1. Packages
  2. Google Cloud Native
  3. API Docs
  4. apigee
  5. apigee/v1
  6. TargetServer

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.apigee/v1.TargetServer

Explore with Pulumi AI

google-native logo

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

    Creates a TargetServer in the specified environment.

    Create TargetServer Resource

    new TargetServer(name: string, args: TargetServerArgs, opts?: CustomResourceOptions);
    @overload
    def TargetServer(resource_name: str,
                     opts: Optional[ResourceOptions] = None,
                     description: Optional[str] = None,
                     environment_id: Optional[str] = None,
                     host: Optional[str] = None,
                     is_enabled: Optional[bool] = None,
                     name: Optional[str] = None,
                     organization_id: Optional[str] = None,
                     port: Optional[int] = None,
                     protocol: Optional[TargetServerProtocol] = None,
                     s_sl_info: Optional[GoogleCloudApigeeV1TlsInfoArgs] = None)
    @overload
    def TargetServer(resource_name: str,
                     args: TargetServerArgs,
                     opts: Optional[ResourceOptions] = None)
    func NewTargetServer(ctx *Context, name string, args TargetServerArgs, opts ...ResourceOption) (*TargetServer, error)
    public TargetServer(string name, TargetServerArgs args, CustomResourceOptions? opts = null)
    public TargetServer(String name, TargetServerArgs args)
    public TargetServer(String name, TargetServerArgs args, CustomResourceOptions options)
    
    type: google-native:apigee/v1:TargetServer
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args TargetServerArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args TargetServerArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args TargetServerArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args TargetServerArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args TargetServerArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    TargetServer Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The TargetServer resource accepts the following input properties:

    EnvironmentId string
    Host string
    The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
    OrganizationId string
    Port int
    The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
    Description string
    Optional. A human-readable description of this TargetServer.
    IsEnabled bool
    Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
    Name string
    The resource id of this target server. Values must match the regular expression
    Protocol Pulumi.GoogleNative.Apigee.V1.TargetServerProtocol
    Immutable. The protocol used by this TargetServer.
    SSLInfo Pulumi.GoogleNative.Apigee.V1.Inputs.GoogleCloudApigeeV1TlsInfo
    Optional. Specifies TLS configuration info for this TargetServer. The JSON name is sSLInfo for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
    EnvironmentId string
    Host string
    The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
    OrganizationId string
    Port int
    The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
    Description string
    Optional. A human-readable description of this TargetServer.
    IsEnabled bool
    Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
    Name string
    The resource id of this target server. Values must match the regular expression
    Protocol TargetServerProtocol
    Immutable. The protocol used by this TargetServer.
    SSLInfo GoogleCloudApigeeV1TlsInfoArgs
    Optional. Specifies TLS configuration info for this TargetServer. The JSON name is sSLInfo for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
    environmentId String
    host String
    The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
    organizationId String
    port Integer
    The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
    description String
    Optional. A human-readable description of this TargetServer.
    isEnabled Boolean
    Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
    name String
    The resource id of this target server. Values must match the regular expression
    protocol TargetServerProtocol
    Immutable. The protocol used by this TargetServer.
    sSLInfo GoogleCloudApigeeV1TlsInfo
    Optional. Specifies TLS configuration info for this TargetServer. The JSON name is sSLInfo for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
    environmentId string
    host string
    The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
    organizationId string
    port number
    The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
    description string
    Optional. A human-readable description of this TargetServer.
    isEnabled boolean
    Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
    name string
    The resource id of this target server. Values must match the regular expression
    protocol TargetServerProtocol
    Immutable. The protocol used by this TargetServer.
    sSLInfo GoogleCloudApigeeV1TlsInfo
    Optional. Specifies TLS configuration info for this TargetServer. The JSON name is sSLInfo for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
    environment_id str
    host str
    The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
    organization_id str
    port int
    The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
    description str
    Optional. A human-readable description of this TargetServer.
    is_enabled bool
    Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
    name str
    The resource id of this target server. Values must match the regular expression
    protocol TargetServerProtocol
    Immutable. The protocol used by this TargetServer.
    s_sl_info GoogleCloudApigeeV1TlsInfoArgs
    Optional. Specifies TLS configuration info for this TargetServer. The JSON name is sSLInfo for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
    environmentId String
    host String
    The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
    organizationId String
    port Number
    The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
    description String
    Optional. A human-readable description of this TargetServer.
    isEnabled Boolean
    Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
    name String
    The resource id of this target server. Values must match the regular expression
    protocol "PROTOCOL_UNSPECIFIED" | "HTTP" | "HTTP2" | "GRPC_TARGET" | "GRPC" | "EXTERNAL_CALLOUT"
    Immutable. The protocol used by this TargetServer.
    sSLInfo Property Map
    Optional. Specifies TLS configuration info for this TargetServer. The JSON name is sSLInfo for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the TargetServer resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Supporting Types

    GoogleCloudApigeeV1TlsInfo, GoogleCloudApigeeV1TlsInfoArgs

    Enabled bool
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    Ciphers List<string>
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    ClientAuthEnabled bool
    Optional. Enables two-way TLS.
    CommonName Pulumi.GoogleNative.Apigee.V1.Inputs.GoogleCloudApigeeV1TlsInfoCommonName
    The TLS Common Name of the certificate.
    IgnoreValidationErrors bool
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    KeyAlias string
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    KeyStore string
    Required if client_auth_enabled is true. The resource ID of the keystore.
    Protocols List<string>
    The TLS versioins to be used.
    TrustStore string
    The resource ID of the truststore.
    Enabled bool
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    Ciphers []string
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    ClientAuthEnabled bool
    Optional. Enables two-way TLS.
    CommonName GoogleCloudApigeeV1TlsInfoCommonName
    The TLS Common Name of the certificate.
    IgnoreValidationErrors bool
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    KeyAlias string
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    KeyStore string
    Required if client_auth_enabled is true. The resource ID of the keystore.
    Protocols []string
    The TLS versioins to be used.
    TrustStore string
    The resource ID of the truststore.
    enabled Boolean
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ciphers List<String>
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    clientAuthEnabled Boolean
    Optional. Enables two-way TLS.
    commonName GoogleCloudApigeeV1TlsInfoCommonName
    The TLS Common Name of the certificate.
    ignoreValidationErrors Boolean
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    keyAlias String
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    keyStore String
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols List<String>
    The TLS versioins to be used.
    trustStore String
    The resource ID of the truststore.
    enabled boolean
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ciphers string[]
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    clientAuthEnabled boolean
    Optional. Enables two-way TLS.
    commonName GoogleCloudApigeeV1TlsInfoCommonName
    The TLS Common Name of the certificate.
    ignoreValidationErrors boolean
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    keyAlias string
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    keyStore string
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols string[]
    The TLS versioins to be used.
    trustStore string
    The resource ID of the truststore.
    enabled bool
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ciphers Sequence[str]
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    client_auth_enabled bool
    Optional. Enables two-way TLS.
    common_name GoogleCloudApigeeV1TlsInfoCommonName
    The TLS Common Name of the certificate.
    ignore_validation_errors bool
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    key_alias str
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    key_store str
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols Sequence[str]
    The TLS versioins to be used.
    trust_store str
    The resource ID of the truststore.
    enabled Boolean
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ciphers List<String>
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    clientAuthEnabled Boolean
    Optional. Enables two-way TLS.
    commonName Property Map
    The TLS Common Name of the certificate.
    ignoreValidationErrors Boolean
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    keyAlias String
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    keyStore String
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols List<String>
    The TLS versioins to be used.
    trustStore String
    The resource ID of the truststore.

    GoogleCloudApigeeV1TlsInfoCommonName, GoogleCloudApigeeV1TlsInfoCommonNameArgs

    Value string
    The TLS Common Name string of the certificate.
    WildcardMatch bool
    Indicates whether the cert should be matched against as a wildcard cert.
    Value string
    The TLS Common Name string of the certificate.
    WildcardMatch bool
    Indicates whether the cert should be matched against as a wildcard cert.
    value String
    The TLS Common Name string of the certificate.
    wildcardMatch Boolean
    Indicates whether the cert should be matched against as a wildcard cert.
    value string
    The TLS Common Name string of the certificate.
    wildcardMatch boolean
    Indicates whether the cert should be matched against as a wildcard cert.
    value str
    The TLS Common Name string of the certificate.
    wildcard_match bool
    Indicates whether the cert should be matched against as a wildcard cert.
    value String
    The TLS Common Name string of the certificate.
    wildcardMatch Boolean
    Indicates whether the cert should be matched against as a wildcard cert.

    GoogleCloudApigeeV1TlsInfoCommonNameResponse, GoogleCloudApigeeV1TlsInfoCommonNameResponseArgs

    Value string
    The TLS Common Name string of the certificate.
    WildcardMatch bool
    Indicates whether the cert should be matched against as a wildcard cert.
    Value string
    The TLS Common Name string of the certificate.
    WildcardMatch bool
    Indicates whether the cert should be matched against as a wildcard cert.
    value String
    The TLS Common Name string of the certificate.
    wildcardMatch Boolean
    Indicates whether the cert should be matched against as a wildcard cert.
    value string
    The TLS Common Name string of the certificate.
    wildcardMatch boolean
    Indicates whether the cert should be matched against as a wildcard cert.
    value str
    The TLS Common Name string of the certificate.
    wildcard_match bool
    Indicates whether the cert should be matched against as a wildcard cert.
    value String
    The TLS Common Name string of the certificate.
    wildcardMatch Boolean
    Indicates whether the cert should be matched against as a wildcard cert.

    GoogleCloudApigeeV1TlsInfoResponse, GoogleCloudApigeeV1TlsInfoResponseArgs

    Ciphers List<string>
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    ClientAuthEnabled bool
    Optional. Enables two-way TLS.
    CommonName Pulumi.GoogleNative.Apigee.V1.Inputs.GoogleCloudApigeeV1TlsInfoCommonNameResponse
    The TLS Common Name of the certificate.
    Enabled bool
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    IgnoreValidationErrors bool
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    KeyAlias string
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    KeyStore string
    Required if client_auth_enabled is true. The resource ID of the keystore.
    Protocols List<string>
    The TLS versioins to be used.
    TrustStore string
    The resource ID of the truststore.
    Ciphers []string
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    ClientAuthEnabled bool
    Optional. Enables two-way TLS.
    CommonName GoogleCloudApigeeV1TlsInfoCommonNameResponse
    The TLS Common Name of the certificate.
    Enabled bool
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    IgnoreValidationErrors bool
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    KeyAlias string
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    KeyStore string
    Required if client_auth_enabled is true. The resource ID of the keystore.
    Protocols []string
    The TLS versioins to be used.
    TrustStore string
    The resource ID of the truststore.
    ciphers List<String>
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    clientAuthEnabled Boolean
    Optional. Enables two-way TLS.
    commonName GoogleCloudApigeeV1TlsInfoCommonNameResponse
    The TLS Common Name of the certificate.
    enabled Boolean
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ignoreValidationErrors Boolean
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    keyAlias String
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    keyStore String
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols List<String>
    The TLS versioins to be used.
    trustStore String
    The resource ID of the truststore.
    ciphers string[]
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    clientAuthEnabled boolean
    Optional. Enables two-way TLS.
    commonName GoogleCloudApigeeV1TlsInfoCommonNameResponse
    The TLS Common Name of the certificate.
    enabled boolean
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ignoreValidationErrors boolean
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    keyAlias string
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    keyStore string
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols string[]
    The TLS versioins to be used.
    trustStore string
    The resource ID of the truststore.
    ciphers Sequence[str]
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    client_auth_enabled bool
    Optional. Enables two-way TLS.
    common_name GoogleCloudApigeeV1TlsInfoCommonNameResponse
    The TLS Common Name of the certificate.
    enabled bool
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ignore_validation_errors bool
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    key_alias str
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    key_store str
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols Sequence[str]
    The TLS versioins to be used.
    trust_store str
    The resource ID of the truststore.
    ciphers List<String>
    The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
    clientAuthEnabled Boolean
    Optional. Enables two-way TLS.
    commonName Property Map
    The TLS Common Name of the certificate.
    enabled Boolean
    Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
    ignoreValidationErrors Boolean
    If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
    keyAlias String
    Required if client_auth_enabled is true. The resource ID for the alias containing the private key and cert.
    keyStore String
    Required if client_auth_enabled is true. The resource ID of the keystore.
    protocols List<String>
    The TLS versioins to be used.
    trustStore String
    The resource ID of the truststore.

    TargetServerProtocol, TargetServerProtocolArgs

    ProtocolUnspecified
    PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
    Http
    HTTPThe TargetServer uses HTTP.
    Http2
    HTTP2The TargetSever uses HTTP2.
    GrpcTarget
    GRPC_TARGETThe TargetServer uses GRPC.
    Grpc
    GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
    ExternalCallout
    EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
    TargetServerProtocolProtocolUnspecified
    PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
    TargetServerProtocolHttp
    HTTPThe TargetServer uses HTTP.
    TargetServerProtocolHttp2
    HTTP2The TargetSever uses HTTP2.
    TargetServerProtocolGrpcTarget
    GRPC_TARGETThe TargetServer uses GRPC.
    TargetServerProtocolGrpc
    GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
    TargetServerProtocolExternalCallout
    EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
    ProtocolUnspecified
    PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
    Http
    HTTPThe TargetServer uses HTTP.
    Http2
    HTTP2The TargetSever uses HTTP2.
    GrpcTarget
    GRPC_TARGETThe TargetServer uses GRPC.
    Grpc
    GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
    ExternalCallout
    EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
    ProtocolUnspecified
    PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
    Http
    HTTPThe TargetServer uses HTTP.
    Http2
    HTTP2The TargetSever uses HTTP2.
    GrpcTarget
    GRPC_TARGETThe TargetServer uses GRPC.
    Grpc
    GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
    ExternalCallout
    EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
    PROTOCOL_UNSPECIFIED
    PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
    HTTP
    HTTPThe TargetServer uses HTTP.
    HTTP2
    HTTP2The TargetSever uses HTTP2.
    GRPC_TARGET
    GRPC_TARGETThe TargetServer uses GRPC.
    GRPC
    GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
    EXTERNAL_CALLOUT
    EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
    "PROTOCOL_UNSPECIFIED"
    PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
    "HTTP"
    HTTPThe TargetServer uses HTTP.
    "HTTP2"
    HTTP2The TargetSever uses HTTP2.
    "GRPC_TARGET"
    GRPC_TARGETThe TargetServer uses GRPC.
    "GRPC"
    GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
    "EXTERNAL_CALLOUT"
    EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy

    Package Details

    Repository
    Google Cloud Native pulumi/pulumi-google-native
    License
    Apache-2.0
    google-native logo

    Google Cloud Native is in preview. Google Cloud Classic is fully supported.

    Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi