1. Packages
  2. Google Cloud Native
  3. API Docs
  4. compute
  5. compute/alpha
  6. getSslPolicy

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.compute/alpha.getSslPolicy

Explore with Pulumi AI

google-native logo

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

    Lists all of the ordered rules present in a single specified policy.

    Using getSslPolicy

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getSslPolicy(args: GetSslPolicyArgs, opts?: InvokeOptions): Promise<GetSslPolicyResult>
    function getSslPolicyOutput(args: GetSslPolicyOutputArgs, opts?: InvokeOptions): Output<GetSslPolicyResult>
    def get_ssl_policy(project: Optional[str] = None,
                       ssl_policy: Optional[str] = None,
                       opts: Optional[InvokeOptions] = None) -> GetSslPolicyResult
    def get_ssl_policy_output(project: Optional[pulumi.Input[str]] = None,
                       ssl_policy: Optional[pulumi.Input[str]] = None,
                       opts: Optional[InvokeOptions] = None) -> Output[GetSslPolicyResult]
    func LookupSslPolicy(ctx *Context, args *LookupSslPolicyArgs, opts ...InvokeOption) (*LookupSslPolicyResult, error)
    func LookupSslPolicyOutput(ctx *Context, args *LookupSslPolicyOutputArgs, opts ...InvokeOption) LookupSslPolicyResultOutput

    > Note: This function is named LookupSslPolicy in the Go SDK.

    public static class GetSslPolicy 
    {
        public static Task<GetSslPolicyResult> InvokeAsync(GetSslPolicyArgs args, InvokeOptions? opts = null)
        public static Output<GetSslPolicyResult> Invoke(GetSslPolicyInvokeArgs args, InvokeOptions? opts = null)
    }
    public static CompletableFuture<GetSslPolicyResult> getSslPolicy(GetSslPolicyArgs args, InvokeOptions options)
    // Output-based functions aren't available in Java yet
    
    fn::invoke:
      function: google-native:compute/alpha:getSslPolicy
      arguments:
        # arguments dictionary

    The following arguments are supported:

    SslPolicy string
    Project string
    SslPolicy string
    Project string
    sslPolicy String
    project String
    sslPolicy string
    project string
    sslPolicy String
    project String

    getSslPolicy Result

    The following output properties are available:

    CreationTimestamp string
    Creation timestamp in RFC3339 text format.
    CustomFeatures List<string>
    A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
    Description string
    An optional description of this resource. Provide this property when you create the resource.
    EnabledFeatures List<string>
    The list of features enabled in the SSL policy.
    Fingerprint string
    Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
    Kind string
    [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
    MinTlsVersion string
    The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
    Name string
    Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
    Profile string
    Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
    Region string
    URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
    SelfLink string
    Server-defined URL for the resource.
    SelfLinkWithId string
    Server-defined URL for this resource with the resource id.
    TlsSettings Pulumi.GoogleNative.Compute.Alpha.Outputs.ServerTlsSettingsResponse
    Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.
    Warnings List<Pulumi.GoogleNative.Compute.Alpha.Outputs.SslPolicyWarningsItemResponse>
    If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.
    CreationTimestamp string
    Creation timestamp in RFC3339 text format.
    CustomFeatures []string
    A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
    Description string
    An optional description of this resource. Provide this property when you create the resource.
    EnabledFeatures []string
    The list of features enabled in the SSL policy.
    Fingerprint string
    Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
    Kind string
    [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
    MinTlsVersion string
    The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
    Name string
    Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
    Profile string
    Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
    Region string
    URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
    SelfLink string
    Server-defined URL for the resource.
    SelfLinkWithId string
    Server-defined URL for this resource with the resource id.
    TlsSettings ServerTlsSettingsResponse
    Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.
    Warnings []SslPolicyWarningsItemResponse
    If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.
    creationTimestamp String
    Creation timestamp in RFC3339 text format.
    customFeatures List<String>
    A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
    description String
    An optional description of this resource. Provide this property when you create the resource.
    enabledFeatures List<String>
    The list of features enabled in the SSL policy.
    fingerprint String
    Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
    kind String
    [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
    minTlsVersion String
    The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
    name String
    Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
    profile String
    Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
    region String
    URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
    selfLink String
    Server-defined URL for the resource.
    selfLinkWithId String
    Server-defined URL for this resource with the resource id.
    tlsSettings ServerTlsSettingsResponse
    Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.
    warnings List<SslPolicyWarningsItemResponse>
    If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.
    creationTimestamp string
    Creation timestamp in RFC3339 text format.
    customFeatures string[]
    A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
    description string
    An optional description of this resource. Provide this property when you create the resource.
    enabledFeatures string[]
    The list of features enabled in the SSL policy.
    fingerprint string
    Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
    kind string
    [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
    minTlsVersion string
    The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
    name string
    Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
    profile string
    Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
    region string
    URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
    selfLink string
    Server-defined URL for the resource.
    selfLinkWithId string
    Server-defined URL for this resource with the resource id.
    tlsSettings ServerTlsSettingsResponse
    Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.
    warnings SslPolicyWarningsItemResponse[]
    If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.
    creation_timestamp str
    Creation timestamp in RFC3339 text format.
    custom_features Sequence[str]
    A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
    description str
    An optional description of this resource. Provide this property when you create the resource.
    enabled_features Sequence[str]
    The list of features enabled in the SSL policy.
    fingerprint str
    Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
    kind str
    [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
    min_tls_version str
    The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
    name str
    Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
    profile str
    Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
    region str
    URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
    self_link str
    Server-defined URL for the resource.
    self_link_with_id str
    Server-defined URL for this resource with the resource id.
    tls_settings ServerTlsSettingsResponse
    Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.
    warnings Sequence[SslPolicyWarningsItemResponse]
    If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.
    creationTimestamp String
    Creation timestamp in RFC3339 text format.
    customFeatures List<String>
    A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
    description String
    An optional description of this resource. Provide this property when you create the resource.
    enabledFeatures List<String>
    The list of features enabled in the SSL policy.
    fingerprint String
    Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
    kind String
    [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
    minTlsVersion String
    The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
    name String
    Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
    profile String
    Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
    region String
    URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
    selfLink String
    Server-defined URL for the resource.
    selfLinkWithId String
    Server-defined URL for this resource with the resource id.
    tlsSettings Property Map
    Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.
    warnings List<Property Map>
    If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

    Supporting Types

    CallCredentialsResponse

    CallCredentialType string
    The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
    FromPlugin Pulumi.GoogleNative.Compute.Alpha.Inputs.MetadataCredentialsFromPluginResponse
    Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.
    CallCredentialType string
    The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
    FromPlugin MetadataCredentialsFromPluginResponse
    Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.
    callCredentialType String
    The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
    fromPlugin MetadataCredentialsFromPluginResponse
    Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.
    callCredentialType string
    The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
    fromPlugin MetadataCredentialsFromPluginResponse
    Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.
    call_credential_type str
    The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
    from_plugin MetadataCredentialsFromPluginResponse
    Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.
    callCredentialType String
    The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
    fromPlugin Property Map
    Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

    ChannelCredentialsResponse

    Certificates Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificatePathsResponse
    The call credentials to access the SDS server.
    ChannelCredentialType string
    The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.
    Certificates TlsCertificatePathsResponse
    The call credentials to access the SDS server.
    ChannelCredentialType string
    The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.
    certificates TlsCertificatePathsResponse
    The call credentials to access the SDS server.
    channelCredentialType String
    The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.
    certificates TlsCertificatePathsResponse
    The call credentials to access the SDS server.
    channelCredentialType string
    The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.
    certificates TlsCertificatePathsResponse
    The call credentials to access the SDS server.
    channel_credential_type str
    The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.
    certificates Property Map
    The call credentials to access the SDS server.
    channelCredentialType String
    The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

    GrpcServiceConfigResponse

    CallCredentials Pulumi.GoogleNative.Compute.Alpha.Inputs.CallCredentialsResponse
    The call credentials to access the SDS server.
    ChannelCredentials Pulumi.GoogleNative.Compute.Alpha.Inputs.ChannelCredentialsResponse
    The channel credentials to access the SDS server.
    TargetUri string
    The target URI of the SDS server.
    CallCredentials CallCredentialsResponse
    The call credentials to access the SDS server.
    ChannelCredentials ChannelCredentialsResponse
    The channel credentials to access the SDS server.
    TargetUri string
    The target URI of the SDS server.
    callCredentials CallCredentialsResponse
    The call credentials to access the SDS server.
    channelCredentials ChannelCredentialsResponse
    The channel credentials to access the SDS server.
    targetUri String
    The target URI of the SDS server.
    callCredentials CallCredentialsResponse
    The call credentials to access the SDS server.
    channelCredentials ChannelCredentialsResponse
    The channel credentials to access the SDS server.
    targetUri string
    The target URI of the SDS server.
    call_credentials CallCredentialsResponse
    The call credentials to access the SDS server.
    channel_credentials ChannelCredentialsResponse
    The channel credentials to access the SDS server.
    target_uri str
    The target URI of the SDS server.
    callCredentials Property Map
    The call credentials to access the SDS server.
    channelCredentials Property Map
    The channel credentials to access the SDS server.
    targetUri String
    The target URI of the SDS server.

    MetadataCredentialsFromPluginResponse

    Name string
    Plugin name.
    StructConfig string
    A text proto that conforms to a Struct type definition interpreted by the plugin.
    Name string
    Plugin name.
    StructConfig string
    A text proto that conforms to a Struct type definition interpreted by the plugin.
    name String
    Plugin name.
    structConfig String
    A text proto that conforms to a Struct type definition interpreted by the plugin.
    name string
    Plugin name.
    structConfig string
    A text proto that conforms to a Struct type definition interpreted by the plugin.
    name str
    Plugin name.
    struct_config str
    A text proto that conforms to a Struct type definition interpreted by the plugin.
    name String
    Plugin name.
    structConfig String
    A text proto that conforms to a Struct type definition interpreted by the plugin.

    SdsConfigResponse

    GrpcServiceConfig GrpcServiceConfigResponse
    The configuration to access the SDS server over GRPC.
    grpcServiceConfig GrpcServiceConfigResponse
    The configuration to access the SDS server over GRPC.
    grpcServiceConfig GrpcServiceConfigResponse
    The configuration to access the SDS server over GRPC.
    grpc_service_config GrpcServiceConfigResponse
    The configuration to access the SDS server over GRPC.
    grpcServiceConfig Property Map
    The configuration to access the SDS server over GRPC.

    ServerTlsSettingsResponse

    ProxyTlsContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsContextResponse
    Configures the mechanism to obtain security certificates and identity information.
    SubjectAltNames List<string>
    A list of alternate names to verify the subject identity in the certificate presented by the client.
    TlsMode string
    Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.
    ProxyTlsContext TlsContextResponse
    Configures the mechanism to obtain security certificates and identity information.
    SubjectAltNames []string
    A list of alternate names to verify the subject identity in the certificate presented by the client.
    TlsMode string
    Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.
    proxyTlsContext TlsContextResponse
    Configures the mechanism to obtain security certificates and identity information.
    subjectAltNames List<String>
    A list of alternate names to verify the subject identity in the certificate presented by the client.
    tlsMode String
    Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.
    proxyTlsContext TlsContextResponse
    Configures the mechanism to obtain security certificates and identity information.
    subjectAltNames string[]
    A list of alternate names to verify the subject identity in the certificate presented by the client.
    tlsMode string
    Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.
    proxy_tls_context TlsContextResponse
    Configures the mechanism to obtain security certificates and identity information.
    subject_alt_names Sequence[str]
    A list of alternate names to verify the subject identity in the certificate presented by the client.
    tls_mode str
    Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.
    proxyTlsContext Property Map
    Configures the mechanism to obtain security certificates and identity information.
    subjectAltNames List<String>
    A list of alternate names to verify the subject identity in the certificate presented by the client.
    tlsMode String
    Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

    SslPolicyWarningsItemDataItemResponse

    Key string
    A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
    Value string
    A warning data value corresponding to the key.
    Key string
    A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
    Value string
    A warning data value corresponding to the key.
    key String
    A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
    value String
    A warning data value corresponding to the key.
    key string
    A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
    value string
    A warning data value corresponding to the key.
    key str
    A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
    value str
    A warning data value corresponding to the key.
    key String
    A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
    value String
    A warning data value corresponding to the key.

    SslPolicyWarningsItemResponse

    Code string
    A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
    Data List<Pulumi.GoogleNative.Compute.Alpha.Inputs.SslPolicyWarningsItemDataItemResponse>
    Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
    Message string
    A human-readable description of the warning code.
    Code string
    A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
    Data []SslPolicyWarningsItemDataItemResponse
    Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
    Message string
    A human-readable description of the warning code.
    code String
    A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
    data List<SslPolicyWarningsItemDataItemResponse>
    Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
    message String
    A human-readable description of the warning code.
    code string
    A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
    data SslPolicyWarningsItemDataItemResponse[]
    Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
    message string
    A human-readable description of the warning code.
    code str
    A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
    data Sequence[SslPolicyWarningsItemDataItemResponse]
    Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
    message str
    A human-readable description of the warning code.
    code String
    A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
    data List<Property Map>
    Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
    message String
    A human-readable description of the warning code.

    TlsCertificateContextResponse

    CertificatePaths Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificatePathsResponse
    Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
    CertificateSource string
    Defines how TLS certificates are obtained.
    SdsConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    CertificatePaths TlsCertificatePathsResponse
    Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
    CertificateSource string
    Defines how TLS certificates are obtained.
    SdsConfig SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    certificatePaths TlsCertificatePathsResponse
    Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
    certificateSource String
    Defines how TLS certificates are obtained.
    sdsConfig SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    certificatePaths TlsCertificatePathsResponse
    Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
    certificateSource string
    Defines how TLS certificates are obtained.
    sdsConfig SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    certificate_paths TlsCertificatePathsResponse
    Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
    certificate_source str
    Defines how TLS certificates are obtained.
    sds_config SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    certificatePaths Property Map
    Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
    certificateSource String
    Defines how TLS certificates are obtained.
    sdsConfig Property Map
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

    TlsCertificatePathsResponse

    CertificatePath string
    The path to the file holding the client or server TLS certificate to use.
    PrivateKeyPath string
    The path to the file holding the client or server private key.
    CertificatePath string
    The path to the file holding the client or server TLS certificate to use.
    PrivateKeyPath string
    The path to the file holding the client or server private key.
    certificatePath String
    The path to the file holding the client or server TLS certificate to use.
    privateKeyPath String
    The path to the file holding the client or server private key.
    certificatePath string
    The path to the file holding the client or server TLS certificate to use.
    privateKeyPath string
    The path to the file holding the client or server private key.
    certificate_path str
    The path to the file holding the client or server TLS certificate to use.
    private_key_path str
    The path to the file holding the client or server private key.
    certificatePath String
    The path to the file holding the client or server TLS certificate to use.
    privateKeyPath String
    The path to the file holding the client or server private key.

    TlsContextResponse

    CertificateContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificateContextResponse
    Defines the mechanism to obtain the client or server certificate.
    ValidationContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsValidationContextResponse
    Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.
    CertificateContext TlsCertificateContextResponse
    Defines the mechanism to obtain the client or server certificate.
    ValidationContext TlsValidationContextResponse
    Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.
    certificateContext TlsCertificateContextResponse
    Defines the mechanism to obtain the client or server certificate.
    validationContext TlsValidationContextResponse
    Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.
    certificateContext TlsCertificateContextResponse
    Defines the mechanism to obtain the client or server certificate.
    validationContext TlsValidationContextResponse
    Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.
    certificate_context TlsCertificateContextResponse
    Defines the mechanism to obtain the client or server certificate.
    validation_context TlsValidationContextResponse
    Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.
    certificateContext Property Map
    Defines the mechanism to obtain the client or server certificate.
    validationContext Property Map
    Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

    TlsValidationContextResponse

    CertificatePath string
    The path to the file holding the CA certificate to validate the client or server certificate.
    SdsConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    ValidationSource string
    Defines how TLS certificates are obtained.
    CertificatePath string
    The path to the file holding the CA certificate to validate the client or server certificate.
    SdsConfig SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    ValidationSource string
    Defines how TLS certificates are obtained.
    certificatePath String
    The path to the file holding the CA certificate to validate the client or server certificate.
    sdsConfig SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    validationSource String
    Defines how TLS certificates are obtained.
    certificatePath string
    The path to the file holding the CA certificate to validate the client or server certificate.
    sdsConfig SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    validationSource string
    Defines how TLS certificates are obtained.
    certificate_path str
    The path to the file holding the CA certificate to validate the client or server certificate.
    sds_config SdsConfigResponse
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    validation_source str
    Defines how TLS certificates are obtained.
    certificatePath String
    The path to the file holding the CA certificate to validate the client or server certificate.
    sdsConfig Property Map
    Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
    validationSource String
    Defines how TLS certificates are obtained.

    Package Details

    Repository
    Google Cloud Native pulumi/pulumi-google-native
    License
    Apache-2.0
    google-native logo

    Google Cloud Native is in preview. Google Cloud Classic is fully supported.

    Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi