Package software.amazon.awscdk.services.acmpca

Class CfnCertificateAuthority.Builder

java.lang.Object

software.amazon.awscdk.services.acmpca.CfnCertificateAuthority.Builder

All Implemented Interfaces:

software.amazon.jsii.Builder<CfnCertificateAuthority>

Enclosing class:

CfnCertificateAuthority

@Stability(Stable)
public static final class CfnCertificateAuthority.Builder
extends Object
implements software.amazon.jsii.Builder<CfnCertificateAuthority>

A fluent builder for CfnCertificateAuthority.

Method Summary

Modifier and Type	Method	Description
CfnCertificateAuthority	build()
static CfnCertificateAuthority.Builder	create(software.constructs.Construct scope, String id)
CfnCertificateAuthority.Builder	csrExtensions(IResolvable csrExtensions)	Specifies information to be added to the extension section of the certificate signing request (CSR).
CfnCertificateAuthority.Builder	csrExtensions(CfnCertificateAuthority.CsrExtensionsProperty csrExtensions)	Specifies information to be added to the extension section of the certificate signing request (CSR).
CfnCertificateAuthority.Builder	keyAlgorithm(String keyAlgorithm)	Type of the public key algorithm and size, in bits, of the key pair that your CA creates when it issues a certificate.
CfnCertificateAuthority.Builder	keyStorageSecurityStandard(String keyStorageSecurityStandard)	Specifies a cryptographic key management compliance standard used for handling CA keys.
CfnCertificateAuthority.Builder	revocationConfiguration(IResolvable revocationConfiguration)	Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.
CfnCertificateAuthority.Builder	revocationConfiguration(CfnCertificateAuthority.RevocationConfigurationProperty revocationConfiguration)	Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.
CfnCertificateAuthority.Builder	signingAlgorithm(String signingAlgorithm)	Name of the algorithm your private CA uses to sign certificate requests.
CfnCertificateAuthority.Builder	subject(IResolvable subject)	Structure that contains X.500 distinguished name information for your private CA.
CfnCertificateAuthority.Builder	subject(CfnCertificateAuthority.SubjectProperty subject)	Structure that contains X.500 distinguished name information for your private CA.
CfnCertificateAuthority.Builder	tags(List<? extends CfnTag> tags)	Key-value pairs that will be attached to the new private CA.
CfnCertificateAuthority.Builder	type(String type)	Type of your private CA.
CfnCertificateAuthority.Builder	usageMode(String usageMode)	Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Details

create

@Stability(Stable)
public static CfnCertificateAuthority.Builder create(software.constructs.Construct scope,
 String id)

Parameters:

scope - Scope in which this resource is defined. This parameter is required.

id - Construct identifier for this resource (unique in its scope). This parameter is required.

Returns:

a new instance of CfnCertificateAuthority.Builder.

keyAlgorithm

@Stability(Stable)
public CfnCertificateAuthority.Builder keyAlgorithm(String keyAlgorithm)

Type of the public key algorithm and size, in bits, of the key pair that your CA creates when it issues a certificate.

When you create a subordinate CA, you must use a key algorithm supported by the parent CA.

Parameters:

keyAlgorithm - Type of the public key algorithm and size, in bits, of the key pair that your CA creates when it issues a certificate. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-keyalgorithm

signingAlgorithm

@Stability(Stable)
public CfnCertificateAuthority.Builder signingAlgorithm(String signingAlgorithm)

Name of the algorithm your private CA uses to sign certificate requests.

This parameter should not be confused with the SigningAlgorithm parameter used to sign certificates when they are issued.

Parameters:

signingAlgorithm - Name of the algorithm your private CA uses to sign certificate requests. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-signingalgorithm

subject

@Stability(Stable)
public CfnCertificateAuthority.Builder subject(IResolvable subject)

Structure that contains X.500 distinguished name information for your private CA.

Parameters:

subject - Structure that contains X.500 distinguished name information for your private CA. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-subject

subject

@Stability(Stable)
public CfnCertificateAuthority.Builder subject(CfnCertificateAuthority.SubjectProperty subject)

Structure that contains X.500 distinguished name information for your private CA.

Parameters:

subject - Structure that contains X.500 distinguished name information for your private CA. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-subject

type

@Stability(Stable)
public CfnCertificateAuthority.Builder type(String type)

Type of your private CA.

Parameters:

type - Type of your private CA. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-type

csrExtensions

@Stability(Stable)
public CfnCertificateAuthority.Builder csrExtensions(IResolvable csrExtensions)

Specifies information to be added to the extension section of the certificate signing request (CSR).

Parameters:

csrExtensions - Specifies information to be added to the extension section of the certificate signing request (CSR). This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-csrextensions

csrExtensions

@Stability(Stable)
public CfnCertificateAuthority.Builder csrExtensions(CfnCertificateAuthority.CsrExtensionsProperty csrExtensions)

Specifies information to be added to the extension section of the certificate signing request (CSR).

Parameters:

csrExtensions - Specifies information to be added to the extension section of the certificate signing request (CSR). This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-csrextensions

keyStorageSecurityStandard

@Stability(Stable)
public CfnCertificateAuthority.Builder keyStorageSecurityStandard(String keyStorageSecurityStandard)

Specifies a cryptographic key management compliance standard used for handling CA keys.

Default: FIPS_140_2_LEVEL_3_OR_HIGHER

Some AWS Regions do not support the default. When creating a CA in these Regions, you must provide FIPS_140_2_LEVEL_2_OR_HIGHER as the argument for KeyStorageSecurityStandard . Failure to do this results in an InvalidArgsException with the message, "A certificate authority cannot be created in this region with the specified security standard."

For information about security standard support in various Regions, see Storage and security compliance of AWS Private CA private keys .

Parameters:

keyStorageSecurityStandard - Specifies a cryptographic key management compliance standard used for handling CA keys. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-keystoragesecuritystandard

revocationConfiguration

@Stability(Stable)
public CfnCertificateAuthority.Builder revocationConfiguration(IResolvable revocationConfiguration)

Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.

Parameters:

revocationConfiguration - Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-revocationconfiguration

revocationConfiguration

@Stability(Stable)
public CfnCertificateAuthority.Builder revocationConfiguration(CfnCertificateAuthority.RevocationConfigurationProperty revocationConfiguration)

Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.

Parameters:

revocationConfiguration - Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-revocationconfiguration

tags

@Stability(Stable)
public CfnCertificateAuthority.Builder tags(List<? extends CfnTag> tags)

Key-value pairs that will be attached to the new private CA.

You can associate up to 50 tags with a private CA. For information using tags with IAM to manage permissions, see Controlling Access Using IAM Tags .

Parameters:

tags - Key-value pairs that will be attached to the new private CA. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-tags

usageMode

@Stability(Stable)
public CfnCertificateAuthority.Builder usageMode(String usageMode)

Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly.

Short-lived certificate validity is limited to seven days.

The default value is GENERAL_PURPOSE.

Parameters:

usageMode - Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. This parameter is required.

Returns:

this

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificateauthority.html#cfn-acmpca-certificateauthority-usagemode

build

@Stability(Stable)
public CfnCertificateAuthority build()

Specified by:

build in interface software.amazon.jsii.Builder<CfnCertificateAuthority>

Returns:

a newly built instance of CfnCertificateAuthority.