LocallySignedCert
Create a LocallySignedCert Resource
new LocallySignedCert(name: string, args: LocallySignedCertArgs, opts?: CustomResourceOptions);
def LocallySignedCert(resource_name: str, opts: Optional[ResourceOptions] = None, allowed_uses: Optional[Sequence[str]] = None, ca_cert_pem: Optional[str] = None, ca_key_algorithm: Optional[str] = None, ca_private_key_pem: Optional[str] = None, cert_request_pem: Optional[str] = None, early_renewal_hours: Optional[int] = None, is_ca_certificate: Optional[bool] = None, set_subject_key_id: Optional[bool] = None, validity_period_hours: Optional[int] = None)
func NewLocallySignedCert(ctx *Context, name string, args LocallySignedCertArgs, opts ...ResourceOption) (*LocallySignedCert, error)
public LocallySignedCert(string name, LocallySignedCertArgs args, CustomResourceOptions? opts = null)
- name string
- The unique name of the resource.
- args LocallySignedCertArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- opts ResourceOptions
- A bag of options that control this resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args LocallySignedCertArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args LocallySignedCertArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
LocallySignedCert Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Programming Model docs.
Inputs
The LocallySignedCert resource accepts the following input properties:
- Allowed
Uses List<string> List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- Ca
Cert stringPem PEM-encoded certificate data for the CA.
- Ca
Key stringAlgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- Ca
Private stringKey Pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- Cert
Request stringPem PEM-encoded request certificate data.
- Validity
Period intHours The number of hours after initial issuing that the certificate will become invalid.
- Early
Renewal intHours Number of hours before the certificates expiry when a new certificate will be generated
- Is
Ca boolCertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- Set
Subject boolKey Id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.
- Allowed
Uses []string List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- Ca
Cert stringPem PEM-encoded certificate data for the CA.
- Ca
Key stringAlgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- Ca
Private stringKey Pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- Cert
Request stringPem PEM-encoded request certificate data.
- Validity
Period intHours The number of hours after initial issuing that the certificate will become invalid.
- Early
Renewal intHours Number of hours before the certificates expiry when a new certificate will be generated
- Is
Ca boolCertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- Set
Subject boolKey Id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.
- allowed
Uses string[] List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- ca
Cert stringPem PEM-encoded certificate data for the CA.
- ca
Key stringAlgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- ca
Private stringKey Pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- cert
Request stringPem PEM-encoded request certificate data.
- validity
Period numberHours The number of hours after initial issuing that the certificate will become invalid.
- early
Renewal numberHours Number of hours before the certificates expiry when a new certificate will be generated
- is
Ca booleanCertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- set
Subject booleanKey Id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.
- allowed_
uses Sequence[str] List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- ca_
cert_ strpem PEM-encoded certificate data for the CA.
- ca_
key_ stralgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- ca_
private_ strkey_ pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- cert_
request_ strpem PEM-encoded request certificate data.
- validity_
period_ inthours The number of hours after initial issuing that the certificate will become invalid.
- early_
renewal_ inthours Number of hours before the certificates expiry when a new certificate will be generated
- is_
ca_ boolcertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- set_
subject_ boolkey_ id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.
Outputs
All input properties are implicitly available as output properties. Additionally, the LocallySignedCert resource produces the following output properties:
- Cert
Pem string The certificate data in PEM format.
- Id string
- The provider-assigned unique ID for this managed resource.
- Ready
For boolRenewal - Validity
End stringTime The time until which the certificate is invalid, as an RFC3339 timestamp.
- Validity
Start stringTime The time after which the certificate is valid, as an RFC3339 timestamp.
- Cert
Pem string The certificate data in PEM format.
- Id string
- The provider-assigned unique ID for this managed resource.
- Ready
For boolRenewal - Validity
End stringTime The time until which the certificate is invalid, as an RFC3339 timestamp.
- Validity
Start stringTime The time after which the certificate is valid, as an RFC3339 timestamp.
- cert
Pem string The certificate data in PEM format.
- id string
- The provider-assigned unique ID for this managed resource.
- ready
For booleanRenewal - validity
End stringTime The time until which the certificate is invalid, as an RFC3339 timestamp.
- validity
Start stringTime The time after which the certificate is valid, as an RFC3339 timestamp.
- cert_
pem str The certificate data in PEM format.
- id str
- The provider-assigned unique ID for this managed resource.
- ready_
for_ boolrenewal - validity_
end_ strtime The time until which the certificate is invalid, as an RFC3339 timestamp.
- validity_
start_ strtime The time after which the certificate is valid, as an RFC3339 timestamp.
Look up an Existing LocallySignedCert Resource
Get an existing LocallySignedCert resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: LocallySignedCertState, opts?: CustomResourceOptions): LocallySignedCert
@staticmethod
def get(resource_name: str, id: str, opts: Optional[ResourceOptions] = None, allowed_uses: Optional[Sequence[str]] = None, ca_cert_pem: Optional[str] = None, ca_key_algorithm: Optional[str] = None, ca_private_key_pem: Optional[str] = None, cert_pem: Optional[str] = None, cert_request_pem: Optional[str] = None, early_renewal_hours: Optional[int] = None, is_ca_certificate: Optional[bool] = None, ready_for_renewal: Optional[bool] = None, set_subject_key_id: Optional[bool] = None, validity_end_time: Optional[str] = None, validity_period_hours: Optional[int] = None, validity_start_time: Optional[str] = None) -> LocallySignedCert
func GetLocallySignedCert(ctx *Context, name string, id IDInput, state *LocallySignedCertState, opts ...ResourceOption) (*LocallySignedCert, error)
public static LocallySignedCert Get(string name, Input<string> id, LocallySignedCertState? state, CustomResourceOptions? opts = null)
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
The following state arguments are supported:
- Allowed
Uses List<string> List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- Ca
Cert stringPem PEM-encoded certificate data for the CA.
- Ca
Key stringAlgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- Ca
Private stringKey Pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- Cert
Pem string The certificate data in PEM format.
- Cert
Request stringPem PEM-encoded request certificate data.
- Early
Renewal intHours Number of hours before the certificates expiry when a new certificate will be generated
- Is
Ca boolCertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- Ready
For boolRenewal - Set
Subject boolKey Id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.- Validity
End stringTime The time until which the certificate is invalid, as an RFC3339 timestamp.
- Validity
Period intHours The number of hours after initial issuing that the certificate will become invalid.
- Validity
Start stringTime The time after which the certificate is valid, as an RFC3339 timestamp.
- Allowed
Uses []string List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- Ca
Cert stringPem PEM-encoded certificate data for the CA.
- Ca
Key stringAlgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- Ca
Private stringKey Pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- Cert
Pem string The certificate data in PEM format.
- Cert
Request stringPem PEM-encoded request certificate data.
- Early
Renewal intHours Number of hours before the certificates expiry when a new certificate will be generated
- Is
Ca boolCertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- Ready
For boolRenewal - Set
Subject boolKey Id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.- Validity
End stringTime The time until which the certificate is invalid, as an RFC3339 timestamp.
- Validity
Period intHours The number of hours after initial issuing that the certificate will become invalid.
- Validity
Start stringTime The time after which the certificate is valid, as an RFC3339 timestamp.
- allowed
Uses string[] List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- ca
Cert stringPem PEM-encoded certificate data for the CA.
- ca
Key stringAlgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- ca
Private stringKey Pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- cert
Pem string The certificate data in PEM format.
- cert
Request stringPem PEM-encoded request certificate data.
- early
Renewal numberHours Number of hours before the certificates expiry when a new certificate will be generated
- is
Ca booleanCertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- ready
For booleanRenewal - set
Subject booleanKey Id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.- validity
End stringTime The time until which the certificate is invalid, as an RFC3339 timestamp.
- validity
Period numberHours The number of hours after initial issuing that the certificate will become invalid.
- validity
Start stringTime The time after which the certificate is valid, as an RFC3339 timestamp.
- allowed_
uses Sequence[str] List of keywords each describing a use that is permitted for the issued certificate. The valid keywords are listed below.
- ca_
cert_ strpem PEM-encoded certificate data for the CA.
- ca_
key_ stralgorithm The name of the algorithm for the key provided in
ca_private_key_pem
.- ca_
private_ strkey_ pem PEM-encoded private key data for the CA. This can be read from a separate file using the
file
interpolation function.- cert_
pem str The certificate data in PEM format.
- cert_
request_ strpem PEM-encoded request certificate data.
- early_
renewal_ inthours Number of hours before the certificates expiry when a new certificate will be generated
- is_
ca_ boolcertificate Boolean controlling whether the CA flag will be set in the generated certificate. Defaults to
false
, meaning that the certificate does not represent a certificate authority.- ready_
for_ boolrenewal - set_
subject_ boolkey_ id If
true
, the certificate will include the subject key identifier. Defaults tofalse
, in which case the subject key identifier is not set at all.- validity_
end_ strtime The time until which the certificate is invalid, as an RFC3339 timestamp.
- validity_
period_ inthours The number of hours after initial issuing that the certificate will become invalid.
- validity_
start_ strtime The time after which the certificate is valid, as an RFC3339 timestamp.
Package Details
- Repository
- https://github.com/pulumi/pulumi-tls
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
tls
Terraform Provider.