|
-
country: Optional[pulumi.Input[str]] = None,
|
|
1066
|
-
csr_origin: Optional[pulumi.Input[str]] = None,
|
|
1067
|
-
csr_pem: Optional[pulumi.Input[str]] = None,
|
|
1068
|
-
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[str]]]] = None,
|
|
1069
|
-
ecdsa_curve: Optional[pulumi.Input[str]] = None,
|
|
1070
|
-
expiration_window: Optional[pulumi.Input[int]] = None,
|
|
1071
|
-
issuer_hint: Optional[pulumi.Input[str]] = None,
|
|
1072
|
-
key_password: Optional[pulumi.Input[str]] = None,
|
|
1073
|
-
locality: Optional[pulumi.Input[str]] = None,
|
|
1074
|
-
nickname: Optional[pulumi.Input[str]] = None,
|
|
1075
|
-
organization: Optional[pulumi.Input[str]] = None,
|
|
1076
|
-
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1077
|
-
pkcs12: Optional[pulumi.Input[str]] = None,
|
|
1078
|
-
private_key_pem: Optional[pulumi.Input[str]] = None,
|
|
1079
|
-
renew_required: Optional[pulumi.Input[bool]] = None,
|
|
1080
|
-
rsa_bits: Optional[pulumi.Input[int]] = None,
|
|
1081
|
-
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1082
|
-
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1083
|
-
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1084
|
-
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
|
|
1085
|
-
state: Optional[pulumi.Input[str]] = None,
|
|
1086
|
-
valid_days: Optional[pulumi.Input[int]] = None) -> 'Certificate':
|
|
1060
|
+
algorithm: Optional[pulumi.Input[builtins.str]] = None,
|
|
1061
|
+
certificate: Optional[pulumi.Input[builtins.str]] = None,
|
|
1062
|
+
certificate_dn: Optional[pulumi.Input[builtins.str]] = None,
|
|
1063
|
+
certificate_id: Optional[pulumi.Input[builtins.str]] = None,
|
|
1064
|
+
chain: Optional[pulumi.Input[builtins.str]] = None,
|
|
1065
|
+
common_name: Optional[pulumi.Input[builtins.str]] = None,
|
|
1066
|
+
country: Optional[pulumi.Input[builtins.str]] = None,
|
|
1067
|
+
csr_origin: Optional[pulumi.Input[builtins.str]] = None,
|
|
1068
|
+
csr_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
1069
|
+
custom_fields: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
|
|
1070
|
+
ecdsa_curve: Optional[pulumi.Input[builtins.str]] = None,
|
|
1071
|
+
expiration_window: Optional[pulumi.Input[builtins.int]] = None,
|
|
1072
|
+
issuer_hint: Optional[pulumi.Input[builtins.str]] = None,
|
|
1073
|
+
key_password: Optional[pulumi.Input[builtins.str]] = None,
|
|
1074
|
+
locality: Optional[pulumi.Input[builtins.str]] = None,
|
|
1075
|
+
nickname: Optional[pulumi.Input[builtins.str]] = None,
|
|
1076
|
+
organization: Optional[pulumi.Input[builtins.str]] = None,
|
|
1077
|
+
organizational_units: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1078
|
+
pkcs12: Optional[pulumi.Input[builtins.str]] = None,
|
|
1079
|
+
private_key_pem: Optional[pulumi.Input[builtins.str]] = None,
|
|
1080
|
+
renew_required: Optional[pulumi.Input[builtins.bool]] = None,
|
|
1081
|
+
rsa_bits: Optional[pulumi.Input[builtins.int]] = None,
|
|
1082
|
+
san_dns: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1083
|
+
san_emails: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1084
|
+
san_ips: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1085
|
+
san_uris: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
|
|
1086
|
+
state: Optional[pulumi.Input[builtins.str]] = None,
|
|
1087
|
+
valid_days: Optional[pulumi.Input[builtins.int]] = None) -> 'Certificate':
|
|
1087
1088
|
"""
|
|
1088
1089
|
Get an existing Certificate resource's state with the given name, id, and optional extra
|
|
1089
1090
|
properties used to qualify the lookup.
|
|
@@ -1091,39 +1092,39 @@ class Certificate(pulumi.CustomResource):
|
|
|
1091
1092
|
:param str resource_name: The unique name of the resulting resource.
|
|
1092
1093
|
:param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
|
|
1093
1094
|
:param pulumi.ResourceOptions opts: Options for the resource.
|
|
1094
|
-
:param pulumi.Input[str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
1095
|
-
:param pulumi.Input[str] certificate: The X509 certificate in PEM format.
|
|
1096
|
-
:param pulumi.Input[str] certificate_id: ID of the issued certificate
|
|
1097
|
-
:param pulumi.Input[str] chain: The trust chain of X509 certificate authority certificates in PEM format concatenated together.
|
|
1098
|
-
:param pulumi.Input[str] common_name: The common name of the certificate.
|
|
1099
|
-
:param pulumi.Input[str] country: Country of the certificate (C)
|
|
1100
|
-
:param pulumi.Input[str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
1095
|
+
:param pulumi.Input[builtins.str] algorithm: Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
1096
|
+
:param pulumi.Input[builtins.str] certificate: The X509 certificate in PEM format.
|
|
1097
|
+
:param pulumi.Input[builtins.str] certificate_id: ID of the issued certificate
|
|
1098
|
+
:param pulumi.Input[builtins.str] chain: The trust chain of X509 certificate authority certificates in PEM format concatenated together.
|
|
1099
|
+
:param pulumi.Input[builtins.str] common_name: The common name of the certificate.
|
|
1100
|
+
:param pulumi.Input[builtins.str] country: Country of the certificate (C)
|
|
1101
|
+
:param pulumi.Input[builtins.str] csr_origin: Whether key-pair generation will be `local` or `service` generated. Default is
|
|
1101
1102
|
`local`.
|
|
1102
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
1103
|
-
:param pulumi.Input[str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
1104
|
-
:param pulumi.Input[int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
1103
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] custom_fields: Collection of Custom Field name-value pairs to assign to the certificate.
|
|
1104
|
+
:param pulumi.Input[builtins.str] ecdsa_curve: ECDSA curve to use when generating a key
|
|
1105
|
+
:param pulumi.Input[builtins.int] expiration_window: Number of hours before certificate expiry to request a new certificate.
|
|
1105
1106
|
Defaults to `168`.
|
|
1106
|
-
:param pulumi.Input[str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
1107
|
+
:param pulumi.Input[builtins.str] issuer_hint: Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
1107
1108
|
Platform. Relevant values are: `DigiCert`, `Entrust`, and `Microsoft`.
|
|
1108
|
-
:param pulumi.Input[str] key_password: The password used to encrypt the private key.
|
|
1109
|
-
:param pulumi.Input[str] locality: Locality/City of the certificate (L)
|
|
1110
|
-
:param pulumi.Input[str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
1109
|
+
:param pulumi.Input[builtins.str] key_password: The password used to encrypt the private key.
|
|
1110
|
+
:param pulumi.Input[builtins.str] locality: Locality/City of the certificate (L)
|
|
1111
|
+
:param pulumi.Input[builtins.str] nickname: Use to specify a name for the new certificate object that will be created and placed
|
|
1111
1112
|
in a policy. Only valid for Trust Protection Platform.
|
|
1112
|
-
:param pulumi.Input[str] organization: Organization of the certificate (O)
|
|
1113
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
1114
|
-
:param pulumi.Input[str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
1113
|
+
:param pulumi.Input[builtins.str] organization: Organization of the certificate (O)
|
|
1114
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] organizational_units: List of Organizational Units of the certificate (OU)
|
|
1115
|
+
:param pulumi.Input[builtins.str] pkcs12: A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
1115
1116
|
azure key_vault_certificate.
|
|
1116
|
-
:param pulumi.Input[str] private_key_pem: The private key in PEM format.
|
|
1117
|
-
:param pulumi.Input[bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
1118
|
-
:param pulumi.Input[int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
1117
|
+
:param pulumi.Input[builtins.str] private_key_pem: The private key in PEM format.
|
|
1118
|
+
:param pulumi.Input[builtins.bool] renew_required: Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
1119
|
+
:param pulumi.Input[builtins.int] rsa_bits: Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
1119
1120
|
Defaults to `2048`.
|
|
1120
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
1121
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
1122
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
1123
|
-
:param pulumi.Input[Sequence[pulumi.Input[str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
1121
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_dns: List of DNS names to use as alternative subjects of the certificate.
|
|
1122
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_emails: List of email addresses to use as alternative subjects of the certificate.
|
|
1123
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_ips: List of IP addresses to use as alternative subjects of the certificate.
|
|
1124
|
+
:param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] san_uris: List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
1124
1125
|
the certificate.
|
|
1125
|
-
:param pulumi.Input[str] state: State of the certificate (S)
|
|
1126
|
-
:param pulumi.Input[int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
1126
|
+
:param pulumi.Input[builtins.str] state: State of the certificate (S)
|
|
1127
|
+
:param pulumi.Input[builtins.int] valid_days: Desired number of days for which the new certificate will be valid.
|
|
1127
1128
|
"""
|
|
1128
1129
|
opts = pulumi.ResourceOptions.merge(opts, pulumi.ResourceOptions(id=id))
|
|
1129
1130
|
|
|
@@ -1161,7 +1162,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1161
1162
|
|
|
1162
1163
|
@property
|
|
1163
1164
|
@pulumi.getter
|
|
1164
|
-
def algorithm(self) -> pulumi.Output[Optional[str]]:
|
|
1165
|
+
def algorithm(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1165
1166
|
"""
|
|
1166
1167
|
Key encryption algorithm, either RSA or ECDSA. Defaults to `RSA`.
|
|
1167
1168
|
"""
|
|
@@ -1169,7 +1170,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1169
1170
|
|
|
1170
1171
|
@property
|
|
1171
1172
|
@pulumi.getter
|
|
1172
|
-
def certificate(self) -> pulumi.Output[str]:
|
|
1173
|
+
def certificate(self) -> pulumi.Output[builtins.str]:
|
|
1173
1174
|
"""
|
|
1174
1175
|
The X509 certificate in PEM format.
|
|
1175
1176
|
"""
|
|
@@ -1177,12 +1178,12 @@ class Certificate(pulumi.CustomResource):
|
|
|
1177
1178
|
|
|
1178
1179
|
@property
|
|
1179
1180
|
@pulumi.getter(name="certificateDn")
|
|
1180
|
-
def certificate_dn(self) -> pulumi.Output[str]:
|
|
1181
|
+
def certificate_dn(self) -> pulumi.Output[builtins.str]:
|
|
1181
1182
|
return pulumi.get(self, "certificate_dn")
|
|
1182
1183
|
|
|
1183
1184
|
@property
|
|
1184
1185
|
@pulumi.getter(name="certificateId")
|
|
1185
|
-
def certificate_id(self) -> pulumi.Output[str]:
|
|
1186
|
+
def certificate_id(self) -> pulumi.Output[builtins.str]:
|
|
1186
1187
|
"""
|
|
1187
1188
|
ID of the issued certificate
|
|
1188
1189
|
"""
|
|
@@ -1190,7 +1191,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1190
1191
|
|
|
1191
1192
|
@property
|
|
1192
1193
|
@pulumi.getter
|
|
1193
|
-
def chain(self) -> pulumi.Output[str]:
|
|
1194
|
+
def chain(self) -> pulumi.Output[builtins.str]:
|
|
1194
1195
|
"""
|
|
1195
1196
|
The trust chain of X509 certificate authority certificates in PEM format concatenated together.
|
|
1196
1197
|
"""
|
|
@@ -1198,7 +1199,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1198
1199
|
|
|
1199
1200
|
@property
|
|
1200
1201
|
@pulumi.getter(name="commonName")
|
|
1201
|
-
def common_name(self) -> pulumi.Output[str]:
|
|
1202
|
+
def common_name(self) -> pulumi.Output[builtins.str]:
|
|
1202
1203
|
"""
|
|
1203
1204
|
The common name of the certificate.
|
|
1204
1205
|
"""
|
|
@@ -1206,7 +1207,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1206
1207
|
|
|
1207
1208
|
@property
|
|
1208
1209
|
@pulumi.getter
|
|
1209
|
-
def country(self) -> pulumi.Output[Optional[str]]:
|
|
1210
|
+
def country(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1210
1211
|
"""
|
|
1211
1212
|
Country of the certificate (C)
|
|
1212
1213
|
"""
|
|
@@ -1214,7 +1215,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1214
1215
|
|
|
1215
1216
|
@property
|
|
1216
1217
|
@pulumi.getter(name="csrOrigin")
|
|
1217
|
-
def csr_origin(self) -> pulumi.Output[Optional[str]]:
|
|
1218
|
+
def csr_origin(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1218
1219
|
"""
|
|
1219
1220
|
Whether key-pair generation will be `local` or `service` generated. Default is
|
|
1220
1221
|
`local`.
|
|
@@ -1223,12 +1224,12 @@ class Certificate(pulumi.CustomResource):
|
|
|
1223
1224
|
|
|
1224
1225
|
@property
|
|
1225
1226
|
@pulumi.getter(name="csrPem")
|
|
1226
|
-
def csr_pem(self) -> pulumi.Output[str]:
|
|
1227
|
+
def csr_pem(self) -> pulumi.Output[builtins.str]:
|
|
1227
1228
|
return pulumi.get(self, "csr_pem")
|
|
1228
1229
|
|
|
1229
1230
|
@property
|
|
1230
1231
|
@pulumi.getter(name="customFields")
|
|
1231
|
-
def custom_fields(self) -> pulumi.Output[Optional[Mapping[str, str]]]:
|
|
1232
|
+
def custom_fields(self) -> pulumi.Output[Optional[Mapping[str, builtins.str]]]:
|
|
1232
1233
|
"""
|
|
1233
1234
|
Collection of Custom Field name-value pairs to assign to the certificate.
|
|
1234
1235
|
"""
|
|
@@ -1236,7 +1237,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1236
1237
|
|
|
1237
1238
|
@property
|
|
1238
1239
|
@pulumi.getter(name="ecdsaCurve")
|
|
1239
|
-
def ecdsa_curve(self) -> pulumi.Output[Optional[str]]:
|
|
1240
|
+
def ecdsa_curve(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1240
1241
|
"""
|
|
1241
1242
|
ECDSA curve to use when generating a key
|
|
1242
1243
|
"""
|
|
@@ -1244,7 +1245,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1244
1245
|
|
|
1245
1246
|
@property
|
|
1246
1247
|
@pulumi.getter(name="expirationWindow")
|
|
1247
|
-
def expiration_window(self) -> pulumi.Output[Optional[int]]:
|
|
1248
|
+
def expiration_window(self) -> pulumi.Output[Optional[builtins.int]]:
|
|
1248
1249
|
"""
|
|
1249
1250
|
Number of hours before certificate expiry to request a new certificate.
|
|
1250
1251
|
Defaults to `168`.
|
|
@@ -1253,7 +1254,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1253
1254
|
|
|
1254
1255
|
@property
|
|
1255
1256
|
@pulumi.getter(name="issuerHint")
|
|
1256
|
-
def issuer_hint(self) -> pulumi.Output[Optional[str]]:
|
|
1257
|
+
def issuer_hint(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1257
1258
|
"""
|
|
1258
1259
|
Used with `valid_days` to indicate the target issuer when using Trust Protection
|
|
1259
1260
|
Platform. Relevant values are: `DigiCert`, `Entrust`, and `Microsoft`.
|
|
@@ -1262,7 +1263,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1262
1263
|
|
|
1263
1264
|
@property
|
|
1264
1265
|
@pulumi.getter(name="keyPassword")
|
|
1265
|
-
def key_password(self) -> pulumi.Output[Optional[str]]:
|
|
1266
|
+
def key_password(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1266
1267
|
"""
|
|
1267
1268
|
The password used to encrypt the private key.
|
|
1268
1269
|
"""
|
|
@@ -1270,7 +1271,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1270
1271
|
|
|
1271
1272
|
@property
|
|
1272
1273
|
@pulumi.getter
|
|
1273
|
-
def locality(self) -> pulumi.Output[Optional[str]]:
|
|
1274
|
+
def locality(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1274
1275
|
"""
|
|
1275
1276
|
Locality/City of the certificate (L)
|
|
1276
1277
|
"""
|
|
@@ -1278,7 +1279,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1278
1279
|
|
|
1279
1280
|
@property
|
|
1280
1281
|
@pulumi.getter
|
|
1281
|
-
def nickname(self) -> pulumi.Output[Optional[str]]:
|
|
1282
|
+
def nickname(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1282
1283
|
"""
|
|
1283
1284
|
Use to specify a name for the new certificate object that will be created and placed
|
|
1284
1285
|
in a policy. Only valid for Trust Protection Platform.
|
|
@@ -1287,7 +1288,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1287
1288
|
|
|
1288
1289
|
@property
|
|
1289
1290
|
@pulumi.getter
|
|
1290
|
-
def organization(self) -> pulumi.Output[Optional[str]]:
|
|
1291
|
+
def organization(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1291
1292
|
"""
|
|
1292
1293
|
Organization of the certificate (O)
|
|
1293
1294
|
"""
|
|
@@ -1295,7 +1296,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1295
1296
|
|
|
1296
1297
|
@property
|
|
1297
1298
|
@pulumi.getter(name="organizationalUnits")
|
|
1298
|
-
def organizational_units(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
|
1299
|
+
def organizational_units(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
|
1299
1300
|
"""
|
|
1300
1301
|
List of Organizational Units of the certificate (OU)
|
|
1301
1302
|
"""
|
|
@@ -1303,7 +1304,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1303
1304
|
|
|
1304
1305
|
@property
|
|
1305
1306
|
@pulumi.getter
|
|
1306
|
-
def pkcs12(self) -> pulumi.Output[str]:
|
|
1307
|
+
def pkcs12(self) -> pulumi.Output[builtins.str]:
|
|
1307
1308
|
"""
|
|
1308
1309
|
A base64-encoded PKCS#12 keystore secured by the `key_password`. Useful when working with resources like
|
|
1309
1310
|
azure key_vault_certificate.
|
|
@@ -1312,7 +1313,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1312
1313
|
|
|
1313
1314
|
@property
|
|
1314
1315
|
@pulumi.getter(name="privateKeyPem")
|
|
1315
|
-
def private_key_pem(self) -> pulumi.Output[str]:
|
|
1316
|
+
def private_key_pem(self) -> pulumi.Output[builtins.str]:
|
|
1316
1317
|
"""
|
|
1317
1318
|
The private key in PEM format.
|
|
1318
1319
|
"""
|
|
@@ -1320,7 +1321,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1320
1321
|
|
|
1321
1322
|
@property
|
|
1322
1323
|
@pulumi.getter(name="renewRequired")
|
|
1323
|
-
def renew_required(self) -> pulumi.Output[Optional[bool]]:
|
|
1324
|
+
def renew_required(self) -> pulumi.Output[Optional[builtins.bool]]:
|
|
1324
1325
|
"""
|
|
1325
1326
|
Indicates the certificate should be reissued. This means the resource will destroyed and recreated
|
|
1326
1327
|
"""
|
|
@@ -1328,7 +1329,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1328
1329
|
|
|
1329
1330
|
@property
|
|
1330
1331
|
@pulumi.getter(name="rsaBits")
|
|
1331
|
-
def rsa_bits(self) -> pulumi.Output[Optional[int]]:
|
|
1332
|
+
def rsa_bits(self) -> pulumi.Output[Optional[builtins.int]]:
|
|
1332
1333
|
"""
|
|
1333
1334
|
Number of bits to use when generating an RSA key. Applies when algorithm is `RSA`.
|
|
1334
1335
|
Defaults to `2048`.
|
|
@@ -1337,7 +1338,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1337
1338
|
|
|
1338
1339
|
@property
|
|
1339
1340
|
@pulumi.getter(name="sanDns")
|
|
1340
|
-
def san_dns(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
|
1341
|
+
def san_dns(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
|
1341
1342
|
"""
|
|
1342
1343
|
List of DNS names to use as alternative subjects of the certificate.
|
|
1343
1344
|
"""
|
|
@@ -1345,7 +1346,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1345
1346
|
|
|
1346
1347
|
@property
|
|
1347
1348
|
@pulumi.getter(name="sanEmails")
|
|
1348
|
-
def san_emails(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
|
1349
|
+
def san_emails(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
|
1349
1350
|
"""
|
|
1350
1351
|
List of email addresses to use as alternative subjects of the certificate.
|
|
1351
1352
|
"""
|
|
@@ -1353,7 +1354,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1353
1354
|
|
|
1354
1355
|
@property
|
|
1355
1356
|
@pulumi.getter(name="sanIps")
|
|
1356
|
-
def san_ips(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
|
1357
|
+
def san_ips(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
|
1357
1358
|
"""
|
|
1358
1359
|
List of IP addresses to use as alternative subjects of the certificate.
|
|
1359
1360
|
"""
|
|
@@ -1361,7 +1362,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1361
1362
|
|
|
1362
1363
|
@property
|
|
1363
1364
|
@pulumi.getter(name="sanUris")
|
|
1364
|
-
def san_uris(self) -> pulumi.Output[Optional[Sequence[str]]]:
|
|
1365
|
+
def san_uris(self) -> pulumi.Output[Optional[Sequence[builtins.str]]]:
|
|
1365
1366
|
"""
|
|
1366
1367
|
List of Uniform Resource Identifiers (URIs) to use as alternative subjects of
|
|
1367
1368
|
the certificate.
|
|
@@ -1370,7 +1371,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1370
1371
|
|
|
1371
1372
|
@property
|
|
1372
1373
|
@pulumi.getter
|
|
1373
|
-
def state(self) -> pulumi.Output[Optional[str]]:
|
|
1374
|
+
def state(self) -> pulumi.Output[Optional[builtins.str]]:
|
|
1374
1375
|
"""
|
|
1375
1376
|
State of the certificate (S)
|
|
1376
1377
|
"""
|
|
@@ -1378,7 +1379,7 @@ class Certificate(pulumi.CustomResource):
|
|
|
1378
1379
|
|
|
1379
1380
|
@property
|
|
1380
1381
|
@pulumi.getter(name="validDays")
|
|
1381
|
-
def valid_days(self) -> pulumi.Output[Optional[int]]:
|
|
1382
|
+
def valid_days(self) -> pulumi.Output[Optional[builtins.int]]:
|
|
1382
1383
|
"""
|
|
1383
1384
|
Desired number of days for which the new certificate will be valid.
|
|
1384
1385
|
"""
|