Namespace Amazon.CDK.AWS.ACMPCA
AWS::ACMPCA Construct Library
---AWS CDK v1 has reached End-of-Support on 2023-06-01.
This package is no longer being updated, and users should migrate to AWS CDK v2.
For more information on how to migrate, see the Migrating to AWS CDK v2 guide.
This module is part of the AWS Cloud Development Kit project.
using Amazon.CDK.AWS.ACMPCA;
Certificate Authority
This package contains a CertificateAuthority
class.
At the moment, you cannot create new Authorities using it,
but you can import existing ones using the fromCertificateAuthorityArn
static method:
var certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CA", "arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/023077d8-2bfa-4eb0-8f22-05c96deade77");
Low-level Cfn*
classes
You can always use the low-level classes
(starting with Cfn*
) to create resources like the Certificate Authority:
var cfnCertificateAuthority = new CfnCertificateAuthority(this, "CA", new CfnCertificateAuthorityProps {
Type = "ROOT",
KeyAlgorithm = "RSA_2048",
SigningAlgorithm = "SHA256WITHRSA",
Subject = new SubjectProperty {
Country = "US",
Organization = "string",
OrganizationalUnit = "string",
DistinguishedNameQualifier = "string",
State = "string",
CommonName = "123",
SerialNumber = "string",
Locality = "string",
Title = "string",
Surname = "string",
GivenName = "string",
Initials = "DG",
Pseudonym = "string",
GenerationQualifier = "DBG"
}
});
If you need to pass the higher-level ICertificateAuthority
somewhere,
you can get it from the lower-level CfnCertificateAuthority
using the same fromCertificateAuthorityArn
method:
CfnCertificateAuthority cfnCertificateAuthority;
var certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CertificateAuthority", cfnCertificateAuthority.AttrArn);
Classes
CertificateAuthority | Defines a Certificate for ACMPCA. |
CfnCertificate | A CloudFormation |
CfnCertificate.ApiPassthroughProperty | Contains X.509 certificate information to be placed in an issued certificate. An |
CfnCertificate.CustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificate.CustomExtensionProperty | Specifies the X.509 extension information for a certificate. |
CfnCertificate.EdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificate.ExtendedKeyUsageProperty | Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the |
CfnCertificate.ExtensionsProperty | Contains X.509 extension information for a certificate. |
CfnCertificate.GeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificate.KeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificate.OtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificate.PolicyInformationProperty | Defines the X.509 |
CfnCertificate.PolicyQualifierInfoProperty | Modifies the |
CfnCertificate.QualifierProperty | Defines a |
CfnCertificate.SubjectProperty | Contains information about the certificate subject. |
CfnCertificate.ValidityProperty | Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. |
CfnCertificateAuthority | A CloudFormation |
CfnCertificateAuthority.AccessDescriptionProperty | Provides access information used by the |
CfnCertificateAuthority.AccessMethodProperty | Describes the type and format of extension access. |
CfnCertificateAuthority.CrlConfigurationProperty | Contains configuration information for a certificate revocation list (CRL). |
CfnCertificateAuthority.CsrExtensionsProperty | Describes the certificate extensions to be added to the certificate signing request (CSR). |
CfnCertificateAuthority.CustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificateAuthority.EdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificateAuthority.GeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificateAuthority.KeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificateAuthority.OcspConfigurationProperty | Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status. |
CfnCertificateAuthority.OtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificateAuthority.RevocationConfigurationProperty | Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate in the AWS Private CA API Reference and Setting up a certificate revocation method in the AWS Private CA User Guide . |
CfnCertificateAuthority.SubjectProperty | ASN1 subject for the certificate authority. |
CfnCertificateAuthorityActivation | A CloudFormation |
CfnCertificateAuthorityActivationProps | Properties for defining a |
CfnCertificateAuthorityProps | Properties for defining a |
CfnCertificateProps | Properties for defining a |
CfnPermission | A CloudFormation |
CfnPermissionProps | Properties for defining a |
Interfaces
CfnCertificate.IApiPassthroughProperty | Contains X.509 certificate information to be placed in an issued certificate. An |
CfnCertificate.ICustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificate.ICustomExtensionProperty | Specifies the X.509 extension information for a certificate. |
CfnCertificate.IEdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificate.IExtendedKeyUsageProperty | Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the |
CfnCertificate.IExtensionsProperty | Contains X.509 extension information for a certificate. |
CfnCertificate.IGeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificate.IKeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificate.IOtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificate.IPolicyInformationProperty | Defines the X.509 |
CfnCertificate.IPolicyQualifierInfoProperty | Modifies the |
CfnCertificate.IQualifierProperty | Defines a |
CfnCertificate.ISubjectProperty | Contains information about the certificate subject. |
CfnCertificate.IValidityProperty | Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. |
CfnCertificateAuthority.IAccessDescriptionProperty | Provides access information used by the |
CfnCertificateAuthority.IAccessMethodProperty | Describes the type and format of extension access. |
CfnCertificateAuthority.ICrlConfigurationProperty | Contains configuration information for a certificate revocation list (CRL). |
CfnCertificateAuthority.ICsrExtensionsProperty | Describes the certificate extensions to be added to the certificate signing request (CSR). |
CfnCertificateAuthority.ICustomAttributeProperty | Defines the X.500 relative distinguished name (RDN). |
CfnCertificateAuthority.IEdiPartyNameProperty | Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
CfnCertificateAuthority.IGeneralNameProperty | Describes an ASN.1 X.400 |
CfnCertificateAuthority.IKeyUsageProperty | Defines one or more purposes for which the key contained in the certificate can be used. |
CfnCertificateAuthority.IOcspConfigurationProperty | Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status. |
CfnCertificateAuthority.IOtherNameProperty | Defines a custom ASN.1 X.400 |
CfnCertificateAuthority.IRevocationConfigurationProperty | Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate in the AWS Private CA API Reference and Setting up a certificate revocation method in the AWS Private CA User Guide . |
CfnCertificateAuthority.ISubjectProperty | ASN1 subject for the certificate authority. |
ICertificateAuthority | Interface which all CertificateAuthority based class must implement. |
ICfnCertificateAuthorityActivationProps | Properties for defining a |
ICfnCertificateAuthorityProps | Properties for defining a |
ICfnCertificateProps | Properties for defining a |
ICfnPermissionProps | Properties for defining a |