Namespace Amazon.CDK.AWS.ACMPCA

AWS::ACMPCA Construct Library

--- cfn-resources: Stable cdk-constructs: Stable

This module is part of the AWS Cloud Development Kit project.

using Amazon.CDK.AWS.ACMPCA;

Certificate Authority

This package contains a CertificateAuthority class. At the moment, you cannot create new Authorities using it, but you can import existing ones using the fromCertificateAuthorityArn static method:

ICertificateAuthority certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CA", "arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/023077d8-2bfa-4eb0-8f22-05c96deade77");

Low-level Cfn* classes

You can always use the low-level classes (starting with Cfn*) to create resources like the Certificate Authority:

CfnCertificateAuthority cfnCertificateAuthority = new CfnCertificateAuthority(this, "CA", new CfnCertificateAuthorityProps {
    Type = "ROOT",
    KeyAlgorithm = "RSA_2048",
    SigningAlgorithm = "SHA256WITHRSA",
    Subject = new SubjectProperty {
        Country = "US",
        Organization = "string",
        OrganizationalUnit = "string",
        DistinguishedNameQualifier = "string",
        State = "string",
        CommonName = "123",
        SerialNumber = "string",
        Locality = "string",
        Title = "string",
        Surname = "string",
        GivenName = "string",
        Initials = "DG",
        Pseudonym = "string",
        GenerationQualifier = "DBG"
    }
});

If you need to pass the higher-level ICertificateAuthority somewhere, you can get it from the lower-level CfnCertificateAuthority using the same fromCertificateAuthorityArn method:

CfnCertificateAuthority cfnCertificateAuthority;


ICertificateAuthority certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CertificateAuthority", cfnCertificateAuthority.AttrArn);

Classes

CertificateAuthority

Defines a Certificate for ACMPCA.
CfnCertificate

A CloudFormation AWS::ACMPCA::Certificate.
CfnCertificate.ApiPassthroughProperty

Contains X.509 certificate information to be placed in an issued certificate. An APIPassthrough or APICSRPassthrough template variant must be selected, or else this parameter is ignored.
CfnCertificate.CustomAttributeProperty

Defines the X.500 relative distinguished name (RDN).
CfnCertificate.CustomExtensionProperty

Specifies the X.509 extension information for a certificate.
CfnCertificate.EdiPartyNameProperty

Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280.
CfnCertificate.ExtendedKeyUsageProperty

Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the KeyUsage extension.
CfnCertificate.ExtensionsProperty

Contains X.509 extension information for a certificate.
CfnCertificate.GeneralNameProperty

Describes an ASN.1 X.400 GeneralName as defined in RFC 5280 . Only one of the following naming options should be provided. Providing more than one option results in an InvalidArgsException error.
CfnCertificate.KeyUsageProperty

Defines one or more purposes for which the key contained in the certificate can be used.
CfnCertificate.OtherNameProperty

Defines a custom ASN.1 X.400 GeneralName using an object identifier (OID) and value. The OID must satisfy the regular expression shown below. For more information, see NIST's definition of Object Identifier (OID) .
CfnCertificate.PolicyInformationProperty

Defines the X.509 CertificatePolicies extension.
CfnCertificate.PolicyQualifierInfoProperty

Modifies the CertPolicyId of a PolicyInformation object with a qualifier.
CfnCertificate.QualifierProperty

Defines a PolicyInformation qualifier.
CfnCertificate.SubjectProperty

Contains information about the certificate subject.
CfnCertificate.ValidityProperty

Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years.
CfnCertificateAuthority

A CloudFormation AWS::ACMPCA::CertificateAuthority.
CfnCertificateAuthority.AccessDescriptionProperty

Provides access information used by the authorityInfoAccess and subjectInfoAccess extensions described in RFC 5280 .
CfnCertificateAuthority.AccessMethodProperty

Describes the type and format of extension access.
CfnCertificateAuthority.CrlConfigurationProperty

Contains configuration information for a certificate revocation list (CRL).
CfnCertificateAuthority.CsrExtensionsProperty

Describes the certificate extensions to be added to the certificate signing request (CSR).
CfnCertificateAuthority.CustomAttributeProperty

Defines the X.500 relative distinguished name (RDN).
CfnCertificateAuthority.EdiPartyNameProperty

Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280.
CfnCertificateAuthority.GeneralNameProperty

Describes an ASN.1 X.400 GeneralName as defined in RFC 5280 . Only one of the following naming options should be provided. Providing more than one option results in an InvalidArgsException error.
CfnCertificateAuthority.KeyUsageProperty

Defines one or more purposes for which the key contained in the certificate can be used.
CfnCertificateAuthority.OcspConfigurationProperty

Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status.
CfnCertificateAuthority.OtherNameProperty

Defines a custom ASN.1 X.400 GeneralName using an object identifier (OID) and value. The OID must satisfy the regular expression shown below. For more information, see NIST's definition of Object Identifier (OID) .
CfnCertificateAuthority.RevocationConfigurationProperty

Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions.
CfnCertificateAuthority.SubjectProperty

ASN1 subject for the certificate authority.
CfnCertificateAuthorityActivation

A CloudFormation AWS::ACMPCA::CertificateAuthorityActivation.
CfnCertificateAuthorityActivationProps

Properties for defining a CfnCertificateAuthorityActivation.
CfnCertificateAuthorityProps

Properties for defining a CfnCertificateAuthority.
CfnCertificateProps

Properties for defining a CfnCertificate.
CfnPermission

A CloudFormation AWS::ACMPCA::Permission.
CfnPermissionProps

Properties for defining a CfnPermission.

Interfaces

CfnCertificate.IApiPassthroughProperty

Contains X.509 certificate information to be placed in an issued certificate. An APIPassthrough or APICSRPassthrough template variant must be selected, or else this parameter is ignored.
CfnCertificate.ICustomAttributeProperty

Defines the X.500 relative distinguished name (RDN).
CfnCertificate.ICustomExtensionProperty

Specifies the X.509 extension information for a certificate.
CfnCertificate.IEdiPartyNameProperty

Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280.
CfnCertificate.IExtendedKeyUsageProperty

Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the KeyUsage extension.
CfnCertificate.IExtensionsProperty

Contains X.509 extension information for a certificate.
CfnCertificate.IGeneralNameProperty

Describes an ASN.1 X.400 GeneralName as defined in RFC 5280 . Only one of the following naming options should be provided. Providing more than one option results in an InvalidArgsException error.
CfnCertificate.IKeyUsageProperty

Defines one or more purposes for which the key contained in the certificate can be used.
CfnCertificate.IOtherNameProperty

Defines a custom ASN.1 X.400 GeneralName using an object identifier (OID) and value. The OID must satisfy the regular expression shown below. For more information, see NIST's definition of Object Identifier (OID) .
CfnCertificate.IPolicyInformationProperty

Defines the X.509 CertificatePolicies extension.
CfnCertificate.IPolicyQualifierInfoProperty

Modifies the CertPolicyId of a PolicyInformation object with a qualifier.
CfnCertificate.IQualifierProperty

Defines a PolicyInformation qualifier.
CfnCertificate.ISubjectProperty

Contains information about the certificate subject.
CfnCertificate.IValidityProperty

Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years.
CfnCertificateAuthority.IAccessDescriptionProperty

Provides access information used by the authorityInfoAccess and subjectInfoAccess extensions described in RFC 5280 .
CfnCertificateAuthority.IAccessMethodProperty

Describes the type and format of extension access.
CfnCertificateAuthority.ICrlConfigurationProperty

Contains configuration information for a certificate revocation list (CRL).
CfnCertificateAuthority.ICsrExtensionsProperty

Describes the certificate extensions to be added to the certificate signing request (CSR).
CfnCertificateAuthority.ICustomAttributeProperty

Defines the X.500 relative distinguished name (RDN).
CfnCertificateAuthority.IEdiPartyNameProperty

Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280.
CfnCertificateAuthority.IGeneralNameProperty

Describes an ASN.1 X.400 GeneralName as defined in RFC 5280 . Only one of the following naming options should be provided. Providing more than one option results in an InvalidArgsException error.
CfnCertificateAuthority.IKeyUsageProperty

Defines one or more purposes for which the key contained in the certificate can be used.
CfnCertificateAuthority.IOcspConfigurationProperty

Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status.
CfnCertificateAuthority.IOtherNameProperty

Defines a custom ASN.1 X.400 GeneralName using an object identifier (OID) and value. The OID must satisfy the regular expression shown below. For more information, see NIST's definition of Object Identifier (OID) .
CfnCertificateAuthority.IRevocationConfigurationProperty

Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions.
CfnCertificateAuthority.ISubjectProperty

ASN1 subject for the certificate authority.
ICertificateAuthority

Interface which all CertificateAuthority based class must implement.
ICfnCertificateAuthorityActivationProps

Properties for defining a CfnCertificateAuthorityActivation.
ICfnCertificateAuthorityProps

Properties for defining a CfnCertificateAuthority.
ICfnCertificateProps

Properties for defining a CfnCertificate.
ICfnPermissionProps

Properties for defining a CfnPermission.