class Google::Apis::PrivatecaV1::IssuancePolicy

Defines controls over all certificate issuance within a CaPool.

Attributes

allowed_issuance_modes[RW]

IssuanceModes specifies the allowed ways in which Certificates may be requested from this CaPool. Corresponds to the JSON property `allowedIssuanceModes` @return [Google::Apis::PrivatecaV1::IssuanceModes]

allowed_key_types[RW]

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used. Corresponds to the JSON property `allowedKeyTypes` @return [Array<Google::Apis::PrivatecaV1::AllowedKeyType>]

baseline_values[RW]

An X509Parameters is used to describe certain fields of an X.509 certificate, such as the key usage fields, fields specific to CA certificates, certificate policy extensions and custom extensions. Corresponds to the JSON property `baselineValues` @return [Google::Apis::PrivatecaV1::X509Parameters]

identity_constraints[RW]

Describes constraints on a Certificate's Subject and SubjectAltNames. Corresponds to the JSON property `identityConstraints` @return [Google::Apis::PrivatecaV1::CertificateIdentityConstraints]

maximum_lifetime[RW]

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it. Corresponds to the JSON property `maximumLifetime` @return [String]

passthrough_extensions[RW]

Describes a set of X.509 extensions that may be part of some certificate issuance controls. Corresponds to the JSON property `passthroughExtensions` @return [Google::Apis::PrivatecaV1::CertificateExtensionConstraints]

Public Class Methods

new(**args) click to toggle source
# File lib/google/apis/privateca_v1/classes.rb, line 1315
def initialize(**args)
   update!(**args)
end

Public Instance Methods

update!(**args) click to toggle source

Update properties of this object

# File lib/google/apis/privateca_v1/classes.rb, line 1320
def update!(**args)
  @allowed_issuance_modes = args[:allowed_issuance_modes] if args.key?(:allowed_issuance_modes)
  @allowed_key_types = args[:allowed_key_types] if args.key?(:allowed_key_types)
  @baseline_values = args[:baseline_values] if args.key?(:baseline_values)
  @identity_constraints = args[:identity_constraints] if args.key?(:identity_constraints)
  @maximum_lifetime = args[:maximum_lifetime] if args.key?(:maximum_lifetime)
  @passthrough_extensions = args[:passthrough_extensions] if args.key?(:passthrough_extensions)
end