gcp.sql.SslCert
Creates a new Google SQL SSL Cert on a Google SQL Instance. For more information, see the official documentation, or the JSON API.
Note: All arguments including the private key will be stored in the raw state as plain-text
Example Usage
Example creating a SQL Client Certificate.
using System.Collections.Generic;
using Pulumi;
using Gcp = Pulumi.Gcp;
using Random = Pulumi.Random;
return await Deployment.RunAsync(() =>
{
var dbNameSuffix = new Random.RandomId("dbNameSuffix", new()
{
ByteLength = 4,
});
var main = new Gcp.Sql.DatabaseInstance("main", new()
{
DatabaseVersion = "MYSQL_5_7",
Settings = new Gcp.Sql.Inputs.DatabaseInstanceSettingsArgs
{
Tier = "db-f1-micro",
},
});
var clientCert = new Gcp.Sql.SslCert("clientCert", new()
{
CommonName = "client-name",
Instance = main.Name,
});
});
package main
import (
"github.com/pulumi/pulumi-gcp/sdk/v6/go/gcp/sql"
"github.com/pulumi/pulumi-random/sdk/v4/go/random"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := random.NewRandomId(ctx, "dbNameSuffix", &random.RandomIdArgs{
ByteLength: pulumi.Int(4),
})
if err != nil {
return err
}
main, err := sql.NewDatabaseInstance(ctx, "main", &sql.DatabaseInstanceArgs{
DatabaseVersion: pulumi.String("MYSQL_5_7"),
Settings: &sql.DatabaseInstanceSettingsArgs{
Tier: pulumi.String("db-f1-micro"),
},
})
if err != nil {
return err
}
_, err = sql.NewSslCert(ctx, "clientCert", &sql.SslCertArgs{
CommonName: pulumi.String("client-name"),
Instance: main.Name,
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.random.RandomId;
import com.pulumi.random.RandomIdArgs;
import com.pulumi.gcp.sql.DatabaseInstance;
import com.pulumi.gcp.sql.DatabaseInstanceArgs;
import com.pulumi.gcp.sql.inputs.DatabaseInstanceSettingsArgs;
import com.pulumi.gcp.sql.SslCert;
import com.pulumi.gcp.sql.SslCertArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var dbNameSuffix = new RandomId("dbNameSuffix", RandomIdArgs.builder()
.byteLength(4)
.build());
var main = new DatabaseInstance("main", DatabaseInstanceArgs.builder()
.databaseVersion("MYSQL_5_7")
.settings(DatabaseInstanceSettingsArgs.builder()
.tier("db-f1-micro")
.build())
.build());
var clientCert = new SslCert("clientCert", SslCertArgs.builder()
.commonName("client-name")
.instance(main.name())
.build());
}
}
import pulumi
import pulumi_gcp as gcp
import pulumi_random as random
db_name_suffix = random.RandomId("dbNameSuffix", byte_length=4)
main = gcp.sql.DatabaseInstance("main",
database_version="MYSQL_5_7",
settings=gcp.sql.DatabaseInstanceSettingsArgs(
tier="db-f1-micro",
))
client_cert = gcp.sql.SslCert("clientCert",
common_name="client-name",
instance=main.name)
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
import * as random from "@pulumi/random";
const dbNameSuffix = new random.RandomId("dbNameSuffix", {byteLength: 4});
const main = new gcp.sql.DatabaseInstance("main", {
databaseVersion: "MYSQL_5_7",
settings: {
tier: "db-f1-micro",
},
});
const clientCert = new gcp.sql.SslCert("clientCert", {
commonName: "client-name",
instance: main.name,
});
resources:
dbNameSuffix:
type: random:RandomId
properties:
byteLength: 4
main:
type: gcp:sql:DatabaseInstance
properties:
databaseVersion: MYSQL_5_7
settings:
tier: db-f1-micro
clientCert:
type: gcp:sql:SslCert
properties:
commonName: client-name
instance: ${main.name}
Create SslCert Resource
new SslCert(name: string, args: SslCertArgs, opts?: CustomResourceOptions);@overload
def SslCert(resource_name: str,
opts: Optional[ResourceOptions] = None,
common_name: Optional[str] = None,
instance: Optional[str] = None,
project: Optional[str] = None)
@overload
def SslCert(resource_name: str,
args: SslCertArgs,
opts: Optional[ResourceOptions] = None)func NewSslCert(ctx *Context, name string, args SslCertArgs, opts ...ResourceOption) (*SslCert, error)public SslCert(string name, SslCertArgs args, CustomResourceOptions? opts = null)
public SslCert(String name, SslCertArgs args)
public SslCert(String name, SslCertArgs args, CustomResourceOptions options)
type: gcp:sql:SslCert
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SslCertArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SslCertArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SslCertArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SslCertArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SslCertArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
SslCert Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The SslCert resource accepts the following input properties:
- Common
Name string The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- Instance string
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- Project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Common
Name string The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- Instance string
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- Project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- common
Name String The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- instance String
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- project String
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- common
Name string The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- instance string
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- common_
name str The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- instance str
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- project str
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- common
Name String The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- instance String
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- project String
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
Outputs
All input properties are implicitly available as output properties. Additionally, the SslCert resource produces the following output properties:
- Cert string
The actual certificate data for this client certificate.
- Cert
Serial stringNumber The serial number extracted from the certificate data.
- Create
Time string The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Expiration
Time string The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Id string
The provider-assigned unique ID for this managed resource.
- Private
Key string The private key associated with the client certificate.
- Server
Ca stringCert The CA cert of the server this client cert was generated from.
- Sha1Fingerprint string
The SHA1 Fingerprint of the certificate.
- Cert string
The actual certificate data for this client certificate.
- Cert
Serial stringNumber The serial number extracted from the certificate data.
- Create
Time string The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Expiration
Time string The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Id string
The provider-assigned unique ID for this managed resource.
- Private
Key string The private key associated with the client certificate.
- Server
Ca stringCert The CA cert of the server this client cert was generated from.
- Sha1Fingerprint string
The SHA1 Fingerprint of the certificate.
- cert String
The actual certificate data for this client certificate.
- cert
Serial StringNumber The serial number extracted from the certificate data.
- create
Time String The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration
Time String The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- id String
The provider-assigned unique ID for this managed resource.
- private
Key String The private key associated with the client certificate.
- server
Ca StringCert The CA cert of the server this client cert was generated from.
- sha1Fingerprint String
The SHA1 Fingerprint of the certificate.
- cert string
The actual certificate data for this client certificate.
- cert
Serial stringNumber The serial number extracted from the certificate data.
- create
Time string The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration
Time string The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- id string
The provider-assigned unique ID for this managed resource.
- private
Key string The private key associated with the client certificate.
- server
Ca stringCert The CA cert of the server this client cert was generated from.
- sha1Fingerprint string
The SHA1 Fingerprint of the certificate.
- cert str
The actual certificate data for this client certificate.
- cert_
serial_ strnumber The serial number extracted from the certificate data.
- create_
time str The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration_
time str The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- id str
The provider-assigned unique ID for this managed resource.
- private_
key str The private key associated with the client certificate.
- server_
ca_ strcert The CA cert of the server this client cert was generated from.
- sha1_
fingerprint str The SHA1 Fingerprint of the certificate.
- cert String
The actual certificate data for this client certificate.
- cert
Serial StringNumber The serial number extracted from the certificate data.
- create
Time String The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration
Time String The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- id String
The provider-assigned unique ID for this managed resource.
- private
Key String The private key associated with the client certificate.
- server
Ca StringCert The CA cert of the server this client cert was generated from.
- sha1Fingerprint String
The SHA1 Fingerprint of the certificate.
Look up Existing SslCert Resource
Get an existing SslCert resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SslCertState, opts?: CustomResourceOptions): SslCert@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
cert: Optional[str] = None,
cert_serial_number: Optional[str] = None,
common_name: Optional[str] = None,
create_time: Optional[str] = None,
expiration_time: Optional[str] = None,
instance: Optional[str] = None,
private_key: Optional[str] = None,
project: Optional[str] = None,
server_ca_cert: Optional[str] = None,
sha1_fingerprint: Optional[str] = None) -> SslCertfunc GetSslCert(ctx *Context, name string, id IDInput, state *SslCertState, opts ...ResourceOption) (*SslCert, error)public static SslCert Get(string name, Input<string> id, SslCertState? state, CustomResourceOptions? opts = null)public static SslCert get(String name, Output<String> id, SslCertState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Cert string
The actual certificate data for this client certificate.
- Cert
Serial stringNumber The serial number extracted from the certificate data.
- Common
Name string The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- Create
Time string The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Expiration
Time string The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Instance string
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- Private
Key string The private key associated with the client certificate.
- Project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Server
Ca stringCert The CA cert of the server this client cert was generated from.
- Sha1Fingerprint string
The SHA1 Fingerprint of the certificate.
- Cert string
The actual certificate data for this client certificate.
- Cert
Serial stringNumber The serial number extracted from the certificate data.
- Common
Name string The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- Create
Time string The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Expiration
Time string The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- Instance string
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- Private
Key string The private key associated with the client certificate.
- Project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Server
Ca stringCert The CA cert of the server this client cert was generated from.
- Sha1Fingerprint string
The SHA1 Fingerprint of the certificate.
- cert String
The actual certificate data for this client certificate.
- cert
Serial StringNumber The serial number extracted from the certificate data.
- common
Name String The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- create
Time String The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration
Time String The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- instance String
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- private
Key String The private key associated with the client certificate.
- project String
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- server
Ca StringCert The CA cert of the server this client cert was generated from.
- sha1Fingerprint String
The SHA1 Fingerprint of the certificate.
- cert string
The actual certificate data for this client certificate.
- cert
Serial stringNumber The serial number extracted from the certificate data.
- common
Name string The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- create
Time string The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration
Time string The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- instance string
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- private
Key string The private key associated with the client certificate.
- project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- server
Ca stringCert The CA cert of the server this client cert was generated from.
- sha1Fingerprint string
The SHA1 Fingerprint of the certificate.
- cert str
The actual certificate data for this client certificate.
- cert_
serial_ strnumber The serial number extracted from the certificate data.
- common_
name str The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- create_
time str The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration_
time str The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- instance str
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- private_
key str The private key associated with the client certificate.
- project str
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- server_
ca_ strcert The CA cert of the server this client cert was generated from.
- sha1_
fingerprint str The SHA1 Fingerprint of the certificate.
- cert String
The actual certificate data for this client certificate.
- cert
Serial StringNumber The serial number extracted from the certificate data.
- common
Name String The common name to be used in the certificate to identify the client. Constrained to [a-zA-Z.-_ ]+. Changing this forces a new resource to be created.
- create
Time String The time when the certificate was created in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- expiration
Time String The time when the certificate expires in RFC 3339 format, for example 2012-11-15T16:19:00.094Z.
- instance String
The name of the Cloud SQL instance. Changing this forces a new resource to be created.
- private
Key String The private key associated with the client certificate.
- project String
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- server
Ca StringCert The CA cert of the server this client cert was generated from.
- sha1Fingerprint String
The SHA1 Fingerprint of the certificate.
Import
Since the contents of the certificate cannot be accessed after its creation, this resource cannot be imported.
Package Details
- Repository
- Google Cloud (GCP) Classic pulumi/pulumi-gcp
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
google-betaTerraform Provider.