class Google::Apis::PrivatecaV1::IssuancePolicy
Defines controls over all certificate issuance within a CaPool
.
Attributes
IssuanceModes
specifies the allowed ways in which Certificates may be requested from this CaPool
. Corresponds to the JSON property `allowedIssuanceModes` @return [Google::Apis::PrivatecaV1::IssuanceModes]
Optional. If any AllowedKeyType
is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used. Corresponds to the JSON property `allowedKeyTypes` @return [Array<Google::Apis::PrivatecaV1::AllowedKeyType>]
An X509Parameters
is used to describe certain fields of an X.509 certificate, such as the key usage fields, fields specific to CA certificates, certificate policy extensions and custom extensions. Corresponds to the JSON property `baselineValues` @return [Google::Apis::PrivatecaV1::X509Parameters]
Describes constraints on a Certificate's Subject
and SubjectAltNames
. Corresponds to the JSON property `identityConstraints` @return [Google::Apis::PrivatecaV1::CertificateIdentityConstraints]
Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority
expires before a Certificate's requested maximum_lifetime
, the effective lifetime will be explicitly truncated to match it. Corresponds to the JSON property `maximumLifetime` @return [String]
Describes a set of X.509 extensions that may be part of some certificate issuance controls. Corresponds to the JSON property `passthroughExtensions` @return [Google::Apis::PrivatecaV1::CertificateExtensionConstraints]
Public Class Methods
# File lib/google/apis/privateca_v1/classes.rb, line 1315 def initialize(**args) update!(**args) end
Public Instance Methods
Update properties of this object
# File lib/google/apis/privateca_v1/classes.rb, line 1320 def update!(**args) @allowed_issuance_modes = args[:allowed_issuance_modes] if args.key?(:allowed_issuance_modes) @allowed_key_types = args[:allowed_key_types] if args.key?(:allowed_key_types) @baseline_values = args[:baseline_values] if args.key?(:baseline_values) @identity_constraints = args[:identity_constraints] if args.key?(:identity_constraints) @maximum_lifetime = args[:maximum_lifetime] if args.key?(:maximum_lifetime) @passthrough_extensions = args[:passthrough_extensions] if args.key?(:passthrough_extensions) end