tls

package
v0.0.0-...-e0d0289 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 2, 2024 License: Apache-2.0 Imports: 10 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	AlgorithmRSA     = Algorithm("RSA")
	AlgorithmECDSA   = Algorithm("ECDSA")
	AlgorithmED25519 = Algorithm("ED25519")
)
View Source 
const (
	AllowedUsageCertSigning      = AllowedUsage("cert_signing")
	AllowedUsageClientAuth       = AllowedUsage("client_auth")
	AllowedUsageCrlSigning       = AllowedUsage("crl_signing")
	AllowedUsageDigitalSignature = AllowedUsage("digital_signature")
	AllowedUsageKeyEncipherment  = AllowedUsage("key_encipherment")
	AllowedUsageServerAuth       = AllowedUsage("server_auth")
)
View Source 
const (
	EcdsaCurveP224 = EcdsaCurve("P224")
	EcdsaCurveP256 = EcdsaCurve("P256")
	EcdsaCurveP384 = EcdsaCurve("P384")
	EcdsaCurveP521 = EcdsaCurve("P521")
)
View Source 
const (
	NodeRoleControlplane = NodeRole("controlplane")
	NodeRoleWorker       = NodeRole("worker")
)

Variables

This section is empty.

Functions

This section is empty.

Types

type Algorithm 

type Algorithm string

Private key algorithm.

func (Algorithm) ElementType 

func (Algorithm) ElementType() reflect.Type

func (Algorithm) ToAlgorithmOutput 

func (e Algorithm) ToAlgorithmOutput() AlgorithmOutput

func (Algorithm) ToAlgorithmOutputWithContext 

func (e Algorithm) ToAlgorithmOutputWithContext(ctx context.Context) AlgorithmOutput

func (Algorithm) ToAlgorithmPtrOutput 

func (e Algorithm) ToAlgorithmPtrOutput() AlgorithmPtrOutput

func (Algorithm) ToAlgorithmPtrOutputWithContext 

func (e Algorithm) ToAlgorithmPtrOutputWithContext(ctx context.Context) AlgorithmPtrOutput

func (Algorithm) ToStringOutput 

func (e Algorithm) ToStringOutput() pulumi.StringOutput

func (Algorithm) ToStringOutputWithContext 

func (e Algorithm) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (Algorithm) ToStringPtrOutput 

func (e Algorithm) ToStringPtrOutput() pulumi.StringPtrOutput

func (Algorithm) ToStringPtrOutputWithContext 

func (e Algorithm) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AlgorithmInput 

type AlgorithmInput interface {
	pulumi.Input

	ToAlgorithmOutput() AlgorithmOutput
	ToAlgorithmOutputWithContext(context.Context) AlgorithmOutput
}

AlgorithmInput is an input type that accepts values of the Algorithm enum A concrete instance of `AlgorithmInput` can be one of the following: 

AlgorithmRSA
AlgorithmECDSA
AlgorithmED25519

type AlgorithmOutput 

type AlgorithmOutput struct{ *pulumi.OutputState }

func (AlgorithmOutput) ElementType 

func (AlgorithmOutput) ElementType() reflect.Type

func (AlgorithmOutput) ToAlgorithmOutput 

func (o AlgorithmOutput) ToAlgorithmOutput() AlgorithmOutput

func (AlgorithmOutput) ToAlgorithmOutputWithContext 

func (o AlgorithmOutput) ToAlgorithmOutputWithContext(ctx context.Context) AlgorithmOutput

func (AlgorithmOutput) ToAlgorithmPtrOutput 

func (o AlgorithmOutput) ToAlgorithmPtrOutput() AlgorithmPtrOutput

func (AlgorithmOutput) ToAlgorithmPtrOutputWithContext 

func (o AlgorithmOutput) ToAlgorithmPtrOutputWithContext(ctx context.Context) AlgorithmPtrOutput

func (AlgorithmOutput) ToStringOutput 

func (o AlgorithmOutput) ToStringOutput() pulumi.StringOutput

func (AlgorithmOutput) ToStringOutputWithContext 

func (o AlgorithmOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (AlgorithmOutput) ToStringPtrOutput 

func (o AlgorithmOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (AlgorithmOutput) ToStringPtrOutputWithContext 

func (o AlgorithmOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AlgorithmPtrInput 

type AlgorithmPtrInput interface {
	pulumi.Input

	ToAlgorithmPtrOutput() AlgorithmPtrOutput
	ToAlgorithmPtrOutputWithContext(context.Context) AlgorithmPtrOutput
}

func AlgorithmPtr 

func AlgorithmPtr(v string) AlgorithmPtrInput

type AlgorithmPtrOutput 

type AlgorithmPtrOutput struct{ *pulumi.OutputState }

func (AlgorithmPtrOutput) Elem 

func (o AlgorithmPtrOutput) Elem() AlgorithmOutput

func (AlgorithmPtrOutput) ElementType 

func (AlgorithmPtrOutput) ElementType() reflect.Type

func (AlgorithmPtrOutput) ToAlgorithmPtrOutput 

func (o AlgorithmPtrOutput) ToAlgorithmPtrOutput() AlgorithmPtrOutput

func (AlgorithmPtrOutput) ToAlgorithmPtrOutputWithContext 

func (o AlgorithmPtrOutput) ToAlgorithmPtrOutputWithContext(ctx context.Context) AlgorithmPtrOutput

func (AlgorithmPtrOutput) ToStringPtrOutput 

func (o AlgorithmPtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (AlgorithmPtrOutput) ToStringPtrOutputWithContext 

func (o AlgorithmPtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AllowedUsage 

type AllowedUsage string

Certificate allowed usage

func (AllowedUsage) ElementType 

func (AllowedUsage) ElementType() reflect.Type

func (AllowedUsage) ToAllowedUsageOutput 

func (e AllowedUsage) ToAllowedUsageOutput() AllowedUsageOutput

func (AllowedUsage) ToAllowedUsageOutputWithContext 

func (e AllowedUsage) ToAllowedUsageOutputWithContext(ctx context.Context) AllowedUsageOutput

func (AllowedUsage) ToAllowedUsagePtrOutput 

func (e AllowedUsage) ToAllowedUsagePtrOutput() AllowedUsagePtrOutput

func (AllowedUsage) ToAllowedUsagePtrOutputWithContext 

func (e AllowedUsage) ToAllowedUsagePtrOutputWithContext(ctx context.Context) AllowedUsagePtrOutput

func (AllowedUsage) ToStringOutput 

func (e AllowedUsage) ToStringOutput() pulumi.StringOutput

func (AllowedUsage) ToStringOutputWithContext 

func (e AllowedUsage) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (AllowedUsage) ToStringPtrOutput 

func (e AllowedUsage) ToStringPtrOutput() pulumi.StringPtrOutput

func (AllowedUsage) ToStringPtrOutputWithContext 

func (e AllowedUsage) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AllowedUsageArray 

type AllowedUsageArray []AllowedUsage

func (AllowedUsageArray) ElementType 

func (AllowedUsageArray) ElementType() reflect.Type

func (AllowedUsageArray) ToAllowedUsageArrayOutput 

func (i AllowedUsageArray) ToAllowedUsageArrayOutput() AllowedUsageArrayOutput

func (AllowedUsageArray) ToAllowedUsageArrayOutputWithContext 

func (i AllowedUsageArray) ToAllowedUsageArrayOutputWithContext(ctx context.Context) AllowedUsageArrayOutput

type AllowedUsageArrayInput 

type AllowedUsageArrayInput interface {
	pulumi.Input

	ToAllowedUsageArrayOutput() AllowedUsageArrayOutput
	ToAllowedUsageArrayOutputWithContext(context.Context) AllowedUsageArrayOutput
}

AllowedUsageArrayInput is an input type that accepts AllowedUsageArray and AllowedUsageArrayOutput values. You can construct a concrete instance of `AllowedUsageArrayInput` via: 

AllowedUsageArray{ AllowedUsageArgs{...} }

type AllowedUsageArrayOutput 

type AllowedUsageArrayOutput struct{ *pulumi.OutputState }

func (AllowedUsageArrayOutput) ElementType 

func (AllowedUsageArrayOutput) ElementType() reflect.Type

func (AllowedUsageArrayOutput) Index 

func (o AllowedUsageArrayOutput) Index(i pulumi.IntInput) AllowedUsageOutput

func (AllowedUsageArrayOutput) ToAllowedUsageArrayOutput 

func (o AllowedUsageArrayOutput) ToAllowedUsageArrayOutput() AllowedUsageArrayOutput

func (AllowedUsageArrayOutput) ToAllowedUsageArrayOutputWithContext 

func (o AllowedUsageArrayOutput) ToAllowedUsageArrayOutputWithContext(ctx context.Context) AllowedUsageArrayOutput

type AllowedUsageInput 

type AllowedUsageInput interface {
	pulumi.Input

	ToAllowedUsageOutput() AllowedUsageOutput
	ToAllowedUsageOutputWithContext(context.Context) AllowedUsageOutput
}

AllowedUsageInput is an input type that accepts values of the AllowedUsage enum A concrete instance of `AllowedUsageInput` can be one of the following: 

AllowedUsageCertSigning
AllowedUsageClientAuth
AllowedUsageCrlSigning
AllowedUsageDigitalSignature
AllowedUsageKeyEncipherment
AllowedUsageServerAuth

type AllowedUsageOutput 

type AllowedUsageOutput struct{ *pulumi.OutputState }

func (AllowedUsageOutput) ElementType 

func (AllowedUsageOutput) ElementType() reflect.Type

func (AllowedUsageOutput) ToAllowedUsageOutput 

func (o AllowedUsageOutput) ToAllowedUsageOutput() AllowedUsageOutput

func (AllowedUsageOutput) ToAllowedUsageOutputWithContext 

func (o AllowedUsageOutput) ToAllowedUsageOutputWithContext(ctx context.Context) AllowedUsageOutput

func (AllowedUsageOutput) ToAllowedUsagePtrOutput 

func (o AllowedUsageOutput) ToAllowedUsagePtrOutput() AllowedUsagePtrOutput

func (AllowedUsageOutput) ToAllowedUsagePtrOutputWithContext 

func (o AllowedUsageOutput) ToAllowedUsagePtrOutputWithContext(ctx context.Context) AllowedUsagePtrOutput

func (AllowedUsageOutput) ToStringOutput 

func (o AllowedUsageOutput) ToStringOutput() pulumi.StringOutput

func (AllowedUsageOutput) ToStringOutputWithContext 

func (o AllowedUsageOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (AllowedUsageOutput) ToStringPtrOutput 

func (o AllowedUsageOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (AllowedUsageOutput) ToStringPtrOutputWithContext 

func (o AllowedUsageOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type AllowedUsagePtrInput 

type AllowedUsagePtrInput interface {
	pulumi.Input

	ToAllowedUsagePtrOutput() AllowedUsagePtrOutput
	ToAllowedUsagePtrOutputWithContext(context.Context) AllowedUsagePtrOutput
}

func AllowedUsagePtr 

func AllowedUsagePtr(v string) AllowedUsagePtrInput

type AllowedUsagePtrOutput 

type AllowedUsagePtrOutput struct{ *pulumi.OutputState }

func (AllowedUsagePtrOutput) Elem 

func (o AllowedUsagePtrOutput) Elem() AllowedUsageOutput

func (AllowedUsagePtrOutput) ElementType 

func (AllowedUsagePtrOutput) ElementType() reflect.Type

func (AllowedUsagePtrOutput) ToAllowedUsagePtrOutput 

func (o AllowedUsagePtrOutput) ToAllowedUsagePtrOutput() AllowedUsagePtrOutput

func (AllowedUsagePtrOutput) ToAllowedUsagePtrOutputWithContext 

func (o AllowedUsagePtrOutput) ToAllowedUsagePtrOutputWithContext(ctx context.Context) AllowedUsagePtrOutput

func (AllowedUsagePtrOutput) ToStringPtrOutput 

func (o AllowedUsagePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (AllowedUsagePtrOutput) ToStringPtrOutputWithContext 

func (o AllowedUsagePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type Bundle 

type Bundle struct {
	// The PEM encoded certificate authority data.
	CaPem string `pulumi:"caPem"`
	// The PEM encoded certificate data.
	CertPem string `pulumi:"certPem"`
	// The PEM encoded private key data
	KeyPem string `pulumi:"keyPem"`
}

A CA + Cert + Key bundle

type BundleArgs 

type BundleArgs struct {
	// The PEM encoded certificate authority data.
	CaPem pulumi.StringInput `pulumi:"caPem"`
	// The PEM encoded certificate data.
	CertPem pulumi.StringInput `pulumi:"certPem"`
	// The PEM encoded private key data
	KeyPem pulumi.StringInput `pulumi:"keyPem"`
}

A CA + Cert + Key bundle

func (BundleArgs) ElementType 

func (BundleArgs) ElementType() reflect.Type

func (BundleArgs) ToBundleOutput 

func (i BundleArgs) ToBundleOutput() BundleOutput

func (BundleArgs) ToBundleOutputWithContext 

func (i BundleArgs) ToBundleOutputWithContext(ctx context.Context) BundleOutput

type BundleInput 

type BundleInput interface {
	pulumi.Input

	ToBundleOutput() BundleOutput
	ToBundleOutputWithContext(context.Context) BundleOutput
}

BundleInput is an input type that accepts BundleArgs and BundleOutput values. You can construct a concrete instance of `BundleInput` via: 

BundleArgs{...}

type BundleOutput 

type BundleOutput struct{ *pulumi.OutputState }

A CA + Cert + Key bundle

func (BundleOutput) CaPem 

func (o BundleOutput) CaPem() pulumi.StringOutput

The PEM encoded certificate authority data.

func (BundleOutput) CertPem 

func (o BundleOutput) CertPem() pulumi.StringOutput

The PEM encoded certificate data.

func (BundleOutput) ElementType 

func (BundleOutput) ElementType() reflect.Type

func (BundleOutput) KeyPem 

func (o BundleOutput) KeyPem() pulumi.StringOutput

The PEM encoded private key data

func (BundleOutput) ToBundleOutput 

func (o BundleOutput) ToBundleOutput() BundleOutput

func (BundleOutput) ToBundleOutputWithContext 

func (o BundleOutput) ToBundleOutputWithContext(ctx context.Context) BundleOutput

type Certificate 

type Certificate struct {
	pulumi.ResourceState

	// Name of the algorithm to use when generating the private key.
	Algorithm AlgorithmOutput `pulumi:"algorithm"`
	// List of key usages allowed for the issued certificate.
	AllowedUses AllowedUsageArrayOutput `pulumi:"allowedUses"`
	// Certificate data of the Certificate Authority (CA) in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
	CaCertPem pulumi.StringOutput `pulumi:"caCertPem"`
	// Name of the algorithm used when generating the private key provided in `ca_private_key_pem`.
	CaKeyAlgorithm pulumi.StringOutput `pulumi:"caKeyAlgorithm"`
	// Private key of the Certificate Authority (CA) used to sign the certificate, in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
	CaPrivateKeyPem pulumi.StringOutput `pulumi:"caPrivateKeyPem"`
	// The certificate.
	Cert tls.LocallySignedCertOutput `pulumi:"cert"`
	// Certificate data in PEM (RFC 1421).
	CertPem pulumi.StringOutput `pulumi:"certPem"`
	// Certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
	CertRequestPem pulumi.StringOutput `pulumi:"certRequestPem"`
	// The certificate signing request.
	Csr tls.CertRequestOutput `pulumi:"csr"`
	// List of DNS names for which a certificate is being requested (i.e. certificate subjects).
	DnsNames          pulumi.StringArrayOutput `pulumi:"dnsNames"`
	EarlyRenewalHours pulumi.IntOutput         `pulumi:"earlyRenewalHours"`
	// TODO
	EcdsaCurve EcdsaCurveOutput `pulumi:"ecdsaCurve"`
	// List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
	IpAddresses pulumi.StringArrayOutput `pulumi:"ipAddresses"`
	// Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
	IsCaCertificate pulumi.BoolOutput `pulumi:"isCaCertificate"`
	// The private key
	Key tls.PrivateKeyOutput `pulumi:"key"`
	// Name of the algorithm used when generating the private key provided in `private_key_pem`.
	KeyAlgorithm pulumi.StringOutput `pulumi:"keyAlgorithm"`
	// Private key data in [OpenSSH PEM (RFC 4716)](https://datatracker.ietf.org/doc/html/rfc4716) format.
	PrivateKeyOpenssh pulumi.StringOutput `pulumi:"privateKeyOpenssh"`
	// Private key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
	PrivateKeyPem pulumi.StringOutput `pulumi:"privateKeyPem"`
	// Private key data in [PKCS#8 PEM (RFC 5208)](https://datatracker.ietf.org/doc/html/rfc5208) format.
	PrivateKeyPemPkcs8 pulumi.StringOutput `pulumi:"privateKeyPemPkcs8"`
	// The fingerprint of the public key data in OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
	PublicKeyFingerprintMd5 pulumi.StringOutput `pulumi:"publicKeyFingerprintMd5"`
	// The fingerprint of the public key data in OpenSSH SHA256 hash format, e.g. `SHA256:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
	PublicKeyFingerprintSha256 pulumi.StringOutput `pulumi:"publicKeyFingerprintSha256"`
	// The public key data in "Authorized Keys".
	PublicKeyOpenssh pulumi.StringOutput `pulumi:"publicKeyOpenssh"`
	// Public key data in PEM (RFC 1421).
	PublicKeyPem pulumi.StringOutput `pulumi:"publicKeyPem"`
	// Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
	ReadyForRenewal pulumi.BoolOutput `pulumi:"readyForRenewal"`
	// When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).
	RsaBits pulumi.IntOutput `pulumi:"rsaBits"`
	// Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
	SetSubjectKeyId pulumi.BoolOutput `pulumi:"setSubjectKeyId"`
	// TODO
	Subject tls.CertRequestSubjectPtrOutput `pulumi:"subject"`
	// List of URIs for which a certificate is being requested (i.e. certificate subjects).
	Uris pulumi.StringArrayOutput `pulumi:"uris"`
	// The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityEndTime pulumi.StringOutput `pulumi:"validityEndTime"`
	// Number of hours, after initial issuing, that the certificate will remain valid for.
	ValidityPeriodHours pulumi.IntOutput `pulumi:"validityPeriodHours"`
	// The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityStartTime pulumi.StringOutput `pulumi:"validityStartTime"`
}

A certificate key pair.

func NewCertificate 

func NewCertificate(ctx *pulumi.Context,
	name string, args *CertificateArgs, opts ...pulumi.ResourceOption) (*Certificate, error)

NewCertificate registers a new resource with the given unique name, arguments, and options.

func (*Certificate) ElementType 

func (*Certificate) ElementType() reflect.Type

func (*Certificate) ToCertificateOutput 

func (i *Certificate) ToCertificateOutput() CertificateOutput

func (*Certificate) ToCertificateOutputWithContext 

func (i *Certificate) ToCertificateOutputWithContext(ctx context.Context) CertificateOutput

type CertificateArgs 

type CertificateArgs struct {
	// Name of the algorithm to use when generating the private key.
	Algorithm AlgorithmInput
	// List of key usages allowed for the issued certificate.
	AllowedUses AllowedUsageArrayInput
	// Certificate data of the Certificate Authority (CA) in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
	CaCertPem pulumi.StringInput
	// Private key of the Certificate Authority (CA) used to sign the certificate, in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
	CaPrivateKeyPem pulumi.StringInput
	// List of DNS names for which a certificate is being requested (i.e. certificate subjects).
	DnsNames          pulumi.StringArrayInput
	EarlyRenewalHours pulumi.IntPtrInput
	// TODO
	EcdsaCurve EcdsaCurvePtrInput
	// List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
	IpAddresses pulumi.StringArrayInput
	// Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
	IsCaCertificate pulumi.BoolPtrInput
	// When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).
	RsaBits pulumi.IntPtrInput
	// Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
	SetSubjectKeyId pulumi.BoolPtrInput
	// TODO
	Subject tls.CertRequestSubjectPtrInput
	// List of URIs for which a certificate is being requested (i.e. certificate subjects).
	Uris pulumi.StringArrayInput
	// Number of hours, after initial issuing, that the certificate will remain valid for.
	ValidityPeriodHours pulumi.IntInput
}

The set of arguments for constructing a Certificate resource.

func (CertificateArgs) ElementType 

func (CertificateArgs) ElementType() reflect.Type

type CertificateArray 

type CertificateArray []CertificateInput

func (CertificateArray) ElementType 

func (CertificateArray) ElementType() reflect.Type

func (CertificateArray) ToCertificateArrayOutput 

func (i CertificateArray) ToCertificateArrayOutput() CertificateArrayOutput

func (CertificateArray) ToCertificateArrayOutputWithContext 

func (i CertificateArray) ToCertificateArrayOutputWithContext(ctx context.Context) CertificateArrayOutput

type CertificateArrayInput 

type CertificateArrayInput interface {
	pulumi.Input

	ToCertificateArrayOutput() CertificateArrayOutput
	ToCertificateArrayOutputWithContext(context.Context) CertificateArrayOutput
}

CertificateArrayInput is an input type that accepts CertificateArray and CertificateArrayOutput values. You can construct a concrete instance of `CertificateArrayInput` via: 

CertificateArray{ CertificateArgs{...} }

type CertificateArrayOutput 

type CertificateArrayOutput struct{ *pulumi.OutputState }

func (CertificateArrayOutput) ElementType 

func (CertificateArrayOutput) ElementType() reflect.Type

func (CertificateArrayOutput) Index 

func (o CertificateArrayOutput) Index(i pulumi.IntInput) CertificateOutput

func (CertificateArrayOutput) ToCertificateArrayOutput 

func (o CertificateArrayOutput) ToCertificateArrayOutput() CertificateArrayOutput

func (CertificateArrayOutput) ToCertificateArrayOutputWithContext 

func (o CertificateArrayOutput) ToCertificateArrayOutputWithContext(ctx context.Context) CertificateArrayOutput

type CertificateInput 

type CertificateInput interface {
	pulumi.Input

	ToCertificateOutput() CertificateOutput
	ToCertificateOutputWithContext(ctx context.Context) CertificateOutput
}

type CertificateMap 

type CertificateMap map[string]CertificateInput

func (CertificateMap) ElementType 

func (CertificateMap) ElementType() reflect.Type

func (CertificateMap) ToCertificateMapOutput 

func (i CertificateMap) ToCertificateMapOutput() CertificateMapOutput

func (CertificateMap) ToCertificateMapOutputWithContext 

func (i CertificateMap) ToCertificateMapOutputWithContext(ctx context.Context) CertificateMapOutput

type CertificateMapInput 

type CertificateMapInput interface {
	pulumi.Input

	ToCertificateMapOutput() CertificateMapOutput
	ToCertificateMapOutputWithContext(context.Context) CertificateMapOutput
}

CertificateMapInput is an input type that accepts CertificateMap and CertificateMapOutput values. You can construct a concrete instance of `CertificateMapInput` via: 

CertificateMap{ "key": CertificateArgs{...} }

type CertificateMapOutput 

type CertificateMapOutput struct{ *pulumi.OutputState }

func (CertificateMapOutput) ElementType 

func (CertificateMapOutput) ElementType() reflect.Type

func (CertificateMapOutput) MapIndex 

func (o CertificateMapOutput) MapIndex(k pulumi.StringInput) CertificateOutput

func (CertificateMapOutput) ToCertificateMapOutput 

func (o CertificateMapOutput) ToCertificateMapOutput() CertificateMapOutput

func (CertificateMapOutput) ToCertificateMapOutputWithContext 

func (o CertificateMapOutput) ToCertificateMapOutputWithContext(ctx context.Context) CertificateMapOutput

type CertificateOutput 

type CertificateOutput struct{ *pulumi.OutputState }

func (CertificateOutput) Algorithm 

func (o CertificateOutput) Algorithm() AlgorithmOutput

Name of the algorithm to use when generating the private key.

func (CertificateOutput) AllowedUses 

func (o CertificateOutput) AllowedUses() AllowedUsageArrayOutput

List of key usages allowed for the issued certificate.

func (CertificateOutput) CaCertPem 

func (o CertificateOutput) CaCertPem() pulumi.StringOutput

Certificate data of the Certificate Authority (CA) in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.

func (CertificateOutput) CaKeyAlgorithm 

func (o CertificateOutput) CaKeyAlgorithm() pulumi.StringOutput

Name of the algorithm used when generating the private key provided in `ca_private_key_pem`.

func (CertificateOutput) CaPrivateKeyPem 

func (o CertificateOutput) CaPrivateKeyPem() pulumi.StringOutput

Private key of the Certificate Authority (CA) used to sign the certificate, in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.

func (CertificateOutput) Cert 

func (o CertificateOutput) Cert() tls.LocallySignedCertOutput

The certificate.

func (CertificateOutput) CertPem 

func (o CertificateOutput) CertPem() pulumi.StringOutput

Certificate data in PEM (RFC 1421).

func (CertificateOutput) CertRequestPem 

func (o CertificateOutput) CertRequestPem() pulumi.StringOutput

Certificate request data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.

func (CertificateOutput) Csr 

func (o CertificateOutput) Csr() tls.CertRequestOutput

The certificate signing request.

func (CertificateOutput) DnsNames 

func (o CertificateOutput) DnsNames() pulumi.StringArrayOutput

List of DNS names for which a certificate is being requested (i.e. certificate subjects).

func (CertificateOutput) EarlyRenewalHours 

func (o CertificateOutput) EarlyRenewalHours() pulumi.IntOutput

func (CertificateOutput) EcdsaCurve 

func (o CertificateOutput) EcdsaCurve() EcdsaCurveOutput

TODO

func (CertificateOutput) ElementType 

func (CertificateOutput) ElementType() reflect.Type

func (CertificateOutput) IpAddresses 

func (o CertificateOutput) IpAddresses() pulumi.StringArrayOutput

List of IP addresses for which a certificate is being requested (i.e. certificate subjects).

func (CertificateOutput) IsCaCertificate 

func (o CertificateOutput) IsCaCertificate() pulumi.BoolOutput

Is the generated certificate representing a Certificate Authority (CA) (default: `false`).

func (CertificateOutput) Key 

func (o CertificateOutput) Key() tls.PrivateKeyOutput

The private key

func (CertificateOutput) KeyAlgorithm 

func (o CertificateOutput) KeyAlgorithm() pulumi.StringOutput

Name of the algorithm used when generating the private key provided in `private_key_pem`.

func (CertificateOutput) PrivateKeyOpenssh 

func (o CertificateOutput) PrivateKeyOpenssh() pulumi.StringOutput

Private key data in [OpenSSH PEM (RFC 4716)](https://datatracker.ietf.org/doc/html/rfc4716) format.

func (CertificateOutput) PrivateKeyPem 

func (o CertificateOutput) PrivateKeyPem() pulumi.StringOutput

Private key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.

func (CertificateOutput) PrivateKeyPemPkcs8 

func (o CertificateOutput) PrivateKeyPemPkcs8() pulumi.StringOutput

Private key data in [PKCS#8 PEM (RFC 5208)](https://datatracker.ietf.org/doc/html/rfc5208) format.

func (CertificateOutput) PublicKeyFingerprintMd5 

func (o CertificateOutput) PublicKeyFingerprintMd5() pulumi.StringOutput

The fingerprint of the public key data in OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.

func (CertificateOutput) PublicKeyFingerprintSha256 

func (o CertificateOutput) PublicKeyFingerprintSha256() pulumi.StringOutput

The fingerprint of the public key data in OpenSSH SHA256 hash format, e.g. `SHA256:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.

func (CertificateOutput) PublicKeyOpenssh 

func (o CertificateOutput) PublicKeyOpenssh() pulumi.StringOutput

The public key data in "Authorized Keys".

func (CertificateOutput) PublicKeyPem 

func (o CertificateOutput) PublicKeyPem() pulumi.StringOutput

Public key data in PEM (RFC 1421).

func (CertificateOutput) ReadyForRenewal 

func (o CertificateOutput) ReadyForRenewal() pulumi.BoolOutput

Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?

func (CertificateOutput) RsaBits 

func (o CertificateOutput) RsaBits() pulumi.IntOutput

When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).

func (CertificateOutput) SetSubjectKeyId 

func (o CertificateOutput) SetSubjectKeyId() pulumi.BoolOutput

Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).

func (CertificateOutput) Subject 

func (o CertificateOutput) Subject() tls.CertRequestSubjectPtrOutput

TODO

func (CertificateOutput) ToCertificateOutput 

func (o CertificateOutput) ToCertificateOutput() CertificateOutput

func (CertificateOutput) ToCertificateOutputWithContext 

func (o CertificateOutput) ToCertificateOutputWithContext(ctx context.Context) CertificateOutput

func (CertificateOutput) Uris 

func (o CertificateOutput) Uris() pulumi.StringArrayOutput

List of URIs for which a certificate is being requested (i.e. certificate subjects).

func (CertificateOutput) ValidityEndTime 

func (o CertificateOutput) ValidityEndTime() pulumi.StringOutput

The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.

func (CertificateOutput) ValidityPeriodHours 

func (o CertificateOutput) ValidityPeriodHours() pulumi.IntOutput

Number of hours, after initial issuing, that the certificate will remain valid for.

func (CertificateOutput) ValidityStartTime 

func (o CertificateOutput) ValidityStartTime() pulumi.StringOutput

The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.

type ClusterPki 

type ClusterPki struct {
	pulumi.ResourceState

	// The admin certificate.
	Admin CertificateOutput `pulumi:"admin"`
	// Name of the algorithm to use when generating the private key.
	Algorithm AlgorithmPtrOutput `pulumi:"algorithm"`
	// The cluster certificate authority.
	Ca RootCaOutput `pulumi:"ca"`
	// A name to use for the cluster
	ClusterName pulumi.StringOutput `pulumi:"clusterName"`
	// The controller manager certificate.
	ControllerManager CertificateOutput `pulumi:"controllerManager"`
	// When `algorithm` is `ECDSA`, the name of the elliptic curve to use.
	EcdsaCurve EcdsaCurvePtrOutput `pulumi:"ecdsaCurve"`
	// The kube proxy certificate.
	KubeProxy CertificateOutput `pulumi:"kubeProxy"`
	// The kube scheduler certificate.
	KubeScheduler CertificateOutput `pulumi:"kubeScheduler"`
	// Map of node name to kubelet certificate.
	Kubelet CertificateMapOutput `pulumi:"kubelet"`
	// The kubernetes certificate.
	Kubernetes CertificateOutput `pulumi:"kubernetes"`
	// Map of node name to node configuration
	Nodes ClusterPkiNodeMapOutput `pulumi:"nodes"`
	// Publicly accessible IP address.
	PublicIp pulumi.StringOutput `pulumi:"publicIp"`
	// When `algorithm` is `RSA`, the size of the generated RSA key, in bits.
	RsaBits pulumi.IntPtrOutput `pulumi:"rsaBits"`
	// The service accounts certificate
	ServiceAccounts CertificateOutput `pulumi:"serviceAccounts"`
	// Number of hours, after initial issuing, that the certificate will remain valid.
	ValidityPeriodHours pulumi.IntOutput `pulumi:"validityPeriodHours"`
}

The private key infrastructure for a cluster

func NewClusterPki 

func NewClusterPki(ctx *pulumi.Context,
	name string, args *ClusterPkiArgs, opts ...pulumi.ResourceOption) (*ClusterPki, error)

NewClusterPki registers a new resource with the given unique name, arguments, and options.

func (*ClusterPki) ElementType 

func (*ClusterPki) ElementType() reflect.Type

func (*ClusterPki) GetKubeconfig 

func (r *ClusterPki) GetKubeconfig(ctx *pulumi.Context, args *ClusterPkiGetKubeconfigArgs) (config.KubeconfigOutput, error)

Get a kubeconfig configured from this PKI.

func (*ClusterPki) ToClusterPkiOutput 

func (i *ClusterPki) ToClusterPkiOutput() ClusterPkiOutput

func (*ClusterPki) ToClusterPkiOutputWithContext 

func (i *ClusterPki) ToClusterPkiOutputWithContext(ctx context.Context) ClusterPkiOutput

type ClusterPkiArgs 

type ClusterPkiArgs struct {
	// Name of the algorithm to use when generating the private key.
	Algorithm AlgorithmPtrInput
	// A name to use for the cluster
	ClusterName pulumi.StringInput
	// When `algorithm` is `ECDSA`, the name of the elliptic curve to use.
	EcdsaCurve EcdsaCurvePtrInput
	// Map of node name to node configuration
	Nodes ClusterPkiNodeMapInput
	// Publicly accessible IP address.
	PublicIp pulumi.StringInput
	// When `algorithm` is `RSA`, the size of the generated RSA key, in bits.
	RsaBits pulumi.IntPtrInput
	// Number of hours, after initial issuing, that the certificate will remain valid.
	ValidityPeriodHours pulumi.IntPtrInput
}

The set of arguments for constructing a ClusterPki resource.

func (ClusterPkiArgs) ElementType 

func (ClusterPkiArgs) ElementType() reflect.Type

type ClusterPkiArray 

type ClusterPkiArray []ClusterPkiInput

func (ClusterPkiArray) ElementType 

func (ClusterPkiArray) ElementType() reflect.Type

func (ClusterPkiArray) ToClusterPkiArrayOutput 

func (i ClusterPkiArray) ToClusterPkiArrayOutput() ClusterPkiArrayOutput

func (ClusterPkiArray) ToClusterPkiArrayOutputWithContext 

func (i ClusterPkiArray) ToClusterPkiArrayOutputWithContext(ctx context.Context) ClusterPkiArrayOutput

type ClusterPkiArrayInput 

type ClusterPkiArrayInput interface {
	pulumi.Input

	ToClusterPkiArrayOutput() ClusterPkiArrayOutput
	ToClusterPkiArrayOutputWithContext(context.Context) ClusterPkiArrayOutput
}

ClusterPkiArrayInput is an input type that accepts ClusterPkiArray and ClusterPkiArrayOutput values. You can construct a concrete instance of `ClusterPkiArrayInput` via: 

ClusterPkiArray{ ClusterPkiArgs{...} }

type ClusterPkiArrayOutput 

type ClusterPkiArrayOutput struct{ *pulumi.OutputState }

func (ClusterPkiArrayOutput) ElementType 

func (ClusterPkiArrayOutput) ElementType() reflect.Type

func (ClusterPkiArrayOutput) Index 

func (o ClusterPkiArrayOutput) Index(i pulumi.IntInput) ClusterPkiOutput

func (ClusterPkiArrayOutput) ToClusterPkiArrayOutput 

func (o ClusterPkiArrayOutput) ToClusterPkiArrayOutput() ClusterPkiArrayOutput

func (ClusterPkiArrayOutput) ToClusterPkiArrayOutputWithContext 

func (o ClusterPkiArrayOutput) ToClusterPkiArrayOutputWithContext(ctx context.Context) ClusterPkiArrayOutput

type ClusterPkiGetKubeconfigArgs 

type ClusterPkiGetKubeconfigArgs struct {
	// Options for creating the kubeconfig.
	Options interface{}
}

The set of arguments for the GetKubeconfig method of the ClusterPki resource.

func (ClusterPkiGetKubeconfigArgs) ElementType 

func (ClusterPkiGetKubeconfigArgs) ElementType() reflect.Type

type ClusterPkiInput 

type ClusterPkiInput interface {
	pulumi.Input

	ToClusterPkiOutput() ClusterPkiOutput
	ToClusterPkiOutputWithContext(ctx context.Context) ClusterPkiOutput
}

type ClusterPkiMap 

type ClusterPkiMap map[string]ClusterPkiInput

func (ClusterPkiMap) ElementType 

func (ClusterPkiMap) ElementType() reflect.Type

func (ClusterPkiMap) ToClusterPkiMapOutput 

func (i ClusterPkiMap) ToClusterPkiMapOutput() ClusterPkiMapOutput

func (ClusterPkiMap) ToClusterPkiMapOutputWithContext 

func (i ClusterPkiMap) ToClusterPkiMapOutputWithContext(ctx context.Context) ClusterPkiMapOutput

type ClusterPkiMapInput 

type ClusterPkiMapInput interface {
	pulumi.Input

	ToClusterPkiMapOutput() ClusterPkiMapOutput
	ToClusterPkiMapOutputWithContext(context.Context) ClusterPkiMapOutput
}

ClusterPkiMapInput is an input type that accepts ClusterPkiMap and ClusterPkiMapOutput values. You can construct a concrete instance of `ClusterPkiMapInput` via: 

ClusterPkiMap{ "key": ClusterPkiArgs{...} }

type ClusterPkiMapOutput 

type ClusterPkiMapOutput struct{ *pulumi.OutputState }

func (ClusterPkiMapOutput) ElementType 

func (ClusterPkiMapOutput) ElementType() reflect.Type

func (ClusterPkiMapOutput) MapIndex 

func (o ClusterPkiMapOutput) MapIndex(k pulumi.StringInput) ClusterPkiOutput

func (ClusterPkiMapOutput) ToClusterPkiMapOutput 

func (o ClusterPkiMapOutput) ToClusterPkiMapOutput() ClusterPkiMapOutput

func (ClusterPkiMapOutput) ToClusterPkiMapOutputWithContext 

func (o ClusterPkiMapOutput) ToClusterPkiMapOutputWithContext(ctx context.Context) ClusterPkiMapOutput

type ClusterPkiNode 

type ClusterPkiNode struct {
	// The IP address of the node
	Ip string `pulumi:"ip"`
	// The role a node should be configured for
	Role NodeRole `pulumi:"role"`
}

TODO

type ClusterPkiNodeArgs 

type ClusterPkiNodeArgs struct {
	// The IP address of the node
	Ip pulumi.StringInput `pulumi:"ip"`
	// The role a node should be configured for
	Role NodeRoleInput `pulumi:"role"`
}

TODO

func (ClusterPkiNodeArgs) ElementType 

func (ClusterPkiNodeArgs) ElementType() reflect.Type

func (ClusterPkiNodeArgs) ToClusterPkiNodeOutput 

func (i ClusterPkiNodeArgs) ToClusterPkiNodeOutput() ClusterPkiNodeOutput

func (ClusterPkiNodeArgs) ToClusterPkiNodeOutputWithContext 

func (i ClusterPkiNodeArgs) ToClusterPkiNodeOutputWithContext(ctx context.Context) ClusterPkiNodeOutput

type ClusterPkiNodeInput 

type ClusterPkiNodeInput interface {
	pulumi.Input

	ToClusterPkiNodeOutput() ClusterPkiNodeOutput
	ToClusterPkiNodeOutputWithContext(context.Context) ClusterPkiNodeOutput
}

ClusterPkiNodeInput is an input type that accepts ClusterPkiNodeArgs and ClusterPkiNodeOutput values. You can construct a concrete instance of `ClusterPkiNodeInput` via: 

ClusterPkiNodeArgs{...}

type ClusterPkiNodeMap 

type ClusterPkiNodeMap map[string]ClusterPkiNodeInput

func (ClusterPkiNodeMap) ElementType 

func (ClusterPkiNodeMap) ElementType() reflect.Type

func (ClusterPkiNodeMap) ToClusterPkiNodeMapOutput 

func (i ClusterPkiNodeMap) ToClusterPkiNodeMapOutput() ClusterPkiNodeMapOutput

func (ClusterPkiNodeMap) ToClusterPkiNodeMapOutputWithContext 

func (i ClusterPkiNodeMap) ToClusterPkiNodeMapOutputWithContext(ctx context.Context) ClusterPkiNodeMapOutput

type ClusterPkiNodeMapInput 

type ClusterPkiNodeMapInput interface {
	pulumi.Input

	ToClusterPkiNodeMapOutput() ClusterPkiNodeMapOutput
	ToClusterPkiNodeMapOutputWithContext(context.Context) ClusterPkiNodeMapOutput
}

ClusterPkiNodeMapInput is an input type that accepts ClusterPkiNodeMap and ClusterPkiNodeMapOutput values. You can construct a concrete instance of `ClusterPkiNodeMapInput` via: 

ClusterPkiNodeMap{ "key": ClusterPkiNodeArgs{...} }

type ClusterPkiNodeMapOutput 

type ClusterPkiNodeMapOutput struct{ *pulumi.OutputState }

func (ClusterPkiNodeMapOutput) ElementType 

func (ClusterPkiNodeMapOutput) ElementType() reflect.Type

func (ClusterPkiNodeMapOutput) MapIndex 

func (o ClusterPkiNodeMapOutput) MapIndex(k pulumi.StringInput) ClusterPkiNodeOutput

func (ClusterPkiNodeMapOutput) ToClusterPkiNodeMapOutput 

func (o ClusterPkiNodeMapOutput) ToClusterPkiNodeMapOutput() ClusterPkiNodeMapOutput

func (ClusterPkiNodeMapOutput) ToClusterPkiNodeMapOutputWithContext 

func (o ClusterPkiNodeMapOutput) ToClusterPkiNodeMapOutputWithContext(ctx context.Context) ClusterPkiNodeMapOutput

type ClusterPkiNodeOutput 

type ClusterPkiNodeOutput struct{ *pulumi.OutputState }

TODO

func (ClusterPkiNodeOutput) ElementType 

func (ClusterPkiNodeOutput) ElementType() reflect.Type

func (ClusterPkiNodeOutput) Ip 

func (o ClusterPkiNodeOutput) Ip() pulumi.StringOutput

The IP address of the node

func (ClusterPkiNodeOutput) Role 

func (o ClusterPkiNodeOutput) Role() NodeRoleOutput

The role a node should be configured for

func (ClusterPkiNodeOutput) ToClusterPkiNodeOutput 

func (o ClusterPkiNodeOutput) ToClusterPkiNodeOutput() ClusterPkiNodeOutput

func (ClusterPkiNodeOutput) ToClusterPkiNodeOutputWithContext 

func (o ClusterPkiNodeOutput) ToClusterPkiNodeOutputWithContext(ctx context.Context) ClusterPkiNodeOutput

type ClusterPkiOutput 

type ClusterPkiOutput struct{ *pulumi.OutputState }

func (ClusterPkiOutput) Admin 

func (o ClusterPkiOutput) Admin() CertificateOutput

The admin certificate.

func (ClusterPkiOutput) Algorithm 

func (o ClusterPkiOutput) Algorithm() AlgorithmPtrOutput

Name of the algorithm to use when generating the private key.

func (ClusterPkiOutput) Ca 

func (o ClusterPkiOutput) Ca() RootCaOutput

The cluster certificate authority.

func (ClusterPkiOutput) ClusterName 

func (o ClusterPkiOutput) ClusterName() pulumi.StringOutput

A name to use for the cluster

func (ClusterPkiOutput) ControllerManager 

func (o ClusterPkiOutput) ControllerManager() CertificateOutput

The controller manager certificate.

func (ClusterPkiOutput) EcdsaCurve 

func (o ClusterPkiOutput) EcdsaCurve() EcdsaCurvePtrOutput

When `algorithm` is `ECDSA`, the name of the elliptic curve to use.

func (ClusterPkiOutput) ElementType 

func (ClusterPkiOutput) ElementType() reflect.Type

func (ClusterPkiOutput) KubeProxy 

func (o ClusterPkiOutput) KubeProxy() CertificateOutput

The kube proxy certificate.

func (ClusterPkiOutput) KubeScheduler 

func (o ClusterPkiOutput) KubeScheduler() CertificateOutput

The kube scheduler certificate.

func (ClusterPkiOutput) Kubelet 

func (o ClusterPkiOutput) Kubelet() CertificateMapOutput

Map of node name to kubelet certificate.

func (ClusterPkiOutput) Kubernetes 

func (o ClusterPkiOutput) Kubernetes() CertificateOutput

The kubernetes certificate.

func (ClusterPkiOutput) Nodes 

func (o ClusterPkiOutput) Nodes() ClusterPkiNodeMapOutput

Map of node name to node configuration

func (ClusterPkiOutput) PublicIp 

func (o ClusterPkiOutput) PublicIp() pulumi.StringOutput

Publicly accessible IP address.

func (ClusterPkiOutput) RsaBits 

func (o ClusterPkiOutput) RsaBits() pulumi.IntPtrOutput

When `algorithm` is `RSA`, the size of the generated RSA key, in bits.

func (ClusterPkiOutput) ServiceAccounts 

func (o ClusterPkiOutput) ServiceAccounts() CertificateOutput

The service accounts certificate

func (ClusterPkiOutput) ToClusterPkiOutput 

func (o ClusterPkiOutput) ToClusterPkiOutput() ClusterPkiOutput

func (ClusterPkiOutput) ToClusterPkiOutputWithContext 

func (o ClusterPkiOutput) ToClusterPkiOutputWithContext(ctx context.Context) ClusterPkiOutput

func (ClusterPkiOutput) ValidityPeriodHours 

func (o ClusterPkiOutput) ValidityPeriodHours() pulumi.IntOutput

Number of hours, after initial issuing, that the certificate will remain valid.

type EcdsaCurve 

type EcdsaCurve string

ECDSA algorithm curve

func (EcdsaCurve) ElementType 

func (EcdsaCurve) ElementType() reflect.Type

func (EcdsaCurve) ToEcdsaCurveOutput 

func (e EcdsaCurve) ToEcdsaCurveOutput() EcdsaCurveOutput

func (EcdsaCurve) ToEcdsaCurveOutputWithContext 

func (e EcdsaCurve) ToEcdsaCurveOutputWithContext(ctx context.Context) EcdsaCurveOutput

func (EcdsaCurve) ToEcdsaCurvePtrOutput 

func (e EcdsaCurve) ToEcdsaCurvePtrOutput() EcdsaCurvePtrOutput

func (EcdsaCurve) ToEcdsaCurvePtrOutputWithContext 

func (e EcdsaCurve) ToEcdsaCurvePtrOutputWithContext(ctx context.Context) EcdsaCurvePtrOutput

func (EcdsaCurve) ToStringOutput 

func (e EcdsaCurve) ToStringOutput() pulumi.StringOutput

func (EcdsaCurve) ToStringOutputWithContext 

func (e EcdsaCurve) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (EcdsaCurve) ToStringPtrOutput 

func (e EcdsaCurve) ToStringPtrOutput() pulumi.StringPtrOutput

func (EcdsaCurve) ToStringPtrOutputWithContext 

func (e EcdsaCurve) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type EcdsaCurveInput 

type EcdsaCurveInput interface {
	pulumi.Input

	ToEcdsaCurveOutput() EcdsaCurveOutput
	ToEcdsaCurveOutputWithContext(context.Context) EcdsaCurveOutput
}

EcdsaCurveInput is an input type that accepts values of the EcdsaCurve enum A concrete instance of `EcdsaCurveInput` can be one of the following: 

EcdsaCurveP224
EcdsaCurveP256
EcdsaCurveP384
EcdsaCurveP521

type EcdsaCurveOutput 

type EcdsaCurveOutput struct{ *pulumi.OutputState }

func (EcdsaCurveOutput) ElementType 

func (EcdsaCurveOutput) ElementType() reflect.Type

func (EcdsaCurveOutput) ToEcdsaCurveOutput 

func (o EcdsaCurveOutput) ToEcdsaCurveOutput() EcdsaCurveOutput

func (EcdsaCurveOutput) ToEcdsaCurveOutputWithContext 

func (o EcdsaCurveOutput) ToEcdsaCurveOutputWithContext(ctx context.Context) EcdsaCurveOutput

func (EcdsaCurveOutput) ToEcdsaCurvePtrOutput 

func (o EcdsaCurveOutput) ToEcdsaCurvePtrOutput() EcdsaCurvePtrOutput

func (EcdsaCurveOutput) ToEcdsaCurvePtrOutputWithContext 

func (o EcdsaCurveOutput) ToEcdsaCurvePtrOutputWithContext(ctx context.Context) EcdsaCurvePtrOutput

func (EcdsaCurveOutput) ToStringOutput 

func (o EcdsaCurveOutput) ToStringOutput() pulumi.StringOutput

func (EcdsaCurveOutput) ToStringOutputWithContext 

func (o EcdsaCurveOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (EcdsaCurveOutput) ToStringPtrOutput 

func (o EcdsaCurveOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (EcdsaCurveOutput) ToStringPtrOutputWithContext 

func (o EcdsaCurveOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type EcdsaCurvePtrInput 

type EcdsaCurvePtrInput interface {
	pulumi.Input

	ToEcdsaCurvePtrOutput() EcdsaCurvePtrOutput
	ToEcdsaCurvePtrOutputWithContext(context.Context) EcdsaCurvePtrOutput
}

func EcdsaCurvePtr 

func EcdsaCurvePtr(v string) EcdsaCurvePtrInput

type EcdsaCurvePtrOutput 

type EcdsaCurvePtrOutput struct{ *pulumi.OutputState }

func (EcdsaCurvePtrOutput) Elem 

func (o EcdsaCurvePtrOutput) Elem() EcdsaCurveOutput

func (EcdsaCurvePtrOutput) ElementType 

func (EcdsaCurvePtrOutput) ElementType() reflect.Type

func (EcdsaCurvePtrOutput) ToEcdsaCurvePtrOutput 

func (o EcdsaCurvePtrOutput) ToEcdsaCurvePtrOutput() EcdsaCurvePtrOutput

func (EcdsaCurvePtrOutput) ToEcdsaCurvePtrOutputWithContext 

func (o EcdsaCurvePtrOutput) ToEcdsaCurvePtrOutputWithContext(ctx context.Context) EcdsaCurvePtrOutput

func (EcdsaCurvePtrOutput) ToStringPtrOutput 

func (o EcdsaCurvePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (EcdsaCurvePtrOutput) ToStringPtrOutputWithContext 

func (o EcdsaCurvePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type EncryptionKey 

type EncryptionKey struct {
	pulumi.ResourceState

	// The number of bytes requested. The minimum value for length is 1.
	Bytes pulumi.IntOutput `pulumi:"bytes"`
	// The generated `v1/EncryptionConfig`.
	Config pulumi.StringOutput `pulumi:"config"`
	// The generated random key.
	Key random.RandomBytesOutput `pulumi:"key"`
}

A cluster encryption key.

func NewEncryptionKey 

func NewEncryptionKey(ctx *pulumi.Context,
	name string, args *EncryptionKeyArgs, opts ...pulumi.ResourceOption) (*EncryptionKey, error)

NewEncryptionKey registers a new resource with the given unique name, arguments, and options.

func (*EncryptionKey) ElementType 

func (*EncryptionKey) ElementType() reflect.Type

func (*EncryptionKey) ToEncryptionKeyOutput 

func (i *EncryptionKey) ToEncryptionKeyOutput() EncryptionKeyOutput

func (*EncryptionKey) ToEncryptionKeyOutputWithContext 

func (i *EncryptionKey) ToEncryptionKeyOutputWithContext(ctx context.Context) EncryptionKeyOutput

type EncryptionKeyArgs 

type EncryptionKeyArgs struct {
	// The number of bytes requested. The minimum value for length is 1.
	Bytes pulumi.IntInput
}

The set of arguments for constructing a EncryptionKey resource.

func (EncryptionKeyArgs) ElementType 

func (EncryptionKeyArgs) ElementType() reflect.Type

type EncryptionKeyArray 

type EncryptionKeyArray []EncryptionKeyInput

func (EncryptionKeyArray) ElementType 

func (EncryptionKeyArray) ElementType() reflect.Type

func (EncryptionKeyArray) ToEncryptionKeyArrayOutput 

func (i EncryptionKeyArray) ToEncryptionKeyArrayOutput() EncryptionKeyArrayOutput

func (EncryptionKeyArray) ToEncryptionKeyArrayOutputWithContext 

func (i EncryptionKeyArray) ToEncryptionKeyArrayOutputWithContext(ctx context.Context) EncryptionKeyArrayOutput

type EncryptionKeyArrayInput 

type EncryptionKeyArrayInput interface {
	pulumi.Input

	ToEncryptionKeyArrayOutput() EncryptionKeyArrayOutput
	ToEncryptionKeyArrayOutputWithContext(context.Context) EncryptionKeyArrayOutput
}

EncryptionKeyArrayInput is an input type that accepts EncryptionKeyArray and EncryptionKeyArrayOutput values. You can construct a concrete instance of `EncryptionKeyArrayInput` via: 

EncryptionKeyArray{ EncryptionKeyArgs{...} }

type EncryptionKeyArrayOutput 

type EncryptionKeyArrayOutput struct{ *pulumi.OutputState }

func (EncryptionKeyArrayOutput) ElementType 

func (EncryptionKeyArrayOutput) ElementType() reflect.Type

func (EncryptionKeyArrayOutput) Index 

func (o EncryptionKeyArrayOutput) Index(i pulumi.IntInput) EncryptionKeyOutput

func (EncryptionKeyArrayOutput) ToEncryptionKeyArrayOutput 

func (o EncryptionKeyArrayOutput) ToEncryptionKeyArrayOutput() EncryptionKeyArrayOutput

func (EncryptionKeyArrayOutput) ToEncryptionKeyArrayOutputWithContext 

func (o EncryptionKeyArrayOutput) ToEncryptionKeyArrayOutputWithContext(ctx context.Context) EncryptionKeyArrayOutput

type EncryptionKeyInput 

type EncryptionKeyInput interface {
	pulumi.Input

	ToEncryptionKeyOutput() EncryptionKeyOutput
	ToEncryptionKeyOutputWithContext(ctx context.Context) EncryptionKeyOutput
}

type EncryptionKeyMap 

type EncryptionKeyMap map[string]EncryptionKeyInput

func (EncryptionKeyMap) ElementType 

func (EncryptionKeyMap) ElementType() reflect.Type

func (EncryptionKeyMap) ToEncryptionKeyMapOutput 

func (i EncryptionKeyMap) ToEncryptionKeyMapOutput() EncryptionKeyMapOutput

func (EncryptionKeyMap) ToEncryptionKeyMapOutputWithContext 

func (i EncryptionKeyMap) ToEncryptionKeyMapOutputWithContext(ctx context.Context) EncryptionKeyMapOutput

type EncryptionKeyMapInput 

type EncryptionKeyMapInput interface {
	pulumi.Input

	ToEncryptionKeyMapOutput() EncryptionKeyMapOutput
	ToEncryptionKeyMapOutputWithContext(context.Context) EncryptionKeyMapOutput
}

EncryptionKeyMapInput is an input type that accepts EncryptionKeyMap and EncryptionKeyMapOutput values. You can construct a concrete instance of `EncryptionKeyMapInput` via: 

EncryptionKeyMap{ "key": EncryptionKeyArgs{...} }

type EncryptionKeyMapOutput 

type EncryptionKeyMapOutput struct{ *pulumi.OutputState }

func (EncryptionKeyMapOutput) ElementType 

func (EncryptionKeyMapOutput) ElementType() reflect.Type

func (EncryptionKeyMapOutput) MapIndex 

func (o EncryptionKeyMapOutput) MapIndex(k pulumi.StringInput) EncryptionKeyOutput

func (EncryptionKeyMapOutput) ToEncryptionKeyMapOutput 

func (o EncryptionKeyMapOutput) ToEncryptionKeyMapOutput() EncryptionKeyMapOutput

func (EncryptionKeyMapOutput) ToEncryptionKeyMapOutputWithContext 

func (o EncryptionKeyMapOutput) ToEncryptionKeyMapOutputWithContext(ctx context.Context) EncryptionKeyMapOutput

type EncryptionKeyOutput 

type EncryptionKeyOutput struct{ *pulumi.OutputState }

func (EncryptionKeyOutput) Bytes 

func (o EncryptionKeyOutput) Bytes() pulumi.IntOutput

The number of bytes requested. The minimum value for length is 1.

func (EncryptionKeyOutput) Config 

func (o EncryptionKeyOutput) Config() pulumi.StringOutput

The generated `v1/EncryptionConfig`.

func (EncryptionKeyOutput) ElementType 

func (EncryptionKeyOutput) ElementType() reflect.Type

func (EncryptionKeyOutput) Key 

func (o EncryptionKeyOutput) Key() random.RandomBytesOutput

The generated random key.

func (EncryptionKeyOutput) ToEncryptionKeyOutput 

func (o EncryptionKeyOutput) ToEncryptionKeyOutput() EncryptionKeyOutput

func (EncryptionKeyOutput) ToEncryptionKeyOutputWithContext 

func (o EncryptionKeyOutput) ToEncryptionKeyOutputWithContext(ctx context.Context) EncryptionKeyOutput

type KeyPair 

type KeyPair struct {
	// The certificate resource.
	Cert interface{} `pulumi:"cert"`
	// The PEM encoded certificate data.
	CertPem string `pulumi:"certPem"`
	// The private key resource.
	Key *tls.PrivateKey `pulumi:"key"`
	// The PEM encoded private key data.
	PrivateKeyPem string `pulumi:"privateKeyPem"`
	// The PEM encoded public key data.
	PublicKeyPem string `pulumi:"publicKeyPem"`
}

A certificate and key pair

type NodeRole 

type NodeRole string

The role a node will play in the final cluster

func (NodeRole) ElementType 

func (NodeRole) ElementType() reflect.Type

func (NodeRole) ToNodeRoleOutput 

func (e NodeRole) ToNodeRoleOutput() NodeRoleOutput

func (NodeRole) ToNodeRoleOutputWithContext 

func (e NodeRole) ToNodeRoleOutputWithContext(ctx context.Context) NodeRoleOutput

func (NodeRole) ToNodeRolePtrOutput 

func (e NodeRole) ToNodeRolePtrOutput() NodeRolePtrOutput

func (NodeRole) ToNodeRolePtrOutputWithContext 

func (e NodeRole) ToNodeRolePtrOutputWithContext(ctx context.Context) NodeRolePtrOutput

func (NodeRole) ToStringOutput 

func (e NodeRole) ToStringOutput() pulumi.StringOutput

func (NodeRole) ToStringOutputWithContext 

func (e NodeRole) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (NodeRole) ToStringPtrOutput 

func (e NodeRole) ToStringPtrOutput() pulumi.StringPtrOutput

func (NodeRole) ToStringPtrOutputWithContext 

func (e NodeRole) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type NodeRoleInput 

type NodeRoleInput interface {
	pulumi.Input

	ToNodeRoleOutput() NodeRoleOutput
	ToNodeRoleOutputWithContext(context.Context) NodeRoleOutput
}

NodeRoleInput is an input type that accepts values of the NodeRole enum A concrete instance of `NodeRoleInput` can be one of the following: 

NodeRoleControlplane
NodeRoleWorker

type NodeRoleOutput 

type NodeRoleOutput struct{ *pulumi.OutputState }

func (NodeRoleOutput) ElementType 

func (NodeRoleOutput) ElementType() reflect.Type

func (NodeRoleOutput) ToNodeRoleOutput 

func (o NodeRoleOutput) ToNodeRoleOutput() NodeRoleOutput

func (NodeRoleOutput) ToNodeRoleOutputWithContext 

func (o NodeRoleOutput) ToNodeRoleOutputWithContext(ctx context.Context) NodeRoleOutput

func (NodeRoleOutput) ToNodeRolePtrOutput 

func (o NodeRoleOutput) ToNodeRolePtrOutput() NodeRolePtrOutput

func (NodeRoleOutput) ToNodeRolePtrOutputWithContext 

func (o NodeRoleOutput) ToNodeRolePtrOutputWithContext(ctx context.Context) NodeRolePtrOutput

func (NodeRoleOutput) ToStringOutput 

func (o NodeRoleOutput) ToStringOutput() pulumi.StringOutput

func (NodeRoleOutput) ToStringOutputWithContext 

func (o NodeRoleOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput

func (NodeRoleOutput) ToStringPtrOutput 

func (o NodeRoleOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (NodeRoleOutput) ToStringPtrOutputWithContext 

func (o NodeRoleOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type NodeRolePtrInput 

type NodeRolePtrInput interface {
	pulumi.Input

	ToNodeRolePtrOutput() NodeRolePtrOutput
	ToNodeRolePtrOutputWithContext(context.Context) NodeRolePtrOutput
}

func NodeRolePtr 

func NodeRolePtr(v string) NodeRolePtrInput

type NodeRolePtrOutput 

type NodeRolePtrOutput struct{ *pulumi.OutputState }

func (NodeRolePtrOutput) Elem 

func (o NodeRolePtrOutput) Elem() NodeRoleOutput

func (NodeRolePtrOutput) ElementType 

func (NodeRolePtrOutput) ElementType() reflect.Type

func (NodeRolePtrOutput) ToNodeRolePtrOutput 

func (o NodeRolePtrOutput) ToNodeRolePtrOutput() NodeRolePtrOutput

func (NodeRolePtrOutput) ToNodeRolePtrOutputWithContext 

func (o NodeRolePtrOutput) ToNodeRolePtrOutputWithContext(ctx context.Context) NodeRolePtrOutput

func (NodeRolePtrOutput) ToStringPtrOutput 

func (o NodeRolePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput

func (NodeRolePtrOutput) ToStringPtrOutputWithContext 

func (o NodeRolePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput

type RootCa 

type RootCa struct {
	pulumi.ResourceState

	// Name of the algorithm to use when generating the private key.
	Algorithm AlgorithmOutput `pulumi:"algorithm"`
	// List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.
	AllowedUses pulumi.StringArrayOutput `pulumi:"allowedUses"`
	// The certificate authority certificate.
	Cert tls.SelfSignedCertOutput `pulumi:"cert"`
	// Certificate data in PEM (RFC 1421).
	CertPem pulumi.StringOutput `pulumi:"certPem"`
	// List of DNS names for which a certificate is being requested (i.e. certificate subjects).
	DnsNames          pulumi.StringArrayOutput `pulumi:"dnsNames"`
	EarlyRenewalHours pulumi.IntOutput         `pulumi:"earlyRenewalHours"`
	// TODO
	EcdsaCurve EcdsaCurveOutput `pulumi:"ecdsaCurve"`
	// List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
	IpAddresses pulumi.StringArrayOutput `pulumi:"ipAddresses"`
	// Is the generated certificate representing a Certificate Authority (CA) (default: `false`).
	IsCaCertificate pulumi.BoolOutput `pulumi:"isCaCertificate"`
	// The certificate authority key.
	Key tls.PrivateKeyOutput `pulumi:"key"`
	// Name of the algorithm used when generating the private key provided in `private_key_pem`.
	KeyAlgorithm pulumi.StringOutput `pulumi:"keyAlgorithm"`
	// Private key data in [OpenSSH PEM (RFC 4716)](https://datatracker.ietf.org/doc/html/rfc4716) format.
	PrivateKeyOpenssh pulumi.StringOutput `pulumi:"privateKeyOpenssh"`
	// Private key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.
	PrivateKeyPem pulumi.StringOutput `pulumi:"privateKeyPem"`
	// Private key data in [PKCS#8 PEM (RFC 5208)](https://datatracker.ietf.org/doc/html/rfc5208) format.
	PrivateKeyPemPkcs8 pulumi.StringOutput `pulumi:"privateKeyPemPkcs8"`
	// The fingerprint of the public key data in OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
	PublicKeyFingerprintMd5 pulumi.StringOutput `pulumi:"publicKeyFingerprintMd5"`
	// The fingerprint of the public key data in OpenSSH SHA256 hash format, e.g. `SHA256:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.
	PublicKeyFingerprintSha256 pulumi.StringOutput `pulumi:"publicKeyFingerprintSha256"`
	// The public key data in "Authorized Keys".
	PublicKeyOpenssh pulumi.StringOutput `pulumi:"publicKeyOpenssh"`
	// Public key data in PEM (RFC 1421).
	PublicKeyPem pulumi.StringOutput `pulumi:"publicKeyPem"`
	// Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?
	ReadyForRenewal pulumi.BoolOutput `pulumi:"readyForRenewal"`
	// When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).
	RsaBits pulumi.IntOutput `pulumi:"rsaBits"`
	// Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
	SetAuthorityKeyId pulumi.BoolOutput `pulumi:"setAuthorityKeyId"`
	// Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
	SetSubjectKeyId pulumi.BoolOutput `pulumi:"setSubjectKeyId"`
	// TODO
	Subject tls.SelfSignedCertSubjectPtrOutput `pulumi:"subject"`
	// List of URIs for which a certificate is being requested (i.e. certificate subjects).
	Uris pulumi.StringArrayOutput `pulumi:"uris"`
	// The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityEndTime pulumi.StringOutput `pulumi:"validityEndTime"`
	// Number of hours, after initial issuing, that the certificate will remain valid for.
	ValidityPeriodHours pulumi.IntOutput `pulumi:"validityPeriodHours"`
	// The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.
	ValidityStartTime pulumi.StringOutput `pulumi:"validityStartTime"`
}

Root certificate authority for a cluster.

func NewRootCa 

func NewRootCa(ctx *pulumi.Context,
	name string, args *RootCaArgs, opts ...pulumi.ResourceOption) (*RootCa, error)

NewRootCa registers a new resource with the given unique name, arguments, and options.

func (*RootCa) ElementType 

func (*RootCa) ElementType() reflect.Type

func (*RootCa) ToRootCaOutput 

func (i *RootCa) ToRootCaOutput() RootCaOutput

func (*RootCa) ToRootCaOutputWithContext 

func (i *RootCa) ToRootCaOutputWithContext(ctx context.Context) RootCaOutput

type RootCaArgs 

type RootCaArgs struct {
	// Name of the algorithm to use when generating the private key.
	Algorithm AlgorithmPtrInput
	// List of DNS names for which a certificate is being requested (i.e. certificate subjects).
	DnsNames          pulumi.StringArrayInput
	EarlyRenewalHours pulumi.IntPtrInput
	// TODO
	EcdsaCurve EcdsaCurvePtrInput
	// List of IP addresses for which a certificate is being requested (i.e. certificate subjects).
	IpAddresses pulumi.StringArrayInput
	// When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).
	RsaBits pulumi.IntPtrInput
	// Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
	SetAuthorityKeyId pulumi.BoolPtrInput
	// Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).
	SetSubjectKeyId pulumi.BoolPtrInput
	// TODO
	Subject tls.SelfSignedCertSubjectPtrInput
	// List of URIs for which a certificate is being requested (i.e. certificate subjects).
	Uris pulumi.StringArrayInput
	// Number of hours, after initial issuing, that the certificate will remain valid for.
	ValidityPeriodHours pulumi.IntInput
}

The set of arguments for constructing a RootCa resource.

func (RootCaArgs) ElementType 

func (RootCaArgs) ElementType() reflect.Type

type RootCaArray 

type RootCaArray []RootCaInput

func (RootCaArray) ElementType 

func (RootCaArray) ElementType() reflect.Type

func (RootCaArray) ToRootCaArrayOutput 

func (i RootCaArray) ToRootCaArrayOutput() RootCaArrayOutput

func (RootCaArray) ToRootCaArrayOutputWithContext 

func (i RootCaArray) ToRootCaArrayOutputWithContext(ctx context.Context) RootCaArrayOutput

type RootCaArrayInput 

type RootCaArrayInput interface {
	pulumi.Input

	ToRootCaArrayOutput() RootCaArrayOutput
	ToRootCaArrayOutputWithContext(context.Context) RootCaArrayOutput
}

RootCaArrayInput is an input type that accepts RootCaArray and RootCaArrayOutput values. You can construct a concrete instance of `RootCaArrayInput` via: 

RootCaArray{ RootCaArgs{...} }

type RootCaArrayOutput 

type RootCaArrayOutput struct{ *pulumi.OutputState }

func (RootCaArrayOutput) ElementType 

func (RootCaArrayOutput) ElementType() reflect.Type

func (RootCaArrayOutput) Index 

func (o RootCaArrayOutput) Index(i pulumi.IntInput) RootCaOutput

func (RootCaArrayOutput) ToRootCaArrayOutput 

func (o RootCaArrayOutput) ToRootCaArrayOutput() RootCaArrayOutput

func (RootCaArrayOutput) ToRootCaArrayOutputWithContext 

func (o RootCaArrayOutput) ToRootCaArrayOutputWithContext(ctx context.Context) RootCaArrayOutput

type RootCaInput 

type RootCaInput interface {
	pulumi.Input

	ToRootCaOutput() RootCaOutput
	ToRootCaOutputWithContext(ctx context.Context) RootCaOutput
}

type RootCaMap 

type RootCaMap map[string]RootCaInput

func (RootCaMap) ElementType 

func (RootCaMap) ElementType() reflect.Type

func (RootCaMap) ToRootCaMapOutput 

func (i RootCaMap) ToRootCaMapOutput() RootCaMapOutput

func (RootCaMap) ToRootCaMapOutputWithContext 

func (i RootCaMap) ToRootCaMapOutputWithContext(ctx context.Context) RootCaMapOutput

type RootCaMapInput 

type RootCaMapInput interface {
	pulumi.Input

	ToRootCaMapOutput() RootCaMapOutput
	ToRootCaMapOutputWithContext(context.Context) RootCaMapOutput
}

RootCaMapInput is an input type that accepts RootCaMap and RootCaMapOutput values. You can construct a concrete instance of `RootCaMapInput` via: 

RootCaMap{ "key": RootCaArgs{...} }

type RootCaMapOutput 

type RootCaMapOutput struct{ *pulumi.OutputState }

func (RootCaMapOutput) ElementType 

func (RootCaMapOutput) ElementType() reflect.Type

func (RootCaMapOutput) MapIndex 

func (o RootCaMapOutput) MapIndex(k pulumi.StringInput) RootCaOutput

func (RootCaMapOutput) ToRootCaMapOutput 

func (o RootCaMapOutput) ToRootCaMapOutput() RootCaMapOutput

func (RootCaMapOutput) ToRootCaMapOutputWithContext 

func (o RootCaMapOutput) ToRootCaMapOutputWithContext(ctx context.Context) RootCaMapOutput

type RootCaOutput 

type RootCaOutput struct{ *pulumi.OutputState }

func (RootCaOutput) Algorithm 

func (o RootCaOutput) Algorithm() AlgorithmOutput

Name of the algorithm to use when generating the private key.

func (RootCaOutput) AllowedUses 

func (o RootCaOutput) AllowedUses() pulumi.StringArrayOutput

List of key usages allowed for the issued certificate. Values are defined in [RFC 5280](https://datatracker.ietf.org/doc/html/rfc5280) and combine flags defined by both [Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.3) and [Extended Key Usages](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12). Accepted values: `any_extended`, `cert_signing`, `client_auth`, `code_signing`, `content_commitment`, `crl_signing`, `data_encipherment`, `decipher_only`, `digital_signature`, `email_protection`, `encipher_only`, `ipsec_end_system`, `ipsec_tunnel`, `ipsec_user`, `key_agreement`, `key_encipherment`, `microsoft_commercial_code_signing`, `microsoft_kernel_code_signing`, `microsoft_server_gated_crypto`, `netscape_server_gated_crypto`, `ocsp_signing`, `server_auth`, `timestamping`.

func (RootCaOutput) Cert 

func (o RootCaOutput) Cert() tls.SelfSignedCertOutput

The certificate authority certificate.

func (RootCaOutput) CertPem 

func (o RootCaOutput) CertPem() pulumi.StringOutput

Certificate data in PEM (RFC 1421).

func (RootCaOutput) DnsNames 

func (o RootCaOutput) DnsNames() pulumi.StringArrayOutput

List of DNS names for which a certificate is being requested (i.e. certificate subjects).

func (RootCaOutput) EarlyRenewalHours 

func (o RootCaOutput) EarlyRenewalHours() pulumi.IntOutput

func (RootCaOutput) EcdsaCurve 

func (o RootCaOutput) EcdsaCurve() EcdsaCurveOutput

TODO

func (RootCaOutput) ElementType 

func (RootCaOutput) ElementType() reflect.Type

func (RootCaOutput) IpAddresses 

func (o RootCaOutput) IpAddresses() pulumi.StringArrayOutput

List of IP addresses for which a certificate is being requested (i.e. certificate subjects).

func (RootCaOutput) IsCaCertificate 

func (o RootCaOutput) IsCaCertificate() pulumi.BoolOutput

Is the generated certificate representing a Certificate Authority (CA) (default: `false`).

func (RootCaOutput) Key 

func (o RootCaOutput) Key() tls.PrivateKeyOutput

The certificate authority key.

func (RootCaOutput) KeyAlgorithm 

func (o RootCaOutput) KeyAlgorithm() pulumi.StringOutput

Name of the algorithm used when generating the private key provided in `private_key_pem`.

func (RootCaOutput) PrivateKeyOpenssh 

func (o RootCaOutput) PrivateKeyOpenssh() pulumi.StringOutput

Private key data in [OpenSSH PEM (RFC 4716)](https://datatracker.ietf.org/doc/html/rfc4716) format.

func (RootCaOutput) PrivateKeyPem 

func (o RootCaOutput) PrivateKeyPem() pulumi.StringOutput

Private key data in [PEM (RFC 1421)](https://datatracker.ietf.org/doc/html/rfc1421) format.

func (RootCaOutput) PrivateKeyPemPkcs8 

func (o RootCaOutput) PrivateKeyPemPkcs8() pulumi.StringOutput

Private key data in [PKCS#8 PEM (RFC 5208)](https://datatracker.ietf.org/doc/html/rfc5208) format.

func (RootCaOutput) PublicKeyFingerprintMd5 

func (o RootCaOutput) PublicKeyFingerprintMd5() pulumi.StringOutput

The fingerprint of the public key data in OpenSSH MD5 hash format, e.g. `aa:bb:cc:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.

func (RootCaOutput) PublicKeyFingerprintSha256 

func (o RootCaOutput) PublicKeyFingerprintSha256() pulumi.StringOutput

The fingerprint of the public key data in OpenSSH SHA256 hash format, e.g. `SHA256:...`. Only available if the selected private key format is compatible, similarly to `public_key_openssh` and the ECDSA P224 limitations.

func (RootCaOutput) PublicKeyOpenssh 

func (o RootCaOutput) PublicKeyOpenssh() pulumi.StringOutput

The public key data in "Authorized Keys".

func (RootCaOutput) PublicKeyPem 

func (o RootCaOutput) PublicKeyPem() pulumi.StringOutput

Public key data in PEM (RFC 1421).

func (RootCaOutput) ReadyForRenewal 

func (o RootCaOutput) ReadyForRenewal() pulumi.BoolOutput

Is the certificate either expired (i.e. beyond the `validity_period_hours`) or ready for an early renewal (i.e. within the `early_renewal_hours`)?

func (RootCaOutput) RsaBits 

func (o RootCaOutput) RsaBits() pulumi.IntOutput

When `algorithm` is `RSA`, the size of the generated RSA key, in bits (default: `2048`).

func (RootCaOutput) SetAuthorityKeyId 

func (o RootCaOutput) SetAuthorityKeyId() pulumi.BoolOutput

Should the generated certificate include an [authority key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.1): for self-signed certificates this is the same value as the [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).

func (RootCaOutput) SetSubjectKeyId 

func (o RootCaOutput) SetSubjectKeyId() pulumi.BoolOutput

Should the generated certificate include a [subject key identifier](https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) (default: `false`).

func (RootCaOutput) Subject 

func (o RootCaOutput) Subject() tls.SelfSignedCertSubjectPtrOutput

TODO

func (RootCaOutput) ToRootCaOutput 

func (o RootCaOutput) ToRootCaOutput() RootCaOutput

func (RootCaOutput) ToRootCaOutputWithContext 

func (o RootCaOutput) ToRootCaOutputWithContext(ctx context.Context) RootCaOutput

func (RootCaOutput) Uris 

func (o RootCaOutput) Uris() pulumi.StringArrayOutput

List of URIs for which a certificate is being requested (i.e. certificate subjects).

func (RootCaOutput) ValidityEndTime 

func (o RootCaOutput) ValidityEndTime() pulumi.StringOutput

The time until which the certificate is invalid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.

func (RootCaOutput) ValidityPeriodHours 

func (o RootCaOutput) ValidityPeriodHours() pulumi.IntOutput

Number of hours, after initial issuing, that the certificate will remain valid for.

func (RootCaOutput) ValidityStartTime 

func (o RootCaOutput) ValidityStartTime() pulumi.StringOutput

The time after which the certificate is valid, expressed as an [RFC3339](https://tools.ietf.org/html/rfc3339) timestamp.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.