Google Native

Pulumi Official
Package maintained by Pulumi
v0.22.0 published on Friday, Jul 29, 2022 by Pulumi

EkmConnection

Creates a new EkmConnection in a given Project and Location. Note - this resource’s API doesn’t support deletion. When deleted, the resource will persist on Google Cloud even though it will be deleted from Pulumi state.

Create a EkmConnection Resource

new EkmConnection(name: string, args?: EkmConnectionArgs, opts?: CustomResourceOptions);
@overload
def EkmConnection(resource_name: str,
                  opts: Optional[ResourceOptions] = None,
                  ekm_connection_id: Optional[str] = None,
                  etag: Optional[str] = None,
                  location: Optional[str] = None,
                  project: Optional[str] = None,
                  service_resolvers: Optional[Sequence[ServiceResolverArgs]] = None)
@overload
def EkmConnection(resource_name: str,
                  args: Optional[EkmConnectionArgs] = None,
                  opts: Optional[ResourceOptions] = None)
func NewEkmConnection(ctx *Context, name string, args *EkmConnectionArgs, opts ...ResourceOption) (*EkmConnection, error)
public EkmConnection(string name, EkmConnectionArgs? args = null, CustomResourceOptions? opts = null)
public EkmConnection(String name, EkmConnectionArgs args)
public EkmConnection(String name, EkmConnectionArgs args, CustomResourceOptions options)
type: google-native:cloudkms/v1:EkmConnection
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args EkmConnectionArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args EkmConnectionArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args EkmConnectionArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args EkmConnectionArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args EkmConnectionArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

EkmConnection Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The EkmConnection resource accepts the following input properties:

EkmConnectionId string

Required. It must be unique within a location and match the regular expression [a-zA-Z0-9_-]{1,63}.

Etag string

Optional. This checksum is computed by the server based on the value of other fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

Location string
Project string
ServiceResolvers List<Pulumi.GoogleNative.Cloudkms.V1.Inputs.ServiceResolverArgs>

A list of ServiceResolvers where the EKM can be reached. There should be one ServiceResolver per EKM replica. Currently, only a single ServiceResolver is supported.

EkmConnectionId string

Required. It must be unique within a location and match the regular expression [a-zA-Z0-9_-]{1,63}.

Etag string

Optional. This checksum is computed by the server based on the value of other fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

Location string
Project string
ServiceResolvers []ServiceResolverArgs

A list of ServiceResolvers where the EKM can be reached. There should be one ServiceResolver per EKM replica. Currently, only a single ServiceResolver is supported.

ekmConnectionId String

Required. It must be unique within a location and match the regular expression [a-zA-Z0-9_-]{1,63}.

etag String

Optional. This checksum is computed by the server based on the value of other fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

location String
project String
serviceResolvers List<ServiceResolverArgs>

A list of ServiceResolvers where the EKM can be reached. There should be one ServiceResolver per EKM replica. Currently, only a single ServiceResolver is supported.

ekmConnectionId string

Required. It must be unique within a location and match the regular expression [a-zA-Z0-9_-]{1,63}.

etag string

Optional. This checksum is computed by the server based on the value of other fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

location string
project string
serviceResolvers ServiceResolverArgs[]

A list of ServiceResolvers where the EKM can be reached. There should be one ServiceResolver per EKM replica. Currently, only a single ServiceResolver is supported.

ekm_connection_id str

Required. It must be unique within a location and match the regular expression [a-zA-Z0-9_-]{1,63}.

etag str

Optional. This checksum is computed by the server based on the value of other fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

location str
project str
service_resolvers Sequence[ServiceResolverArgs]

A list of ServiceResolvers where the EKM can be reached. There should be one ServiceResolver per EKM replica. Currently, only a single ServiceResolver is supported.

ekmConnectionId String

Required. It must be unique within a location and match the regular expression [a-zA-Z0-9_-]{1,63}.

etag String

Optional. This checksum is computed by the server based on the value of other fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

location String
project String
serviceResolvers List<Property Map>

A list of ServiceResolvers where the EKM can be reached. There should be one ServiceResolver per EKM replica. Currently, only a single ServiceResolver is supported.

Outputs

All input properties are implicitly available as output properties. Additionally, the EkmConnection resource produces the following output properties:

CreateTime string

The time at which the EkmConnection was created.

Id string

The provider-assigned unique ID for this managed resource.

Name string

The resource name for the EkmConnection in the format projects/*/locations/*/ekmConnections/*.

CreateTime string

The time at which the EkmConnection was created.

Id string

The provider-assigned unique ID for this managed resource.

Name string

The resource name for the EkmConnection in the format projects/*/locations/*/ekmConnections/*.

createTime String

The time at which the EkmConnection was created.

id String

The provider-assigned unique ID for this managed resource.

name String

The resource name for the EkmConnection in the format projects/*/locations/*/ekmConnections/*.

createTime string

The time at which the EkmConnection was created.

id string

The provider-assigned unique ID for this managed resource.

name string

The resource name for the EkmConnection in the format projects/*/locations/*/ekmConnections/*.

create_time str

The time at which the EkmConnection was created.

id str

The provider-assigned unique ID for this managed resource.

name str

The resource name for the EkmConnection in the format projects/*/locations/*/ekmConnections/*.

createTime String

The time at which the EkmConnection was created.

id String

The provider-assigned unique ID for this managed resource.

name String

The resource name for the EkmConnection in the format projects/*/locations/*/ekmConnections/*.

Supporting Types

Certificate

RawDer string

The raw certificate bytes in DER format.

RawDer string

The raw certificate bytes in DER format.

rawDer String

The raw certificate bytes in DER format.

rawDer string

The raw certificate bytes in DER format.

raw_der str

The raw certificate bytes in DER format.

rawDer String

The raw certificate bytes in DER format.

CertificateResponse

Issuer string

The issuer distinguished name in RFC 2253 format. Only present if parsed is true.

NotAfterTime string

The certificate is not valid after this time. Only present if parsed is true.

NotBeforeTime string

The certificate is not valid before this time. Only present if parsed is true.

Parsed bool

True if the certificate was parsed successfully.

RawDer string

The raw certificate bytes in DER format.

SerialNumber string

The certificate serial number as a hex string. Only present if parsed is true.

Sha256Fingerprint string

The SHA-256 certificate fingerprint as a hex string. Only present if parsed is true.

Subject string

The subject distinguished name in RFC 2253 format. Only present if parsed is true.

SubjectAlternativeDnsNames List<string>

The subject Alternative DNS names. Only present if parsed is true.

Issuer string

The issuer distinguished name in RFC 2253 format. Only present if parsed is true.

NotAfterTime string

The certificate is not valid after this time. Only present if parsed is true.

NotBeforeTime string

The certificate is not valid before this time. Only present if parsed is true.

Parsed bool

True if the certificate was parsed successfully.

RawDer string

The raw certificate bytes in DER format.

SerialNumber string

The certificate serial number as a hex string. Only present if parsed is true.

Sha256Fingerprint string

The SHA-256 certificate fingerprint as a hex string. Only present if parsed is true.

Subject string

The subject distinguished name in RFC 2253 format. Only present if parsed is true.

SubjectAlternativeDnsNames []string

The subject Alternative DNS names. Only present if parsed is true.

issuer String

The issuer distinguished name in RFC 2253 format. Only present if parsed is true.

notAfterTime String

The certificate is not valid after this time. Only present if parsed is true.

notBeforeTime String

The certificate is not valid before this time. Only present if parsed is true.

parsed Boolean

True if the certificate was parsed successfully.

rawDer String

The raw certificate bytes in DER format.

serialNumber String

The certificate serial number as a hex string. Only present if parsed is true.

sha256Fingerprint String

The SHA-256 certificate fingerprint as a hex string. Only present if parsed is true.

subject String

The subject distinguished name in RFC 2253 format. Only present if parsed is true.

subjectAlternativeDnsNames List<String>

The subject Alternative DNS names. Only present if parsed is true.

issuer string

The issuer distinguished name in RFC 2253 format. Only present if parsed is true.

notAfterTime string

The certificate is not valid after this time. Only present if parsed is true.

notBeforeTime string

The certificate is not valid before this time. Only present if parsed is true.

parsed boolean

True if the certificate was parsed successfully.

rawDer string

The raw certificate bytes in DER format.

serialNumber string

The certificate serial number as a hex string. Only present if parsed is true.

sha256Fingerprint string

The SHA-256 certificate fingerprint as a hex string. Only present if parsed is true.

subject string

The subject distinguished name in RFC 2253 format. Only present if parsed is true.

subjectAlternativeDnsNames string[]

The subject Alternative DNS names. Only present if parsed is true.

issuer str

The issuer distinguished name in RFC 2253 format. Only present if parsed is true.

not_after_time str

The certificate is not valid after this time. Only present if parsed is true.

not_before_time str

The certificate is not valid before this time. Only present if parsed is true.

parsed bool

True if the certificate was parsed successfully.

raw_der str

The raw certificate bytes in DER format.

serial_number str

The certificate serial number as a hex string. Only present if parsed is true.

sha256_fingerprint str

The SHA-256 certificate fingerprint as a hex string. Only present if parsed is true.

subject str

The subject distinguished name in RFC 2253 format. Only present if parsed is true.

subject_alternative_dns_names Sequence[str]

The subject Alternative DNS names. Only present if parsed is true.

issuer String

The issuer distinguished name in RFC 2253 format. Only present if parsed is true.

notAfterTime String

The certificate is not valid after this time. Only present if parsed is true.

notBeforeTime String

The certificate is not valid before this time. Only present if parsed is true.

parsed Boolean

True if the certificate was parsed successfully.

rawDer String

The raw certificate bytes in DER format.

serialNumber String

The certificate serial number as a hex string. Only present if parsed is true.

sha256Fingerprint String

The SHA-256 certificate fingerprint as a hex string. Only present if parsed is true.

subject String

The subject distinguished name in RFC 2253 format. Only present if parsed is true.

subjectAlternativeDnsNames List<String>

The subject Alternative DNS names. Only present if parsed is true.

ServiceResolver

Hostname string

The hostname of the EKM replica used at TLS and HTTP layers.

ServerCertificates List<Pulumi.GoogleNative.Cloudkms.V1.Inputs.Certificate>

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

ServiceDirectoryService string

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

EndpointFilter string

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

Hostname string

The hostname of the EKM replica used at TLS and HTTP layers.

ServerCertificates []Certificate

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

ServiceDirectoryService string

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

EndpointFilter string

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname String

The hostname of the EKM replica used at TLS and HTTP layers.

serverCertificates List<Certificate>

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

serviceDirectoryService String

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpointFilter String

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname string

The hostname of the EKM replica used at TLS and HTTP layers.

serverCertificates Certificate[]

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

serviceDirectoryService string

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpointFilter string

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname str

The hostname of the EKM replica used at TLS and HTTP layers.

server_certificates Sequence[Certificate]

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

service_directory_service str

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpoint_filter str

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname String

The hostname of the EKM replica used at TLS and HTTP layers.

serverCertificates List<Property Map>

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

serviceDirectoryService String

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpointFilter String

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

ServiceResolverResponse

EndpointFilter string

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

Hostname string

The hostname of the EKM replica used at TLS and HTTP layers.

ServerCertificates List<Pulumi.GoogleNative.Cloudkms.V1.Inputs.CertificateResponse>

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

ServiceDirectoryService string

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

EndpointFilter string

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

Hostname string

The hostname of the EKM replica used at TLS and HTTP layers.

ServerCertificates []CertificateResponse

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

ServiceDirectoryService string

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpointFilter String

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname String

The hostname of the EKM replica used at TLS and HTTP layers.

serverCertificates List<CertificateResponse>

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

serviceDirectoryService String

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpointFilter string

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname string

The hostname of the EKM replica used at TLS and HTTP layers.

serverCertificates CertificateResponse[]

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

serviceDirectoryService string

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpoint_filter str

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname str

The hostname of the EKM replica used at TLS and HTTP layers.

server_certificates Sequence[CertificateResponse]

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

service_directory_service str

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

endpointFilter String

Optional. The filter applied to the endpoints of the resolved service. If no filter is specified, all endpoints will be considered. An endpoint will be chosen arbitrarily from the filtered list for each request. For endpoint filter syntax and examples, see https://cloud.google.com/service-directory/docs/reference/rpc/google.cloud.servicedirectory.v1#resolveservicerequest.

hostname String

The hostname of the EKM replica used at TLS and HTTP layers.

serverCertificates List<Property Map>

A list of leaf server certificates used to authenticate HTTPS connections to the EKM replica. Currently, a maximum of 10 Certificate is supported.

serviceDirectoryService String

The resource name of the Service Directory service pointing to an EKM replica, in the format projects/*/locations/*/namespaces/*/services/*.

Package Details

Repository
https://github.com/pulumi/pulumi-google-native
License
Apache-2.0