software.amazon.awscdk.services.appmesh

Interface TlsClientPolicy

All Known Implementing Classes:

TlsClientPolicy.Jsii$Proxy

@Generated(value="jsii-pacmak/1.74.0 (build 6d08790)",
           date="2023-03-28T21:34:27.900Z")
public interface TlsClientPolicy

Represents the properties needed to define client policy.

Example:

 Mesh mesh;
 Service service;
 VirtualNode node = VirtualNode.Builder.create(this, "node")
         .mesh(mesh)
         .serviceDiscovery(ServiceDiscovery.cloudMap(service))
         .listeners(List.of(VirtualNodeListener.http(HttpVirtualNodeListenerOptions.builder()
                 .port(8080)
                 .healthCheck(HealthCheck.http(HttpHealthCheckOptions.builder()
                         .healthyThreshold(3)
                         .interval(Duration.seconds(5))
                         .path("/ping")
                         .timeout(Duration.seconds(2))
                         .unhealthyThreshold(2)
                         .build()))
                 .timeout(HttpTimeout.builder()
                         .idle(Duration.seconds(5))
                         .build())
                 .build())))
         .backendDefaults(BackendDefaults.builder()
                 .tlsClientPolicy(TlsClientPolicy.builder()
                         .validation(TlsValidation.builder()
                                 .trust(TlsValidationTrust.file("/keys/local_cert_chain.pem"))
                                 .build())
                         .build())
                 .build())
         .accessLog(AccessLog.fromFilePath("/dev/stdout"))
         .build();
 Tags.of(node).add("Environment", "Dev");
 

Nested Class Summary

Nested Classes

Modifier and Type	Interface and Description
static class	TlsClientPolicy.Builder A builder for TlsClientPolicy
static class	TlsClientPolicy.Jsii$Proxy An implementation for TlsClientPolicy

Method Summary

Modifier and Type	Method and Description
static TlsClientPolicy.Builder	builder()
default java.lang.Boolean	getEnforce() Whether the policy is enforced.
default MutualTlsCertificate	getMutualTlsCertificate() Represents a client TLS certificate.
default java.util.List<java.lang.Number>	getPorts() TLS is enforced on the ports specified here.
TlsValidation	getValidation() Represents the object for TLS validation context.

Method Detail

getValidation

TlsValidation getValidation()

Represents the object for TLS validation context.

getEnforce

default java.lang.Boolean getEnforce()

Whether the policy is enforced.

Default: true

getMutualTlsCertificate

default MutualTlsCertificate getMutualTlsCertificate()

Represents a client TLS certificate.

The certificate will be sent only if the server requests it, enabling mutual TLS.

Default: - client TLS certificate is not provided

getPorts

default java.util.List<java.lang.Number> getPorts()

TLS is enforced on the ports specified here.

If no ports are specified, TLS will be enforced on all the ports.

Default: - all ports

builder

static TlsClientPolicy.Builder builder()

Returns:

a TlsClientPolicy.Builder of TlsClientPolicy