Cloudflare v6.10.1 published on Wednesday, Oct 22, 2025 by Pulumi
cloudflare.getZeroTrustGatewayCertificates
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const exampleZeroTrustGatewayCertificates = cloudflare.getZeroTrustGatewayCertificates({
accountId: "699d98642c564d2e855e9661899b7252",
});
import pulumi
import pulumi_cloudflare as cloudflare
example_zero_trust_gateway_certificates = cloudflare.get_zero_trust_gateway_certificates(account_id="699d98642c564d2e855e9661899b7252")
package main
import (
"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudflare.LookupZeroTrustGatewayCertificates(ctx, &cloudflare.LookupZeroTrustGatewayCertificatesArgs{
AccountId: "699d98642c564d2e855e9661899b7252",
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
var exampleZeroTrustGatewayCertificates = Cloudflare.GetZeroTrustGatewayCertificates.Invoke(new()
{
AccountId = "699d98642c564d2e855e9661899b7252",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.CloudflareFunctions;
import com.pulumi.cloudflare.inputs.GetZeroTrustGatewayCertificatesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var exampleZeroTrustGatewayCertificates = CloudflareFunctions.getZeroTrustGatewayCertificates(GetZeroTrustGatewayCertificatesArgs.builder()
.accountId("699d98642c564d2e855e9661899b7252")
.build());
}
}
variables:
exampleZeroTrustGatewayCertificates:
fn::invoke:
function: cloudflare:getZeroTrustGatewayCertificates
arguments:
accountId: 699d98642c564d2e855e9661899b7252
Using getZeroTrustGatewayCertificates
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getZeroTrustGatewayCertificates(args: GetZeroTrustGatewayCertificatesArgs, opts?: InvokeOptions): Promise<GetZeroTrustGatewayCertificatesResult>
function getZeroTrustGatewayCertificatesOutput(args: GetZeroTrustGatewayCertificatesOutputArgs, opts?: InvokeOptions): Output<GetZeroTrustGatewayCertificatesResult>def get_zero_trust_gateway_certificates(account_id: Optional[str] = None,
max_items: Optional[int] = None,
opts: Optional[InvokeOptions] = None) -> GetZeroTrustGatewayCertificatesResult
def get_zero_trust_gateway_certificates_output(account_id: Optional[pulumi.Input[str]] = None,
max_items: Optional[pulumi.Input[int]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetZeroTrustGatewayCertificatesResult]func LookupZeroTrustGatewayCertificates(ctx *Context, args *LookupZeroTrustGatewayCertificatesArgs, opts ...InvokeOption) (*LookupZeroTrustGatewayCertificatesResult, error)
func LookupZeroTrustGatewayCertificatesOutput(ctx *Context, args *LookupZeroTrustGatewayCertificatesOutputArgs, opts ...InvokeOption) LookupZeroTrustGatewayCertificatesResultOutput> Note: This function is named LookupZeroTrustGatewayCertificates in the Go SDK.
public static class GetZeroTrustGatewayCertificates
{
public static Task<GetZeroTrustGatewayCertificatesResult> InvokeAsync(GetZeroTrustGatewayCertificatesArgs args, InvokeOptions? opts = null)
public static Output<GetZeroTrustGatewayCertificatesResult> Invoke(GetZeroTrustGatewayCertificatesInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetZeroTrustGatewayCertificatesResult> getZeroTrustGatewayCertificates(GetZeroTrustGatewayCertificatesArgs args, InvokeOptions options)
public static Output<GetZeroTrustGatewayCertificatesResult> getZeroTrustGatewayCertificates(GetZeroTrustGatewayCertificatesArgs args, InvokeOptions options)
fn::invoke:
function: cloudflare:index/getZeroTrustGatewayCertificates:getZeroTrustGatewayCertificates
arguments:
# arguments dictionaryThe following arguments are supported:
- account_
id str - max_
items int - Max items to fetch, default: 1000
getZeroTrustGatewayCertificates Result
The following output properties are available:
- Account
Id string - Id string
- The provider-assigned unique ID for this managed resource.
- Results
List<Get
Zero Trust Gateway Certificates Result> - The items returned by the data source
- Max
Items int - Max items to fetch, default: 1000
- Account
Id string - Id string
- The provider-assigned unique ID for this managed resource.
- Results
[]Get
Zero Trust Gateway Certificates Result - The items returned by the data source
- Max
Items int - Max items to fetch, default: 1000
- account
Id String - id String
- The provider-assigned unique ID for this managed resource.
- results
List<Get
Zero Trust Gateway Certificates Result> - The items returned by the data source
- max
Items Integer - Max items to fetch, default: 1000
- account
Id string - id string
- The provider-assigned unique ID for this managed resource.
- results
Get
Zero Trust Gateway Certificates Result[] - The items returned by the data source
- max
Items number - Max items to fetch, default: 1000
- account_
id str - id str
- The provider-assigned unique ID for this managed resource.
- results
Sequence[Get
Zero Trust Gateway Certificates Result] - The items returned by the data source
- max_
items int - Max items to fetch, default: 1000
- account
Id String - id String
- The provider-assigned unique ID for this managed resource.
- results List<Property Map>
- The items returned by the data source
- max
Items Number - Max items to fetch, default: 1000
Supporting Types
GetZeroTrustGatewayCertificatesResult
- Binding
Status string - Indicate the read-only deployment status of the certificate on Cloudflare's edge. Gateway TLS interception can use certificates in the 'available' (previously called 'active') state. Available values: "pendingdeployment", "available", "pendingdeletion", "inactive".
- Certificate string
- Provide the CA certificate (read-only).
- Created
At string - Expires
On string - Fingerprint string
- Provide the SHA256 fingerprint of the certificate (read-only).
- Id string
- Identify the certificate with a UUID.
- In
Use bool - Indicate whether Gateway TLS interception uses this certificate (read-only). You cannot set this value directly. To configure interception, use the Gateway configuration setting named
certificate(read-only). - Issuer
Org string - Indicate the organization that issued the certificate (read-only).
- Issuer
Raw string - Provide the entire issuer field of the certificate (read-only).
- Type string
- Indicate the read-only certificate type, BYO-PKI (custom) or Gateway-managed. Available values: "custom", <span pulumi-lang-nodejs=""gatewayManaged"" pulumi-lang-dotnet=""GatewayManaged"" pulumi-lang-go=""gatewayManaged"" pulumi-lang-python=""gateway_managed"" pulumi-lang-yaml=""gatewayManaged"" pulumi-lang-java=""gatewayManaged"">"gateway_managed".
- Updated
At string - Uploaded
On string
- Binding
Status string - Indicate the read-only deployment status of the certificate on Cloudflare's edge. Gateway TLS interception can use certificates in the 'available' (previously called 'active') state. Available values: "pendingdeployment", "available", "pendingdeletion", "inactive".
- Certificate string
- Provide the CA certificate (read-only).
- Created
At string - Expires
On string - Fingerprint string
- Provide the SHA256 fingerprint of the certificate (read-only).
- Id string
- Identify the certificate with a UUID.
- In
Use bool - Indicate whether Gateway TLS interception uses this certificate (read-only). You cannot set this value directly. To configure interception, use the Gateway configuration setting named
certificate(read-only). - Issuer
Org string - Indicate the organization that issued the certificate (read-only).
- Issuer
Raw string - Provide the entire issuer field of the certificate (read-only).
- Type string
- Indicate the read-only certificate type, BYO-PKI (custom) or Gateway-managed. Available values: "custom", <span pulumi-lang-nodejs=""gatewayManaged"" pulumi-lang-dotnet=""GatewayManaged"" pulumi-lang-go=""gatewayManaged"" pulumi-lang-python=""gateway_managed"" pulumi-lang-yaml=""gatewayManaged"" pulumi-lang-java=""gatewayManaged"">"gateway_managed".
- Updated
At string - Uploaded
On string
- binding
Status String - Indicate the read-only deployment status of the certificate on Cloudflare's edge. Gateway TLS interception can use certificates in the 'available' (previously called 'active') state. Available values: "pendingdeployment", "available", "pendingdeletion", "inactive".
- certificate String
- Provide the CA certificate (read-only).
- created
At String - expires
On String - fingerprint String
- Provide the SHA256 fingerprint of the certificate (read-only).
- id String
- Identify the certificate with a UUID.
- in
Use Boolean - Indicate whether Gateway TLS interception uses this certificate (read-only). You cannot set this value directly. To configure interception, use the Gateway configuration setting named
certificate(read-only). - issuer
Org String - Indicate the organization that issued the certificate (read-only).
- issuer
Raw String - Provide the entire issuer field of the certificate (read-only).
- type String
- Indicate the read-only certificate type, BYO-PKI (custom) or Gateway-managed. Available values: "custom", <span pulumi-lang-nodejs=""gatewayManaged"" pulumi-lang-dotnet=""GatewayManaged"" pulumi-lang-go=""gatewayManaged"" pulumi-lang-python=""gateway_managed"" pulumi-lang-yaml=""gatewayManaged"" pulumi-lang-java=""gatewayManaged"">"gateway_managed".
- updated
At String - uploaded
On String
- binding
Status string - Indicate the read-only deployment status of the certificate on Cloudflare's edge. Gateway TLS interception can use certificates in the 'available' (previously called 'active') state. Available values: "pendingdeployment", "available", "pendingdeletion", "inactive".
- certificate string
- Provide the CA certificate (read-only).
- created
At string - expires
On string - fingerprint string
- Provide the SHA256 fingerprint of the certificate (read-only).
- id string
- Identify the certificate with a UUID.
- in
Use boolean - Indicate whether Gateway TLS interception uses this certificate (read-only). You cannot set this value directly. To configure interception, use the Gateway configuration setting named
certificate(read-only). - issuer
Org string - Indicate the organization that issued the certificate (read-only).
- issuer
Raw string - Provide the entire issuer field of the certificate (read-only).
- type string
- Indicate the read-only certificate type, BYO-PKI (custom) or Gateway-managed. Available values: "custom", <span pulumi-lang-nodejs=""gatewayManaged"" pulumi-lang-dotnet=""GatewayManaged"" pulumi-lang-go=""gatewayManaged"" pulumi-lang-python=""gateway_managed"" pulumi-lang-yaml=""gatewayManaged"" pulumi-lang-java=""gatewayManaged"">"gateway_managed".
- updated
At string - uploaded
On string
- binding_
status str - Indicate the read-only deployment status of the certificate on Cloudflare's edge. Gateway TLS interception can use certificates in the 'available' (previously called 'active') state. Available values: "pendingdeployment", "available", "pendingdeletion", "inactive".
- certificate str
- Provide the CA certificate (read-only).
- created_
at str - expires_
on str - fingerprint str
- Provide the SHA256 fingerprint of the certificate (read-only).
- id str
- Identify the certificate with a UUID.
- in_
use bool - Indicate whether Gateway TLS interception uses this certificate (read-only). You cannot set this value directly. To configure interception, use the Gateway configuration setting named
certificate(read-only). - issuer_
org str - Indicate the organization that issued the certificate (read-only).
- issuer_
raw str - Provide the entire issuer field of the certificate (read-only).
- type str
- Indicate the read-only certificate type, BYO-PKI (custom) or Gateway-managed. Available values: "custom", <span pulumi-lang-nodejs=""gatewayManaged"" pulumi-lang-dotnet=""GatewayManaged"" pulumi-lang-go=""gatewayManaged"" pulumi-lang-python=""gateway_managed"" pulumi-lang-yaml=""gatewayManaged"" pulumi-lang-java=""gatewayManaged"">"gateway_managed".
- updated_
at str - uploaded_
on str
- binding
Status String - Indicate the read-only deployment status of the certificate on Cloudflare's edge. Gateway TLS interception can use certificates in the 'available' (previously called 'active') state. Available values: "pendingdeployment", "available", "pendingdeletion", "inactive".
- certificate String
- Provide the CA certificate (read-only).
- created
At String - expires
On String - fingerprint String
- Provide the SHA256 fingerprint of the certificate (read-only).
- id String
- Identify the certificate with a UUID.
- in
Use Boolean - Indicate whether Gateway TLS interception uses this certificate (read-only). You cannot set this value directly. To configure interception, use the Gateway configuration setting named
certificate(read-only). - issuer
Org String - Indicate the organization that issued the certificate (read-only).
- issuer
Raw String - Provide the entire issuer field of the certificate (read-only).
- type String
- Indicate the read-only certificate type, BYO-PKI (custom) or Gateway-managed. Available values: "custom", <span pulumi-lang-nodejs=""gatewayManaged"" pulumi-lang-dotnet=""GatewayManaged"" pulumi-lang-go=""gatewayManaged"" pulumi-lang-python=""gateway_managed"" pulumi-lang-yaml=""gatewayManaged"" pulumi-lang-java=""gatewayManaged"">"gateway_managed".
- updated
At String - uploaded
On String
Package Details
- Repository
- Cloudflare pulumi/pulumi-cloudflare
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudflareTerraform Provider.
