Package software.amazon.awscdk.services.acmpca
package software.amazon.awscdk.services.acmpca
AWS::ACMPCA Construct Library
This module is part of the AWS Cloud Development Kit project.
import software.amazon.awscdk.services.acmpca.*;
Certificate Authority
This package contains a CertificateAuthority
class.
At the moment, you cannot create new Authorities using it,
but you can import existing ones using the fromCertificateAuthorityArn
static method:
ICertificateAuthority certificateAuthority = CertificateAuthority.fromCertificateAuthorityArn(this, "CA", "arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/023077d8-2bfa-4eb0-8f22-05c96deade77");
Low-level Cfn*
classes
You can always use the low-level classes
(starting with Cfn*
) to create resources like the Certificate Authority:
CfnCertificateAuthority cfnCertificateAuthority = CfnCertificateAuthority.Builder.create(this, "CA") .type("ROOT") .keyAlgorithm("RSA_2048") .signingAlgorithm("SHA256WITHRSA") .subject(SubjectProperty.builder() .country("US") .organization("string") .organizationalUnit("string") .distinguishedNameQualifier("string") .state("string") .commonName("123") .serialNumber("string") .locality("string") .title("string") .surname("string") .givenName("string") .initials("DG") .pseudonym("string") .generationQualifier("DBG") .build()) .build();
If you need to pass the higher-level ICertificateAuthority
somewhere,
you can get it from the lower-level CfnCertificateAuthority
using the same fromCertificateAuthorityArn
method:
CfnCertificateAuthority cfnCertificateAuthority; ICertificateAuthority certificateAuthority = CertificateAuthority.fromCertificateAuthorityArn(this, "CertificateAuthority", cfnCertificateAuthority.getAttrArn());
-
ClassDescriptionDefines a Certificate for ACMPCA.The
AWS::ACMPCA::Certificate
resource is used to issue a certificate using your private certificate authority.Contains X.509 certificate information to be placed in an issued certificate.A builder forCfnCertificate.ApiPassthroughProperty
An implementation forCfnCertificate.ApiPassthroughProperty
A fluent builder forCfnCertificate
.Defines the X.500 relative distinguished name (RDN).A builder forCfnCertificate.CustomAttributeProperty
An implementation forCfnCertificate.CustomAttributeProperty
Specifies the X.509 extension information for a certificate.A builder forCfnCertificate.CustomExtensionProperty
An implementation forCfnCertificate.CustomExtensionProperty
Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280.A builder forCfnCertificate.EdiPartyNameProperty
An implementation forCfnCertificate.EdiPartyNameProperty
Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in theKeyUsage
extension.A builder forCfnCertificate.ExtendedKeyUsageProperty
An implementation forCfnCertificate.ExtendedKeyUsageProperty
Contains X.509 extension information for a certificate.A builder forCfnCertificate.ExtensionsProperty
An implementation forCfnCertificate.ExtensionsProperty
Describes an ASN.1 X.400GeneralName
as defined in RFC 5280 .A builder forCfnCertificate.GeneralNameProperty
An implementation forCfnCertificate.GeneralNameProperty
Defines one or more purposes for which the key contained in the certificate can be used.A builder forCfnCertificate.KeyUsageProperty
An implementation forCfnCertificate.KeyUsageProperty
Defines a custom ASN.1 X.400GeneralName
using an object identifier (OID) and value.A builder forCfnCertificate.OtherNameProperty
An implementation forCfnCertificate.OtherNameProperty
Defines the X.509CertificatePolicies
extension.A builder forCfnCertificate.PolicyInformationProperty
An implementation forCfnCertificate.PolicyInformationProperty
Modifies theCertPolicyId
of aPolicyInformation
object with a qualifier.A builder forCfnCertificate.PolicyQualifierInfoProperty
An implementation forCfnCertificate.PolicyQualifierInfoProperty
Defines aPolicyInformation
qualifier.A builder forCfnCertificate.QualifierProperty
An implementation forCfnCertificate.QualifierProperty
Contains information about the certificate subject.A builder forCfnCertificate.SubjectProperty
An implementation forCfnCertificate.SubjectProperty
Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years.A builder forCfnCertificate.ValidityProperty
An implementation forCfnCertificate.ValidityProperty
Use theAWS::ACMPCA::CertificateAuthority
resource to create a private CA.Provides access information used by theauthorityInfoAccess
andsubjectInfoAccess
extensions described in RFC 5280 .A builder forCfnCertificateAuthority.AccessDescriptionProperty
An implementation forCfnCertificateAuthority.AccessDescriptionProperty
Describes the type and format of extension access.A builder forCfnCertificateAuthority.AccessMethodProperty
An implementation forCfnCertificateAuthority.AccessMethodProperty
A fluent builder forCfnCertificateAuthority
.Contains configuration information for a certificate revocation list (CRL).A builder forCfnCertificateAuthority.CrlConfigurationProperty
An implementation forCfnCertificateAuthority.CrlConfigurationProperty
Contains configuration information for the default behavior of the CRL Distribution Point (CDP) extension in certificates issued by your CA.An implementation forCfnCertificateAuthority.CrlDistributionPointExtensionConfigurationProperty
Describes the certificate extensions to be added to the certificate signing request (CSR).A builder forCfnCertificateAuthority.CsrExtensionsProperty
An implementation forCfnCertificateAuthority.CsrExtensionsProperty
Defines the X.500 relative distinguished name (RDN).A builder forCfnCertificateAuthority.CustomAttributeProperty
An implementation forCfnCertificateAuthority.CustomAttributeProperty
Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280.A builder forCfnCertificateAuthority.EdiPartyNameProperty
An implementation forCfnCertificateAuthority.EdiPartyNameProperty
Describes an ASN.1 X.400GeneralName
as defined in RFC 5280 .A builder forCfnCertificateAuthority.GeneralNameProperty
An implementation forCfnCertificateAuthority.GeneralNameProperty
Defines one or more purposes for which the key contained in the certificate can be used.A builder forCfnCertificateAuthority.KeyUsageProperty
An implementation forCfnCertificateAuthority.KeyUsageProperty
Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status.A builder forCfnCertificateAuthority.OcspConfigurationProperty
An implementation forCfnCertificateAuthority.OcspConfigurationProperty
Defines a custom ASN.1 X.400GeneralName
using an object identifier (OID) and value.A builder forCfnCertificateAuthority.OtherNameProperty
An implementation forCfnCertificateAuthority.OtherNameProperty
Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions.A builder forCfnCertificateAuthority.RevocationConfigurationProperty
An implementation forCfnCertificateAuthority.RevocationConfigurationProperty
ASN1 subject for the certificate authority.A builder forCfnCertificateAuthority.SubjectProperty
An implementation forCfnCertificateAuthority.SubjectProperty
TheAWS::ACMPCA::CertificateAuthorityActivation
resource creates and installs a CA certificate on a CA.A fluent builder forCfnCertificateAuthorityActivation
.Properties for defining aCfnCertificateAuthorityActivation
.A builder forCfnCertificateAuthorityActivationProps
An implementation forCfnCertificateAuthorityActivationProps
Properties for defining aCfnCertificateAuthority
.A builder forCfnCertificateAuthorityProps
An implementation forCfnCertificateAuthorityProps
Properties for defining aCfnCertificate
.A builder forCfnCertificateProps
An implementation forCfnCertificateProps
Grants permissions to the AWS Certificate Manager ( ACM ) service principal (acm.amazonaws.com
) to perform IssueCertificate , GetCertificate , and ListPermissions actions on a CA.A fluent builder forCfnPermission
.Properties for defining aCfnPermission
.A builder forCfnPermissionProps
An implementation forCfnPermissionProps
Interface which all CertificateAuthority based class must implement.Internal default implementation forICertificateAuthority
.A proxy class which represents a concrete javascript instance of this type.