Namespace Amazon.CDK.AWS.ACMPCA
AWS::ACMPCA Construct Library
This module is part of the AWS Cloud Development Kit project.
using Amazon.CDK.AWS.ACMPCA;
Certificate Authority
This package contains a CertificateAuthority
class.
At the moment, you cannot create new Authorities using it,
but you can import existing ones using the fromCertificateAuthorityArn
static method:
var certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CA", "arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/023077d8-2bfa-4eb0-8f22-05c96deade77");
Low-level Cfn*
classes
You can always use the low-level classes
(starting with Cfn*
) to create resources like the Certificate Authority:
var cfnCertificateAuthority = new CfnCertificateAuthority(this, "CA", new CfnCertificateAuthorityProps {
Type = "ROOT",
KeyAlgorithm = "RSA_2048",
SigningAlgorithm = "SHA256WITHRSA",
Subject = new SubjectProperty {
Country = "US",
Organization = "string",
OrganizationalUnit = "string",
DistinguishedNameQualifier = "string",
State = "string",
CommonName = "123",
SerialNumber = "string",
Locality = "string",
Title = "string",
Surname = "string",
GivenName = "string",
Initials = "DG",
Pseudonym = "string",
GenerationQualifier = "DBG"
}
});
If you need to pass the higher-level ICertificateAuthority
somewhere,
you can get it from the lower-level CfnCertificateAuthority
using the same fromCertificateAuthorityArn
method:
CfnCertificateAuthority cfnCertificateAuthority;
var certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CertificateAuthority", cfnCertificateAuthority.AttrArn);
Classes
CertificateAuthority | Defines a Certificate for ACMPCA. |
CfnCertificate | The |
CfnCertificate.ApiPassthroughProperty | Contains X.509 certificate information to be placed in an issued certificate. An |
CfnCertificate.CustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificate.CustomExtensionProperty | Specifies the X.509 extension information for a certificate. |
CfnCertificate.EdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificate.ExtendedKeyUsageProperty | Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the |
CfnCertificate.ExtensionsProperty | Contains X.509 extension information for a certificate. |
CfnCertificate.GeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificate.KeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificate.OtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificate.PolicyInformationProperty | Defines the X.509 |
CfnCertificate.PolicyQualifierInfoProperty | Modifies the |
CfnCertificate.QualifierProperty | Defines a |
CfnCertificate.SubjectProperty | Contains information about the certificate subject. |
CfnCertificate.ValidityProperty | Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. |
CfnCertificateAuthority | Use the |
CfnCertificateAuthority.AccessDescriptionProperty | Provides access information used by the |
CfnCertificateAuthority.AccessMethodProperty | Describes the type and format of extension access. |
CfnCertificateAuthority.CrlConfigurationProperty | Contains configuration information for a certificate revocation list (CRL). |
CfnCertificateAuthority.CrlDistributionPointExtensionConfigurationProperty | Contains configuration information for the default behavior of the CRL Distribution Point (CDP) extension in certificates issued by your CA. |
CfnCertificateAuthority.CsrExtensionsProperty | Describes the certificate extensions to be added to the certificate signing request (CSR). |
CfnCertificateAuthority.CustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificateAuthority.EdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificateAuthority.GeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificateAuthority.KeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificateAuthority.OcspConfigurationProperty | Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status. |
CfnCertificateAuthority.OtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificateAuthority.RevocationConfigurationProperty | Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate in the AWS Private CA API Reference and Setting up a certificate revocation method in the AWS Private CA User Guide . |
CfnCertificateAuthority.SubjectProperty | ASN1 subject for the certificate authority. |
CfnCertificateAuthorityActivation | The |
CfnCertificateAuthorityActivationProps | Properties for defining a |
CfnCertificateAuthorityProps | Properties for defining a |
CfnCertificateProps | Properties for defining a |
CfnPermission | Grants permissions to the AWS Certificate Manager ( ACM ) service principal ( |
CfnPermissionProps | Properties for defining a |
Interfaces
CfnCertificate.IApiPassthroughProperty | Contains X.509 certificate information to be placed in an issued certificate. An |
CfnCertificate.ICustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificate.ICustomExtensionProperty | Specifies the X.509 extension information for a certificate. |
CfnCertificate.IEdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificate.IExtendedKeyUsageProperty | Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the |
CfnCertificate.IExtensionsProperty | Contains X.509 extension information for a certificate. |
CfnCertificate.IGeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificate.IKeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificate.IOtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificate.IPolicyInformationProperty | Defines the X.509 |
CfnCertificate.IPolicyQualifierInfoProperty | Modifies the |
CfnCertificate.IQualifierProperty | Defines a |
CfnCertificate.ISubjectProperty | Contains information about the certificate subject. |
CfnCertificate.IValidityProperty | Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. |
CfnCertificateAuthority.IAccessDescriptionProperty | Provides access information used by the |
CfnCertificateAuthority.IAccessMethodProperty | Describes the type and format of extension access. |
CfnCertificateAuthority.ICrlConfigurationProperty | Contains configuration information for a certificate revocation list (CRL). |
CfnCertificateAuthority.ICrlDistributionPointExtensionConfigurationProperty | Contains configuration information for the default behavior of the CRL Distribution Point (CDP) extension in certificates issued by your CA. |
CfnCertificateAuthority.ICsrExtensionsProperty | Describes the certificate extensions to be added to the certificate signing request (CSR). |
CfnCertificateAuthority.ICustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificateAuthority.IEdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificateAuthority.IGeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificateAuthority.IKeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificateAuthority.IOcspConfigurationProperty | Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status. |
CfnCertificateAuthority.IOtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificateAuthority.IRevocationConfigurationProperty | Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate in the AWS Private CA API Reference and Setting up a certificate revocation method in the AWS Private CA User Guide . |
CfnCertificateAuthority.ISubjectProperty | ASN1 subject for the certificate authority. |
ICertificateAuthority | Interface which all CertificateAuthority based class must implement. |
ICfnCertificateAuthorityActivationProps | Properties for defining a |
ICfnCertificateAuthorityProps | Properties for defining a |
ICfnCertificateProps | Properties for defining a |
ICfnPermissionProps | Properties for defining a |