Interface | Description |
---|---|
CfnCertificate.ApiPassthroughProperty |
Contains X.509 certificate information to be placed in an issued certificate.
|
CfnCertificate.CustomAttributeProperty |
Defines the X.500 relative distinguished name (RDN).
|
CfnCertificate.CustomExtensionProperty |
Specifies the X.509 extension information for a certificate.
|
CfnCertificate.EdiPartyNameProperty |
Describes an Electronic Data Interchange (EDI) entity as described in as defined in [Subject Alternative Name](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280) in RFC 5280.
|
CfnCertificate.ExtendedKeyUsageProperty |
Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the `KeyUsage` extension.
|
CfnCertificate.ExtensionsProperty |
Contains X.509 extension information for a certificate.
|
CfnCertificate.GeneralNameProperty |
Describes an ASN.1 X.400 `GeneralName` as defined in [RFC 5280](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280) .
|
CfnCertificate.KeyUsageProperty |
Defines one or more purposes for which the key contained in the certificate can be used.
|
CfnCertificate.OtherNameProperty |
Defines a custom ASN.1 X.400 `GeneralName` using an object identifier (OID) and value.
|
CfnCertificate.PolicyInformationProperty |
Defines the X.509 `CertificatePolicies` extension.
|
CfnCertificate.PolicyQualifierInfoProperty |
Modifies the `CertPolicyId` of a `PolicyInformation` object with a qualifier.
|
CfnCertificate.QualifierProperty |
Defines a `PolicyInformation` qualifier.
|
CfnCertificate.SubjectProperty |
Contains information about the certificate subject.
|
CfnCertificate.ValidityProperty |
Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years.
|
CfnCertificateAuthority.AccessDescriptionProperty |
Provides access information used by the `authorityInfoAccess` and `subjectInfoAccess` extensions described in [RFC 5280](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280) .
|
CfnCertificateAuthority.AccessMethodProperty |
Describes the type and format of extension access.
|
CfnCertificateAuthority.CrlConfigurationProperty |
Contains configuration information for a certificate revocation list (CRL).
|
CfnCertificateAuthority.CsrExtensionsProperty |
Describes the certificate extensions to be added to the certificate signing request (CSR).
|
CfnCertificateAuthority.CustomAttributeProperty |
Defines the X.500 relative distinguished name (RDN).
|
CfnCertificateAuthority.EdiPartyNameProperty |
Describes an Electronic Data Interchange (EDI) entity as described in as defined in [Subject Alternative Name](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280) in RFC 5280.
|
CfnCertificateAuthority.GeneralNameProperty |
Describes an ASN.1 X.400 `GeneralName` as defined in [RFC 5280](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280) .
|
CfnCertificateAuthority.KeyUsageProperty |
Defines one or more purposes for which the key contained in the certificate can be used.
|
CfnCertificateAuthority.OcspConfigurationProperty |
Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status.
|
CfnCertificateAuthority.OtherNameProperty |
Defines a custom ASN.1 X.400 `GeneralName` using an object identifier (OID) and value.
|
CfnCertificateAuthority.RevocationConfigurationProperty |
Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions.
|
CfnCertificateAuthority.SubjectProperty |
ASN1 subject for the certificate authority.
|
CfnCertificateAuthorityActivationProps |
Properties for defining a `CfnCertificateAuthorityActivation`.
|
CfnCertificateAuthorityProps |
Properties for defining a `CfnCertificateAuthority`.
|
CfnCertificateProps |
Properties for defining a `CfnCertificate`.
|
CfnPermissionProps |
Properties for defining a `CfnPermission`.
|
ICertificateAuthority |
Interface which all CertificateAuthority based class must implement.
|
ICertificateAuthority.Jsii$Default |
Internal default implementation for
ICertificateAuthority . |
---
This module is part of the AWS Cloud Development Kit project.
import software.amazon.awscdk.services.acmpca.*;
This package contains a CertificateAuthority
class.
At the moment, you cannot create new Authorities using it,
but you can import existing ones using the fromCertificateAuthorityArn
static method:
ICertificateAuthority certificateAuthority = CertificateAuthority.fromCertificateAuthorityArn(this, "CA", "arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/023077d8-2bfa-4eb0-8f22-05c96deade77");
Cfn*
classes
You can always use the low-level classes
(starting with Cfn*
) to create resources like the Certificate Authority:
CfnCertificateAuthority cfnCertificateAuthority = CfnCertificateAuthority.Builder.create(this, "CA") .type("ROOT") .keyAlgorithm("RSA_2048") .signingAlgorithm("SHA256WITHRSA") .subject(SubjectProperty.builder() .country("US") .organization("string") .organizationalUnit("string") .distinguishedNameQualifier("string") .state("string") .commonName("123") .serialNumber("string") .locality("string") .title("string") .surname("string") .givenName("string") .initials("DG") .pseudonym("string") .generationQualifier("DBG") .build()) .build();
If you need to pass the higher-level ICertificateAuthority
somewhere,
you can get it from the lower-level CfnCertificateAuthority
using the same fromCertificateAuthorityArn
method:
CfnCertificateAuthority cfnCertificateAuthority; ICertificateAuthority certificateAuthority = CertificateAuthority.fromCertificateAuthorityArn(this, "CertificateAuthority", cfnCertificateAuthority.getAttrArn());