privateca

package
v1.44.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jun 23, 2023 License: Apache-2.0 Imports: 11 Imported by: 7

Documentation

Overview

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. Package privateca defines operations in the declarative SDK.

Copyright 2023 Google LLC. All Rights Reserved.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. Package privateca contains methods and objects for handling privateca GCP resources.

Index

Constants

View Source
const CaPoolMaxPage = -1
View Source
const CertificateAuthorityMaxPage = -1
View Source
const CertificateMaxPage = -1
View Source
const CertificateTemplateMaxPage = -1

Variables

View Source
var YAML_ca_pool = []byte("info:\n  title: Privateca/CaPool\n  description: The Privateca CaPool resource\n  x-dcl-struct-name: CaPool\n  x-dcl-has-iam: false\npaths:\n  get:\n    description: The function used to get information about a CaPool\n    parameters:\n    - name: caPool\n      required: true\n      description: A full instance of a CaPool\n  apply:\n    description: The function used to apply information about a CaPool\n    parameters:\n    - name: caPool\n      required: true\n      description: A full instance of a CaPool\n  delete:\n    description: The function used to delete a CaPool\n    parameters:\n    - name: caPool\n      required: true\n      description: A full instance of a CaPool\n  deleteAll:\n    description: The function used to delete all CaPool\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\n  list:\n    description: The function used to list information about many CaPool\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\ncomponents:\n  schemas:\n    CaPool:\n      title: CaPool\n      x-dcl-id: projects/{{project}}/locations/{{location}}/caPools/{{name}}\n      x-dcl-parent-container: project\n      x-dcl-labels: labels\n      x-dcl-has-create: true\n      x-dcl-has-iam: false\n      x-dcl-read-timeout: 0\n      x-dcl-apply-timeout: 0\n      x-dcl-delete-timeout: 0\n      type: object\n      required:\n      - name\n      - tier\n      - project\n      - location\n      properties:\n        issuancePolicy:\n          type: object\n          x-dcl-go-name: IssuancePolicy\n          x-dcl-go-type: CaPoolIssuancePolicy\n          description: Optional. The IssuancePolicy to control how Certificates will\n            be issued from this CaPool.\n          properties:\n            allowedIssuanceModes:\n              type: object\n              x-dcl-go-name: AllowedIssuanceModes\n              x-dcl-go-type: CaPoolIssuancePolicyAllowedIssuanceModes\n              description: Optional. If specified, then only methods allowed in the\n                IssuanceModes may be used to issue Certificates.\n              properties:\n                allowConfigBasedIssuance:\n                  type: boolean\n                  x-dcl-go-name: AllowConfigBasedIssuance\n                  description: Optional. When true, allows callers to create Certificates\n                    by specifying a CertificateConfig.\n                allowCsrBasedIssuance:\n                  type: boolean\n                  x-dcl-go-name: AllowCsrBasedIssuance\n                  description: Optional. When true, allows callers to create Certificates\n                    by specifying a CSR.\n            allowedKeyTypes:\n              type: array\n              x-dcl-go-name: AllowedKeyTypes\n              description: Optional. If any AllowedKeyType is specified, then the\n                certificate request's public key must match one of the key types listed\n                here. Otherwise, any key may be used.\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: object\n                x-dcl-go-type: CaPoolIssuancePolicyAllowedKeyTypes\n                properties:\n                  ellipticCurve:\n                    type: object\n                    x-dcl-go-name: EllipticCurve\n                    x-dcl-go-type: CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve\n                    description: Represents an allowed Elliptic Curve key type.\n                    x-dcl-conflicts:\n                    - rsa\n                    properties:\n                      signatureAlgorithm:\n                        type: string\n                        x-dcl-go-name: SignatureAlgorithm\n                        x-dcl-go-type: CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum\n                        description: 'Optional. A signature algorithm that must be\n                          used. If this is omitted, any EC-based signature algorithm\n                          will be allowed. Possible values: EC_SIGNATURE_ALGORITHM_UNSPECIFIED,\n                          ECDSA_P256, ECDSA_P384, EDDSA_25519'\n                        enum:\n                        - EC_SIGNATURE_ALGORITHM_UNSPECIFIED\n                        - ECDSA_P256\n                        - ECDSA_P384\n                        - EDDSA_25519\n                  rsa:\n                    type: object\n                    x-dcl-go-name: Rsa\n                    x-dcl-go-type: CaPoolIssuancePolicyAllowedKeyTypesRsa\n                    description: Represents an allowed RSA key type.\n                    x-dcl-conflicts:\n                    - ellipticCurve\n                    properties:\n                      maxModulusSize:\n                        type: integer\n                        format: int64\n                        x-dcl-go-name: MaxModulusSize\n                        description: Optional. The maximum allowed RSA modulus size,\n                          in bits. If this is not set, or if set to zero, the service\n                          will not enforce an explicit upper bound on RSA modulus\n                          sizes.\n                      minModulusSize:\n                        type: integer\n                        format: int64\n                        x-dcl-go-name: MinModulusSize\n                        description: Optional. The minimum allowed RSA modulus size,\n                          in bits. If this is not set, or if set to zero, the service-level\n                          min RSA modulus size will continue to apply.\n            baselineValues:\n              type: object\n              x-dcl-go-name: BaselineValues\n              x-dcl-go-type: CaPoolIssuancePolicyBaselineValues\n              description: Optional. A set of X.509 values that will be applied to\n                all certificates issued through this CaPool. If a certificate request\n                includes conflicting values for the same properties, they will be\n                overwritten by the values defined here. If a certificate request uses\n                a CertificateTemplate that defines conflicting predefined_values for\n                the same properties, the certificate issuance request will fail.\n              properties:\n                additionalExtensions:\n                  type: array\n                  x-dcl-go-name: AdditionalExtensions\n                  description: Optional. Describes custom X.509 extensions.\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesAdditionalExtensions\n                    required:\n                    - objectId\n                    - value\n                    properties:\n                      critical:\n                        type: boolean\n                        x-dcl-go-name: Critical\n                        description: Optional. Indicates whether or not this extension\n                          is critical (i.e., if the client does not know how to handle\n                          this extension, the client should consider this to be an\n                          error).\n                      objectId:\n                        type: object\n                        x-dcl-go-name: ObjectId\n                        x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId\n                        description: Required. The OID for this X.509 extension.\n                        required:\n                        - objectIdPath\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                      value:\n                        type: string\n                        x-dcl-go-name: Value\n                        description: Required. The value of this X.509 extension.\n                aiaOcspServers:\n                  type: array\n                  x-dcl-go-name: AiaOcspServers\n                  description: Optional. Describes Online Certificate Status Protocol\n                    (OCSP) endpoint addresses that appear in the \"Authority Information\n                    Access\" extension in the certificate.\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: string\n                    x-dcl-go-type: string\n                caOptions:\n                  type: object\n                  x-dcl-go-name: CaOptions\n                  x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesCaOptions\n                  description: Optional. Describes options in this X509Parameters\n                    that are relevant in a CA certificate.\n                  properties:\n                    isCa:\n                      type: boolean\n                      x-dcl-go-name: IsCa\n                      description: Optional. Refers to the \"CA\" X.509 extension, which\n                        is a boolean value. When this value is missing, the extension\n                        will be omitted from the CA certificate.\n                    maxIssuerPathLength:\n                      type: integer\n                      format: int64\n                      x-dcl-go-name: MaxIssuerPathLength\n                      description: Optional. Refers to the path length restriction\n                        X.509 extension. For a CA certificate, this value describes\n                        the depth of subordinate CA certificates that are allowed.\n                        If this value is less than 0, the request will fail. If this\n                        value is missing, the max path length will be omitted from\n                        the CA certificate.\n                    zeroMaxIssuerPathLength:\n                      type: boolean\n                      x-dcl-go-name: ZeroMaxIssuerPathLength\n                      description: Optional. When true, the \"path length constraint\"\n                        in Basic Constraints extension will be set to 0. if both max_issuer_path_length\n                        and zero_max_issuer_path_length are unset, the max path length\n                        will be omitted from the CA certificate.\n                keyUsage:\n                  type: object\n                  x-dcl-go-name: KeyUsage\n                  x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesKeyUsage\n                  description: Optional. Indicates the intended use for keys that\n                    correspond to a certificate.\n                  properties:\n                    baseKeyUsage:\n                      type: object\n                      x-dcl-go-name: BaseKeyUsage\n                      x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage\n                      description: Describes high-level ways in which a key may be\n                        used.\n                      properties:\n                        certSign:\n                          type: boolean\n                          x-dcl-go-name: CertSign\n                          description: The key may be used to sign certificates.\n                        contentCommitment:\n                          type: boolean\n                          x-dcl-go-name: ContentCommitment\n                          description: The key may be used for cryptographic commitments.\n                            Note that this may also be referred to as \"non-repudiation\".\n                        crlSign:\n                          type: boolean\n                          x-dcl-go-name: CrlSign\n                          description: The key may be used sign certificate revocation\n                            lists.\n                        dataEncipherment:\n                          type: boolean\n                          x-dcl-go-name: DataEncipherment\n                          description: The key may be used to encipher data.\n                        decipherOnly:\n                          type: boolean\n                          x-dcl-go-name: DecipherOnly\n                          description: The key may be used to decipher only.\n                        digitalSignature:\n                          type: boolean\n                          x-dcl-go-name: DigitalSignature\n                          description: The key may be used for digital signatures.\n                        encipherOnly:\n                          type: boolean\n                          x-dcl-go-name: EncipherOnly\n                          description: The key may be used to encipher only.\n                        keyAgreement:\n                          type: boolean\n                          x-dcl-go-name: KeyAgreement\n                          description: The key may be used in a key agreement protocol.\n                        keyEncipherment:\n                          type: boolean\n                          x-dcl-go-name: KeyEncipherment\n                          description: The key may be used to encipher other keys.\n                    extendedKeyUsage:\n                      type: object\n                      x-dcl-go-name: ExtendedKeyUsage\n                      x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage\n                      description: Detailed scenarios in which a key may be used.\n                      properties:\n                        clientAuth:\n                          type: boolean\n                          x-dcl-go-name: ClientAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially\n                            described as \"TLS WWW client authentication\", though regularly\n                            used for non-WWW TLS.\n                        codeSigning:\n                          type: boolean\n                          x-dcl-go-name: CodeSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially\n                            described as \"Signing of downloadable executable code\n                            client authentication\".\n                        emailProtection:\n                          type: boolean\n                          x-dcl-go-name: EmailProtection\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially\n                            described as \"Email protection\".\n                        ocspSigning:\n                          type: boolean\n                          x-dcl-go-name: OcspSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially\n                            described as \"Signing OCSP responses\".\n                        serverAuth:\n                          type: boolean\n                          x-dcl-go-name: ServerAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially\n                            described as \"TLS WWW server authentication\", though regularly\n                            used for non-WWW TLS.\n                        timeStamping:\n                          type: boolean\n                          x-dcl-go-name: TimeStamping\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially\n                            described as \"Binding the hash of an object to a time\".\n                    unknownExtendedKeyUsages:\n                      type: array\n                      x-dcl-go-name: UnknownExtendedKeyUsages\n                      description: Used to describe extended key usages that are not\n                        listed in the KeyUsage.ExtendedKeyUsageOptions message.\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: object\n                        x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages\n                        required:\n                        - objectIdPath\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                policyIds:\n                  type: array\n                  x-dcl-go-name: PolicyIds\n                  description: Optional. Describes the X.509 certificate policy object\n                    identifiers, per https://tools.ietf.org/html/rfc5280#section-4.2.1.4.\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CaPoolIssuancePolicyBaselineValuesPolicyIds\n                    required:\n                    - objectIdPath\n                    properties:\n                      objectIdPath:\n                        type: array\n                        x-dcl-go-name: ObjectIdPath\n                        description: Required. The parts of an OID path. The most\n                          significant parts of the path come first.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: integer\n                          format: int64\n                          x-dcl-go-type: int64\n            identityConstraints:\n              type: object\n              x-dcl-go-name: IdentityConstraints\n              x-dcl-go-type: CaPoolIssuancePolicyIdentityConstraints\n              description: Optional. Describes constraints on identities that may\n                appear in Certificates issued through this CaPool. If this is omitted,\n                then this CaPool will not add restrictions on a certificate's identity.\n              required:\n              - allowSubjectPassthrough\n              - allowSubjectAltNamesPassthrough\n              properties:\n                allowSubjectAltNamesPassthrough:\n                  type: boolean\n                  x-dcl-go-name: AllowSubjectAltNamesPassthrough\n                  description: Required. If this is true, the SubjectAltNames extension\n                    may be copied from a certificate request into the signed certificate.\n                    Otherwise, the requested SubjectAltNames will be discarded.\n                allowSubjectPassthrough:\n                  type: boolean\n                  x-dcl-go-name: AllowSubjectPassthrough\n                  description: Required. If this is true, the Subject field may be\n                    copied from a certificate request into the signed certificate.\n                    Otherwise, the requested Subject will be discarded.\n                celExpression:\n                  type: object\n                  x-dcl-go-name: CelExpression\n                  x-dcl-go-type: CaPoolIssuancePolicyIdentityConstraintsCelExpression\n                  description: Optional. A CEL expression that may be used to validate\n                    the resolved X.509 Subject and/or Subject Alternative Name before\n                    a certificate is signed. To see the full allowed syntax and some\n                    examples, see https://cloud.google.com/certificate-authority-service/docs/using-cel\n                  properties:\n                    description:\n                      type: string\n                      x-dcl-go-name: Description\n                      description: Optional. Description of the expression. This is\n                        a longer text which describes the expression, e.g. when hovered\n                        over it in a UI.\n                    expression:\n                      type: string\n                      x-dcl-go-name: Expression\n                      description: Textual representation of an expression in Common\n                        Expression Language syntax.\n                    location:\n                      type: string\n                      x-dcl-go-name: Location\n                      description: Optional. String indicating the location of the\n                        expression for error reporting, e.g. a file name and a position\n                        in the file.\n                    title:\n                      type: string\n                      x-dcl-go-name: Title\n                      description: Optional. Title for the expression, i.e. a short\n                        string describing its purpose. This can be used e.g. in UIs\n                        which allow to enter the expression.\n            maximumLifetime:\n              type: string\n              x-dcl-go-name: MaximumLifetime\n              description: Optional. The maximum lifetime allowed for issued Certificates.\n                Note that if the issuing CertificateAuthority expires before a Certificate's\n                requested maximum_lifetime, the effective lifetime will be explicitly\n                truncated to match it.\n            passthroughExtensions:\n              type: object\n              x-dcl-go-name: PassthroughExtensions\n              x-dcl-go-type: CaPoolIssuancePolicyPassthroughExtensions\n              description: Optional. Describes the set of X.509 extensions that may\n                appear in a Certificate issued through this CaPool. If a certificate\n                request sets extensions that don't appear in the passthrough_extensions,\n                those extensions will be dropped. If a certificate request uses a\n                CertificateTemplate with predefined_values that don't appear here,\n                the certificate issuance request will fail. If this is omitted, then\n                this CaPool will not add restrictions on a certificate's X.509 extensions.\n                These constraints do not apply to X.509 extensions set in this CaPool's\n                baseline_values.\n              properties:\n                additionalExtensions:\n                  type: array\n                  x-dcl-go-name: AdditionalExtensions\n                  description: Optional. A set of ObjectIds identifying custom X.509\n                    extensions. Will be combined with known_extensions to determine\n                    the full set of X.509 extensions.\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions\n                    required:\n                    - objectIdPath\n                    properties:\n                      objectIdPath:\n                        type: array\n                        x-dcl-go-name: ObjectIdPath\n                        description: Required. The parts of an OID path. The most\n                          significant parts of the path come first.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: integer\n                          format: int64\n                          x-dcl-go-type: int64\n                knownExtensions:\n                  type: array\n                  x-dcl-go-name: KnownExtensions\n                  description: Optional. A set of named X.509 extensions. Will be\n                    combined with additional_extensions to determine the full set\n                    of X.509 extensions.\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: string\n                    x-dcl-go-type: CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum\n                    enum:\n                    - KNOWN_CERTIFICATE_EXTENSION_UNSPECIFIED\n                    - BASE_KEY_USAGE\n                    - EXTENDED_KEY_USAGE\n                    - CA_OPTIONS\n                    - POLICY_IDS\n                    - AIA_OCSP_SERVERS\n        labels:\n          type: object\n          additionalProperties:\n            type: string\n          x-dcl-go-name: Labels\n          description: Optional. Labels with user-defined metadata.\n        location:\n          type: string\n          x-dcl-go-name: Location\n          description: The location for the resource\n          x-kubernetes-immutable: true\n        name:\n          type: string\n          x-dcl-go-name: Name\n          description: The resource name for this CaPool in the format `projects/*/locations/*/caPools/*`.\n          x-kubernetes-immutable: true\n        project:\n          type: string\n          x-dcl-go-name: Project\n          description: The project for the resource\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Cloudresourcemanager/Project\n            field: name\n            parent: true\n        publishingOptions:\n          type: object\n          x-dcl-go-name: PublishingOptions\n          x-dcl-go-type: CaPoolPublishingOptions\n          description: Optional. The PublishingOptions to follow when issuing Certificates\n            from any CertificateAuthority in this CaPool.\n          properties:\n            publishCaCert:\n              type: boolean\n              x-dcl-go-name: PublishCaCert\n              description: Optional. When true, publishes each CertificateAuthority's\n                CA certificate and includes its URL in the \"Authority Information\n                Access\" X.509 extension in all issued Certificates. If this is false,\n                the CA certificate will not be published and the corresponding X.509\n                extension will not be written in issued certificates.\n            publishCrl:\n              type: boolean\n              x-dcl-go-name: PublishCrl\n              description: Optional. When true, publishes each CertificateAuthority's\n                CRL and includes its URL in the \"CRL Distribution Points\" X.509 extension\n                in all issued Certificates. If this is false, CRLs will not be published\n                and the corresponding X.509 extension will not be written in issued\n                certificates. CRLs will expire 7 days from their creation. However,\n                we will rebuild daily. CRLs are also rebuilt shortly after a certificate\n                is revoked.\n        tier:\n          type: string\n          x-dcl-go-name: Tier\n          x-dcl-go-type: CaPoolTierEnum\n          description: 'Required. Immutable. The Tier of this CaPool. Possible values:\n            TIER_UNSPECIFIED, ENTERPRISE, DEVOPS'\n          x-kubernetes-immutable: true\n          enum:\n          - TIER_UNSPECIFIED\n          - ENTERPRISE\n          - DEVOPS\n")

blaze-out/k8-fastbuild/genfiles/cloud/graphite/mmv2/services/google/privateca/ca_pool.yaml

View Source
var YAML_certificate = []byte("info:\n  title: Privateca/Certificate\n  description: The Privateca Certificate resource\n  x-dcl-struct-name: Certificate\n  x-dcl-has-iam: false\npaths:\n  get:\n    description: The function used to get information about a Certificate\n    parameters:\n    - name: certificate\n      required: true\n      description: A full instance of a Certificate\n  apply:\n    description: The function used to apply information about a Certificate\n    parameters:\n    - name: certificate\n      required: true\n      description: A full instance of a Certificate\n  delete:\n    description: The function used to delete a Certificate\n    parameters:\n    - name: certificate\n      required: true\n      description: A full instance of a Certificate\n  deleteAll:\n    description: The function used to delete all Certificate\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\n    - name: caPool\n      required: true\n      schema:\n        type: string\n  list:\n    description: The function used to list information about many Certificate\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\n    - name: caPool\n      required: true\n      schema:\n        type: string\ncomponents:\n  schemas:\n    Certificate:\n      title: Certificate\n      x-dcl-id: projects/{{project}}/locations/{{location}}/caPools/{{ca_pool}}/certificates/{{name}}\n      x-dcl-parent-container: project\n      x-dcl-labels: labels\n      x-dcl-has-create: true\n      x-dcl-has-iam: false\n      x-dcl-read-timeout: 0\n      x-dcl-apply-timeout: 0\n      x-dcl-delete-timeout: 0\n      type: object\n      required:\n      - name\n      - lifetime\n      - project\n      - location\n      - caPool\n      properties:\n        caPool:\n          type: string\n          x-dcl-go-name: CaPool\n          description: The ca_pool for the resource\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Privateca/CaPool\n            field: name\n            parent: true\n        certificateAuthority:\n          type: string\n          x-dcl-go-name: CertificateAuthority\n          description: The certificate authority for the resource\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Privateca/CertificateAuthority\n            field: name\n        certificateDescription:\n          type: object\n          x-dcl-go-name: CertificateDescription\n          x-dcl-go-type: CertificateCertificateDescription\n          readOnly: true\n          description: Output only. A structured description of the issued X.509 certificate.\n          x-kubernetes-immutable: true\n          properties:\n            aiaIssuingCertificateUrls:\n              type: array\n              x-dcl-go-name: AiaIssuingCertificateUrls\n              description: Describes lists of issuer CA certificate URLs that appear\n                in the \"Authority Information Access\" extension in the certificate.\n              x-kubernetes-immutable: true\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: string\n                x-dcl-go-type: string\n            authorityKeyId:\n              type: object\n              x-dcl-go-name: AuthorityKeyId\n              x-dcl-go-type: CertificateCertificateDescriptionAuthorityKeyId\n              description: Identifies the subject_key_id of the parent certificate,\n                per https://tools.ietf.org/html/rfc5280#section-4.2.1.1\n              x-kubernetes-immutable: true\n              properties:\n                keyId:\n                  type: string\n                  x-dcl-go-name: KeyId\n                  description: Optional. The value of this KeyId encoded in lowercase\n                    hexadecimal. This is most likely the 160 bit SHA-1 hash of the\n                    public key.\n                  x-kubernetes-immutable: true\n            certFingerprint:\n              type: object\n              x-dcl-go-name: CertFingerprint\n              x-dcl-go-type: CertificateCertificateDescriptionCertFingerprint\n              description: The hash of the x.509 certificate.\n              x-kubernetes-immutable: true\n              properties:\n                sha256Hash:\n                  type: string\n                  x-dcl-go-name: Sha256Hash\n                  description: The SHA 256 hash, encoded in hexadecimal, of the DER\n                    x509 certificate.\n                  x-kubernetes-immutable: true\n            crlDistributionPoints:\n              type: array\n              x-dcl-go-name: CrlDistributionPoints\n              description: Describes a list of locations to obtain CRL information,\n                i.e. the DistributionPoint.fullName described by https://tools.ietf.org/html/rfc5280#section-4.2.1.13\n              x-kubernetes-immutable: true\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: string\n                x-dcl-go-type: string\n            publicKey:\n              type: object\n              x-dcl-go-name: PublicKey\n              x-dcl-go-type: CertificateCertificateDescriptionPublicKey\n              description: The public key that corresponds to an issued certificate.\n              x-kubernetes-immutable: true\n              properties:\n                format:\n                  type: string\n                  x-dcl-go-name: Format\n                  x-dcl-go-type: CertificateCertificateDescriptionPublicKeyFormatEnum\n                  description: 'Required. The format of the public key. Possible values:\n                    KEY_FORMAT_UNSPECIFIED, PEM'\n                  x-kubernetes-immutable: true\n                  enum:\n                  - KEY_FORMAT_UNSPECIFIED\n                  - PEM\n                key:\n                  type: string\n                  x-dcl-go-name: Key\n                  description: Required. A public key. The padding and encoding must\n                    match with the `KeyFormat` value specified for the `format` field.\n                  x-kubernetes-immutable: true\n            subjectDescription:\n              type: object\n              x-dcl-go-name: SubjectDescription\n              x-dcl-go-type: CertificateCertificateDescriptionSubjectDescription\n              description: Describes some of the values in a certificate that are\n                related to the subject and lifetime.\n              x-kubernetes-immutable: true\n              properties:\n                hexSerialNumber:\n                  type: string\n                  x-dcl-go-name: HexSerialNumber\n                  description: The serial number encoded in lowercase hexadecimal.\n                  x-kubernetes-immutable: true\n                lifetime:\n                  type: string\n                  x-dcl-go-name: Lifetime\n                  description: For convenience, the actual lifetime of an issued certificate.\n                  x-kubernetes-immutable: true\n                notAfterTime:\n                  type: string\n                  format: date-time\n                  x-dcl-go-name: NotAfterTime\n                  description: The time after which the certificate is expired. Per\n                    RFC 5280, the validity period for a certificate is the period\n                    of time from not_before_time through not_after_time, inclusive.\n                    Corresponds to 'not_before_time' + 'lifetime' - 1 second.\n                  x-kubernetes-immutable: true\n                notBeforeTime:\n                  type: string\n                  format: date-time\n                  x-dcl-go-name: NotBeforeTime\n                  description: The time at which the certificate becomes valid.\n                  x-kubernetes-immutable: true\n                subject:\n                  type: object\n                  x-dcl-go-name: Subject\n                  x-dcl-go-type: CertificateCertificateDescriptionSubjectDescriptionSubject\n                  description: Contains distinguished name fields such as the common\n                    name, location and / organization.\n                  x-kubernetes-immutable: true\n                  properties:\n                    commonName:\n                      type: string\n                      x-dcl-go-name: CommonName\n                      description: The \"common name\" of the subject.\n                      x-kubernetes-immutable: true\n                    countryCode:\n                      type: string\n                      x-dcl-go-name: CountryCode\n                      description: The country code of the subject.\n                      x-kubernetes-immutable: true\n                    locality:\n                      type: string\n                      x-dcl-go-name: Locality\n                      description: The locality or city of the subject.\n                      x-kubernetes-immutable: true\n                    organization:\n                      type: string\n                      x-dcl-go-name: Organization\n                      description: The organization of the subject.\n                      x-kubernetes-immutable: true\n                    organizationalUnit:\n                      type: string\n                      x-dcl-go-name: OrganizationalUnit\n                      description: The organizational_unit of the subject.\n                      x-kubernetes-immutable: true\n                    postalCode:\n                      type: string\n                      x-dcl-go-name: PostalCode\n                      description: The postal code of the subject.\n                      x-kubernetes-immutable: true\n                    province:\n                      type: string\n                      x-dcl-go-name: Province\n                      description: The province, territory, or regional state of the\n                        subject.\n                      x-kubernetes-immutable: true\n                    streetAddress:\n                      type: string\n                      x-dcl-go-name: StreetAddress\n                      description: The street address of the subject.\n                      x-kubernetes-immutable: true\n                subjectAltName:\n                  type: object\n                  x-dcl-go-name: SubjectAltName\n                  x-dcl-go-type: CertificateCertificateDescriptionSubjectDescriptionSubjectAltName\n                  description: The subject alternative name fields.\n                  x-kubernetes-immutable: true\n                  properties:\n                    customSans:\n                      type: array\n                      x-dcl-go-name: CustomSans\n                      description: Contains additional subject alternative name values.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: object\n                        x-dcl-go-type: CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans\n                        properties:\n                          critical:\n                            type: boolean\n                            x-dcl-go-name: Critical\n                            description: Optional. Indicates whether or not this extension\n                              is critical (i.e., if the client does not know how to\n                              handle this extension, the client should consider this\n                              to be an error).\n                            x-kubernetes-immutable: true\n                          objectId:\n                            type: object\n                            x-dcl-go-name: ObjectId\n                            x-dcl-go-type: CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId\n                            description: Required. The OID for this X.509 extension.\n                            x-kubernetes-immutable: true\n                            properties:\n                              objectIdPath:\n                                type: array\n                                x-dcl-go-name: ObjectIdPath\n                                description: Required. The parts of an OID path. The\n                                  most significant parts of the path come first.\n                                x-kubernetes-immutable: true\n                                x-dcl-send-empty: true\n                                x-dcl-list-type: list\n                                items:\n                                  type: integer\n                                  format: int64\n                                  x-dcl-go-type: int64\n                          value:\n                            type: string\n                            x-dcl-go-name: Value\n                            description: Required. The value of this X.509 extension.\n                            x-kubernetes-immutable: true\n                    dnsNames:\n                      type: array\n                      x-dcl-go-name: DnsNames\n                      description: Contains only valid, fully-qualified host names.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    emailAddresses:\n                      type: array\n                      x-dcl-go-name: EmailAddresses\n                      description: Contains only valid RFC 2822 E-mail addresses.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    ipAddresses:\n                      type: array\n                      x-dcl-go-name: IPAddresses\n                      description: Contains only valid 32-bit IPv4 addresses or RFC\n                        4291 IPv6 addresses.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    uris:\n                      type: array\n                      x-dcl-go-name: Uris\n                      description: Contains only valid RFC 3986 URIs.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n            subjectKeyId:\n              type: object\n              x-dcl-go-name: SubjectKeyId\n              x-dcl-go-type: CertificateCertificateDescriptionSubjectKeyId\n              description: Provides a means of identifiying certificates that contain\n                a particular public key, per https://tools.ietf.org/html/rfc5280#section-4.2.1.2.\n              x-kubernetes-immutable: true\n              properties:\n                keyId:\n                  type: string\n                  x-dcl-go-name: KeyId\n                  description: Optional. The value of this KeyId encoded in lowercase\n                    hexadecimal. This is most likely the 160 bit SHA-1 hash of the\n                    public key.\n                  x-kubernetes-immutable: true\n            x509Description:\n              type: object\n              x-dcl-go-name: X509Description\n              x-dcl-go-type: CertificateCertificateDescriptionX509Description\n              description: Describes some of the technical X.509 fields in a certificate.\n              x-kubernetes-immutable: true\n              properties:\n                additionalExtensions:\n                  type: array\n                  x-dcl-go-name: AdditionalExtensions\n                  description: Optional. Describes custom X.509 extensions.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionAdditionalExtensions\n                    properties:\n                      critical:\n                        type: boolean\n                        x-dcl-go-name: Critical\n                        description: Optional. Indicates whether or not this extension\n                          is critical (i.e., if the client does not know how to handle\n                          this extension, the client should consider this to be an\n                          error).\n                        x-kubernetes-immutable: true\n                      objectId:\n                        type: object\n                        x-dcl-go-name: ObjectId\n                        x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId\n                        description: Required. The OID for this X.509 extension.\n                        x-kubernetes-immutable: true\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-kubernetes-immutable: true\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                      value:\n                        type: string\n                        x-dcl-go-name: Value\n                        description: Required. The value of this X.509 extension.\n                        x-kubernetes-immutable: true\n                aiaOcspServers:\n                  type: array\n                  x-dcl-go-name: AiaOcspServers\n                  description: Optional. Describes Online Certificate Status Protocol\n                    (OCSP) endpoint addresses that appear in the \"Authority Information\n                    Access\" extension in the certificate.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: string\n                    x-dcl-go-type: string\n                caOptions:\n                  type: object\n                  x-dcl-go-name: CaOptions\n                  x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionCaOptions\n                  description: Optional. Describes options in this X509Parameters\n                    that are relevant in a CA certificate.\n                  x-kubernetes-immutable: true\n                  properties:\n                    isCa:\n                      type: boolean\n                      x-dcl-go-name: IsCa\n                      description: Optional. Refers to the \"CA\" X.509 extension, which\n                        is a boolean value. When this value is missing, the extension\n                        will be omitted from the CA certificate.\n                      x-kubernetes-immutable: true\n                    maxIssuerPathLength:\n                      type: integer\n                      format: int64\n                      x-dcl-go-name: MaxIssuerPathLength\n                      description: Optional. Refers to the path length restriction\n                        X.509 extension. For a CA certificate, this value describes\n                        the depth of subordinate CA certificates that are allowed.\n                        If this value is less than 0, the request will fail. If this\n                        value is missing, the max path length will be omitted from\n                        the CA certificate.\n                      x-kubernetes-immutable: true\n                keyUsage:\n                  type: object\n                  x-dcl-go-name: KeyUsage\n                  x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionKeyUsage\n                  description: Optional. Indicates the intended use for keys that\n                    correspond to a certificate.\n                  x-kubernetes-immutable: true\n                  properties:\n                    baseKeyUsage:\n                      type: object\n                      x-dcl-go-name: BaseKeyUsage\n                      x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage\n                      description: Describes high-level ways in which a key may be\n                        used.\n                      x-kubernetes-immutable: true\n                      properties:\n                        certSign:\n                          type: boolean\n                          x-dcl-go-name: CertSign\n                          description: The key may be used to sign certificates.\n                          x-kubernetes-immutable: true\n                        contentCommitment:\n                          type: boolean\n                          x-dcl-go-name: ContentCommitment\n                          description: The key may be used for cryptographic commitments.\n                            Note that this may also be referred to as \"non-repudiation\".\n                          x-kubernetes-immutable: true\n                        crlSign:\n                          type: boolean\n                          x-dcl-go-name: CrlSign\n                          description: The key may be used sign certificate revocation\n                            lists.\n                          x-kubernetes-immutable: true\n                        dataEncipherment:\n                          type: boolean\n                          x-dcl-go-name: DataEncipherment\n                          description: The key may be used to encipher data.\n                          x-kubernetes-immutable: true\n                        decipherOnly:\n                          type: boolean\n                          x-dcl-go-name: DecipherOnly\n                          description: The key may be used to decipher only.\n                          x-kubernetes-immutable: true\n                        digitalSignature:\n                          type: boolean\n                          x-dcl-go-name: DigitalSignature\n                          description: The key may be used for digital signatures.\n                          x-kubernetes-immutable: true\n                        encipherOnly:\n                          type: boolean\n                          x-dcl-go-name: EncipherOnly\n                          description: The key may be used to encipher only.\n                          x-kubernetes-immutable: true\n                        keyAgreement:\n                          type: boolean\n                          x-dcl-go-name: KeyAgreement\n                          description: The key may be used in a key agreement protocol.\n                          x-kubernetes-immutable: true\n                        keyEncipherment:\n                          type: boolean\n                          x-dcl-go-name: KeyEncipherment\n                          description: The key may be used to encipher other keys.\n                          x-kubernetes-immutable: true\n                    extendedKeyUsage:\n                      type: object\n                      x-dcl-go-name: ExtendedKeyUsage\n                      x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage\n                      description: Detailed scenarios in which a key may be used.\n                      x-kubernetes-immutable: true\n                      properties:\n                        clientAuth:\n                          type: boolean\n                          x-dcl-go-name: ClientAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially\n                            described as \"TLS WWW client authentication\", though regularly\n                            used for non-WWW TLS.\n                          x-kubernetes-immutable: true\n                        codeSigning:\n                          type: boolean\n                          x-dcl-go-name: CodeSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially\n                            described as \"Signing of downloadable executable code\n                            client authentication\".\n                          x-kubernetes-immutable: true\n                        emailProtection:\n                          type: boolean\n                          x-dcl-go-name: EmailProtection\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially\n                            described as \"Email protection\".\n                          x-kubernetes-immutable: true\n                        ocspSigning:\n                          type: boolean\n                          x-dcl-go-name: OcspSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially\n                            described as \"Signing OCSP responses\".\n                          x-kubernetes-immutable: true\n                        serverAuth:\n                          type: boolean\n                          x-dcl-go-name: ServerAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially\n                            described as \"TLS WWW server authentication\", though regularly\n                            used for non-WWW TLS.\n                          x-kubernetes-immutable: true\n                        timeStamping:\n                          type: boolean\n                          x-dcl-go-name: TimeStamping\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially\n                            described as \"Binding the hash of an object to a time\".\n                          x-kubernetes-immutable: true\n                    unknownExtendedKeyUsages:\n                      type: array\n                      x-dcl-go-name: UnknownExtendedKeyUsages\n                      description: Used to describe extended key usages that are not\n                        listed in the KeyUsage.ExtendedKeyUsageOptions message.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: object\n                        x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-kubernetes-immutable: true\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                policyIds:\n                  type: array\n                  x-dcl-go-name: PolicyIds\n                  description: Optional. Describes the X.509 certificate policy object\n                    identifiers, per https://tools.ietf.org/html/rfc5280#section-4.2.1.4.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CertificateCertificateDescriptionX509DescriptionPolicyIds\n                    properties:\n                      objectIdPath:\n                        type: array\n                        x-dcl-go-name: ObjectIdPath\n                        description: Required. The parts of an OID path. The most\n                          significant parts of the path come first.\n                        x-kubernetes-immutable: true\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: integer\n                          format: int64\n                          x-dcl-go-type: int64\n        certificateTemplate:\n          type: string\n          x-dcl-go-name: CertificateTemplate\n          description: Immutable. The resource name for a CertificateTemplate used\n            to issue this certificate, in the format `projects/*/locations/*/certificateTemplates/*`.\n            If this is specified, the caller must have the necessary permission to\n            use this template. If this is omitted, no template will be used. This\n            template must be in the same location as the Certificate.\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Privateca/CertificateTemplate\n            field: selfLink\n        config:\n          type: object\n          x-dcl-go-name: Config\n          x-dcl-go-type: CertificateConfig\n          description: Immutable. A description of the certificate and key that does\n            not require X.509 or ASN.1.\n          x-kubernetes-immutable: true\n          x-dcl-conflicts:\n          - pemCsr\n          required:\n          - subjectConfig\n          - x509Config\n          properties:\n            publicKey:\n              type: object\n              x-dcl-go-name: PublicKey\n              x-dcl-go-type: CertificateConfigPublicKey\n              description: Optional. The public key that corresponds to this config.\n                This is, for example, used when issuing Certificates, but not when\n                creating a self-signed CertificateAuthority or CertificateAuthority\n                CSR.\n              x-kubernetes-immutable: true\n              required:\n              - key\n              - format\n              properties:\n                format:\n                  type: string\n                  x-dcl-go-name: Format\n                  x-dcl-go-type: CertificateConfigPublicKeyFormatEnum\n                  description: 'Required. The format of the public key. Possible values:\n                    KEY_FORMAT_UNSPECIFIED, PEM'\n                  x-kubernetes-immutable: true\n                  enum:\n                  - KEY_FORMAT_UNSPECIFIED\n                  - PEM\n                key:\n                  type: string\n                  x-dcl-go-name: Key\n                  description: Required. A public key. The padding and encoding must\n                    match with the `KeyFormat` value specified for the `format` field.\n                  x-kubernetes-immutable: true\n            subjectConfig:\n              type: object\n              x-dcl-go-name: SubjectConfig\n              x-dcl-go-type: CertificateConfigSubjectConfig\n              description: Required. Specifies some of the values in a certificate\n                that are related to the subject.\n              x-kubernetes-immutable: true\n              required:\n              - subject\n              properties:\n                subject:\n                  type: object\n                  x-dcl-go-name: Subject\n                  x-dcl-go-type: CertificateConfigSubjectConfigSubject\n                  description: Required. Contains distinguished name fields such as\n                    the common name, location and organization.\n                  x-kubernetes-immutable: true\n                  properties:\n                    commonName:\n                      type: string\n                      x-dcl-go-name: CommonName\n                      description: The \"common name\" of the subject.\n                      x-kubernetes-immutable: true\n                    countryCode:\n                      type: string\n                      x-dcl-go-name: CountryCode\n                      description: The country code of the subject.\n                      x-kubernetes-immutable: true\n                    locality:\n                      type: string\n                      x-dcl-go-name: Locality\n                      description: The locality or city of the subject.\n                      x-kubernetes-immutable: true\n                    organization:\n                      type: string\n                      x-dcl-go-name: Organization\n                      description: The organization of the subject.\n                      x-kubernetes-immutable: true\n                    organizationalUnit:\n                      type: string\n                      x-dcl-go-name: OrganizationalUnit\n                      description: The organizational_unit of the subject.\n                      x-kubernetes-immutable: true\n                    postalCode:\n                      type: string\n                      x-dcl-go-name: PostalCode\n                      description: The postal code of the subject.\n                      x-kubernetes-immutable: true\n                    province:\n                      type: string\n                      x-dcl-go-name: Province\n                      description: The province, territory, or regional state of the\n                        subject.\n                      x-kubernetes-immutable: true\n                    streetAddress:\n                      type: string\n                      x-dcl-go-name: StreetAddress\n                      description: The street address of the subject.\n                      x-kubernetes-immutable: true\n                subjectAltName:\n                  type: object\n                  x-dcl-go-name: SubjectAltName\n                  x-dcl-go-type: CertificateConfigSubjectConfigSubjectAltName\n                  description: Optional. The subject alternative name fields.\n                  x-kubernetes-immutable: true\n                  properties:\n                    dnsNames:\n                      type: array\n                      x-dcl-go-name: DnsNames\n                      description: Contains only valid, fully-qualified host names.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    emailAddresses:\n                      type: array\n                      x-dcl-go-name: EmailAddresses\n                      description: Contains only valid RFC 2822 E-mail addresses.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    ipAddresses:\n                      type: array\n                      x-dcl-go-name: IPAddresses\n                      description: Contains only valid 32-bit IPv4 addresses or RFC\n                        4291 IPv6 addresses.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    uris:\n                      type: array\n                      x-dcl-go-name: Uris\n                      description: Contains only valid RFC 3986 URIs.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n            x509Config:\n              type: object\n              x-dcl-go-name: X509Config\n              x-dcl-go-type: CertificateConfigX509Config\n              description: Required. Describes how some of the technical X.509 fields\n                in a certificate should be populated.\n              x-kubernetes-immutable: true\n              properties:\n                additionalExtensions:\n                  type: array\n                  x-dcl-go-name: AdditionalExtensions\n                  description: Optional. Describes custom X.509 extensions.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CertificateConfigX509ConfigAdditionalExtensions\n                    required:\n                    - objectId\n                    - value\n                    properties:\n                      critical:\n                        type: boolean\n                        x-dcl-go-name: Critical\n                        description: Optional. Indicates whether or not this extension\n                          is critical (i.e., if the client does not know how to handle\n                          this extension, the client should consider this to be an\n                          error).\n                        x-kubernetes-immutable: true\n                      objectId:\n                        type: object\n                        x-dcl-go-name: ObjectId\n                        x-dcl-go-type: CertificateConfigX509ConfigAdditionalExtensionsObjectId\n                        description: Required. The OID for this X.509 extension.\n                        x-kubernetes-immutable: true\n                        required:\n                        - objectIdPath\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-kubernetes-immutable: true\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                      value:\n                        type: string\n                        x-dcl-go-name: Value\n                        description: Required. The value of this X.509 extension.\n                        x-kubernetes-immutable: true\n                aiaOcspServers:\n                  type: array\n                  x-dcl-go-name: AiaOcspServers\n                  description: Optional. Describes Online Certificate Status Protocol\n                    (OCSP) endpoint addresses that appear in the \"Authority Information\n                    Access\" extension in the certificate.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: string\n                    x-dcl-go-type: string\n                caOptions:\n                  type: object\n                  x-dcl-go-name: CaOptions\n                  x-dcl-go-type: CertificateConfigX509ConfigCaOptions\n                  description: Optional. Describes options in this X509Parameters\n                    that are relevant in a CA certificate.\n                  x-kubernetes-immutable: true\n                  properties:\n                    isCa:\n                      type: boolean\n                      x-dcl-go-name: IsCa\n                      description: Optional. When true, the \"CA\" in Basic Constraints\n                        extension will be set to true.\n                      x-kubernetes-immutable: true\n                    maxIssuerPathLength:\n                      type: integer\n                      format: int64\n                      x-dcl-go-name: MaxIssuerPathLength\n                      description: Optional. Refers to the \"path length constraint\"\n                        in Basic Constraints extension. For a CA certificate, this\n                        value describes the depth of subordinate CA certificates that\n                        are allowed. If this value is less than 0, the request will\n                        fail.\n                      x-kubernetes-immutable: true\n                    nonCa:\n                      type: boolean\n                      x-dcl-go-name: NonCa\n                      description: Optional. When true, the \"CA\" in Basic Constraints\n                        extension will be set to false. If both `is_ca` and `non_ca`\n                        are unset, the extension will be omitted from the CA certificate.\n                      x-kubernetes-immutable: true\n                    zeroMaxIssuerPathLength:\n                      type: boolean\n                      x-dcl-go-name: ZeroMaxIssuerPathLength\n                      description: Optional. When true, the \"path length constraint\"\n                        in Basic Constraints extension will be set to 0. if both max_issuer_path_length\n                        and zero_max_issuer_path_length are unset, the max path length\n                        will be omitted from the CA certificate.\n                      x-kubernetes-immutable: true\n                keyUsage:\n                  type: object\n                  x-dcl-go-name: KeyUsage\n                  x-dcl-go-type: CertificateConfigX509ConfigKeyUsage\n                  description: Optional. Indicates the intended use for keys that\n                    correspond to a certificate.\n                  x-kubernetes-immutable: true\n                  properties:\n                    baseKeyUsage:\n                      type: object\n                      x-dcl-go-name: BaseKeyUsage\n                      x-dcl-go-type: CertificateConfigX509ConfigKeyUsageBaseKeyUsage\n                      description: Describes high-level ways in which a key may be\n                        used.\n                      x-kubernetes-immutable: true\n                      properties:\n                        certSign:\n                          type: boolean\n                          x-dcl-go-name: CertSign\n                          description: The key may be used to sign certificates.\n                          x-kubernetes-immutable: true\n                        contentCommitment:\n                          type: boolean\n                          x-dcl-go-name: ContentCommitment\n                          description: The key may be used for cryptographic commitments.\n                            Note that this may also be referred to as \"non-repudiation\".\n                          x-kubernetes-immutable: true\n                        crlSign:\n                          type: boolean\n                          x-dcl-go-name: CrlSign\n                          description: The key may be used sign certificate revocation\n                            lists.\n                          x-kubernetes-immutable: true\n                        dataEncipherment:\n                          type: boolean\n                          x-dcl-go-name: DataEncipherment\n                          description: The key may be used to encipher data.\n                          x-kubernetes-immutable: true\n                        decipherOnly:\n                          type: boolean\n                          x-dcl-go-name: DecipherOnly\n                          description: The key may be used to decipher only.\n                          x-kubernetes-immutable: true\n                        digitalSignature:\n                          type: boolean\n                          x-dcl-go-name: DigitalSignature\n                          description: The key may be used for digital signatures.\n                          x-kubernetes-immutable: true\n                        encipherOnly:\n                          type: boolean\n                          x-dcl-go-name: EncipherOnly\n                          description: The key may be used to encipher only.\n                          x-kubernetes-immutable: true\n                        keyAgreement:\n                          type: boolean\n                          x-dcl-go-name: KeyAgreement\n                          description: The key may be used in a key agreement protocol.\n                          x-kubernetes-immutable: true\n                        keyEncipherment:\n                          type: boolean\n                          x-dcl-go-name: KeyEncipherment\n                          description: The key may be used to encipher other keys.\n                          x-kubernetes-immutable: true\n                    extendedKeyUsage:\n                      type: object\n                      x-dcl-go-name: ExtendedKeyUsage\n                      x-dcl-go-type: CertificateConfigX509ConfigKeyUsageExtendedKeyUsage\n                      description: Detailed scenarios in which a key may be used.\n                      x-kubernetes-immutable: true\n                      properties:\n                        clientAuth:\n                          type: boolean\n                          x-dcl-go-name: ClientAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially\n                            described as \"TLS WWW client authentication\", though regularly\n                            used for non-WWW TLS.\n                          x-kubernetes-immutable: true\n                        codeSigning:\n                          type: boolean\n                          x-dcl-go-name: CodeSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially\n                            described as \"Signing of downloadable executable code\n                            client authentication\".\n                          x-kubernetes-immutable: true\n                        emailProtection:\n                          type: boolean\n                          x-dcl-go-name: EmailProtection\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially\n                            described as \"Email protection\".\n                          x-kubernetes-immutable: true\n                        ocspSigning:\n                          type: boolean\n                          x-dcl-go-name: OcspSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially\n                            described as \"Signing OCSP responses\".\n                          x-kubernetes-immutable: true\n                        serverAuth:\n                          type: boolean\n                          x-dcl-go-name: ServerAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially\n                            described as \"TLS WWW server authentication\", though regularly\n                            used for non-WWW TLS.\n                          x-kubernetes-immutable: true\n                        timeStamping:\n                          type: boolean\n                          x-dcl-go-name: TimeStamping\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially\n                            described as \"Binding the hash of an object to a time\".\n                          x-kubernetes-immutable: true\n                    unknownExtendedKeyUsages:\n                      type: array\n                      x-dcl-go-name: UnknownExtendedKeyUsages\n                      description: Used to describe extended key usages that are not\n                        listed in the KeyUsage.ExtendedKeyUsageOptions message.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: object\n                        x-dcl-go-type: CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages\n                        required:\n                        - objectIdPath\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-kubernetes-immutable: true\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                policyIds:\n                  type: array\n                  x-dcl-go-name: PolicyIds\n                  description: Optional. Describes the X.509 certificate policy object\n                    identifiers, per https://tools.ietf.org/html/rfc5280#section-4.2.1.4.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CertificateConfigX509ConfigPolicyIds\n                    required:\n                    - objectIdPath\n                    properties:\n                      objectIdPath:\n                        type: array\n                        x-dcl-go-name: ObjectIdPath\n                        description: Required. The parts of an OID path. The most\n                          significant parts of the path come first.\n                        x-kubernetes-immutable: true\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: integer\n                          format: int64\n                          x-dcl-go-type: int64\n        createTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: CreateTime\n          readOnly: true\n          description: Output only. The time at which this Certificate was created.\n          x-kubernetes-immutable: true\n        issuerCertificateAuthority:\n          type: string\n          x-dcl-go-name: IssuerCertificateAuthority\n          readOnly: true\n          description: Output only. The resource name of the issuing CertificateAuthority\n            in the format `projects/*/locations/*/caPools/*/certificateAuthorities/*`.\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Privateca/CertificateAuthority\n            field: selfLink\n        labels:\n          type: object\n          additionalProperties:\n            type: string\n          x-dcl-go-name: Labels\n          description: Optional. Labels with user-defined metadata.\n        lifetime:\n          type: string\n          x-dcl-go-name: Lifetime\n          description: Required. Immutable. The desired lifetime of a certificate.\n            Used to create the \"not_before_time\" and \"not_after_time\" fields inside\n            an X.509 certificate. Note that the lifetime may be truncated if it would\n            extend past the life of any certificate authority in the issuing chain.\n          x-kubernetes-immutable: true\n        location:\n          type: string\n          x-dcl-go-name: Location\n          description: The location for the resource\n          x-kubernetes-immutable: true\n        name:\n          type: string\n          x-dcl-go-name: Name\n          description: The resource name for this Certificate in the format `projects/*/locations/*/caPools/*/certificates/*`.\n          x-kubernetes-immutable: true\n        pemCertificate:\n          type: string\n          x-dcl-go-name: PemCertificate\n          readOnly: true\n          description: Output only. The pem-encoded, signed X.509 certificate.\n          x-kubernetes-immutable: true\n        pemCertificateChain:\n          type: array\n          x-dcl-go-name: PemCertificateChain\n          readOnly: true\n          description: Output only. The chain that may be used to verify the X.509\n            certificate. Expected to be in issuer-to-root order according to RFC 5246.\n          x-kubernetes-immutable: true\n          x-dcl-list-type: list\n          items:\n            type: string\n            x-dcl-go-type: string\n        pemCsr:\n          type: string\n          x-dcl-go-name: PemCsr\n          description: Immutable. A pem-encoded X.509 certificate signing request\n            (CSR).\n          x-kubernetes-immutable: true\n          x-dcl-conflicts:\n          - config\n        project:\n          type: string\n          x-dcl-go-name: Project\n          description: The project for the resource\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Cloudresourcemanager/Project\n            field: name\n            parent: true\n        revocationDetails:\n          type: object\n          x-dcl-go-name: RevocationDetails\n          x-dcl-go-type: CertificateRevocationDetails\n          readOnly: true\n          description: Output only. Details regarding the revocation of this Certificate.\n            This Certificate is considered revoked if and only if this field is present.\n          x-kubernetes-immutable: true\n          properties:\n            revocationState:\n              type: string\n              x-dcl-go-name: RevocationState\n              x-dcl-go-type: CertificateRevocationDetailsRevocationStateEnum\n              description: 'Indicates why a Certificate was revoked. Possible values:\n                REVOCATION_REASON_UNSPECIFIED, KEY_COMPROMISE, CERTIFICATE_AUTHORITY_COMPROMISE,\n                AFFILIATION_CHANGED, SUPERSEDED, CESSATION_OF_OPERATION, CERTIFICATE_HOLD,\n                PRIVILEGE_WITHDRAWN, ATTRIBUTE_AUTHORITY_COMPROMISE'\n              x-kubernetes-immutable: true\n              enum:\n              - REVOCATION_REASON_UNSPECIFIED\n              - KEY_COMPROMISE\n              - CERTIFICATE_AUTHORITY_COMPROMISE\n              - AFFILIATION_CHANGED\n              - SUPERSEDED\n              - CESSATION_OF_OPERATION\n              - CERTIFICATE_HOLD\n              - PRIVILEGE_WITHDRAWN\n              - ATTRIBUTE_AUTHORITY_COMPROMISE\n            revocationTime:\n              type: string\n              format: date-time\n              x-dcl-go-name: RevocationTime\n              description: The time at which this Certificate was revoked.\n              x-kubernetes-immutable: true\n        subjectMode:\n          type: string\n          x-dcl-go-name: SubjectMode\n          x-dcl-go-type: CertificateSubjectModeEnum\n          description: 'Immutable. Specifies how the Certificate''s identity fields\n            are to be decided. If this is omitted, the `DEFAULT` subject mode will\n            be used. Possible values: SUBJECT_REQUEST_MODE_UNSPECIFIED, DEFAULT, REFLECTED_SPIFFE'\n          x-kubernetes-immutable: true\n          enum:\n          - SUBJECT_REQUEST_MODE_UNSPECIFIED\n          - DEFAULT\n          - REFLECTED_SPIFFE\n        updateTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: UpdateTime\n          readOnly: true\n          description: Output only. The time at which this Certificate was updated.\n          x-kubernetes-immutable: true\n")

blaze-out/k8-fastbuild/genfiles/cloud/graphite/mmv2/services/google/privateca/certificate.yaml

View Source
var YAML_certificate_authority = []byte("info:\n  title: Privateca/CertificateAuthority\n  description: The Privateca CertificateAuthority resource\n  x-dcl-struct-name: CertificateAuthority\n  x-dcl-has-iam: false\npaths:\n  get:\n    description: The function used to get information about a CertificateAuthority\n    parameters:\n    - name: certificateAuthority\n      required: true\n      description: A full instance of a CertificateAuthority\n  apply:\n    description: The function used to apply information about a CertificateAuthority\n    parameters:\n    - name: certificateAuthority\n      required: true\n      description: A full instance of a CertificateAuthority\n  delete:\n    description: The function used to delete a CertificateAuthority\n    parameters:\n    - name: certificateAuthority\n      required: true\n      description: A full instance of a CertificateAuthority\n  deleteAll:\n    description: The function used to delete all CertificateAuthority\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\n    - name: caPool\n      required: true\n      schema:\n        type: string\n  list:\n    description: The function used to list information about many CertificateAuthority\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\n    - name: caPool\n      required: true\n      schema:\n        type: string\ncomponents:\n  schemas:\n    CertificateAuthority:\n      title: CertificateAuthority\n      x-dcl-id: projects/{{project}}/locations/{{location}}/caPools/{{ca_pool}}/certificateAuthorities/{{name}}\n      x-dcl-parent-container: project\n      x-dcl-labels: labels\n      x-dcl-has-create: true\n      x-dcl-has-iam: false\n      x-dcl-read-timeout: 0\n      x-dcl-apply-timeout: 0\n      x-dcl-delete-timeout: 0\n      type: object\n      required:\n      - name\n      - type\n      - config\n      - lifetime\n      - keySpec\n      - project\n      - location\n      - caPool\n      properties:\n        accessUrls:\n          type: object\n          x-dcl-go-name: AccessUrls\n          x-dcl-go-type: CertificateAuthorityAccessUrls\n          readOnly: true\n          description: Output only. URLs for accessing content published by this CA,\n            such as the CA certificate and CRLs.\n          x-kubernetes-immutable: true\n          properties:\n            caCertificateAccessUrl:\n              type: string\n              x-dcl-go-name: CaCertificateAccessUrl\n              description: The URL where this CertificateAuthority's CA certificate\n                is published. This will only be set for CAs that have been activated.\n              x-kubernetes-immutable: true\n            crlAccessUrls:\n              type: array\n              x-dcl-go-name: CrlAccessUrls\n              description: The URLs where this CertificateAuthority's CRLs are published.\n                This will only be set for CAs that have been activated.\n              x-kubernetes-immutable: true\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: string\n                x-dcl-go-type: string\n        caCertificateDescriptions:\n          type: array\n          x-dcl-go-name: CaCertificateDescriptions\n          readOnly: true\n          description: Output only. A structured description of this CertificateAuthority's\n            CA certificate and its issuers. Ordered as self-to-root.\n          x-kubernetes-immutable: true\n          x-dcl-list-type: list\n          items:\n            type: object\n            x-dcl-go-type: CertificateAuthorityCaCertificateDescriptions\n            properties:\n              aiaIssuingCertificateUrls:\n                type: array\n                x-dcl-go-name: AiaIssuingCertificateUrls\n                description: Describes lists of issuer CA certificate URLs that appear\n                  in the \"Authority Information Access\" extension in the certificate.\n                x-dcl-send-empty: true\n                x-dcl-list-type: list\n                items:\n                  type: string\n                  x-dcl-go-type: string\n              authorityKeyId:\n                type: object\n                x-dcl-go-name: AuthorityKeyId\n                x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId\n                description: Identifies the subject_key_id of the parent certificate,\n                  per https://tools.ietf.org/html/rfc5280#section-4.2.1.1\n                properties:\n                  keyId:\n                    type: string\n                    x-dcl-go-name: KeyId\n                    description: Optional. The value of this KeyId encoded in lowercase\n                      hexadecimal. This is most likely the 160 bit SHA-1 hash of the\n                      public key.\n              certFingerprint:\n                type: object\n                x-dcl-go-name: CertFingerprint\n                x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsCertFingerprint\n                description: The hash of the x.509 certificate.\n                properties:\n                  sha256Hash:\n                    type: string\n                    x-dcl-go-name: Sha256Hash\n                    description: The SHA 256 hash, encoded in hexadecimal, of the\n                      DER x509 certificate.\n              crlDistributionPoints:\n                type: array\n                x-dcl-go-name: CrlDistributionPoints\n                description: Describes a list of locations to obtain CRL information,\n                  i.e. the DistributionPoint.fullName described by https://tools.ietf.org/html/rfc5280#section-4.2.1.13\n                x-dcl-send-empty: true\n                x-dcl-list-type: list\n                items:\n                  type: string\n                  x-dcl-go-type: string\n              publicKey:\n                type: object\n                x-dcl-go-name: PublicKey\n                x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsPublicKey\n                description: The public key that corresponds to an issued certificate.\n                required:\n                - key\n                - format\n                properties:\n                  format:\n                    type: string\n                    x-dcl-go-name: Format\n                    x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum\n                    description: 'Required. The format of the public key. Possible\n                      values: PEM'\n                    enum:\n                    - PEM\n                  key:\n                    type: string\n                    x-dcl-go-name: Key\n                    description: Required. A public key. The padding and encoding\n                      must match with the `KeyFormat` value specified for the `format`\n                      field.\n              subjectDescription:\n                type: object\n                x-dcl-go-name: SubjectDescription\n                x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsSubjectDescription\n                description: Describes some of the values in a certificate that are\n                  related to the subject and lifetime.\n                properties:\n                  hexSerialNumber:\n                    type: string\n                    x-dcl-go-name: HexSerialNumber\n                    description: The serial number encoded in lowercase hexadecimal.\n                  lifetime:\n                    type: string\n                    x-dcl-go-name: Lifetime\n                    description: For convenience, the actual lifetime of an issued\n                      certificate.\n                  notAfterTime:\n                    type: string\n                    format: date-time\n                    x-dcl-go-name: NotAfterTime\n                    description: The time after which the certificate is expired.\n                      Per RFC 5280, the validity period for a certificate is the period\n                      of time from not_before_time through not_after_time, inclusive.\n                      Corresponds to 'not_before_time' + 'lifetime' - 1 second.\n                  notBeforeTime:\n                    type: string\n                    format: date-time\n                    x-dcl-go-name: NotBeforeTime\n                    description: The time at which the certificate becomes valid.\n                  subject:\n                    type: object\n                    x-dcl-go-name: Subject\n                    x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject\n                    description: Contains distinguished name fields such as the common\n                      name, location and organization.\n                    properties:\n                      commonName:\n                        type: string\n                        x-dcl-go-name: CommonName\n                        description: The \"common name\" of the subject.\n                      countryCode:\n                        type: string\n                        x-dcl-go-name: CountryCode\n                        description: The country code of the subject.\n                      locality:\n                        type: string\n                        x-dcl-go-name: Locality\n                        description: The locality or city of the subject.\n                      organization:\n                        type: string\n                        x-dcl-go-name: Organization\n                        description: The organization of the subject.\n                      organizationalUnit:\n                        type: string\n                        x-dcl-go-name: OrganizationalUnit\n                        description: The organizational_unit of the subject.\n                      postalCode:\n                        type: string\n                        x-dcl-go-name: PostalCode\n                        description: The postal code of the subject.\n                      province:\n                        type: string\n                        x-dcl-go-name: Province\n                        description: The province, territory, or regional state of\n                          the subject.\n                      streetAddress:\n                        type: string\n                        x-dcl-go-name: StreetAddress\n                        description: The street address of the subject.\n                  subjectAltName:\n                    type: object\n                    x-dcl-go-name: SubjectAltName\n                    x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName\n                    description: The subject alternative name fields.\n                    properties:\n                      customSans:\n                        type: array\n                        x-dcl-go-name: CustomSans\n                        description: Contains additional subject alternative name\n                          values.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: object\n                          x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans\n                          required:\n                          - objectId\n                          - critical\n                          - value\n                          properties:\n                            critical:\n                              type: boolean\n                              x-dcl-go-name: Critical\n                              description: Optional. Indicates whether or not this\n                                extension is critical (i.e., if the client does not\n                                know how to handle this extension, the client should\n                                consider this to be an error).\n                            objectId:\n                              type: object\n                              x-dcl-go-name: ObjectId\n                              x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId\n                              description: Required. The OID for this X.509 extension.\n                              required:\n                              - objectIdPath\n                              properties:\n                                objectIdPath:\n                                  type: array\n                                  x-dcl-go-name: ObjectIdPath\n                                  description: Required. The parts of an OID path.\n                                    The most significant parts of the path come first.\n                                  x-dcl-send-empty: true\n                                  x-dcl-list-type: list\n                                  items:\n                                    type: integer\n                                    format: int64\n                                    x-dcl-go-type: int64\n                            value:\n                              type: string\n                              x-dcl-go-name: Value\n                              description: Required. The value of this X.509 extension.\n                      dnsNames:\n                        type: array\n                        x-dcl-go-name: DnsNames\n                        description: Contains only valid, fully-qualified host names.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: string\n                          x-dcl-go-type: string\n                      emailAddresses:\n                        type: array\n                        x-dcl-go-name: EmailAddresses\n                        description: Contains only valid RFC 2822 E-mail addresses.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: string\n                          x-dcl-go-type: string\n                      ipAddresses:\n                        type: array\n                        x-dcl-go-name: IPAddresses\n                        description: Contains only valid 32-bit IPv4 addresses or\n                          RFC 4291 IPv6 addresses.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: string\n                          x-dcl-go-type: string\n                      uris:\n                        type: array\n                        x-dcl-go-name: Uris\n                        description: Contains only valid RFC 3986 URIs.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: string\n                          x-dcl-go-type: string\n              subjectKeyId:\n                type: object\n                x-dcl-go-name: SubjectKeyId\n                x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsSubjectKeyId\n                description: Provides a means of identifiying certificates that contain\n                  a particular public key, per https://tools.ietf.org/html/rfc5280#section-4.2.1.2.\n                properties:\n                  keyId:\n                    type: string\n                    x-dcl-go-name: KeyId\n                    description: Optional. The value of this KeyId encoded in lowercase\n                      hexadecimal. This is most likely the 160 bit SHA-1 hash of the\n                      public key.\n              x509Description:\n                type: object\n                x-dcl-go-name: X509Description\n                x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509Description\n                description: Describes some of the technical X.509 fields in a certificate.\n                properties:\n                  additionalExtensions:\n                    type: array\n                    x-dcl-go-name: AdditionalExtensions\n                    description: Optional. Describes custom X.509 extensions.\n                    x-dcl-send-empty: true\n                    x-dcl-list-type: list\n                    items:\n                      type: object\n                      x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions\n                      required:\n                      - objectId\n                      - value\n                      properties:\n                        critical:\n                          type: boolean\n                          x-dcl-go-name: Critical\n                          description: Optional. Indicates whether or not this extension\n                            is critical (i.e., if the client does not know how to\n                            handle this extension, the client should consider this\n                            to be an error).\n                        objectId:\n                          type: object\n                          x-dcl-go-name: ObjectId\n                          x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId\n                          description: Required. The OID for this X.509 extension.\n                          required:\n                          - objectIdPath\n                          properties:\n                            objectIdPath:\n                              type: array\n                              x-dcl-go-name: ObjectIdPath\n                              description: Required. The parts of an OID path. The\n                                most significant parts of the path come first.\n                              x-dcl-send-empty: true\n                              x-dcl-list-type: list\n                              items:\n                                type: integer\n                                format: int64\n                                x-dcl-go-type: int64\n                        value:\n                          type: string\n                          x-dcl-go-name: Value\n                          description: Required. The value of this X.509 extension.\n                  aiaOcspServers:\n                    type: array\n                    x-dcl-go-name: AiaOcspServers\n                    readOnly: true\n                    description: Optional. Describes Online Certificate Status Protocol\n                      (OCSP) endpoint addresses that appear in the \"Authority Information\n                      Access\" extension in the certificate.\n                    x-kubernetes-immutable: true\n                    x-dcl-list-type: list\n                    items:\n                      type: string\n                      x-dcl-go-type: string\n                  caOptions:\n                    type: object\n                    x-dcl-go-name: CaOptions\n                    x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions\n                    description: Optional. Describes options in this X509Parameters\n                      that are relevant in a CA certificate.\n                    properties:\n                      isCa:\n                        type: boolean\n                        x-dcl-go-name: IsCa\n                        description: Optional. Refers to the \"CA\" X.509 extension,\n                          which is a boolean value. When this value is missing, the\n                          extension will be omitted from the CA certificate.\n                      maxIssuerPathLength:\n                        type: integer\n                        format: int64\n                        x-dcl-go-name: MaxIssuerPathLength\n                        description: Optional. Refers to the path length restriction\n                          X.509 extension. For a CA certificate, this value describes\n                          the depth of subordinate CA certificates that are allowed.\n                          If this value is less than 0, the request will fail. If\n                          this value is missing, the max path length will be omitted\n                          from the CA certificate.\n                  keyUsage:\n                    type: object\n                    x-dcl-go-name: KeyUsage\n                    x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage\n                    description: Optional. Indicates the intended use for keys that\n                      correspond to a certificate.\n                    properties:\n                      baseKeyUsage:\n                        type: object\n                        x-dcl-go-name: BaseKeyUsage\n                        x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage\n                        description: Describes high-level ways in which a key may\n                          be used.\n                        properties:\n                          certSign:\n                            type: boolean\n                            x-dcl-go-name: CertSign\n                            description: The key may be used to sign certificates.\n                          contentCommitment:\n                            type: boolean\n                            x-dcl-go-name: ContentCommitment\n                            description: The key may be used for cryptographic commitments.\n                              Note that this may also be referred to as \"non-repudiation\".\n                          crlSign:\n                            type: boolean\n                            x-dcl-go-name: CrlSign\n                            description: The key may be used sign certificate revocation\n                              lists.\n                          dataEncipherment:\n                            type: boolean\n                            x-dcl-go-name: DataEncipherment\n                            description: The key may be used to encipher data.\n                          decipherOnly:\n                            type: boolean\n                            x-dcl-go-name: DecipherOnly\n                            description: The key may be used to decipher only.\n                          digitalSignature:\n                            type: boolean\n                            x-dcl-go-name: DigitalSignature\n                            description: The key may be used for digital signatures.\n                          encipherOnly:\n                            type: boolean\n                            x-dcl-go-name: EncipherOnly\n                            description: The key may be used to encipher only.\n                          keyAgreement:\n                            type: boolean\n                            x-dcl-go-name: KeyAgreement\n                            description: The key may be used in a key agreement protocol.\n                          keyEncipherment:\n                            type: boolean\n                            x-dcl-go-name: KeyEncipherment\n                            description: The key may be used to encipher other keys.\n                      extendedKeyUsage:\n                        type: object\n                        x-dcl-go-name: ExtendedKeyUsage\n                        x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage\n                        description: Detailed scenarios in which a key may be used.\n                        properties:\n                          clientAuth:\n                            type: boolean\n                            x-dcl-go-name: ClientAuth\n                            description: Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially\n                              described as \"TLS WWW client authentication\", though\n                              regularly used for non-WWW TLS.\n                          codeSigning:\n                            type: boolean\n                            x-dcl-go-name: CodeSigning\n                            description: Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially\n                              described as \"Signing of downloadable executable code\n                              client authentication\".\n                          emailProtection:\n                            type: boolean\n                            x-dcl-go-name: EmailProtection\n                            description: Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially\n                              described as \"Email protection\".\n                          ocspSigning:\n                            type: boolean\n                            x-dcl-go-name: OcspSigning\n                            description: Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially\n                              described as \"Signing OCSP responses\".\n                          serverAuth:\n                            type: boolean\n                            x-dcl-go-name: ServerAuth\n                            description: Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially\n                              described as \"TLS WWW server authentication\", though\n                              regularly used for non-WWW TLS.\n                          timeStamping:\n                            type: boolean\n                            x-dcl-go-name: TimeStamping\n                            description: Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially\n                              described as \"Binding the hash of an object to a time\".\n                      unknownExtendedKeyUsages:\n                        type: array\n                        x-dcl-go-name: UnknownExtendedKeyUsages\n                        description: Used to describe extended key usages that are\n                          not listed in the KeyUsage.ExtendedKeyUsageOptions message.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: object\n                          x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages\n                          required:\n                          - objectIdPath\n                          properties:\n                            objectIdPath:\n                              type: array\n                              x-dcl-go-name: ObjectIdPath\n                              description: Required. The parts of an OID path. The\n                                most significant parts of the path come first.\n                              x-dcl-send-empty: true\n                              x-dcl-list-type: list\n                              items:\n                                type: integer\n                                format: int64\n                                x-dcl-go-type: int64\n                  policyIds:\n                    type: array\n                    x-dcl-go-name: PolicyIds\n                    description: Optional. Describes the X.509 certificate policy\n                      object identifiers, per https://tools.ietf.org/html/rfc5280#section-4.2.1.4.\n                    x-dcl-send-empty: true\n                    x-dcl-list-type: list\n                    items:\n                      type: object\n                      x-dcl-go-type: CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds\n                      required:\n                      - objectIdPath\n                      properties:\n                        objectIdPath:\n                          type: array\n                          x-dcl-go-name: ObjectIdPath\n                          description: Required. The parts of an OID path. The most\n                            significant parts of the path come first.\n                          x-dcl-send-empty: true\n                          x-dcl-list-type: list\n                          items:\n                            type: integer\n                            format: int64\n                            x-dcl-go-type: int64\n        caPool:\n          type: string\n          x-dcl-go-name: CaPool\n          description: The caPool for the resource\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Privateca/CaPool\n            field: name\n            parent: true\n        config:\n          type: object\n          x-dcl-go-name: Config\n          x-dcl-go-type: CertificateAuthorityConfig\n          description: Required. Immutable. The config used to create a self-signed\n            X.509 certificate or CSR.\n          x-kubernetes-immutable: true\n          required:\n          - subjectConfig\n          - x509Config\n          properties:\n            publicKey:\n              type: object\n              x-dcl-go-name: PublicKey\n              x-dcl-go-type: CertificateAuthorityConfigPublicKey\n              readOnly: true\n              description: Optional. The public key that corresponds to this config.\n                This is, for example, used when issuing Certificates, but not when\n                creating a self-signed CertificateAuthority or CertificateAuthority\n                CSR.\n              x-kubernetes-immutable: true\n              required:\n              - key\n              - format\n              properties:\n                format:\n                  type: string\n                  x-dcl-go-name: Format\n                  x-dcl-go-type: CertificateAuthorityConfigPublicKeyFormatEnum\n                  description: 'Required. The format of the public key. Possible values:\n                    PEM'\n                  x-kubernetes-immutable: true\n                  enum:\n                  - PEM\n                key:\n                  type: string\n                  x-dcl-go-name: Key\n                  description: Required. A public key. The padding and encoding must\n                    match with the `KeyFormat` value specified for the `format` field.\n                  x-kubernetes-immutable: true\n            subjectConfig:\n              type: object\n              x-dcl-go-name: SubjectConfig\n              x-dcl-go-type: CertificateAuthorityConfigSubjectConfig\n              description: Required. Specifies some of the values in a certificate\n                that are related to the subject.\n              x-kubernetes-immutable: true\n              required:\n              - subject\n              properties:\n                subject:\n                  type: object\n                  x-dcl-go-name: Subject\n                  x-dcl-go-type: CertificateAuthorityConfigSubjectConfigSubject\n                  description: Required. Contains distinguished name fields such as\n                    the common name, location and organization.\n                  x-kubernetes-immutable: true\n                  properties:\n                    commonName:\n                      type: string\n                      x-dcl-go-name: CommonName\n                      description: The \"common name\" of the subject.\n                      x-kubernetes-immutable: true\n                    countryCode:\n                      type: string\n                      x-dcl-go-name: CountryCode\n                      description: The country code of the subject.\n                      x-kubernetes-immutable: true\n                    locality:\n                      type: string\n                      x-dcl-go-name: Locality\n                      description: The locality or city of the subject.\n                      x-kubernetes-immutable: true\n                    organization:\n                      type: string\n                      x-dcl-go-name: Organization\n                      description: The organization of the subject.\n                      x-kubernetes-immutable: true\n                    organizationalUnit:\n                      type: string\n                      x-dcl-go-name: OrganizationalUnit\n                      description: The organizational_unit of the subject.\n                      x-kubernetes-immutable: true\n                    postalCode:\n                      type: string\n                      x-dcl-go-name: PostalCode\n                      description: The postal code of the subject.\n                      x-kubernetes-immutable: true\n                    province:\n                      type: string\n                      x-dcl-go-name: Province\n                      description: The province, territory, or regional state of the\n                        subject.\n                      x-kubernetes-immutable: true\n                    streetAddress:\n                      type: string\n                      x-dcl-go-name: StreetAddress\n                      description: The street address of the subject.\n                      x-kubernetes-immutable: true\n                subjectAltName:\n                  type: object\n                  x-dcl-go-name: SubjectAltName\n                  x-dcl-go-type: CertificateAuthorityConfigSubjectConfigSubjectAltName\n                  description: Optional. The subject alternative name fields.\n                  x-kubernetes-immutable: true\n                  properties:\n                    customSans:\n                      type: array\n                      x-dcl-go-name: CustomSans\n                      description: Contains additional subject alternative name values.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: object\n                        x-dcl-go-type: CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans\n                        required:\n                        - objectId\n                        - value\n                        properties:\n                          critical:\n                            type: boolean\n                            x-dcl-go-name: Critical\n                            description: Optional. Indicates whether or not this extension\n                              is critical (i.e., if the client does not know how to\n                              handle this extension, the client should consider this\n                              to be an error).\n                            x-kubernetes-immutable: true\n                          objectId:\n                            type: object\n                            x-dcl-go-name: ObjectId\n                            x-dcl-go-type: CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId\n                            description: Required. The OID for this X.509 extension.\n                            x-kubernetes-immutable: true\n                            required:\n                            - objectIdPath\n                            properties:\n                              objectIdPath:\n                                type: array\n                                x-dcl-go-name: ObjectIdPath\n                                description: Required. The parts of an OID path. The\n                                  most significant parts of the path come first.\n                                x-kubernetes-immutable: true\n                                x-dcl-send-empty: true\n                                x-dcl-list-type: list\n                                items:\n                                  type: integer\n                                  format: int64\n                                  x-dcl-go-type: int64\n                          value:\n                            type: string\n                            x-dcl-go-name: Value\n                            description: Required. The value of this X.509 extension.\n                            x-kubernetes-immutable: true\n                    dnsNames:\n                      type: array\n                      x-dcl-go-name: DnsNames\n                      description: Contains only valid, fully-qualified host names.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    emailAddresses:\n                      type: array\n                      x-dcl-go-name: EmailAddresses\n                      description: Contains only valid RFC 2822 E-mail addresses.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    ipAddresses:\n                      type: array\n                      x-dcl-go-name: IPAddresses\n                      description: Contains only valid 32-bit IPv4 addresses or RFC\n                        4291 IPv6 addresses.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n                    uris:\n                      type: array\n                      x-dcl-go-name: Uris\n                      description: Contains only valid RFC 3986 URIs.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: string\n                        x-dcl-go-type: string\n            x509Config:\n              type: object\n              x-dcl-go-name: X509Config\n              x-dcl-go-type: CertificateAuthorityConfigX509Config\n              description: Required. Describes how some of the technical X.509 fields\n                in a certificate should be populated.\n              x-kubernetes-immutable: true\n              properties:\n                additionalExtensions:\n                  type: array\n                  x-dcl-go-name: AdditionalExtensions\n                  description: Optional. Describes custom X.509 extensions.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CertificateAuthorityConfigX509ConfigAdditionalExtensions\n                    required:\n                    - objectId\n                    - value\n                    properties:\n                      critical:\n                        type: boolean\n                        x-dcl-go-name: Critical\n                        description: Optional. Indicates whether or not this extension\n                          is critical (i.e., if the client does not know how to handle\n                          this extension, the client should consider this to be an\n                          error).\n                        x-kubernetes-immutable: true\n                      objectId:\n                        type: object\n                        x-dcl-go-name: ObjectId\n                        x-dcl-go-type: CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId\n                        description: Required. The OID for this X.509 extension.\n                        x-kubernetes-immutable: true\n                        required:\n                        - objectIdPath\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-kubernetes-immutable: true\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                      value:\n                        type: string\n                        x-dcl-go-name: Value\n                        description: Required. The value of this X.509 extension.\n                        x-kubernetes-immutable: true\n                aiaOcspServers:\n                  type: array\n                  x-dcl-go-name: AiaOcspServers\n                  readOnly: true\n                  description: Optional. Describes Online Certificate Status Protocol\n                    (OCSP) endpoint addresses that appear in the \"Authority Information\n                    Access\" extension in the certificate.\n                  x-kubernetes-immutable: true\n                  x-dcl-list-type: list\n                  items:\n                    type: string\n                    x-dcl-go-type: string\n                caOptions:\n                  type: object\n                  x-dcl-go-name: CaOptions\n                  x-dcl-go-type: CertificateAuthorityConfigX509ConfigCaOptions\n                  description: Optional. Describes options in this X509Parameters\n                    that are relevant in a CA certificate.\n                  x-kubernetes-immutable: true\n                  properties:\n                    isCa:\n                      type: boolean\n                      x-dcl-go-name: IsCa\n                      description: Optional. Refers to the \"CA\" X.509 extension, which\n                        is a boolean value. When this value is missing, the extension\n                        will be omitted from the CA certificate.\n                      x-kubernetes-immutable: true\n                    maxIssuerPathLength:\n                      type: integer\n                      format: int64\n                      x-dcl-go-name: MaxIssuerPathLength\n                      description: Optional. Refers to the path length restriction\n                        X.509 extension. For a CA certificate, this value describes\n                        the depth of subordinate CA certificates that are allowed.\n                        If this value is less than 0, the request will fail. If this\n                        value is missing, the max path length will be omitted from\n                        the CA certificate.\n                      x-kubernetes-immutable: true\n                    zeroMaxIssuerPathLength:\n                      type: boolean\n                      x-dcl-go-name: ZeroMaxIssuerPathLength\n                      description: Optional. When true, the \"path length constraint\"\n                        in Basic Constraints extension will be set to 0. if both max_issuer_path_length\n                        and zero_max_issuer_path_length are unset, the max path length\n                        will be omitted from the CA certificate.\n                      x-kubernetes-immutable: true\n                keyUsage:\n                  type: object\n                  x-dcl-go-name: KeyUsage\n                  x-dcl-go-type: CertificateAuthorityConfigX509ConfigKeyUsage\n                  description: Optional. Indicates the intended use for keys that\n                    correspond to a certificate.\n                  x-kubernetes-immutable: true\n                  properties:\n                    baseKeyUsage:\n                      type: object\n                      x-dcl-go-name: BaseKeyUsage\n                      x-dcl-go-type: CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage\n                      description: Describes high-level ways in which a key may be\n                        used.\n                      x-kubernetes-immutable: true\n                      properties:\n                        certSign:\n                          type: boolean\n                          x-dcl-go-name: CertSign\n                          description: The key may be used to sign certificates.\n                          x-kubernetes-immutable: true\n                        contentCommitment:\n                          type: boolean\n                          x-dcl-go-name: ContentCommitment\n                          description: The key may be used for cryptographic commitments.\n                            Note that this may also be referred to as \"non-repudiation\".\n                          x-kubernetes-immutable: true\n                        crlSign:\n                          type: boolean\n                          x-dcl-go-name: CrlSign\n                          description: The key may be used sign certificate revocation\n                            lists.\n                          x-kubernetes-immutable: true\n                        dataEncipherment:\n                          type: boolean\n                          x-dcl-go-name: DataEncipherment\n                          description: The key may be used to encipher data.\n                          x-kubernetes-immutable: true\n                        decipherOnly:\n                          type: boolean\n                          x-dcl-go-name: DecipherOnly\n                          description: The key may be used to decipher only.\n                          x-kubernetes-immutable: true\n                        digitalSignature:\n                          type: boolean\n                          x-dcl-go-name: DigitalSignature\n                          description: The key may be used for digital signatures.\n                          x-kubernetes-immutable: true\n                        encipherOnly:\n                          type: boolean\n                          x-dcl-go-name: EncipherOnly\n                          description: The key may be used to encipher only.\n                          x-kubernetes-immutable: true\n                        keyAgreement:\n                          type: boolean\n                          x-dcl-go-name: KeyAgreement\n                          description: The key may be used in a key agreement protocol.\n                          x-kubernetes-immutable: true\n                        keyEncipherment:\n                          type: boolean\n                          x-dcl-go-name: KeyEncipherment\n                          description: The key may be used to encipher other keys.\n                          x-kubernetes-immutable: true\n                    extendedKeyUsage:\n                      type: object\n                      x-dcl-go-name: ExtendedKeyUsage\n                      x-dcl-go-type: CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage\n                      description: Detailed scenarios in which a key may be used.\n                      x-kubernetes-immutable: true\n                      properties:\n                        clientAuth:\n                          type: boolean\n                          x-dcl-go-name: ClientAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially\n                            described as \"TLS WWW client authentication\", though regularly\n                            used for non-WWW TLS.\n                          x-kubernetes-immutable: true\n                        codeSigning:\n                          type: boolean\n                          x-dcl-go-name: CodeSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially\n                            described as \"Signing of downloadable executable code\n                            client authentication\".\n                          x-kubernetes-immutable: true\n                        emailProtection:\n                          type: boolean\n                          x-dcl-go-name: EmailProtection\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially\n                            described as \"Email protection\".\n                          x-kubernetes-immutable: true\n                        ocspSigning:\n                          type: boolean\n                          x-dcl-go-name: OcspSigning\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially\n                            described as \"Signing OCSP responses\".\n                          x-kubernetes-immutable: true\n                        serverAuth:\n                          type: boolean\n                          x-dcl-go-name: ServerAuth\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially\n                            described as \"TLS WWW server authentication\", though regularly\n                            used for non-WWW TLS.\n                          x-kubernetes-immutable: true\n                        timeStamping:\n                          type: boolean\n                          x-dcl-go-name: TimeStamping\n                          description: Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially\n                            described as \"Binding the hash of an object to a time\".\n                          x-kubernetes-immutable: true\n                    unknownExtendedKeyUsages:\n                      type: array\n                      x-dcl-go-name: UnknownExtendedKeyUsages\n                      description: Used to describe extended key usages that are not\n                        listed in the KeyUsage.ExtendedKeyUsageOptions message.\n                      x-kubernetes-immutable: true\n                      x-dcl-send-empty: true\n                      x-dcl-list-type: list\n                      items:\n                        type: object\n                        x-dcl-go-type: CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages\n                        required:\n                        - objectIdPath\n                        properties:\n                          objectIdPath:\n                            type: array\n                            x-dcl-go-name: ObjectIdPath\n                            description: Required. The parts of an OID path. The most\n                              significant parts of the path come first.\n                            x-kubernetes-immutable: true\n                            x-dcl-send-empty: true\n                            x-dcl-list-type: list\n                            items:\n                              type: integer\n                              format: int64\n                              x-dcl-go-type: int64\n                policyIds:\n                  type: array\n                  x-dcl-go-name: PolicyIds\n                  description: Optional. Describes the X.509 certificate policy object\n                    identifiers, per https://tools.ietf.org/html/rfc5280#section-4.2.1.4.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CertificateAuthorityConfigX509ConfigPolicyIds\n                    required:\n                    - objectIdPath\n                    properties:\n                      objectIdPath:\n                        type: array\n                        x-dcl-go-name: ObjectIdPath\n                        description: Required. The parts of an OID path. The most\n                          significant parts of the path come first.\n                        x-kubernetes-immutable: true\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: integer\n                          format: int64\n                          x-dcl-go-type: int64\n        createTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: CreateTime\n          readOnly: true\n          description: Output only. The time at which this CertificateAuthority was\n            created.\n          x-kubernetes-immutable: true\n        deleteTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: DeleteTime\n          readOnly: true\n          description: Output only. The time at which this CertificateAuthority was\n            soft deleted, if it is in the DELETED state.\n          x-kubernetes-immutable: true\n        expireTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: ExpireTime\n          readOnly: true\n          description: Output only. The time at which this CertificateAuthority will\n            be permanently purged, if it is in the DELETED state.\n          x-kubernetes-immutable: true\n        gcsBucket:\n          type: string\n          x-dcl-go-name: GcsBucket\n          description: Immutable. The name of a Cloud Storage bucket where this CertificateAuthority\n            will publish content, such as the CA certificate and CRLs. This must be\n            a bucket name, without any prefixes (such as `gs://`) or suffixes (such\n            as `.googleapis.com`). For example, to use a bucket named `my-bucket`,\n            you would simply specify `my-bucket`. If not specified, a managed bucket\n            will be created.\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Storage/Bucket\n            field: name\n        keySpec:\n          type: object\n          x-dcl-go-name: KeySpec\n          x-dcl-go-type: CertificateAuthorityKeySpec\n          description: Required. Immutable. Used when issuing certificates for this\n            CertificateAuthority. If this CertificateAuthority is a self-signed CertificateAuthority,\n            this key is also used to sign the self-signed CA certificate. Otherwise,\n            it is used to sign a CSR.\n          x-kubernetes-immutable: true\n          properties:\n            algorithm:\n              type: string\n              x-dcl-go-name: Algorithm\n              x-dcl-go-type: CertificateAuthorityKeySpecAlgorithmEnum\n              description: 'The algorithm to use for creating a managed Cloud KMS\n                key for a for a simplified experience. All managed keys will be have\n                their ProtectionLevel as `HSM`. Possible values: RSA_PSS_2048_SHA256,\n                RSA_PSS_3072_SHA256, RSA_PSS_4096_SHA256, RSA_PKCS1_2048_SHA256, RSA_PKCS1_3072_SHA256,\n                RSA_PKCS1_4096_SHA256, EC_P256_SHA256, EC_P384_SHA384'\n              x-kubernetes-immutable: true\n              x-dcl-conflicts:\n              - cloudKmsKeyVersion\n              enum:\n              - RSA_PSS_2048_SHA256\n              - RSA_PSS_3072_SHA256\n              - RSA_PSS_4096_SHA256\n              - RSA_PKCS1_2048_SHA256\n              - RSA_PKCS1_3072_SHA256\n              - RSA_PKCS1_4096_SHA256\n              - EC_P256_SHA256\n              - EC_P384_SHA384\n            cloudKmsKeyVersion:\n              type: string\n              x-dcl-go-name: CloudKmsKeyVersion\n              description: The resource name for an existing Cloud KMS CryptoKeyVersion\n                in the format `projects/*/locations/*/keyRings/*/cryptoKeys/*/cryptoKeyVersions/*`.\n                This option enables full flexibility in the key's capabilities and\n                properties.\n              x-kubernetes-immutable: true\n              x-dcl-conflicts:\n              - algorithm\n              x-dcl-references:\n              - resource: Cloudkms/CryptoKeyVersion\n                field: name\n        labels:\n          type: object\n          additionalProperties:\n            type: string\n          x-dcl-go-name: Labels\n          description: Optional. Labels with user-defined metadata.\n        lifetime:\n          type: string\n          x-dcl-go-name: Lifetime\n          description: Required. The desired lifetime of the CA certificate. Used\n            to create the \"not_before_time\" and \"not_after_time\" fields inside an\n            X.509 certificate.\n          x-kubernetes-immutable: true\n        location:\n          type: string\n          x-dcl-go-name: Location\n          description: The location for the resource\n          x-kubernetes-immutable: true\n        name:\n          type: string\n          x-dcl-go-name: Name\n          description: The resource name for this CertificateAuthority in the format\n            `projects/*/locations/*/caPools/*/certificateAuthorities/*`.\n          x-kubernetes-immutable: true\n        pemCaCertificates:\n          type: array\n          x-dcl-go-name: PemCaCertificates\n          readOnly: true\n          description: Output only. This CertificateAuthority's certificate chain,\n            including the current CertificateAuthority's certificate. Ordered such\n            that the root issuer is the final element (consistent with RFC 5246).\n            For a self-signed CA, this will only list the current CertificateAuthority's\n            certificate.\n          x-kubernetes-immutable: true\n          x-dcl-list-type: list\n          items:\n            type: string\n            x-dcl-go-type: string\n        project:\n          type: string\n          x-dcl-go-name: Project\n          description: The project for the resource\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Cloudresourcemanager/Project\n            field: name\n            parent: true\n        state:\n          type: string\n          x-dcl-go-name: State\n          x-dcl-go-type: CertificateAuthorityStateEnum\n          readOnly: true\n          description: 'Output only. The State for this CertificateAuthority. Possible\n            values: ENABLED, DISABLED, STAGED, AWAITING_USER_ACTIVATION, DELETED'\n          x-kubernetes-immutable: true\n          enum:\n          - ENABLED\n          - DISABLED\n          - STAGED\n          - AWAITING_USER_ACTIVATION\n          - DELETED\n        subordinateConfig:\n          type: object\n          x-dcl-go-name: SubordinateConfig\n          x-dcl-go-type: CertificateAuthoritySubordinateConfig\n          readOnly: true\n          description: Optional. If this is a subordinate CertificateAuthority, this\n            field will be set with the subordinate configuration, which describes\n            its issuers. This may be updated, but this CertificateAuthority must continue\n            to validate.\n          x-kubernetes-immutable: true\n          properties:\n            certificateAuthority:\n              type: string\n              x-dcl-go-name: CertificateAuthority\n              description: Required. This can refer to a CertificateAuthority in the\n                same project that was used to create a subordinate CertificateAuthority.\n                This field is used for information and usability purposes only. The\n                resource name is in the format `projects/*/locations/*/caPools/*/certificateAuthorities/*`.\n              x-kubernetes-immutable: true\n              x-dcl-conflicts:\n              - pemIssuerChain\n              x-dcl-references:\n              - resource: Privateca/CertificateAuthority\n                field: selfLink\n            pemIssuerChain:\n              type: object\n              x-dcl-go-name: PemIssuerChain\n              x-dcl-go-type: CertificateAuthoritySubordinateConfigPemIssuerChain\n              description: Required. Contains the PEM certificate chain for the issuers\n                of this CertificateAuthority, but not pem certificate for this CA\n                itself.\n              x-kubernetes-immutable: true\n              x-dcl-conflicts:\n              - certificateAuthority\n              required:\n              - pemCertificates\n              properties:\n                pemCertificates:\n                  type: array\n                  x-dcl-go-name: PemCertificates\n                  description: Required. Expected to be in leaf-to-root order according\n                    to RFC 5246.\n                  x-kubernetes-immutable: true\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: string\n                    x-dcl-go-type: string\n        tier:\n          type: string\n          x-dcl-go-name: Tier\n          x-dcl-go-type: CertificateAuthorityTierEnum\n          readOnly: true\n          description: 'Output only. The CaPool.Tier of the CaPool that includes this\n            CertificateAuthority. Possible values: ENTERPRISE, DEVOPS'\n          x-kubernetes-immutable: true\n          enum:\n          - ENTERPRISE\n          - DEVOPS\n        type:\n          type: string\n          x-dcl-go-name: Type\n          x-dcl-go-type: CertificateAuthorityTypeEnum\n          description: 'Required. Immutable. The Type of this CertificateAuthority.\n            Possible values: SELF_SIGNED, SUBORDINATE'\n          x-kubernetes-immutable: true\n          enum:\n          - SELF_SIGNED\n          - SUBORDINATE\n        updateTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: UpdateTime\n          readOnly: true\n          description: Output only. The time at which this CertificateAuthority was\n            last updated.\n          x-kubernetes-immutable: true\n")

blaze-out/k8-fastbuild/genfiles/cloud/graphite/mmv2/services/google/privateca/certificate_authority.yaml

View Source
var YAML_certificate_template = []byte("info:\n  title: Privateca/CertificateTemplate\n  description: Certificate Authority Service provides reusable and parameterized templates\n    that you can use for common certificate issuance scenarios. A certificate template\n    represents a relatively static and well-defined certificate issuance schema within\n    an organization.  A certificate template can essentially become a full-fledged\n    vertical certificate issuance framework.\n  x-dcl-struct-name: CertificateTemplate\n  x-dcl-has-iam: false\n  x-dcl-ref:\n    text: REST API\n    url: https://cloud.google.com/certificate-authority-service/docs/reference/rest/v1/projects.locations.certificateTemplates\n  x-dcl-guides:\n  - text: Understanding Certificate Templates\n    url: https://cloud.google.com/certificate-authority-service/docs/certificate-template\n  - text: Common configurations and Certificate Profiles\n    url: https://cloud.google.com/certificate-authority-service/docs/certificate-profile\npaths:\n  get:\n    description: The function used to get information about a CertificateTemplate\n    parameters:\n    - name: certificateTemplate\n      required: true\n      description: A full instance of a CertificateTemplate\n  apply:\n    description: The function used to apply information about a CertificateTemplate\n    parameters:\n    - name: certificateTemplate\n      required: true\n      description: A full instance of a CertificateTemplate\n  delete:\n    description: The function used to delete a CertificateTemplate\n    parameters:\n    - name: certificateTemplate\n      required: true\n      description: A full instance of a CertificateTemplate\n  deleteAll:\n    description: The function used to delete all CertificateTemplate\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\n  list:\n    description: The function used to list information about many CertificateTemplate\n    parameters:\n    - name: project\n      required: true\n      schema:\n        type: string\n    - name: location\n      required: true\n      schema:\n        type: string\ncomponents:\n  schemas:\n    CertificateTemplate:\n      title: CertificateTemplate\n      x-dcl-id: projects/{{project}}/locations/{{location}}/certificateTemplates/{{name}}\n      x-dcl-parent-container: project\n      x-dcl-labels: labels\n      x-dcl-has-create: true\n      x-dcl-has-iam: false\n      x-dcl-read-timeout: 0\n      x-dcl-apply-timeout: 0\n      x-dcl-delete-timeout: 0\n      type: object\n      required:\n      - name\n      - project\n      - location\n      properties:\n        createTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: CreateTime\n          readOnly: true\n          description: Output only. The time at which this CertificateTemplate was\n            created.\n          x-kubernetes-immutable: true\n        description:\n          type: string\n          x-dcl-go-name: Description\n          description: Optional. A human-readable description of scenarios this template\n            is intended for.\n        identityConstraints:\n          type: object\n          x-dcl-go-name: IdentityConstraints\n          x-dcl-go-type: CertificateTemplateIdentityConstraints\n          description: Optional. Describes constraints on identities that may be appear\n            in Certificates issued using this template. If this is omitted, then this\n            template will not add restrictions on a certificate's identity.\n          required:\n          - allowSubjectPassthrough\n          - allowSubjectAltNamesPassthrough\n          properties:\n            allowSubjectAltNamesPassthrough:\n              type: boolean\n              x-dcl-go-name: AllowSubjectAltNamesPassthrough\n              description: Required. If this is true, the SubjectAltNames extension\n                may be copied from a certificate request into the signed certificate.\n                Otherwise, the requested SubjectAltNames will be discarded.\n            allowSubjectPassthrough:\n              type: boolean\n              x-dcl-go-name: AllowSubjectPassthrough\n              description: Required. If this is true, the Subject field may be copied\n                from a certificate request into the signed certificate. Otherwise,\n                the requested Subject will be discarded.\n            celExpression:\n              type: object\n              x-dcl-go-name: CelExpression\n              x-dcl-go-type: CertificateTemplateIdentityConstraintsCelExpression\n              description: Optional. A CEL expression that may be used to validate\n                the resolved X.509 Subject and/or Subject Alternative Name before\n                a certificate is signed. To see the full allowed syntax and some examples,\n                see https://cloud.google.com/certificate-authority-service/docs/using-cel\n              properties:\n                description:\n                  type: string\n                  x-dcl-go-name: Description\n                  description: Optional. Description of the expression. This is a\n                    longer text which describes the expression, e.g. when hovered\n                    over it in a UI.\n                expression:\n                  type: string\n                  x-dcl-go-name: Expression\n                  description: Textual representation of an expression in Common Expression\n                    Language syntax.\n                location:\n                  type: string\n                  x-dcl-go-name: Location\n                  description: Optional. String indicating the location of the expression\n                    for error reporting, e.g. a file name and a position in the file.\n                title:\n                  type: string\n                  x-dcl-go-name: Title\n                  description: Optional. Title for the expression, i.e. a short string\n                    describing its purpose. This can be used e.g. in UIs which allow\n                    to enter the expression.\n        labels:\n          type: object\n          additionalProperties:\n            type: string\n          x-dcl-go-name: Labels\n          description: Optional. Labels with user-defined metadata.\n        location:\n          type: string\n          x-dcl-go-name: Location\n          description: The location for the resource\n          x-kubernetes-immutable: true\n        name:\n          type: string\n          x-dcl-go-name: Name\n          description: The resource name for this CertificateTemplate in the format\n            `projects/*/locations/*/certificateTemplates/*`.\n          x-kubernetes-immutable: true\n        passthroughExtensions:\n          type: object\n          x-dcl-go-name: PassthroughExtensions\n          x-dcl-go-type: CertificateTemplatePassthroughExtensions\n          description: Optional. Describes the set of X.509 extensions that may appear\n            in a Certificate issued using this CertificateTemplate. If a certificate\n            request sets extensions that don't appear in the passthrough_extensions,\n            those extensions will be dropped. If the issuing CaPool's IssuancePolicy\n            defines baseline_values that don't appear here, the certificate issuance\n            request will fail. If this is omitted, then this template will not add\n            restrictions on a certificate's X.509 extensions. These constraints do\n            not apply to X.509 extensions set in this CertificateTemplate's predefined_values.\n          properties:\n            additionalExtensions:\n              type: array\n              x-dcl-go-name: AdditionalExtensions\n              description: Optional. A set of ObjectIds identifying custom X.509 extensions.\n                Will be combined with known_extensions to determine the full set of\n                X.509 extensions.\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: object\n                x-dcl-go-type: CertificateTemplatePassthroughExtensionsAdditionalExtensions\n                required:\n                - objectIdPath\n                properties:\n                  objectIdPath:\n                    type: array\n                    x-dcl-go-name: ObjectIdPath\n                    description: Required. The parts of an OID path. The most significant\n                      parts of the path come first.\n                    x-dcl-send-empty: true\n                    x-dcl-list-type: list\n                    items:\n                      type: integer\n                      format: int64\n                      x-dcl-go-type: int64\n            knownExtensions:\n              type: array\n              x-dcl-go-name: KnownExtensions\n              description: Optional. A set of named X.509 extensions. Will be combined\n                with additional_extensions to determine the full set of X.509 extensions.\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: string\n                x-dcl-go-type: CertificateTemplatePassthroughExtensionsKnownExtensionsEnum\n                enum:\n                - KNOWN_CERTIFICATE_EXTENSION_UNSPECIFIED\n                - BASE_KEY_USAGE\n                - EXTENDED_KEY_USAGE\n                - CA_OPTIONS\n                - POLICY_IDS\n                - AIA_OCSP_SERVERS\n        predefinedValues:\n          type: object\n          x-dcl-go-name: PredefinedValues\n          x-dcl-go-type: CertificateTemplatePredefinedValues\n          description: Optional. A set of X.509 values that will be applied to all\n            issued certificates that use this template. If the certificate request\n            includes conflicting values for the same properties, they will be overwritten\n            by the values defined here. If the issuing CaPool's IssuancePolicy defines\n            conflicting baseline_values for the same properties, the certificate issuance\n            request will fail.\n          properties:\n            additionalExtensions:\n              type: array\n              x-dcl-go-name: AdditionalExtensions\n              description: Optional. Describes custom X.509 extensions.\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: object\n                x-dcl-go-type: CertificateTemplatePredefinedValuesAdditionalExtensions\n                required:\n                - objectId\n                - value\n                properties:\n                  critical:\n                    type: boolean\n                    x-dcl-go-name: Critical\n                    description: Optional. Indicates whether or not this extension\n                      is critical (i.e., if the client does not know how to handle\n                      this extension, the client should consider this to be an error).\n                  objectId:\n                    type: object\n                    x-dcl-go-name: ObjectId\n                    x-dcl-go-type: CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId\n                    description: Required. The OID for this X.509 extension.\n                    required:\n                    - objectIdPath\n                    properties:\n                      objectIdPath:\n                        type: array\n                        x-dcl-go-name: ObjectIdPath\n                        description: Required. The parts of an OID path. The most\n                          significant parts of the path come first.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: integer\n                          format: int64\n                          x-dcl-go-type: int64\n                  value:\n                    type: string\n                    x-dcl-go-name: Value\n                    description: Required. The value of this X.509 extension.\n            aiaOcspServers:\n              type: array\n              x-dcl-go-name: AiaOcspServers\n              description: Optional. Describes Online Certificate Status Protocol\n                (OCSP) endpoint addresses that appear in the \"Authority Information\n                Access\" extension in the certificate.\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: string\n                x-dcl-go-type: string\n            caOptions:\n              type: object\n              x-dcl-go-name: CaOptions\n              x-dcl-go-type: CertificateTemplatePredefinedValuesCaOptions\n              description: Optional. Describes options in this X509Parameters that\n                are relevant in a CA certificate.\n              properties:\n                isCa:\n                  type: boolean\n                  x-dcl-go-name: IsCa\n                  description: Optional. Refers to the \"CA\" X.509 extension, which\n                    is a boolean value. When this value is missing, the extension\n                    will be omitted from the CA certificate.\n                maxIssuerPathLength:\n                  type: integer\n                  format: int64\n                  x-dcl-go-name: MaxIssuerPathLength\n                  description: Optional. Refers to the path length restriction X.509\n                    extension. For a CA certificate, this value describes the depth\n                    of subordinate CA certificates that are allowed. If this value\n                    is less than 0, the request will fail. If this value is missing,\n                    the max path length will be omitted from the CA certificate.\n            keyUsage:\n              type: object\n              x-dcl-go-name: KeyUsage\n              x-dcl-go-type: CertificateTemplatePredefinedValuesKeyUsage\n              description: Optional. Indicates the intended use for keys that correspond\n                to a certificate.\n              properties:\n                baseKeyUsage:\n                  type: object\n                  x-dcl-go-name: BaseKeyUsage\n                  x-dcl-go-type: CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage\n                  description: Describes high-level ways in which a key may be used.\n                  properties:\n                    certSign:\n                      type: boolean\n                      x-dcl-go-name: CertSign\n                      description: The key may be used to sign certificates.\n                    contentCommitment:\n                      type: boolean\n                      x-dcl-go-name: ContentCommitment\n                      description: The key may be used for cryptographic commitments.\n                        Note that this may also be referred to as \"non-repudiation\".\n                    crlSign:\n                      type: boolean\n                      x-dcl-go-name: CrlSign\n                      description: The key may be used sign certificate revocation\n                        lists.\n                    dataEncipherment:\n                      type: boolean\n                      x-dcl-go-name: DataEncipherment\n                      description: The key may be used to encipher data.\n                    decipherOnly:\n                      type: boolean\n                      x-dcl-go-name: DecipherOnly\n                      description: The key may be used to decipher only.\n                    digitalSignature:\n                      type: boolean\n                      x-dcl-go-name: DigitalSignature\n                      description: The key may be used for digital signatures.\n                    encipherOnly:\n                      type: boolean\n                      x-dcl-go-name: EncipherOnly\n                      description: The key may be used to encipher only.\n                    keyAgreement:\n                      type: boolean\n                      x-dcl-go-name: KeyAgreement\n                      description: The key may be used in a key agreement protocol.\n                    keyEncipherment:\n                      type: boolean\n                      x-dcl-go-name: KeyEncipherment\n                      description: The key may be used to encipher other keys.\n                extendedKeyUsage:\n                  type: object\n                  x-dcl-go-name: ExtendedKeyUsage\n                  x-dcl-go-type: CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage\n                  description: Detailed scenarios in which a key may be used.\n                  properties:\n                    clientAuth:\n                      type: boolean\n                      x-dcl-go-name: ClientAuth\n                      description: Corresponds to OID 1.3.6.1.5.5.7.3.2. Officially\n                        described as \"TLS WWW client authentication\", though regularly\n                        used for non-WWW TLS.\n                    codeSigning:\n                      type: boolean\n                      x-dcl-go-name: CodeSigning\n                      description: Corresponds to OID 1.3.6.1.5.5.7.3.3. Officially\n                        described as \"Signing of downloadable executable code client\n                        authentication\".\n                    emailProtection:\n                      type: boolean\n                      x-dcl-go-name: EmailProtection\n                      description: Corresponds to OID 1.3.6.1.5.5.7.3.4. Officially\n                        described as \"Email protection\".\n                    ocspSigning:\n                      type: boolean\n                      x-dcl-go-name: OcspSigning\n                      description: Corresponds to OID 1.3.6.1.5.5.7.3.9. Officially\n                        described as \"Signing OCSP responses\".\n                    serverAuth:\n                      type: boolean\n                      x-dcl-go-name: ServerAuth\n                      description: Corresponds to OID 1.3.6.1.5.5.7.3.1. Officially\n                        described as \"TLS WWW server authentication\", though regularly\n                        used for non-WWW TLS.\n                    timeStamping:\n                      type: boolean\n                      x-dcl-go-name: TimeStamping\n                      description: Corresponds to OID 1.3.6.1.5.5.7.3.8. Officially\n                        described as \"Binding the hash of an object to a time\".\n                unknownExtendedKeyUsages:\n                  type: array\n                  x-dcl-go-name: UnknownExtendedKeyUsages\n                  description: Used to describe extended key usages that are not listed\n                    in the KeyUsage.ExtendedKeyUsageOptions message.\n                  x-dcl-send-empty: true\n                  x-dcl-list-type: list\n                  items:\n                    type: object\n                    x-dcl-go-type: CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages\n                    required:\n                    - objectIdPath\n                    properties:\n                      objectIdPath:\n                        type: array\n                        x-dcl-go-name: ObjectIdPath\n                        description: Required. The parts of an OID path. The most\n                          significant parts of the path come first.\n                        x-dcl-send-empty: true\n                        x-dcl-list-type: list\n                        items:\n                          type: integer\n                          format: int64\n                          x-dcl-go-type: int64\n            policyIds:\n              type: array\n              x-dcl-go-name: PolicyIds\n              description: Optional. Describes the X.509 certificate policy object\n                identifiers, per https://tools.ietf.org/html/rfc5280#section-4.2.1.4.\n              x-dcl-send-empty: true\n              x-dcl-list-type: list\n              items:\n                type: object\n                x-dcl-go-type: CertificateTemplatePredefinedValuesPolicyIds\n                required:\n                - objectIdPath\n                properties:\n                  objectIdPath:\n                    type: array\n                    x-dcl-go-name: ObjectIdPath\n                    description: Required. The parts of an OID path. The most significant\n                      parts of the path come first.\n                    x-dcl-send-empty: true\n                    x-dcl-list-type: list\n                    items:\n                      type: integer\n                      format: int64\n                      x-dcl-go-type: int64\n        project:\n          type: string\n          x-dcl-go-name: Project\n          description: The project for the resource\n          x-kubernetes-immutable: true\n          x-dcl-references:\n          - resource: Cloudresourcemanager/Project\n            field: name\n            parent: true\n        updateTime:\n          type: string\n          format: date-time\n          x-dcl-go-name: UpdateTime\n          readOnly: true\n          description: Output only. The time at which this CertificateTemplate was\n            updated.\n          x-kubernetes-immutable: true\n")

blaze-out/k8-fastbuild/genfiles/cloud/graphite/mmv2/services/google/privateca/certificate_template.yaml

Functions

func DCLCaPoolSchema added in v1.10.3

func DCLCaPoolSchema() *dcl.Schema

func DCLCertificateAuthoritySchema added in v1.10.3

func DCLCertificateAuthoritySchema() *dcl.Schema

func DCLCertificateSchema added in v1.10.3

func DCLCertificateSchema() *dcl.Schema

func DCLCertificateTemplateSchema added in v1.10.3

func DCLCertificateTemplateSchema() *dcl.Schema

Types

type CaPool

type CaPool struct {
	Name              *string                  `json:"name"`
	Tier              *CaPoolTierEnum          `json:"tier"`
	IssuancePolicy    *CaPoolIssuancePolicy    `json:"issuancePolicy"`
	PublishingOptions *CaPoolPublishingOptions `json:"publishingOptions"`
	Labels            map[string]string        `json:"labels"`
	Project           *string                  `json:"project"`
	Location          *string                  `json:"location"`
}

func (*CaPool) Describe

func (r *CaPool) Describe() dcl.ServiceTypeVersion

Describe returns a simple description of this resource to ensure that automated tools can identify it.

func (*CaPool) ID

func (r *CaPool) ID() (string, error)

func (*CaPool) String

func (r *CaPool) String() string

type CaPoolIssuancePolicy

type CaPoolIssuancePolicy struct {
	AllowedKeyTypes       []CaPoolIssuancePolicyAllowedKeyTypes      `json:"allowedKeyTypes"`
	MaximumLifetime       *string                                    `json:"maximumLifetime"`
	AllowedIssuanceModes  *CaPoolIssuancePolicyAllowedIssuanceModes  `json:"allowedIssuanceModes"`
	BaselineValues        *CaPoolIssuancePolicyBaselineValues        `json:"baselineValues"`
	IdentityConstraints   *CaPoolIssuancePolicyIdentityConstraints   `json:"identityConstraints"`
	PassthroughExtensions *CaPoolIssuancePolicyPassthroughExtensions `json:"passthroughExtensions"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicy *CaPoolIssuancePolicy = &CaPoolIssuancePolicy{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicy is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicy) Empty

func (r *CaPoolIssuancePolicy) Empty() bool

func (*CaPoolIssuancePolicy) HashCode

func (r *CaPoolIssuancePolicy) HashCode() string

func (*CaPoolIssuancePolicy) String

func (r *CaPoolIssuancePolicy) String() string

func (*CaPoolIssuancePolicy) UnmarshalJSON

func (r *CaPoolIssuancePolicy) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyAllowedIssuanceModes

type CaPoolIssuancePolicyAllowedIssuanceModes struct {
	AllowCsrBasedIssuance    *bool `json:"allowCsrBasedIssuance"`
	AllowConfigBasedIssuance *bool `json:"allowConfigBasedIssuance"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyAllowedIssuanceModes *CaPoolIssuancePolicyAllowedIssuanceModes = &CaPoolIssuancePolicyAllowedIssuanceModes{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyAllowedIssuanceModes is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyAllowedIssuanceModes) Empty

func (*CaPoolIssuancePolicyAllowedIssuanceModes) HashCode

func (*CaPoolIssuancePolicyAllowedIssuanceModes) String

func (*CaPoolIssuancePolicyAllowedIssuanceModes) UnmarshalJSON

func (r *CaPoolIssuancePolicyAllowedIssuanceModes) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyAllowedKeyTypes

type CaPoolIssuancePolicyAllowedKeyTypes struct {
	Rsa           *CaPoolIssuancePolicyAllowedKeyTypesRsa           `json:"rsa"`
	EllipticCurve *CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve `json:"ellipticCurve"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyAllowedKeyTypes *CaPoolIssuancePolicyAllowedKeyTypes = &CaPoolIssuancePolicyAllowedKeyTypes{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyAllowedKeyTypes is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyAllowedKeyTypes) Empty

func (*CaPoolIssuancePolicyAllowedKeyTypes) HashCode

func (*CaPoolIssuancePolicyAllowedKeyTypes) String

func (*CaPoolIssuancePolicyAllowedKeyTypes) UnmarshalJSON

func (r *CaPoolIssuancePolicyAllowedKeyTypes) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve

type CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve struct {
	SignatureAlgorithm *CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum `json:"signatureAlgorithm"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyAllowedKeyTypesEllipticCurve *CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve = &CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve) Empty

func (*CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve) HashCode

func (*CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve) String

func (*CaPoolIssuancePolicyAllowedKeyTypesEllipticCurve) UnmarshalJSON

type CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum

type CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum string

The enum CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum.

func CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnumRef

func CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnumRef(s string) *CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum

CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnumRef returns a *CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum with the value of string s If the empty string is provided, nil is returned.

func (CaPoolIssuancePolicyAllowedKeyTypesEllipticCurveSignatureAlgorithmEnum) Validate

type CaPoolIssuancePolicyAllowedKeyTypesRsa

type CaPoolIssuancePolicyAllowedKeyTypesRsa struct {
	MinModulusSize *int64 `json:"minModulusSize"`
	MaxModulusSize *int64 `json:"maxModulusSize"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyAllowedKeyTypesRsa *CaPoolIssuancePolicyAllowedKeyTypesRsa = &CaPoolIssuancePolicyAllowedKeyTypesRsa{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyAllowedKeyTypesRsa is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyAllowedKeyTypesRsa) Empty

func (*CaPoolIssuancePolicyAllowedKeyTypesRsa) HashCode

func (*CaPoolIssuancePolicyAllowedKeyTypesRsa) String

func (*CaPoolIssuancePolicyAllowedKeyTypesRsa) UnmarshalJSON

func (r *CaPoolIssuancePolicyAllowedKeyTypesRsa) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyBaselineValues

type CaPoolIssuancePolicyBaselineValues struct {
	KeyUsage             *CaPoolIssuancePolicyBaselineValuesKeyUsage              `json:"keyUsage"`
	CaOptions            *CaPoolIssuancePolicyBaselineValuesCaOptions             `json:"caOptions"`
	PolicyIds            []CaPoolIssuancePolicyBaselineValuesPolicyIds            `json:"policyIds"`
	AiaOcspServers       []string                                                 `json:"aiaOcspServers"`
	AdditionalExtensions []CaPoolIssuancePolicyBaselineValuesAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValues *CaPoolIssuancePolicyBaselineValues = &CaPoolIssuancePolicyBaselineValues{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValues is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValues) Empty

func (*CaPoolIssuancePolicyBaselineValues) HashCode

func (*CaPoolIssuancePolicyBaselineValues) String

func (*CaPoolIssuancePolicyBaselineValues) UnmarshalJSON

func (r *CaPoolIssuancePolicyBaselineValues) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyBaselineValuesAdditionalExtensions

type CaPoolIssuancePolicyBaselineValuesAdditionalExtensions struct {
	ObjectId *CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId `json:"objectId"`
	Critical *bool                                                           `json:"critical"`
	Value    *string                                                         `json:"value"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesAdditionalExtensions *CaPoolIssuancePolicyBaselineValuesAdditionalExtensions = &CaPoolIssuancePolicyBaselineValuesAdditionalExtensions{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensions) Empty

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensions) HashCode

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensions) String

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensions) UnmarshalJSON

type CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId

type CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId *CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId = &CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId) Empty

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId) HashCode

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId) String

func (*CaPoolIssuancePolicyBaselineValuesAdditionalExtensionsObjectId) UnmarshalJSON

type CaPoolIssuancePolicyBaselineValuesCaOptions

type CaPoolIssuancePolicyBaselineValuesCaOptions struct {
	IsCa                    *bool  `json:"isCa"`
	MaxIssuerPathLength     *int64 `json:"maxIssuerPathLength"`
	ZeroMaxIssuerPathLength *bool  `json:"zeroMaxIssuerPathLength"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesCaOptions *CaPoolIssuancePolicyBaselineValuesCaOptions = &CaPoolIssuancePolicyBaselineValuesCaOptions{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesCaOptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesCaOptions) Empty

func (*CaPoolIssuancePolicyBaselineValuesCaOptions) HashCode

func (*CaPoolIssuancePolicyBaselineValuesCaOptions) String

func (*CaPoolIssuancePolicyBaselineValuesCaOptions) UnmarshalJSON

func (r *CaPoolIssuancePolicyBaselineValuesCaOptions) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyBaselineValuesKeyUsage

type CaPoolIssuancePolicyBaselineValuesKeyUsage struct {
	BaseKeyUsage             *CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage              `json:"baseKeyUsage"`
	ExtendedKeyUsage         *CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage          `json:"extendedKeyUsage"`
	UnknownExtendedKeyUsages []CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages `json:"unknownExtendedKeyUsages"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesKeyUsage *CaPoolIssuancePolicyBaselineValuesKeyUsage = &CaPoolIssuancePolicyBaselineValuesKeyUsage{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesKeyUsage) Empty

func (*CaPoolIssuancePolicyBaselineValuesKeyUsage) HashCode

func (*CaPoolIssuancePolicyBaselineValuesKeyUsage) String

func (*CaPoolIssuancePolicyBaselineValuesKeyUsage) UnmarshalJSON

func (r *CaPoolIssuancePolicyBaselineValuesKeyUsage) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage

type CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage struct {
	DigitalSignature  *bool `json:"digitalSignature"`
	ContentCommitment *bool `json:"contentCommitment"`
	KeyEncipherment   *bool `json:"keyEncipherment"`
	DataEncipherment  *bool `json:"dataEncipherment"`
	KeyAgreement      *bool `json:"keyAgreement"`
	CertSign          *bool `json:"certSign"`
	CrlSign           *bool `json:"crlSign"`
	EncipherOnly      *bool `json:"encipherOnly"`
	DecipherOnly      *bool `json:"decipherOnly"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage *CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage = &CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage) Empty

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage) HashCode

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage) String

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageBaseKeyUsage) UnmarshalJSON

type CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage

type CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage struct {
	ServerAuth      *bool `json:"serverAuth"`
	ClientAuth      *bool `json:"clientAuth"`
	CodeSigning     *bool `json:"codeSigning"`
	EmailProtection *bool `json:"emailProtection"`
	TimeStamping    *bool `json:"timeStamping"`
	OcspSigning     *bool `json:"ocspSigning"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage *CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage = &CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage) Empty

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage) HashCode

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage) String

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageExtendedKeyUsage) UnmarshalJSON

type CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages

type CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages *CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages = &CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages) Empty

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages) HashCode

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages) String

func (*CaPoolIssuancePolicyBaselineValuesKeyUsageUnknownExtendedKeyUsages) UnmarshalJSON

type CaPoolIssuancePolicyBaselineValuesPolicyIds

type CaPoolIssuancePolicyBaselineValuesPolicyIds struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyBaselineValuesPolicyIds *CaPoolIssuancePolicyBaselineValuesPolicyIds = &CaPoolIssuancePolicyBaselineValuesPolicyIds{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyBaselineValuesPolicyIds is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyBaselineValuesPolicyIds) Empty

func (*CaPoolIssuancePolicyBaselineValuesPolicyIds) HashCode

func (*CaPoolIssuancePolicyBaselineValuesPolicyIds) String

func (*CaPoolIssuancePolicyBaselineValuesPolicyIds) UnmarshalJSON

func (r *CaPoolIssuancePolicyBaselineValuesPolicyIds) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyIdentityConstraints

type CaPoolIssuancePolicyIdentityConstraints struct {
	CelExpression                   *CaPoolIssuancePolicyIdentityConstraintsCelExpression `json:"celExpression"`
	AllowSubjectPassthrough         *bool                                                 `json:"allowSubjectPassthrough"`
	AllowSubjectAltNamesPassthrough *bool                                                 `json:"allowSubjectAltNamesPassthrough"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyIdentityConstraints *CaPoolIssuancePolicyIdentityConstraints = &CaPoolIssuancePolicyIdentityConstraints{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyIdentityConstraints is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyIdentityConstraints) Empty

func (*CaPoolIssuancePolicyIdentityConstraints) HashCode

func (*CaPoolIssuancePolicyIdentityConstraints) String

func (*CaPoolIssuancePolicyIdentityConstraints) UnmarshalJSON

func (r *CaPoolIssuancePolicyIdentityConstraints) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyIdentityConstraintsCelExpression

type CaPoolIssuancePolicyIdentityConstraintsCelExpression struct {
	Expression  *string `json:"expression"`
	Title       *string `json:"title"`
	Description *string `json:"description"`
	Location    *string `json:"location"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyIdentityConstraintsCelExpression *CaPoolIssuancePolicyIdentityConstraintsCelExpression = &CaPoolIssuancePolicyIdentityConstraintsCelExpression{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyIdentityConstraintsCelExpression is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyIdentityConstraintsCelExpression) Empty

func (*CaPoolIssuancePolicyIdentityConstraintsCelExpression) HashCode

func (*CaPoolIssuancePolicyIdentityConstraintsCelExpression) String

func (*CaPoolIssuancePolicyIdentityConstraintsCelExpression) UnmarshalJSON

type CaPoolIssuancePolicyPassthroughExtensions

type CaPoolIssuancePolicyPassthroughExtensions struct {
	KnownExtensions      []CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum  `json:"knownExtensions"`
	AdditionalExtensions []CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyPassthroughExtensions *CaPoolIssuancePolicyPassthroughExtensions = &CaPoolIssuancePolicyPassthroughExtensions{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyPassthroughExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyPassthroughExtensions) Empty

func (*CaPoolIssuancePolicyPassthroughExtensions) HashCode

func (*CaPoolIssuancePolicyPassthroughExtensions) String

func (*CaPoolIssuancePolicyPassthroughExtensions) UnmarshalJSON

func (r *CaPoolIssuancePolicyPassthroughExtensions) UnmarshalJSON(data []byte) error

type CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions

type CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions *CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions = &CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions{empty: true}

This object is used to assert a desired state where this CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions) Empty

func (*CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions) HashCode

func (*CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions) String

func (*CaPoolIssuancePolicyPassthroughExtensionsAdditionalExtensions) UnmarshalJSON

type CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum

type CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum string

The enum CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum.

func CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnumRef

func CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnumRef(s string) *CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum

CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnumRef returns a *CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum with the value of string s If the empty string is provided, nil is returned.

func (CaPoolIssuancePolicyPassthroughExtensionsKnownExtensionsEnum) Validate

type CaPoolList

type CaPoolList struct {
	Items []*CaPool
	// contains filtered or unexported fields
}

func (*CaPoolList) HasNext

func (l *CaPoolList) HasNext() bool

func (*CaPoolList) Next

func (l *CaPoolList) Next(ctx context.Context, c *Client) error

type CaPoolPublishingOptions

type CaPoolPublishingOptions struct {
	PublishCaCert *bool `json:"publishCaCert"`
	PublishCrl    *bool `json:"publishCrl"`
	// contains filtered or unexported fields
}
var EmptyCaPoolPublishingOptions *CaPoolPublishingOptions = &CaPoolPublishingOptions{empty: true}

This object is used to assert a desired state where this CaPoolPublishingOptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CaPoolPublishingOptions) Empty

func (r *CaPoolPublishingOptions) Empty() bool

func (*CaPoolPublishingOptions) HashCode

func (r *CaPoolPublishingOptions) HashCode() string

func (*CaPoolPublishingOptions) String

func (r *CaPoolPublishingOptions) String() string

func (*CaPoolPublishingOptions) UnmarshalJSON

func (r *CaPoolPublishingOptions) UnmarshalJSON(data []byte) error

type CaPoolTierEnum

type CaPoolTierEnum string

The enum CaPoolTierEnum.

func CaPoolTierEnumRef

func CaPoolTierEnumRef(s string) *CaPoolTierEnum

CaPoolTierEnumRef returns a *CaPoolTierEnum with the value of string s If the empty string is provided, nil is returned.

func (CaPoolTierEnum) Validate

func (v CaPoolTierEnum) Validate() error

type Certificate

type Certificate struct {
	Name                       *string                            `json:"name"`
	PemCsr                     *string                            `json:"pemCsr"`
	Config                     *CertificateConfig                 `json:"config"`
	IssuerCertificateAuthority *string                            `json:"issuerCertificateAuthority"`
	Lifetime                   *string                            `json:"lifetime"`
	CertificateTemplate        *string                            `json:"certificateTemplate"`
	SubjectMode                *CertificateSubjectModeEnum        `json:"subjectMode"`
	RevocationDetails          *CertificateRevocationDetails      `json:"revocationDetails"`
	PemCertificate             *string                            `json:"pemCertificate"`
	CertificateDescription     *CertificateCertificateDescription `json:"certificateDescription"`
	PemCertificateChain        []string                           `json:"pemCertificateChain"`
	CreateTime                 *string                            `json:"createTime"`
	UpdateTime                 *string                            `json:"updateTime"`
	Labels                     map[string]string                  `json:"labels"`
	Project                    *string                            `json:"project"`
	Location                   *string                            `json:"location"`
	CaPool                     *string                            `json:"caPool"`
	CertificateAuthority       *string                            `json:"certificateAuthority"`
}

func (*Certificate) Describe

func (r *Certificate) Describe() dcl.ServiceTypeVersion

Describe returns a simple description of this resource to ensure that automated tools can identify it.

func (*Certificate) ID

func (r *Certificate) ID() (string, error)

func (*Certificate) String

func (r *Certificate) String() string

type CertificateAuthority

type CertificateAuthority struct {
	Name                      *string                                         `json:"name"`
	Type                      *CertificateAuthorityTypeEnum                   `json:"type"`
	Config                    *CertificateAuthorityConfig                     `json:"config"`
	Lifetime                  *string                                         `json:"lifetime"`
	KeySpec                   *CertificateAuthorityKeySpec                    `json:"keySpec"`
	SubordinateConfig         *CertificateAuthoritySubordinateConfig          `json:"subordinateConfig"`
	Tier                      *CertificateAuthorityTierEnum                   `json:"tier"`
	State                     *CertificateAuthorityStateEnum                  `json:"state"`
	PemCaCertificates         []string                                        `json:"pemCaCertificates"`
	CaCertificateDescriptions []CertificateAuthorityCaCertificateDescriptions `json:"caCertificateDescriptions"`
	GcsBucket                 *string                                         `json:"gcsBucket"`
	AccessUrls                *CertificateAuthorityAccessUrls                 `json:"accessUrls"`
	CreateTime                *string                                         `json:"createTime"`
	UpdateTime                *string                                         `json:"updateTime"`
	DeleteTime                *string                                         `json:"deleteTime"`
	ExpireTime                *string                                         `json:"expireTime"`
	Labels                    map[string]string                               `json:"labels"`
	Project                   *string                                         `json:"project"`
	Location                  *string                                         `json:"location"`
	CaPool                    *string                                         `json:"caPool"`
}

func (*CertificateAuthority) Describe

Describe returns a simple description of this resource to ensure that automated tools can identify it.

func (*CertificateAuthority) ID

func (r *CertificateAuthority) ID() (string, error)

func (*CertificateAuthority) String

func (r *CertificateAuthority) String() string

type CertificateAuthorityAccessUrls

type CertificateAuthorityAccessUrls struct {
	CaCertificateAccessUrl *string  `json:"caCertificateAccessUrl"`
	CrlAccessUrls          []string `json:"crlAccessUrls"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityAccessUrls *CertificateAuthorityAccessUrls = &CertificateAuthorityAccessUrls{empty: true}

This object is used to assert a desired state where this CertificateAuthorityAccessUrls is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityAccessUrls) Empty

func (*CertificateAuthorityAccessUrls) HashCode

func (r *CertificateAuthorityAccessUrls) HashCode() string

func (*CertificateAuthorityAccessUrls) String

func (*CertificateAuthorityAccessUrls) UnmarshalJSON

func (r *CertificateAuthorityAccessUrls) UnmarshalJSON(data []byte) error

type CertificateAuthorityCaCertificateDescriptions

type CertificateAuthorityCaCertificateDescriptions struct {
	SubjectDescription        *CertificateAuthorityCaCertificateDescriptionsSubjectDescription `json:"subjectDescription"`
	X509Description           *CertificateAuthorityCaCertificateDescriptionsX509Description    `json:"x509Description"`
	PublicKey                 *CertificateAuthorityCaCertificateDescriptionsPublicKey          `json:"publicKey"`
	SubjectKeyId              *CertificateAuthorityCaCertificateDescriptionsSubjectKeyId       `json:"subjectKeyId"`
	AuthorityKeyId            *CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId     `json:"authorityKeyId"`
	CrlDistributionPoints     []string                                                         `json:"crlDistributionPoints"`
	AiaIssuingCertificateUrls []string                                                         `json:"aiaIssuingCertificateUrls"`
	CertFingerprint           *CertificateAuthorityCaCertificateDescriptionsCertFingerprint    `json:"certFingerprint"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptions *CertificateAuthorityCaCertificateDescriptions = &CertificateAuthorityCaCertificateDescriptions{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptions) Empty

func (*CertificateAuthorityCaCertificateDescriptions) HashCode

func (*CertificateAuthorityCaCertificateDescriptions) String

func (*CertificateAuthorityCaCertificateDescriptions) UnmarshalJSON

func (r *CertificateAuthorityCaCertificateDescriptions) UnmarshalJSON(data []byte) error

type CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId

type CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId struct {
	KeyId *string `json:"keyId"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsAuthorityKeyId *CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId = &CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId) Empty

func (*CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId) String

func (*CertificateAuthorityCaCertificateDescriptionsAuthorityKeyId) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsCertFingerprint

type CertificateAuthorityCaCertificateDescriptionsCertFingerprint struct {
	Sha256Hash *string `json:"sha256Hash"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsCertFingerprint *CertificateAuthorityCaCertificateDescriptionsCertFingerprint = &CertificateAuthorityCaCertificateDescriptionsCertFingerprint{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsCertFingerprint is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsCertFingerprint) Empty

func (*CertificateAuthorityCaCertificateDescriptionsCertFingerprint) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsCertFingerprint) String

func (*CertificateAuthorityCaCertificateDescriptionsCertFingerprint) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsPublicKey

type CertificateAuthorityCaCertificateDescriptionsPublicKey struct {
	Key    *string                                                           `json:"key"`
	Format *CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum `json:"format"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsPublicKey *CertificateAuthorityCaCertificateDescriptionsPublicKey = &CertificateAuthorityCaCertificateDescriptionsPublicKey{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsPublicKey is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsPublicKey) Empty

func (*CertificateAuthorityCaCertificateDescriptionsPublicKey) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsPublicKey) String

func (*CertificateAuthorityCaCertificateDescriptionsPublicKey) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum

type CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum string

The enum CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum.

func CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnumRef

func CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnumRef(s string) *CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum

CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnumRef returns a *CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateAuthorityCaCertificateDescriptionsPublicKeyFormatEnum) Validate

type CertificateAuthorityCaCertificateDescriptionsSubjectDescription

type CertificateAuthorityCaCertificateDescriptionsSubjectDescription struct {
	Subject         *CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject        `json:"subject"`
	SubjectAltName  *CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName `json:"subjectAltName"`
	HexSerialNumber *string                                                                        `json:"hexSerialNumber"`
	Lifetime        *string                                                                        `json:"lifetime"`
	NotBeforeTime   *string                                                                        `json:"notBeforeTime"`
	NotAfterTime    *string                                                                        `json:"notAfterTime"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsSubjectDescription *CertificateAuthorityCaCertificateDescriptionsSubjectDescription = &CertificateAuthorityCaCertificateDescriptionsSubjectDescription{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsSubjectDescription is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescription) Empty

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescription) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescription) String

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescription) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject struct {
	CommonName         *string `json:"commonName"`
	CountryCode        *string `json:"countryCode"`
	Organization       *string `json:"organization"`
	OrganizationalUnit *string `json:"organizationalUnit"`
	Locality           *string `json:"locality"`
	Province           *string `json:"province"`
	StreetAddress      *string `json:"streetAddress"`
	PostalCode         *string `json:"postalCode"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject *CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject = &CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject) Empty

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject) String

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubject) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName struct {
	DnsNames       []string                                                                                  `json:"dnsNames"`
	Uris           []string                                                                                  `json:"uris"`
	EmailAddresses []string                                                                                  `json:"emailAddresses"`
	IPAddresses    []string                                                                                  `json:"ipAddresses"`
	CustomSans     []CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans `json:"customSans"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName) Empty

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName) String

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltName) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans struct {
	ObjectId *CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId `json:"objectId"`
	Critical *bool                                                                                            `json:"critical"`
	Value    *string                                                                                          `json:"value"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans) Empty

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans) String

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSans) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId

type CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId) Empty

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId) String

func (*CertificateAuthorityCaCertificateDescriptionsSubjectDescriptionSubjectAltNameCustomSansObjectId) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsSubjectKeyId

type CertificateAuthorityCaCertificateDescriptionsSubjectKeyId struct {
	KeyId *string `json:"keyId"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsSubjectKeyId *CertificateAuthorityCaCertificateDescriptionsSubjectKeyId = &CertificateAuthorityCaCertificateDescriptionsSubjectKeyId{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsSubjectKeyId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsSubjectKeyId) Empty

func (*CertificateAuthorityCaCertificateDescriptionsSubjectKeyId) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsSubjectKeyId) String

func (*CertificateAuthorityCaCertificateDescriptionsSubjectKeyId) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509Description

type CertificateAuthorityCaCertificateDescriptionsX509Description struct {
	KeyUsage             *CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage              `json:"keyUsage"`
	CaOptions            *CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions             `json:"caOptions"`
	PolicyIds            []CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds            `json:"policyIds"`
	AiaOcspServers       []string                                                                           `json:"aiaOcspServers"`
	AdditionalExtensions []CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsX509Description *CertificateAuthorityCaCertificateDescriptionsX509Description = &CertificateAuthorityCaCertificateDescriptionsX509Description{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509Description is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509Description) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509Description) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509Description) String

func (*CertificateAuthorityCaCertificateDescriptionsX509Description) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions struct {
	ObjectId *CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId `json:"objectId"`
	Critical *bool                                                                                     `json:"critical"`
	Value    *string                                                                                   `json:"value"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensions) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionAdditionalExtensionsObjectId) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions struct {
	IsCa                *bool  `json:"isCa"`
	MaxIssuerPathLength *int64 `json:"maxIssuerPathLength"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions *CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions = &CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionCaOptions) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage struct {
	BaseKeyUsage             *CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage              `json:"baseKeyUsage"`
	ExtendedKeyUsage         *CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage          `json:"extendedKeyUsage"`
	UnknownExtendedKeyUsages []CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages `json:"unknownExtendedKeyUsages"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage *CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage = &CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsage) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage struct {
	DigitalSignature  *bool `json:"digitalSignature"`
	ContentCommitment *bool `json:"contentCommitment"`
	KeyEncipherment   *bool `json:"keyEncipherment"`
	DataEncipherment  *bool `json:"dataEncipherment"`
	KeyAgreement      *bool `json:"keyAgreement"`
	CertSign          *bool `json:"certSign"`
	CrlSign           *bool `json:"crlSign"`
	EncipherOnly      *bool `json:"encipherOnly"`
	DecipherOnly      *bool `json:"decipherOnly"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageBaseKeyUsage) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage struct {
	ServerAuth      *bool `json:"serverAuth"`
	ClientAuth      *bool `json:"clientAuth"`
	CodeSigning     *bool `json:"codeSigning"`
	EmailProtection *bool `json:"emailProtection"`
	TimeStamping    *bool `json:"timeStamping"`
	OcspSigning     *bool `json:"ocspSigning"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageExtendedKeyUsage) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionKeyUsageUnknownExtendedKeyUsages) UnmarshalJSON

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds

type CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds *CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds = &CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds{empty: true}

This object is used to assert a desired state where this CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds) Empty

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds) HashCode

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds) String

func (*CertificateAuthorityCaCertificateDescriptionsX509DescriptionPolicyIds) UnmarshalJSON

type CertificateAuthorityConfig

type CertificateAuthorityConfig struct {
	SubjectConfig *CertificateAuthorityConfigSubjectConfig `json:"subjectConfig"`
	X509Config    *CertificateAuthorityConfigX509Config    `json:"x509Config"`
	PublicKey     *CertificateAuthorityConfigPublicKey     `json:"publicKey"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfig *CertificateAuthorityConfig = &CertificateAuthorityConfig{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfig is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfig) Empty

func (r *CertificateAuthorityConfig) Empty() bool

func (*CertificateAuthorityConfig) HashCode

func (r *CertificateAuthorityConfig) HashCode() string

func (*CertificateAuthorityConfig) String

func (r *CertificateAuthorityConfig) String() string

func (*CertificateAuthorityConfig) UnmarshalJSON

func (r *CertificateAuthorityConfig) UnmarshalJSON(data []byte) error

type CertificateAuthorityConfigPublicKey

type CertificateAuthorityConfigPublicKey struct {
	Key    *string                                        `json:"key"`
	Format *CertificateAuthorityConfigPublicKeyFormatEnum `json:"format"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigPublicKey *CertificateAuthorityConfigPublicKey = &CertificateAuthorityConfigPublicKey{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigPublicKey is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigPublicKey) Empty

func (*CertificateAuthorityConfigPublicKey) HashCode

func (*CertificateAuthorityConfigPublicKey) String

func (*CertificateAuthorityConfigPublicKey) UnmarshalJSON

func (r *CertificateAuthorityConfigPublicKey) UnmarshalJSON(data []byte) error

type CertificateAuthorityConfigPublicKeyFormatEnum

type CertificateAuthorityConfigPublicKeyFormatEnum string

The enum CertificateAuthorityConfigPublicKeyFormatEnum.

func CertificateAuthorityConfigPublicKeyFormatEnumRef

func CertificateAuthorityConfigPublicKeyFormatEnumRef(s string) *CertificateAuthorityConfigPublicKeyFormatEnum

CertificateAuthorityConfigPublicKeyFormatEnumRef returns a *CertificateAuthorityConfigPublicKeyFormatEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateAuthorityConfigPublicKeyFormatEnum) Validate

type CertificateAuthorityConfigSubjectConfig

type CertificateAuthorityConfigSubjectConfig struct {
	Subject        *CertificateAuthorityConfigSubjectConfigSubject        `json:"subject"`
	SubjectAltName *CertificateAuthorityConfigSubjectConfigSubjectAltName `json:"subjectAltName"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigSubjectConfig *CertificateAuthorityConfigSubjectConfig = &CertificateAuthorityConfigSubjectConfig{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigSubjectConfig is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigSubjectConfig) Empty

func (*CertificateAuthorityConfigSubjectConfig) HashCode

func (*CertificateAuthorityConfigSubjectConfig) String

func (*CertificateAuthorityConfigSubjectConfig) UnmarshalJSON

func (r *CertificateAuthorityConfigSubjectConfig) UnmarshalJSON(data []byte) error

type CertificateAuthorityConfigSubjectConfigSubject

type CertificateAuthorityConfigSubjectConfigSubject struct {
	CommonName         *string `json:"commonName"`
	CountryCode        *string `json:"countryCode"`
	Organization       *string `json:"organization"`
	OrganizationalUnit *string `json:"organizationalUnit"`
	Locality           *string `json:"locality"`
	Province           *string `json:"province"`
	StreetAddress      *string `json:"streetAddress"`
	PostalCode         *string `json:"postalCode"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigSubjectConfigSubject *CertificateAuthorityConfigSubjectConfigSubject = &CertificateAuthorityConfigSubjectConfigSubject{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigSubjectConfigSubject is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigSubjectConfigSubject) Empty

func (*CertificateAuthorityConfigSubjectConfigSubject) HashCode

func (*CertificateAuthorityConfigSubjectConfigSubject) String

func (*CertificateAuthorityConfigSubjectConfigSubject) UnmarshalJSON

type CertificateAuthorityConfigSubjectConfigSubjectAltName

type CertificateAuthorityConfigSubjectConfigSubjectAltName struct {
	DnsNames       []string                                                          `json:"dnsNames"`
	Uris           []string                                                          `json:"uris"`
	EmailAddresses []string                                                          `json:"emailAddresses"`
	IPAddresses    []string                                                          `json:"ipAddresses"`
	CustomSans     []CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans `json:"customSans"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigSubjectConfigSubjectAltName *CertificateAuthorityConfigSubjectConfigSubjectAltName = &CertificateAuthorityConfigSubjectConfigSubjectAltName{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigSubjectConfigSubjectAltName is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigSubjectConfigSubjectAltName) Empty

func (*CertificateAuthorityConfigSubjectConfigSubjectAltName) HashCode

func (*CertificateAuthorityConfigSubjectConfigSubjectAltName) String

func (*CertificateAuthorityConfigSubjectConfigSubjectAltName) UnmarshalJSON

type CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans

type CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans struct {
	ObjectId *CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId `json:"objectId"`
	Critical *bool                                                                    `json:"critical"`
	Value    *string                                                                  `json:"value"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans *CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans = &CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans) Empty

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans) HashCode

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans) String

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSans) UnmarshalJSON

type CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId

type CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId) Empty

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId) HashCode

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId) String

func (*CertificateAuthorityConfigSubjectConfigSubjectAltNameCustomSansObjectId) UnmarshalJSON

type CertificateAuthorityConfigX509Config

type CertificateAuthorityConfigX509Config struct {
	KeyUsage             *CertificateAuthorityConfigX509ConfigKeyUsage              `json:"keyUsage"`
	CaOptions            *CertificateAuthorityConfigX509ConfigCaOptions             `json:"caOptions"`
	PolicyIds            []CertificateAuthorityConfigX509ConfigPolicyIds            `json:"policyIds"`
	AiaOcspServers       []string                                                   `json:"aiaOcspServers"`
	AdditionalExtensions []CertificateAuthorityConfigX509ConfigAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509Config *CertificateAuthorityConfigX509Config = &CertificateAuthorityConfigX509Config{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509Config is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509Config) Empty

func (*CertificateAuthorityConfigX509Config) HashCode

func (*CertificateAuthorityConfigX509Config) String

func (*CertificateAuthorityConfigX509Config) UnmarshalJSON

func (r *CertificateAuthorityConfigX509Config) UnmarshalJSON(data []byte) error

type CertificateAuthorityConfigX509ConfigAdditionalExtensions

type CertificateAuthorityConfigX509ConfigAdditionalExtensions struct {
	ObjectId *CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId `json:"objectId"`
	Critical *bool                                                             `json:"critical"`
	Value    *string                                                           `json:"value"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigAdditionalExtensions *CertificateAuthorityConfigX509ConfigAdditionalExtensions = &CertificateAuthorityConfigX509ConfigAdditionalExtensions{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensions) Empty

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensions) HashCode

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensions) String

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensions) UnmarshalJSON

type CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId

type CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId *CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId = &CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId) Empty

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId) HashCode

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId) String

func (*CertificateAuthorityConfigX509ConfigAdditionalExtensionsObjectId) UnmarshalJSON

type CertificateAuthorityConfigX509ConfigCaOptions

type CertificateAuthorityConfigX509ConfigCaOptions struct {
	IsCa                    *bool  `json:"isCa"`
	MaxIssuerPathLength     *int64 `json:"maxIssuerPathLength"`
	ZeroMaxIssuerPathLength *bool  `json:"zeroMaxIssuerPathLength"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigCaOptions *CertificateAuthorityConfigX509ConfigCaOptions = &CertificateAuthorityConfigX509ConfigCaOptions{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigCaOptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigCaOptions) Empty

func (*CertificateAuthorityConfigX509ConfigCaOptions) HashCode

func (*CertificateAuthorityConfigX509ConfigCaOptions) String

func (*CertificateAuthorityConfigX509ConfigCaOptions) UnmarshalJSON

func (r *CertificateAuthorityConfigX509ConfigCaOptions) UnmarshalJSON(data []byte) error

type CertificateAuthorityConfigX509ConfigKeyUsage

type CertificateAuthorityConfigX509ConfigKeyUsage struct {
	BaseKeyUsage             *CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage              `json:"baseKeyUsage"`
	ExtendedKeyUsage         *CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage          `json:"extendedKeyUsage"`
	UnknownExtendedKeyUsages []CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages `json:"unknownExtendedKeyUsages"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigKeyUsage *CertificateAuthorityConfigX509ConfigKeyUsage = &CertificateAuthorityConfigX509ConfigKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigKeyUsage) Empty

func (*CertificateAuthorityConfigX509ConfigKeyUsage) HashCode

func (*CertificateAuthorityConfigX509ConfigKeyUsage) String

func (*CertificateAuthorityConfigX509ConfigKeyUsage) UnmarshalJSON

func (r *CertificateAuthorityConfigX509ConfigKeyUsage) UnmarshalJSON(data []byte) error

type CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage

type CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage struct {
	DigitalSignature  *bool `json:"digitalSignature"`
	ContentCommitment *bool `json:"contentCommitment"`
	KeyEncipherment   *bool `json:"keyEncipherment"`
	DataEncipherment  *bool `json:"dataEncipherment"`
	KeyAgreement      *bool `json:"keyAgreement"`
	CertSign          *bool `json:"certSign"`
	CrlSign           *bool `json:"crlSign"`
	EncipherOnly      *bool `json:"encipherOnly"`
	DecipherOnly      *bool `json:"decipherOnly"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage *CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage = &CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage) Empty

func (*CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage) HashCode

func (*CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage) String

func (*CertificateAuthorityConfigX509ConfigKeyUsageBaseKeyUsage) UnmarshalJSON

type CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage

type CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage struct {
	ServerAuth      *bool `json:"serverAuth"`
	ClientAuth      *bool `json:"clientAuth"`
	CodeSigning     *bool `json:"codeSigning"`
	EmailProtection *bool `json:"emailProtection"`
	TimeStamping    *bool `json:"timeStamping"`
	OcspSigning     *bool `json:"ocspSigning"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage *CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage = &CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage) Empty

func (*CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage) HashCode

func (*CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage) String

func (*CertificateAuthorityConfigX509ConfigKeyUsageExtendedKeyUsage) UnmarshalJSON

type CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages

type CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages *CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages = &CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) Empty

func (*CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) HashCode

func (*CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) String

func (*CertificateAuthorityConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) UnmarshalJSON

type CertificateAuthorityConfigX509ConfigPolicyIds

type CertificateAuthorityConfigX509ConfigPolicyIds struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityConfigX509ConfigPolicyIds *CertificateAuthorityConfigX509ConfigPolicyIds = &CertificateAuthorityConfigX509ConfigPolicyIds{empty: true}

This object is used to assert a desired state where this CertificateAuthorityConfigX509ConfigPolicyIds is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityConfigX509ConfigPolicyIds) Empty

func (*CertificateAuthorityConfigX509ConfigPolicyIds) HashCode

func (*CertificateAuthorityConfigX509ConfigPolicyIds) String

func (*CertificateAuthorityConfigX509ConfigPolicyIds) UnmarshalJSON

func (r *CertificateAuthorityConfigX509ConfigPolicyIds) UnmarshalJSON(data []byte) error

type CertificateAuthorityKeySpec

type CertificateAuthorityKeySpec struct {
	CloudKmsKeyVersion *string                                   `json:"cloudKmsKeyVersion"`
	Algorithm          *CertificateAuthorityKeySpecAlgorithmEnum `json:"algorithm"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthorityKeySpec *CertificateAuthorityKeySpec = &CertificateAuthorityKeySpec{empty: true}

This object is used to assert a desired state where this CertificateAuthorityKeySpec is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthorityKeySpec) Empty

func (r *CertificateAuthorityKeySpec) Empty() bool

func (*CertificateAuthorityKeySpec) HashCode

func (r *CertificateAuthorityKeySpec) HashCode() string

func (*CertificateAuthorityKeySpec) String

func (r *CertificateAuthorityKeySpec) String() string

func (*CertificateAuthorityKeySpec) UnmarshalJSON

func (r *CertificateAuthorityKeySpec) UnmarshalJSON(data []byte) error

type CertificateAuthorityKeySpecAlgorithmEnum

type CertificateAuthorityKeySpecAlgorithmEnum string

The enum CertificateAuthorityKeySpecAlgorithmEnum.

func CertificateAuthorityKeySpecAlgorithmEnumRef

func CertificateAuthorityKeySpecAlgorithmEnumRef(s string) *CertificateAuthorityKeySpecAlgorithmEnum

CertificateAuthorityKeySpecAlgorithmEnumRef returns a *CertificateAuthorityKeySpecAlgorithmEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateAuthorityKeySpecAlgorithmEnum) Validate

type CertificateAuthorityList

type CertificateAuthorityList struct {
	Items []*CertificateAuthority
	// contains filtered or unexported fields
}

func (*CertificateAuthorityList) HasNext

func (l *CertificateAuthorityList) HasNext() bool

func (*CertificateAuthorityList) Next

type CertificateAuthorityStateEnum

type CertificateAuthorityStateEnum string

The enum CertificateAuthorityStateEnum.

func CertificateAuthorityStateEnumRef

func CertificateAuthorityStateEnumRef(s string) *CertificateAuthorityStateEnum

CertificateAuthorityStateEnumRef returns a *CertificateAuthorityStateEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateAuthorityStateEnum) Validate

func (v CertificateAuthorityStateEnum) Validate() error

type CertificateAuthoritySubordinateConfig

type CertificateAuthoritySubordinateConfig struct {
	CertificateAuthority *string                                              `json:"certificateAuthority"`
	PemIssuerChain       *CertificateAuthoritySubordinateConfigPemIssuerChain `json:"pemIssuerChain"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthoritySubordinateConfig *CertificateAuthoritySubordinateConfig = &CertificateAuthoritySubordinateConfig{empty: true}

This object is used to assert a desired state where this CertificateAuthoritySubordinateConfig is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthoritySubordinateConfig) Empty

func (*CertificateAuthoritySubordinateConfig) HashCode

func (*CertificateAuthoritySubordinateConfig) String

func (*CertificateAuthoritySubordinateConfig) UnmarshalJSON

func (r *CertificateAuthoritySubordinateConfig) UnmarshalJSON(data []byte) error

type CertificateAuthoritySubordinateConfigPemIssuerChain

type CertificateAuthoritySubordinateConfigPemIssuerChain struct {
	PemCertificates []string `json:"pemCertificates"`
	// contains filtered or unexported fields
}
var EmptyCertificateAuthoritySubordinateConfigPemIssuerChain *CertificateAuthoritySubordinateConfigPemIssuerChain = &CertificateAuthoritySubordinateConfigPemIssuerChain{empty: true}

This object is used to assert a desired state where this CertificateAuthoritySubordinateConfigPemIssuerChain is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateAuthoritySubordinateConfigPemIssuerChain) Empty

func (*CertificateAuthoritySubordinateConfigPemIssuerChain) HashCode

func (*CertificateAuthoritySubordinateConfigPemIssuerChain) String

func (*CertificateAuthoritySubordinateConfigPemIssuerChain) UnmarshalJSON

type CertificateAuthorityTierEnum

type CertificateAuthorityTierEnum string

The enum CertificateAuthorityTierEnum.

func CertificateAuthorityTierEnumRef

func CertificateAuthorityTierEnumRef(s string) *CertificateAuthorityTierEnum

CertificateAuthorityTierEnumRef returns a *CertificateAuthorityTierEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateAuthorityTierEnum) Validate

func (v CertificateAuthorityTierEnum) Validate() error

type CertificateAuthorityTypeEnum

type CertificateAuthorityTypeEnum string

The enum CertificateAuthorityTypeEnum.

func CertificateAuthorityTypeEnumRef

func CertificateAuthorityTypeEnumRef(s string) *CertificateAuthorityTypeEnum

CertificateAuthorityTypeEnumRef returns a *CertificateAuthorityTypeEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateAuthorityTypeEnum) Validate

func (v CertificateAuthorityTypeEnum) Validate() error

type CertificateCertificateDescription

type CertificateCertificateDescription struct {
	SubjectDescription        *CertificateCertificateDescriptionSubjectDescription `json:"subjectDescription"`
	X509Description           *CertificateCertificateDescriptionX509Description    `json:"x509Description"`
	PublicKey                 *CertificateCertificateDescriptionPublicKey          `json:"publicKey"`
	SubjectKeyId              *CertificateCertificateDescriptionSubjectKeyId       `json:"subjectKeyId"`
	AuthorityKeyId            *CertificateCertificateDescriptionAuthorityKeyId     `json:"authorityKeyId"`
	CrlDistributionPoints     []string                                             `json:"crlDistributionPoints"`
	AiaIssuingCertificateUrls []string                                             `json:"aiaIssuingCertificateUrls"`
	CertFingerprint           *CertificateCertificateDescriptionCertFingerprint    `json:"certFingerprint"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescription *CertificateCertificateDescription = &CertificateCertificateDescription{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescription is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescription) Empty

func (*CertificateCertificateDescription) HashCode

func (*CertificateCertificateDescription) String

func (*CertificateCertificateDescription) UnmarshalJSON

func (r *CertificateCertificateDescription) UnmarshalJSON(data []byte) error

type CertificateCertificateDescriptionAuthorityKeyId

type CertificateCertificateDescriptionAuthorityKeyId struct {
	KeyId *string `json:"keyId"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionAuthorityKeyId *CertificateCertificateDescriptionAuthorityKeyId = &CertificateCertificateDescriptionAuthorityKeyId{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionAuthorityKeyId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionAuthorityKeyId) Empty

func (*CertificateCertificateDescriptionAuthorityKeyId) HashCode

func (*CertificateCertificateDescriptionAuthorityKeyId) String

func (*CertificateCertificateDescriptionAuthorityKeyId) UnmarshalJSON

type CertificateCertificateDescriptionCertFingerprint

type CertificateCertificateDescriptionCertFingerprint struct {
	Sha256Hash *string `json:"sha256Hash"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionCertFingerprint *CertificateCertificateDescriptionCertFingerprint = &CertificateCertificateDescriptionCertFingerprint{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionCertFingerprint is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionCertFingerprint) Empty

func (*CertificateCertificateDescriptionCertFingerprint) HashCode

func (*CertificateCertificateDescriptionCertFingerprint) String

func (*CertificateCertificateDescriptionCertFingerprint) UnmarshalJSON

type CertificateCertificateDescriptionPublicKey

type CertificateCertificateDescriptionPublicKey struct {
	Key    *string                                               `json:"key"`
	Format *CertificateCertificateDescriptionPublicKeyFormatEnum `json:"format"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionPublicKey *CertificateCertificateDescriptionPublicKey = &CertificateCertificateDescriptionPublicKey{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionPublicKey is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionPublicKey) Empty

func (*CertificateCertificateDescriptionPublicKey) HashCode

func (*CertificateCertificateDescriptionPublicKey) String

func (*CertificateCertificateDescriptionPublicKey) UnmarshalJSON

func (r *CertificateCertificateDescriptionPublicKey) UnmarshalJSON(data []byte) error

type CertificateCertificateDescriptionPublicKeyFormatEnum

type CertificateCertificateDescriptionPublicKeyFormatEnum string

The enum CertificateCertificateDescriptionPublicKeyFormatEnum.

func CertificateCertificateDescriptionPublicKeyFormatEnumRef

func CertificateCertificateDescriptionPublicKeyFormatEnumRef(s string) *CertificateCertificateDescriptionPublicKeyFormatEnum

CertificateCertificateDescriptionPublicKeyFormatEnumRef returns a *CertificateCertificateDescriptionPublicKeyFormatEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateCertificateDescriptionPublicKeyFormatEnum) Validate

type CertificateCertificateDescriptionSubjectDescription

type CertificateCertificateDescriptionSubjectDescription struct {
	Subject         *CertificateCertificateDescriptionSubjectDescriptionSubject        `json:"subject"`
	SubjectAltName  *CertificateCertificateDescriptionSubjectDescriptionSubjectAltName `json:"subjectAltName"`
	HexSerialNumber *string                                                            `json:"hexSerialNumber"`
	Lifetime        *string                                                            `json:"lifetime"`
	NotBeforeTime   *string                                                            `json:"notBeforeTime"`
	NotAfterTime    *string                                                            `json:"notAfterTime"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionSubjectDescription *CertificateCertificateDescriptionSubjectDescription = &CertificateCertificateDescriptionSubjectDescription{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionSubjectDescription is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionSubjectDescription) Empty

func (*CertificateCertificateDescriptionSubjectDescription) HashCode

func (*CertificateCertificateDescriptionSubjectDescription) String

func (*CertificateCertificateDescriptionSubjectDescription) UnmarshalJSON

type CertificateCertificateDescriptionSubjectDescriptionSubject

type CertificateCertificateDescriptionSubjectDescriptionSubject struct {
	CommonName         *string `json:"commonName"`
	CountryCode        *string `json:"countryCode"`
	Organization       *string `json:"organization"`
	OrganizationalUnit *string `json:"organizationalUnit"`
	Locality           *string `json:"locality"`
	Province           *string `json:"province"`
	StreetAddress      *string `json:"streetAddress"`
	PostalCode         *string `json:"postalCode"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionSubjectDescriptionSubject *CertificateCertificateDescriptionSubjectDescriptionSubject = &CertificateCertificateDescriptionSubjectDescriptionSubject{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionSubjectDescriptionSubject is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionSubjectDescriptionSubject) Empty

func (*CertificateCertificateDescriptionSubjectDescriptionSubject) HashCode

func (*CertificateCertificateDescriptionSubjectDescriptionSubject) String

func (*CertificateCertificateDescriptionSubjectDescriptionSubject) UnmarshalJSON

type CertificateCertificateDescriptionSubjectDescriptionSubjectAltName

type CertificateCertificateDescriptionSubjectDescriptionSubjectAltName struct {
	DnsNames       []string                                                                      `json:"dnsNames"`
	Uris           []string                                                                      `json:"uris"`
	EmailAddresses []string                                                                      `json:"emailAddresses"`
	IPAddresses    []string                                                                      `json:"ipAddresses"`
	CustomSans     []CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans `json:"customSans"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionSubjectDescriptionSubjectAltName *CertificateCertificateDescriptionSubjectDescriptionSubjectAltName = &CertificateCertificateDescriptionSubjectDescriptionSubjectAltName{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionSubjectDescriptionSubjectAltName is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltName) Empty

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltName) HashCode

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltName) String

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltName) UnmarshalJSON

type CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans

type CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans struct {
	ObjectId *CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId `json:"objectId"`
	Critical *bool                                                                                `json:"critical"`
	Value    *string                                                                              `json:"value"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans) Empty

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans) HashCode

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans) String

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSans) UnmarshalJSON

type CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId

type CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId) Empty

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId) HashCode

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId) String

func (*CertificateCertificateDescriptionSubjectDescriptionSubjectAltNameCustomSansObjectId) UnmarshalJSON

type CertificateCertificateDescriptionSubjectKeyId

type CertificateCertificateDescriptionSubjectKeyId struct {
	KeyId *string `json:"keyId"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionSubjectKeyId *CertificateCertificateDescriptionSubjectKeyId = &CertificateCertificateDescriptionSubjectKeyId{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionSubjectKeyId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionSubjectKeyId) Empty

func (*CertificateCertificateDescriptionSubjectKeyId) HashCode

func (*CertificateCertificateDescriptionSubjectKeyId) String

func (*CertificateCertificateDescriptionSubjectKeyId) UnmarshalJSON

func (r *CertificateCertificateDescriptionSubjectKeyId) UnmarshalJSON(data []byte) error

type CertificateCertificateDescriptionX509Description

type CertificateCertificateDescriptionX509Description struct {
	KeyUsage             *CertificateCertificateDescriptionX509DescriptionKeyUsage              `json:"keyUsage"`
	CaOptions            *CertificateCertificateDescriptionX509DescriptionCaOptions             `json:"caOptions"`
	PolicyIds            []CertificateCertificateDescriptionX509DescriptionPolicyIds            `json:"policyIds"`
	AiaOcspServers       []string                                                               `json:"aiaOcspServers"`
	AdditionalExtensions []CertificateCertificateDescriptionX509DescriptionAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionX509Description *CertificateCertificateDescriptionX509Description = &CertificateCertificateDescriptionX509Description{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509Description is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509Description) Empty

func (*CertificateCertificateDescriptionX509Description) HashCode

func (*CertificateCertificateDescriptionX509Description) String

func (*CertificateCertificateDescriptionX509Description) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionAdditionalExtensions

type CertificateCertificateDescriptionX509DescriptionAdditionalExtensions struct {
	ObjectId *CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId `json:"objectId"`
	Critical *bool                                                                         `json:"critical"`
	Value    *string                                                                       `json:"value"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionX509DescriptionAdditionalExtensions *CertificateCertificateDescriptionX509DescriptionAdditionalExtensions = &CertificateCertificateDescriptionX509DescriptionAdditionalExtensions{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensions) Empty

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensions) HashCode

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensions) String

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensions) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId

type CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId) Empty

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId) HashCode

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId) String

func (*CertificateCertificateDescriptionX509DescriptionAdditionalExtensionsObjectId) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionCaOptions

type CertificateCertificateDescriptionX509DescriptionCaOptions struct {
	IsCa                *bool  `json:"isCa"`
	MaxIssuerPathLength *int64 `json:"maxIssuerPathLength"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionX509DescriptionCaOptions *CertificateCertificateDescriptionX509DescriptionCaOptions = &CertificateCertificateDescriptionX509DescriptionCaOptions{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionCaOptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionCaOptions) Empty

func (*CertificateCertificateDescriptionX509DescriptionCaOptions) HashCode

func (*CertificateCertificateDescriptionX509DescriptionCaOptions) String

func (*CertificateCertificateDescriptionX509DescriptionCaOptions) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionKeyUsage

type CertificateCertificateDescriptionX509DescriptionKeyUsage struct {
	BaseKeyUsage             *CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage              `json:"baseKeyUsage"`
	ExtendedKeyUsage         *CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage          `json:"extendedKeyUsage"`
	UnknownExtendedKeyUsages []CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages `json:"unknownExtendedKeyUsages"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionX509DescriptionKeyUsage *CertificateCertificateDescriptionX509DescriptionKeyUsage = &CertificateCertificateDescriptionX509DescriptionKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionKeyUsage) Empty

func (*CertificateCertificateDescriptionX509DescriptionKeyUsage) HashCode

func (*CertificateCertificateDescriptionX509DescriptionKeyUsage) String

func (*CertificateCertificateDescriptionX509DescriptionKeyUsage) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage

type CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage struct {
	DigitalSignature  *bool `json:"digitalSignature"`
	ContentCommitment *bool `json:"contentCommitment"`
	KeyEncipherment   *bool `json:"keyEncipherment"`
	DataEncipherment  *bool `json:"dataEncipherment"`
	KeyAgreement      *bool `json:"keyAgreement"`
	CertSign          *bool `json:"certSign"`
	CrlSign           *bool `json:"crlSign"`
	EncipherOnly      *bool `json:"encipherOnly"`
	DecipherOnly      *bool `json:"decipherOnly"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage *CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage = &CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage) Empty

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage) HashCode

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage) String

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageBaseKeyUsage) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage

type CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage struct {
	ServerAuth      *bool `json:"serverAuth"`
	ClientAuth      *bool `json:"clientAuth"`
	CodeSigning     *bool `json:"codeSigning"`
	EmailProtection *bool `json:"emailProtection"`
	TimeStamping    *bool `json:"timeStamping"`
	OcspSigning     *bool `json:"ocspSigning"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage) Empty

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage) HashCode

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage) String

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageExtendedKeyUsage) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages

type CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages) Empty

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages) HashCode

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages) String

func (*CertificateCertificateDescriptionX509DescriptionKeyUsageUnknownExtendedKeyUsages) UnmarshalJSON

type CertificateCertificateDescriptionX509DescriptionPolicyIds

type CertificateCertificateDescriptionX509DescriptionPolicyIds struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateCertificateDescriptionX509DescriptionPolicyIds *CertificateCertificateDescriptionX509DescriptionPolicyIds = &CertificateCertificateDescriptionX509DescriptionPolicyIds{empty: true}

This object is used to assert a desired state where this CertificateCertificateDescriptionX509DescriptionPolicyIds is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateCertificateDescriptionX509DescriptionPolicyIds) Empty

func (*CertificateCertificateDescriptionX509DescriptionPolicyIds) HashCode

func (*CertificateCertificateDescriptionX509DescriptionPolicyIds) String

func (*CertificateCertificateDescriptionX509DescriptionPolicyIds) UnmarshalJSON

type CertificateConfig

type CertificateConfig struct {
	SubjectConfig *CertificateConfigSubjectConfig `json:"subjectConfig"`
	X509Config    *CertificateConfigX509Config    `json:"x509Config"`
	PublicKey     *CertificateConfigPublicKey     `json:"publicKey"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfig *CertificateConfig = &CertificateConfig{empty: true}

This object is used to assert a desired state where this CertificateConfig is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfig) Empty

func (r *CertificateConfig) Empty() bool

func (*CertificateConfig) HashCode

func (r *CertificateConfig) HashCode() string

func (*CertificateConfig) String

func (r *CertificateConfig) String() string

func (*CertificateConfig) UnmarshalJSON

func (r *CertificateConfig) UnmarshalJSON(data []byte) error

type CertificateConfigPublicKey

type CertificateConfigPublicKey struct {
	Key    *string                               `json:"key"`
	Format *CertificateConfigPublicKeyFormatEnum `json:"format"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigPublicKey *CertificateConfigPublicKey = &CertificateConfigPublicKey{empty: true}

This object is used to assert a desired state where this CertificateConfigPublicKey is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigPublicKey) Empty

func (r *CertificateConfigPublicKey) Empty() bool

func (*CertificateConfigPublicKey) HashCode

func (r *CertificateConfigPublicKey) HashCode() string

func (*CertificateConfigPublicKey) String

func (r *CertificateConfigPublicKey) String() string

func (*CertificateConfigPublicKey) UnmarshalJSON

func (r *CertificateConfigPublicKey) UnmarshalJSON(data []byte) error

type CertificateConfigPublicKeyFormatEnum

type CertificateConfigPublicKeyFormatEnum string

The enum CertificateConfigPublicKeyFormatEnum.

func CertificateConfigPublicKeyFormatEnumRef

func CertificateConfigPublicKeyFormatEnumRef(s string) *CertificateConfigPublicKeyFormatEnum

CertificateConfigPublicKeyFormatEnumRef returns a *CertificateConfigPublicKeyFormatEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateConfigPublicKeyFormatEnum) Validate

type CertificateConfigSubjectConfig

type CertificateConfigSubjectConfig struct {
	Subject        *CertificateConfigSubjectConfigSubject        `json:"subject"`
	SubjectAltName *CertificateConfigSubjectConfigSubjectAltName `json:"subjectAltName"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigSubjectConfig *CertificateConfigSubjectConfig = &CertificateConfigSubjectConfig{empty: true}

This object is used to assert a desired state where this CertificateConfigSubjectConfig is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigSubjectConfig) Empty

func (*CertificateConfigSubjectConfig) HashCode

func (r *CertificateConfigSubjectConfig) HashCode() string

func (*CertificateConfigSubjectConfig) String

func (*CertificateConfigSubjectConfig) UnmarshalJSON

func (r *CertificateConfigSubjectConfig) UnmarshalJSON(data []byte) error

type CertificateConfigSubjectConfigSubject

type CertificateConfigSubjectConfigSubject struct {
	CommonName         *string `json:"commonName"`
	CountryCode        *string `json:"countryCode"`
	Organization       *string `json:"organization"`
	OrganizationalUnit *string `json:"organizationalUnit"`
	Locality           *string `json:"locality"`
	Province           *string `json:"province"`
	StreetAddress      *string `json:"streetAddress"`
	PostalCode         *string `json:"postalCode"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigSubjectConfigSubject *CertificateConfigSubjectConfigSubject = &CertificateConfigSubjectConfigSubject{empty: true}

This object is used to assert a desired state where this CertificateConfigSubjectConfigSubject is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigSubjectConfigSubject) Empty

func (*CertificateConfigSubjectConfigSubject) HashCode

func (*CertificateConfigSubjectConfigSubject) String

func (*CertificateConfigSubjectConfigSubject) UnmarshalJSON

func (r *CertificateConfigSubjectConfigSubject) UnmarshalJSON(data []byte) error

type CertificateConfigSubjectConfigSubjectAltName

type CertificateConfigSubjectConfigSubjectAltName struct {
	DnsNames       []string `json:"dnsNames"`
	Uris           []string `json:"uris"`
	EmailAddresses []string `json:"emailAddresses"`
	IPAddresses    []string `json:"ipAddresses"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigSubjectConfigSubjectAltName *CertificateConfigSubjectConfigSubjectAltName = &CertificateConfigSubjectConfigSubjectAltName{empty: true}

This object is used to assert a desired state where this CertificateConfigSubjectConfigSubjectAltName is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigSubjectConfigSubjectAltName) Empty

func (*CertificateConfigSubjectConfigSubjectAltName) HashCode

func (*CertificateConfigSubjectConfigSubjectAltName) String

func (*CertificateConfigSubjectConfigSubjectAltName) UnmarshalJSON

func (r *CertificateConfigSubjectConfigSubjectAltName) UnmarshalJSON(data []byte) error

type CertificateConfigX509Config

type CertificateConfigX509Config struct {
	KeyUsage             *CertificateConfigX509ConfigKeyUsage              `json:"keyUsage"`
	CaOptions            *CertificateConfigX509ConfigCaOptions             `json:"caOptions"`
	PolicyIds            []CertificateConfigX509ConfigPolicyIds            `json:"policyIds"`
	AiaOcspServers       []string                                          `json:"aiaOcspServers"`
	AdditionalExtensions []CertificateConfigX509ConfigAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509Config *CertificateConfigX509Config = &CertificateConfigX509Config{empty: true}

This object is used to assert a desired state where this CertificateConfigX509Config is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509Config) Empty

func (r *CertificateConfigX509Config) Empty() bool

func (*CertificateConfigX509Config) HashCode

func (r *CertificateConfigX509Config) HashCode() string

func (*CertificateConfigX509Config) String

func (r *CertificateConfigX509Config) String() string

func (*CertificateConfigX509Config) UnmarshalJSON

func (r *CertificateConfigX509Config) UnmarshalJSON(data []byte) error

type CertificateConfigX509ConfigAdditionalExtensions

type CertificateConfigX509ConfigAdditionalExtensions struct {
	ObjectId *CertificateConfigX509ConfigAdditionalExtensionsObjectId `json:"objectId"`
	Critical *bool                                                    `json:"critical"`
	Value    *string                                                  `json:"value"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigAdditionalExtensions *CertificateConfigX509ConfigAdditionalExtensions = &CertificateConfigX509ConfigAdditionalExtensions{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigAdditionalExtensions) Empty

func (*CertificateConfigX509ConfigAdditionalExtensions) HashCode

func (*CertificateConfigX509ConfigAdditionalExtensions) String

func (*CertificateConfigX509ConfigAdditionalExtensions) UnmarshalJSON

type CertificateConfigX509ConfigAdditionalExtensionsObjectId

type CertificateConfigX509ConfigAdditionalExtensionsObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigAdditionalExtensionsObjectId *CertificateConfigX509ConfigAdditionalExtensionsObjectId = &CertificateConfigX509ConfigAdditionalExtensionsObjectId{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigAdditionalExtensionsObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigAdditionalExtensionsObjectId) Empty

func (*CertificateConfigX509ConfigAdditionalExtensionsObjectId) HashCode

func (*CertificateConfigX509ConfigAdditionalExtensionsObjectId) String

func (*CertificateConfigX509ConfigAdditionalExtensionsObjectId) UnmarshalJSON

type CertificateConfigX509ConfigCaOptions

type CertificateConfigX509ConfigCaOptions struct {
	IsCa                    *bool  `json:"isCa"`
	NonCa                   *bool  `json:"nonCa"`
	MaxIssuerPathLength     *int64 `json:"maxIssuerPathLength"`
	ZeroMaxIssuerPathLength *bool  `json:"zeroMaxIssuerPathLength"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigCaOptions *CertificateConfigX509ConfigCaOptions = &CertificateConfigX509ConfigCaOptions{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigCaOptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigCaOptions) Empty

func (*CertificateConfigX509ConfigCaOptions) HashCode

func (*CertificateConfigX509ConfigCaOptions) String

func (*CertificateConfigX509ConfigCaOptions) UnmarshalJSON

func (r *CertificateConfigX509ConfigCaOptions) UnmarshalJSON(data []byte) error

type CertificateConfigX509ConfigKeyUsage

type CertificateConfigX509ConfigKeyUsage struct {
	BaseKeyUsage             *CertificateConfigX509ConfigKeyUsageBaseKeyUsage              `json:"baseKeyUsage"`
	ExtendedKeyUsage         *CertificateConfigX509ConfigKeyUsageExtendedKeyUsage          `json:"extendedKeyUsage"`
	UnknownExtendedKeyUsages []CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages `json:"unknownExtendedKeyUsages"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigKeyUsage *CertificateConfigX509ConfigKeyUsage = &CertificateConfigX509ConfigKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigKeyUsage) Empty

func (*CertificateConfigX509ConfigKeyUsage) HashCode

func (*CertificateConfigX509ConfigKeyUsage) String

func (*CertificateConfigX509ConfigKeyUsage) UnmarshalJSON

func (r *CertificateConfigX509ConfigKeyUsage) UnmarshalJSON(data []byte) error

type CertificateConfigX509ConfigKeyUsageBaseKeyUsage

type CertificateConfigX509ConfigKeyUsageBaseKeyUsage struct {
	DigitalSignature  *bool `json:"digitalSignature"`
	ContentCommitment *bool `json:"contentCommitment"`
	KeyEncipherment   *bool `json:"keyEncipherment"`
	DataEncipherment  *bool `json:"dataEncipherment"`
	KeyAgreement      *bool `json:"keyAgreement"`
	CertSign          *bool `json:"certSign"`
	CrlSign           *bool `json:"crlSign"`
	EncipherOnly      *bool `json:"encipherOnly"`
	DecipherOnly      *bool `json:"decipherOnly"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigKeyUsageBaseKeyUsage *CertificateConfigX509ConfigKeyUsageBaseKeyUsage = &CertificateConfigX509ConfigKeyUsageBaseKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigKeyUsageBaseKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigKeyUsageBaseKeyUsage) Empty

func (*CertificateConfigX509ConfigKeyUsageBaseKeyUsage) HashCode

func (*CertificateConfigX509ConfigKeyUsageBaseKeyUsage) String

func (*CertificateConfigX509ConfigKeyUsageBaseKeyUsage) UnmarshalJSON

type CertificateConfigX509ConfigKeyUsageExtendedKeyUsage

type CertificateConfigX509ConfigKeyUsageExtendedKeyUsage struct {
	ServerAuth      *bool `json:"serverAuth"`
	ClientAuth      *bool `json:"clientAuth"`
	CodeSigning     *bool `json:"codeSigning"`
	EmailProtection *bool `json:"emailProtection"`
	TimeStamping    *bool `json:"timeStamping"`
	OcspSigning     *bool `json:"ocspSigning"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigKeyUsageExtendedKeyUsage *CertificateConfigX509ConfigKeyUsageExtendedKeyUsage = &CertificateConfigX509ConfigKeyUsageExtendedKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigKeyUsageExtendedKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigKeyUsageExtendedKeyUsage) Empty

func (*CertificateConfigX509ConfigKeyUsageExtendedKeyUsage) HashCode

func (*CertificateConfigX509ConfigKeyUsageExtendedKeyUsage) String

func (*CertificateConfigX509ConfigKeyUsageExtendedKeyUsage) UnmarshalJSON

type CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages

type CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages *CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages = &CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) Empty

func (*CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) HashCode

func (*CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) String

func (*CertificateConfigX509ConfigKeyUsageUnknownExtendedKeyUsages) UnmarshalJSON

type CertificateConfigX509ConfigPolicyIds

type CertificateConfigX509ConfigPolicyIds struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateConfigX509ConfigPolicyIds *CertificateConfigX509ConfigPolicyIds = &CertificateConfigX509ConfigPolicyIds{empty: true}

This object is used to assert a desired state where this CertificateConfigX509ConfigPolicyIds is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateConfigX509ConfigPolicyIds) Empty

func (*CertificateConfigX509ConfigPolicyIds) HashCode

func (*CertificateConfigX509ConfigPolicyIds) String

func (*CertificateConfigX509ConfigPolicyIds) UnmarshalJSON

func (r *CertificateConfigX509ConfigPolicyIds) UnmarshalJSON(data []byte) error

type CertificateList

type CertificateList struct {
	Items []*Certificate
	// contains filtered or unexported fields
}

func (*CertificateList) HasNext

func (l *CertificateList) HasNext() bool

func (*CertificateList) Next

func (l *CertificateList) Next(ctx context.Context, c *Client) error

type CertificateRevocationDetails

type CertificateRevocationDetails struct {
	RevocationState *CertificateRevocationDetailsRevocationStateEnum `json:"revocationState"`
	RevocationTime  *string                                          `json:"revocationTime"`
	// contains filtered or unexported fields
}
var EmptyCertificateRevocationDetails *CertificateRevocationDetails = &CertificateRevocationDetails{empty: true}

This object is used to assert a desired state where this CertificateRevocationDetails is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateRevocationDetails) Empty

func (*CertificateRevocationDetails) HashCode

func (r *CertificateRevocationDetails) HashCode() string

func (*CertificateRevocationDetails) String

func (*CertificateRevocationDetails) UnmarshalJSON

func (r *CertificateRevocationDetails) UnmarshalJSON(data []byte) error

type CertificateRevocationDetailsRevocationStateEnum

type CertificateRevocationDetailsRevocationStateEnum string

The enum CertificateRevocationDetailsRevocationStateEnum.

func CertificateRevocationDetailsRevocationStateEnumRef

func CertificateRevocationDetailsRevocationStateEnumRef(s string) *CertificateRevocationDetailsRevocationStateEnum

CertificateRevocationDetailsRevocationStateEnumRef returns a *CertificateRevocationDetailsRevocationStateEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateRevocationDetailsRevocationStateEnum) Validate

type CertificateSubjectModeEnum

type CertificateSubjectModeEnum string

The enum CertificateSubjectModeEnum.

func CertificateSubjectModeEnumRef

func CertificateSubjectModeEnumRef(s string) *CertificateSubjectModeEnum

CertificateSubjectModeEnumRef returns a *CertificateSubjectModeEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateSubjectModeEnum) Validate

func (v CertificateSubjectModeEnum) Validate() error

type CertificateTemplate

type CertificateTemplate struct {
	Name                  *string                                   `json:"name"`
	PredefinedValues      *CertificateTemplatePredefinedValues      `json:"predefinedValues"`
	IdentityConstraints   *CertificateTemplateIdentityConstraints   `json:"identityConstraints"`
	PassthroughExtensions *CertificateTemplatePassthroughExtensions `json:"passthroughExtensions"`
	Description           *string                                   `json:"description"`
	CreateTime            *string                                   `json:"createTime"`
	UpdateTime            *string                                   `json:"updateTime"`
	Labels                map[string]string                         `json:"labels"`
	Project               *string                                   `json:"project"`
	Location              *string                                   `json:"location"`
}

func (*CertificateTemplate) Describe

Describe returns a simple description of this resource to ensure that automated tools can identify it.

func (*CertificateTemplate) ID

func (r *CertificateTemplate) ID() (string, error)

func (*CertificateTemplate) String

func (r *CertificateTemplate) String() string

type CertificateTemplateIdentityConstraints

type CertificateTemplateIdentityConstraints struct {
	CelExpression                   *CertificateTemplateIdentityConstraintsCelExpression `json:"celExpression"`
	AllowSubjectPassthrough         *bool                                                `json:"allowSubjectPassthrough"`
	AllowSubjectAltNamesPassthrough *bool                                                `json:"allowSubjectAltNamesPassthrough"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplateIdentityConstraints *CertificateTemplateIdentityConstraints = &CertificateTemplateIdentityConstraints{empty: true}

This object is used to assert a desired state where this CertificateTemplateIdentityConstraints is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplateIdentityConstraints) Empty

func (*CertificateTemplateIdentityConstraints) HashCode

func (*CertificateTemplateIdentityConstraints) String

func (*CertificateTemplateIdentityConstraints) UnmarshalJSON

func (r *CertificateTemplateIdentityConstraints) UnmarshalJSON(data []byte) error

type CertificateTemplateIdentityConstraintsCelExpression

type CertificateTemplateIdentityConstraintsCelExpression struct {
	Expression  *string `json:"expression"`
	Title       *string `json:"title"`
	Description *string `json:"description"`
	Location    *string `json:"location"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplateIdentityConstraintsCelExpression *CertificateTemplateIdentityConstraintsCelExpression = &CertificateTemplateIdentityConstraintsCelExpression{empty: true}

This object is used to assert a desired state where this CertificateTemplateIdentityConstraintsCelExpression is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplateIdentityConstraintsCelExpression) Empty

func (*CertificateTemplateIdentityConstraintsCelExpression) HashCode

func (*CertificateTemplateIdentityConstraintsCelExpression) String

func (*CertificateTemplateIdentityConstraintsCelExpression) UnmarshalJSON

type CertificateTemplateList

type CertificateTemplateList struct {
	Items []*CertificateTemplate
	// contains filtered or unexported fields
}

func (*CertificateTemplateList) HasNext

func (l *CertificateTemplateList) HasNext() bool

func (*CertificateTemplateList) Next

type CertificateTemplatePassthroughExtensions

type CertificateTemplatePassthroughExtensions struct {
	KnownExtensions      []CertificateTemplatePassthroughExtensionsKnownExtensionsEnum  `json:"knownExtensions"`
	AdditionalExtensions []CertificateTemplatePassthroughExtensionsAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePassthroughExtensions *CertificateTemplatePassthroughExtensions = &CertificateTemplatePassthroughExtensions{empty: true}

This object is used to assert a desired state where this CertificateTemplatePassthroughExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePassthroughExtensions) Empty

func (*CertificateTemplatePassthroughExtensions) HashCode

func (*CertificateTemplatePassthroughExtensions) String

func (*CertificateTemplatePassthroughExtensions) UnmarshalJSON

func (r *CertificateTemplatePassthroughExtensions) UnmarshalJSON(data []byte) error

type CertificateTemplatePassthroughExtensionsAdditionalExtensions

type CertificateTemplatePassthroughExtensionsAdditionalExtensions struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePassthroughExtensionsAdditionalExtensions *CertificateTemplatePassthroughExtensionsAdditionalExtensions = &CertificateTemplatePassthroughExtensionsAdditionalExtensions{empty: true}

This object is used to assert a desired state where this CertificateTemplatePassthroughExtensionsAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePassthroughExtensionsAdditionalExtensions) Empty

func (*CertificateTemplatePassthroughExtensionsAdditionalExtensions) HashCode

func (*CertificateTemplatePassthroughExtensionsAdditionalExtensions) String

func (*CertificateTemplatePassthroughExtensionsAdditionalExtensions) UnmarshalJSON

type CertificateTemplatePassthroughExtensionsKnownExtensionsEnum

type CertificateTemplatePassthroughExtensionsKnownExtensionsEnum string

The enum CertificateTemplatePassthroughExtensionsKnownExtensionsEnum.

func CertificateTemplatePassthroughExtensionsKnownExtensionsEnumRef

func CertificateTemplatePassthroughExtensionsKnownExtensionsEnumRef(s string) *CertificateTemplatePassthroughExtensionsKnownExtensionsEnum

CertificateTemplatePassthroughExtensionsKnownExtensionsEnumRef returns a *CertificateTemplatePassthroughExtensionsKnownExtensionsEnum with the value of string s If the empty string is provided, nil is returned.

func (CertificateTemplatePassthroughExtensionsKnownExtensionsEnum) Validate

type CertificateTemplatePredefinedValues

type CertificateTemplatePredefinedValues struct {
	KeyUsage             *CertificateTemplatePredefinedValuesKeyUsage              `json:"keyUsage"`
	CaOptions            *CertificateTemplatePredefinedValuesCaOptions             `json:"caOptions"`
	PolicyIds            []CertificateTemplatePredefinedValuesPolicyIds            `json:"policyIds"`
	AiaOcspServers       []string                                                  `json:"aiaOcspServers"`
	AdditionalExtensions []CertificateTemplatePredefinedValuesAdditionalExtensions `json:"additionalExtensions"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValues *CertificateTemplatePredefinedValues = &CertificateTemplatePredefinedValues{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValues is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValues) Empty

func (*CertificateTemplatePredefinedValues) HashCode

func (*CertificateTemplatePredefinedValues) String

func (*CertificateTemplatePredefinedValues) UnmarshalJSON

func (r *CertificateTemplatePredefinedValues) UnmarshalJSON(data []byte) error

type CertificateTemplatePredefinedValuesAdditionalExtensions

type CertificateTemplatePredefinedValuesAdditionalExtensions struct {
	ObjectId *CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId `json:"objectId"`
	Critical *bool                                                            `json:"critical"`
	Value    *string                                                          `json:"value"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesAdditionalExtensions *CertificateTemplatePredefinedValuesAdditionalExtensions = &CertificateTemplatePredefinedValuesAdditionalExtensions{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesAdditionalExtensions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesAdditionalExtensions) Empty

func (*CertificateTemplatePredefinedValuesAdditionalExtensions) HashCode

func (*CertificateTemplatePredefinedValuesAdditionalExtensions) String

func (*CertificateTemplatePredefinedValuesAdditionalExtensions) UnmarshalJSON

type CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId

type CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesAdditionalExtensionsObjectId *CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId = &CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId) Empty

func (*CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId) HashCode

func (*CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId) String

func (*CertificateTemplatePredefinedValuesAdditionalExtensionsObjectId) UnmarshalJSON

type CertificateTemplatePredefinedValuesCaOptions

type CertificateTemplatePredefinedValuesCaOptions struct {
	IsCa                *bool  `json:"isCa"`
	MaxIssuerPathLength *int64 `json:"maxIssuerPathLength"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesCaOptions *CertificateTemplatePredefinedValuesCaOptions = &CertificateTemplatePredefinedValuesCaOptions{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesCaOptions is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesCaOptions) Empty

func (*CertificateTemplatePredefinedValuesCaOptions) HashCode

func (*CertificateTemplatePredefinedValuesCaOptions) String

func (*CertificateTemplatePredefinedValuesCaOptions) UnmarshalJSON

func (r *CertificateTemplatePredefinedValuesCaOptions) UnmarshalJSON(data []byte) error

type CertificateTemplatePredefinedValuesKeyUsage

type CertificateTemplatePredefinedValuesKeyUsage struct {
	BaseKeyUsage             *CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage              `json:"baseKeyUsage"`
	ExtendedKeyUsage         *CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage          `json:"extendedKeyUsage"`
	UnknownExtendedKeyUsages []CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages `json:"unknownExtendedKeyUsages"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesKeyUsage *CertificateTemplatePredefinedValuesKeyUsage = &CertificateTemplatePredefinedValuesKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesKeyUsage) Empty

func (*CertificateTemplatePredefinedValuesKeyUsage) HashCode

func (*CertificateTemplatePredefinedValuesKeyUsage) String

func (*CertificateTemplatePredefinedValuesKeyUsage) UnmarshalJSON

func (r *CertificateTemplatePredefinedValuesKeyUsage) UnmarshalJSON(data []byte) error

type CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage

type CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage struct {
	DigitalSignature  *bool `json:"digitalSignature"`
	ContentCommitment *bool `json:"contentCommitment"`
	KeyEncipherment   *bool `json:"keyEncipherment"`
	DataEncipherment  *bool `json:"dataEncipherment"`
	KeyAgreement      *bool `json:"keyAgreement"`
	CertSign          *bool `json:"certSign"`
	CrlSign           *bool `json:"crlSign"`
	EncipherOnly      *bool `json:"encipherOnly"`
	DecipherOnly      *bool `json:"decipherOnly"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage *CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage = &CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage) Empty

func (*CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage) HashCode

func (*CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage) String

func (*CertificateTemplatePredefinedValuesKeyUsageBaseKeyUsage) UnmarshalJSON

type CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage

type CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage struct {
	ServerAuth      *bool `json:"serverAuth"`
	ClientAuth      *bool `json:"clientAuth"`
	CodeSigning     *bool `json:"codeSigning"`
	EmailProtection *bool `json:"emailProtection"`
	TimeStamping    *bool `json:"timeStamping"`
	OcspSigning     *bool `json:"ocspSigning"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage *CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage = &CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage) Empty

func (*CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage) HashCode

func (*CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage) String

func (*CertificateTemplatePredefinedValuesKeyUsageExtendedKeyUsage) UnmarshalJSON

type CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages

type CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages *CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages = &CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages) Empty

func (*CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages) HashCode

func (*CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages) String

func (*CertificateTemplatePredefinedValuesKeyUsageUnknownExtendedKeyUsages) UnmarshalJSON

type CertificateTemplatePredefinedValuesPolicyIds

type CertificateTemplatePredefinedValuesPolicyIds struct {
	ObjectIdPath []int64 `json:"objectIdPath"`
	// contains filtered or unexported fields
}
var EmptyCertificateTemplatePredefinedValuesPolicyIds *CertificateTemplatePredefinedValuesPolicyIds = &CertificateTemplatePredefinedValuesPolicyIds{empty: true}

This object is used to assert a desired state where this CertificateTemplatePredefinedValuesPolicyIds is empty. Go lacks global const objects, but this object should be treated as one. Modifying this object will have undesirable results.

func (*CertificateTemplatePredefinedValuesPolicyIds) Empty

func (*CertificateTemplatePredefinedValuesPolicyIds) HashCode

func (*CertificateTemplatePredefinedValuesPolicyIds) String

func (*CertificateTemplatePredefinedValuesPolicyIds) UnmarshalJSON

func (r *CertificateTemplatePredefinedValuesPolicyIds) UnmarshalJSON(data []byte) error

type Client

type Client struct {
	Config *dcl.Config
}

The Client is the base struct of all operations. This will receive the Get, Delete, List, and Apply operations on all resources.

func NewClient

func NewClient(c *dcl.Config) *Client

NewClient creates a client that retries all operations a few times each.

func (*Client) ApplyCaPool

func (c *Client) ApplyCaPool(ctx context.Context, rawDesired *CaPool, opts ...dcl.ApplyOption) (*CaPool, error)

func (*Client) ApplyCertificate

func (c *Client) ApplyCertificate(ctx context.Context, rawDesired *Certificate, opts ...dcl.ApplyOption) (*Certificate, error)

func (*Client) ApplyCertificateAuthority

func (c *Client) ApplyCertificateAuthority(ctx context.Context, rawDesired *CertificateAuthority, opts ...dcl.ApplyOption) (*CertificateAuthority, error)

func (*Client) ApplyCertificateTemplate

func (c *Client) ApplyCertificateTemplate(ctx context.Context, rawDesired *CertificateTemplate, opts ...dcl.ApplyOption) (*CertificateTemplate, error)

func (*Client) DeleteAllCaPool

func (c *Client) DeleteAllCaPool(ctx context.Context, project, location string, filter func(*CaPool) bool) error

DeleteAllCaPool deletes all resources that the filter functions returns true on.

func (*Client) DeleteAllCertificate

func (c *Client) DeleteAllCertificate(ctx context.Context, project, location, caPool string, filter func(*Certificate) bool) error

DeleteAllCertificate deletes all resources that the filter functions returns true on.

func (*Client) DeleteAllCertificateAuthority

func (c *Client) DeleteAllCertificateAuthority(ctx context.Context, project, location, caPool string, filter func(*CertificateAuthority) bool) error

DeleteAllCertificateAuthority deletes all resources that the filter functions returns true on.

func (*Client) DeleteAllCertificateTemplate

func (c *Client) DeleteAllCertificateTemplate(ctx context.Context, project, location string, filter func(*CertificateTemplate) bool) error

DeleteAllCertificateTemplate deletes all resources that the filter functions returns true on.

func (*Client) DeleteCaPool

func (c *Client) DeleteCaPool(ctx context.Context, r *CaPool) error

func (*Client) DeleteCertificate

func (c *Client) DeleteCertificate(ctx context.Context, r *Certificate) error

func (*Client) DeleteCertificateAuthority

func (c *Client) DeleteCertificateAuthority(ctx context.Context, r *CertificateAuthority) error

func (*Client) DeleteCertificateTemplate

func (c *Client) DeleteCertificateTemplate(ctx context.Context, r *CertificateTemplate) error

func (*Client) GetCaPool

func (c *Client) GetCaPool(ctx context.Context, r *CaPool) (*CaPool, error)

func (*Client) GetCertificate

func (c *Client) GetCertificate(ctx context.Context, r *Certificate) (*Certificate, error)

func (*Client) GetCertificateAuthority

func (c *Client) GetCertificateAuthority(ctx context.Context, r *CertificateAuthority) (*CertificateAuthority, error)

func (*Client) GetCertificateTemplate

func (c *Client) GetCertificateTemplate(ctx context.Context, r *CertificateTemplate) (*CertificateTemplate, error)

func (*Client) ListCaPool

func (c *Client) ListCaPool(ctx context.Context, project, location string) (*CaPoolList, error)

func (*Client) ListCaPoolWithMaxResults

func (c *Client) ListCaPoolWithMaxResults(ctx context.Context, project, location string, pageSize int32) (*CaPoolList, error)

func (*Client) ListCertificate

func (c *Client) ListCertificate(ctx context.Context, project, location, caPool string) (*CertificateList, error)

func (*Client) ListCertificateAuthority

func (c *Client) ListCertificateAuthority(ctx context.Context, project, location, caPool string) (*CertificateAuthorityList, error)

func (*Client) ListCertificateAuthorityWithMaxResults

func (c *Client) ListCertificateAuthorityWithMaxResults(ctx context.Context, project, location, caPool string, pageSize int32) (*CertificateAuthorityList, error)

func (*Client) ListCertificateTemplate

func (c *Client) ListCertificateTemplate(ctx context.Context, project, location string) (*CertificateTemplateList, error)

func (*Client) ListCertificateTemplateWithMaxResults

func (c *Client) ListCertificateTemplateWithMaxResults(ctx context.Context, project, location string, pageSize int32) (*CertificateTemplateList, error)

func (*Client) ListCertificateWithMaxResults

func (c *Client) ListCertificateWithMaxResults(ctx context.Context, project, location, caPool string, pageSize int32) (*CertificateList, error)

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL