Google Cloud Classic v7.2.2, Jan 1 01

Google Cloud Classic v7.2.2 published on Monday, Jan 1, 0001 by Pulumi

gcp.compute.ManagedSslCertificate

Explore with Pulumi AI

Google Cloud Classic v7.2.2 published on Monday, Jan 1, 0001 by Pulumi

Warning: This resource should be used with extreme caution! Provisioning an SSL certificate is complex. Ensure that you understand the lifecycle of a certificate before attempting complex tasks like cert rotation automatically. This resource will “return” as soon as the certificate object is created, but post-creation the certificate object will go through a “provisioning” process. The provisioning process can complete only when the domain name for which the certificate is created points to a target pool which, itself, points at the certificate. Depending on your DNS provider, this may take some time, and migrating from self-managed certificates to Google-managed certificates may entail some downtime while the certificate provisions.

In conclusion: Be extremely cautious.

Example Usage

Managed Ssl Certificate Basic

Coming soon!

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.compute.ManagedSslCertificate;
import com.pulumi.gcp.compute.ManagedSslCertificateArgs;
import com.pulumi.gcp.compute.inputs.ManagedSslCertificateManagedArgs;
import com.pulumi.gcp.compute.HttpHealthCheck;
import com.pulumi.gcp.compute.HttpHealthCheckArgs;
import com.pulumi.gcp.compute.BackendService;
import com.pulumi.gcp.compute.BackendServiceArgs;
import com.pulumi.gcp.compute.URLMap;
import com.pulumi.gcp.compute.URLMapArgs;
import com.pulumi.gcp.compute.inputs.URLMapHostRuleArgs;
import com.pulumi.gcp.compute.inputs.URLMapPathMatcherArgs;
import com.pulumi.gcp.compute.TargetHttpsProxy;
import com.pulumi.gcp.compute.TargetHttpsProxyArgs;
import com.pulumi.gcp.compute.GlobalForwardingRule;
import com.pulumi.gcp.compute.GlobalForwardingRuleArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var defaultManagedSslCertificate = new ManagedSslCertificate("defaultManagedSslCertificate", ManagedSslCertificateArgs.builder()        
            .managed(ManagedSslCertificateManagedArgs.builder()
                .domains("sslcert.tf-test.club.")
                .build())
            .build());

        var defaultHttpHealthCheck = new HttpHealthCheck("defaultHttpHealthCheck", HttpHealthCheckArgs.builder()        
            .requestPath("/")
            .checkIntervalSec(1)
            .timeoutSec(1)
            .build());

        var defaultBackendService = new BackendService("defaultBackendService", BackendServiceArgs.builder()        
            .portName("http")
            .protocol("HTTP")
            .timeoutSec(10)
            .healthChecks(defaultHttpHealthCheck.id())
            .build());

        var defaultURLMap = new URLMap("defaultURLMap", URLMapArgs.builder()        
            .description("a description")
            .defaultService(defaultBackendService.id())
            .hostRules(URLMapHostRuleArgs.builder()
                .hosts("sslcert.tf-test.club")
                .pathMatcher("allpaths")
                .build())
            .pathMatchers(URLMapPathMatcherArgs.builder()
                .name("allpaths")
                .defaultService(defaultBackendService.id())
                .pathRules(URLMapPathMatcherPathRuleArgs.builder()
                    .paths("/*")
                    .service(defaultBackendService.id())
                    .build())
                .build())
            .build());

        var defaultTargetHttpsProxy = new TargetHttpsProxy("defaultTargetHttpsProxy", TargetHttpsProxyArgs.builder()        
            .urlMap(defaultURLMap.id())
            .sslCertificates(defaultManagedSslCertificate.id())
            .build());

        var defaultGlobalForwardingRule = new GlobalForwardingRule("defaultGlobalForwardingRule", GlobalForwardingRuleArgs.builder()        
            .target(defaultTargetHttpsProxy.id())
            .portRange(443)
            .build());

    }
}

Coming soon!

resources:
  defaultManagedSslCertificate:
    type: gcp:compute:ManagedSslCertificate
    properties:
      managed:
        domains:
          - sslcert.tf-test.club.
  defaultTargetHttpsProxy:
    type: gcp:compute:TargetHttpsProxy
    properties:
      urlMap: ${defaultURLMap.id}
      sslCertificates:
        - ${defaultManagedSslCertificate.id}
  defaultURLMap:
    type: gcp:compute:URLMap
    properties:
      description: a description
      defaultService: ${defaultBackendService.id}
      hostRules:
        - hosts:
            - sslcert.tf-test.club
          pathMatcher: allpaths
      pathMatchers:
        - name: allpaths
          defaultService: ${defaultBackendService.id}
          pathRules:
            - paths:
                - /*
              service: ${defaultBackendService.id}
  defaultBackendService:
    type: gcp:compute:BackendService
    properties:
      portName: http
      protocol: HTTP
      timeoutSec: 10
      healthChecks:
        - ${defaultHttpHealthCheck.id}
  defaultHttpHealthCheck:
    type: gcp:compute:HttpHealthCheck
    properties:
      requestPath: /
      checkIntervalSec: 1
      timeoutSec: 1
  defaultGlobalForwardingRule:
    type: gcp:compute:GlobalForwardingRule
    properties:
      target: ${defaultTargetHttpsProxy.id}
      portRange: 443

Create ManagedSslCertificate Resource

new ManagedSslCertificate(name: string, args?: ManagedSslCertificateArgs, opts?: CustomResourceOptions);

@overload
def ManagedSslCertificate(resource_name: str,
                          opts: Optional[ResourceOptions] = None,
                          certificate_id: Optional[int] = None,
                          description: Optional[str] = None,
                          managed: Optional[ManagedSslCertificateManagedArgs] = None,
                          name: Optional[str] = None,
                          project: Optional[str] = None,
                          type: Optional[str] = None)
@overload
def ManagedSslCertificate(resource_name: str,
                          args: Optional[ManagedSslCertificateArgs] = None,
                          opts: Optional[ResourceOptions] = None)

func NewManagedSslCertificate(ctx *Context, name string, args *ManagedSslCertificateArgs, opts ...ResourceOption) (*ManagedSslCertificate, error)

public ManagedSslCertificate(string name, ManagedSslCertificateArgs? args = null, CustomResourceOptions? opts = null)

public ManagedSslCertificate(String name, ManagedSslCertificateArgs args)
public ManagedSslCertificate(String name, ManagedSslCertificateArgs args, CustomResourceOptions options)

type: gcp:compute:ManagedSslCertificate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

ManagedSslCertificate Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The ManagedSslCertificate resource accepts the following input properties:

CertificateId int

The unique identifier for the resource.

Description string

An optional description of this resource.

Managed ManagedSslCertificateManaged

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

Name string

Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.

These are in the same namespace as the managed SSL certificates.

Project string

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

Type string

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

CertificateId int

The unique identifier for the resource.

Description string

An optional description of this resource.

Managed ManagedSslCertificateManagedArgs

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

Name string

These are in the same namespace as the managed SSL certificates.

Project string

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

Type string

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificateId Integer

The unique identifier for the resource.

description String

An optional description of this resource.

managed ManagedSslCertificateManaged

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name String

These are in the same namespace as the managed SSL certificates.

project String

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

type String

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificateId number

The unique identifier for the resource.

description string

An optional description of this resource.

managed ManagedSslCertificateManaged

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name string

These are in the same namespace as the managed SSL certificates.

project string

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

type string

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificate_id int

The unique identifier for the resource.

description str

An optional description of this resource.

managed ManagedSslCertificateManagedArgs

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name str

These are in the same namespace as the managed SSL certificates.

project str

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

type str

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificateId Number

The unique identifier for the resource.

description String

An optional description of this resource.

managed Property Map

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name String

These are in the same namespace as the managed SSL certificates.

project String

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

type String

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

Outputs

All input properties are implicitly available as output properties. Additionally, the ManagedSslCertificate resource produces the following output properties:

CreationTimestamp string: Creation timestamp in RFC3339 text format.
ExpireTime string: Expire time of the certificate in RFC3339 text format.
Id string: The provider-assigned unique ID for this managed resource.
SelfLink string: The URI of the created resource.
SubjectAlternativeNames List<string>: Domains associated with the certificate via Subject Alternative Name.

CreationTimestamp string: Creation timestamp in RFC3339 text format.
ExpireTime string: Expire time of the certificate in RFC3339 text format.
Id string: The provider-assigned unique ID for this managed resource.
SelfLink string: The URI of the created resource.
SubjectAlternativeNames []string: Domains associated with the certificate via Subject Alternative Name.

creationTimestamp String: Creation timestamp in RFC3339 text format.
expireTime String: Expire time of the certificate in RFC3339 text format.
id String: The provider-assigned unique ID for this managed resource.
selfLink String: The URI of the created resource.
subjectAlternativeNames List<String>: Domains associated with the certificate via Subject Alternative Name.

creationTimestamp string: Creation timestamp in RFC3339 text format.
expireTime string: Expire time of the certificate in RFC3339 text format.
id string: The provider-assigned unique ID for this managed resource.
selfLink string: The URI of the created resource.
subjectAlternativeNames string[]: Domains associated with the certificate via Subject Alternative Name.

creation_timestamp str: Creation timestamp in RFC3339 text format.
expire_time str: Expire time of the certificate in RFC3339 text format.
id str: The provider-assigned unique ID for this managed resource.
self_link str: The URI of the created resource.
subject_alternative_names Sequence[str]: Domains associated with the certificate via Subject Alternative Name.

creationTimestamp String: Creation timestamp in RFC3339 text format.
expireTime String: Expire time of the certificate in RFC3339 text format.
id String: The provider-assigned unique ID for this managed resource.
selfLink String: The URI of the created resource.
subjectAlternativeNames List<String>: Domains associated with the certificate via Subject Alternative Name.

Look up Existing ManagedSslCertificate Resource

Get an existing ManagedSslCertificate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ManagedSslCertificateState, opts?: CustomResourceOptions): ManagedSslCertificate

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        certificate_id: Optional[int] = None,
        creation_timestamp: Optional[str] = None,
        description: Optional[str] = None,
        expire_time: Optional[str] = None,
        managed: Optional[ManagedSslCertificateManagedArgs] = None,
        name: Optional[str] = None,
        project: Optional[str] = None,
        self_link: Optional[str] = None,
        subject_alternative_names: Optional[Sequence[str]] = None,
        type: Optional[str] = None) -> ManagedSslCertificate

func GetManagedSslCertificate(ctx *Context, name string, id IDInput, state *ManagedSslCertificateState, opts ...ResourceOption) (*ManagedSslCertificate, error)

public static ManagedSslCertificate Get(string name, Input<string> id, ManagedSslCertificateState? state, CustomResourceOptions? opts = null)

public static ManagedSslCertificate get(String name, Output<String> id, ManagedSslCertificateState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

CertificateId int

The unique identifier for the resource.

CreationTimestamp string

Creation timestamp in RFC3339 text format.

Description string

An optional description of this resource.

ExpireTime string

Expire time of the certificate in RFC3339 text format.

Managed ManagedSslCertificateManaged

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

Name string

These are in the same namespace as the managed SSL certificates.

Project string

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

SelfLink string

The URI of the created resource.

SubjectAlternativeNames List<string>

Domains associated with the certificate via Subject Alternative Name.

Type string

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

CertificateId int

The unique identifier for the resource.

CreationTimestamp string

Creation timestamp in RFC3339 text format.

Description string

An optional description of this resource.

ExpireTime string

Expire time of the certificate in RFC3339 text format.

Managed ManagedSslCertificateManagedArgs

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

Name string

These are in the same namespace as the managed SSL certificates.

Project string

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

SelfLink string

The URI of the created resource.

SubjectAlternativeNames []string

Domains associated with the certificate via Subject Alternative Name.

Type string

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificateId Integer

The unique identifier for the resource.

creationTimestamp String

Creation timestamp in RFC3339 text format.

description String

An optional description of this resource.

expireTime String

Expire time of the certificate in RFC3339 text format.

managed ManagedSslCertificateManaged

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name String

These are in the same namespace as the managed SSL certificates.

project String

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

selfLink String

The URI of the created resource.

subjectAlternativeNames List<String>

Domains associated with the certificate via Subject Alternative Name.

type String

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificateId number

The unique identifier for the resource.

creationTimestamp string

Creation timestamp in RFC3339 text format.

description string

An optional description of this resource.

expireTime string

Expire time of the certificate in RFC3339 text format.

managed ManagedSslCertificateManaged

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name string

These are in the same namespace as the managed SSL certificates.

project string

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

selfLink string

The URI of the created resource.

subjectAlternativeNames string[]

Domains associated with the certificate via Subject Alternative Name.

type string

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificate_id int

The unique identifier for the resource.

creation_timestamp str

Creation timestamp in RFC3339 text format.

description str

An optional description of this resource.

expire_time str

Expire time of the certificate in RFC3339 text format.

managed ManagedSslCertificateManagedArgs

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name str

These are in the same namespace as the managed SSL certificates.

project str

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

self_link str

The URI of the created resource.

subject_alternative_names Sequence[str]

Domains associated with the certificate via Subject Alternative Name.

type str

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

certificateId Number

The unique identifier for the resource.

creationTimestamp String

Creation timestamp in RFC3339 text format.

description String

An optional description of this resource.

expireTime String

Expire time of the certificate in RFC3339 text format.

managed Property Map

Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.

name String

These are in the same namespace as the managed SSL certificates.

project String

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

selfLink String

The URI of the created resource.

subjectAlternativeNames List<String>

Domains associated with the certificate via Subject Alternative Name.

type String

Enum field whose value is always MANAGED - used to signal to the API which type this is. Default value is MANAGED. Possible values are: MANAGED.

Supporting Types

ManagedSslCertificateManaged, ManagedSslCertificateManagedArgs

Domains List<string>: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

Domains []string: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

domains List<String>: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

domains string[]: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

domains Sequence[str]: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

domains List<String>: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

Import

ManagedSslCertificate can be imported using any of these accepted formats* projects/{{project}}/global/sslCertificates/{{name}} * {{project}}/{{name}} * {{name}} In Terraform v1.5.0 and later, use an import block to import ManagedSslCertificate using one of the formats above. For exampletf import {

id = “projects/{{project}}/global/sslCertificates/{{name}}”

to = google_compute_managed_ssl_certificate.default }

 $ pulumi import gcp:compute/managedSslCertificate:ManagedSslCertificate When using the [`terraform import` command](https://developer.hashicorp.com/terraform/cli/commands/import), ManagedSslCertificate can be imported using one of the formats above. For example

 $ pulumi import gcp:compute/managedSslCertificate:ManagedSslCertificate default projects/{{project}}/global/sslCertificates/{{name}}

 $ pulumi import gcp:compute/managedSslCertificate:ManagedSslCertificate default {{project}}/{{name}}

 $ pulumi import gcp:compute/managedSslCertificate:ManagedSslCertificate default {{name}}

Package Details

Repository: Google Cloud (GCP) Classic pulumi/pulumi-gcp
License: Apache-2.0
Notes: This Pulumi package is based on the google-beta Terraform Provider.

Google Cloud Classic v7.2.2 published on Monday, Jan 1, 0001 by Pulumi

pulumi/pulumi-gcp

gcp.compute.ManagedSslCertificate

On this page

On this page

Example Usage

Managed Ssl Certificate Basic

Create ManagedSslCertificate Resource

ManagedSslCertificate Resource Properties

Inputs

Outputs

Look up Existing ManagedSslCertificate Resource

Supporting Types

ManagedSslCertificateManaged, ManagedSslCertificateManagedArgs

Import

Package Details

On this page

On this page