Class CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder
java.lang.Object
software.amazon.awscdk.services.networkfirewall.CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder
- All Implemented Interfaces:
software.amazon.jsii.Builder<CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty>
- Enclosing interface:
CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty
@Stability(Stable)
public static final class CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder
extends Object
implements software.amazon.jsii.Builder<CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty>
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionbuild()
Builds the configured instance.certificateAuthorityArn
(String certificateAuthorityArn) checkCertificateRevocationStatus
(IResolvable checkCertificateRevocationStatus) checkCertificateRevocationStatus
(CfnTLSInspectionConfiguration.CheckCertificateRevocationStatusProperty checkCertificateRevocationStatus) scopes
(IResolvable scopes) serverCertificates
(List<? extends Object> serverCertificates) serverCertificates
(IResolvable serverCertificates)
-
Constructor Details
-
Builder
public Builder()
-
-
Method Details
-
certificateAuthorityArn
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder certificateAuthorityArn(String certificateAuthorityArn) Sets the value ofCfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.getCertificateAuthorityArn()
- Parameters:
certificateAuthorityArn
- The Amazon Resource Name (ARN) of the imported certificate authority (CA) certificate within AWS Certificate Manager (ACM) to use for outbound SSL/TLS inspection. The following limitations apply:- You can use CA certificates that you imported into ACM, but you can't generate CA certificates with ACM.
- You can't use certificates issued by AWS Private Certificate Authority .
For more information about configuring certificates for outbound inspection, see Using SSL/TLS certificates with certificates with TLS inspection configurations in the AWS Network Firewall Developer Guide .
For information about working with certificates in ACM, see Importing certificates in the AWS Certificate Manager User Guide .
- Returns:
this
-
checkCertificateRevocationStatus
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder checkCertificateRevocationStatus(IResolvable checkCertificateRevocationStatus) Sets the value ofCfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.getCheckCertificateRevocationStatus()
- Parameters:
checkCertificateRevocationStatus
- When enabled, Network Firewall checks if the server certificate presented by the server in the SSL/TLS connection has a revoked or unkown status. If the certificate has an unknown or revoked status, you must specify the actions that Network Firewall takes on outbound traffic. To check the certificate revocation status, you must also specify aCertificateAuthorityArn
in ServerCertificateConfiguration .- Returns:
this
-
checkCertificateRevocationStatus
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder checkCertificateRevocationStatus(CfnTLSInspectionConfiguration.CheckCertificateRevocationStatusProperty checkCertificateRevocationStatus) Sets the value ofCfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.getCheckCertificateRevocationStatus()
- Parameters:
checkCertificateRevocationStatus
- When enabled, Network Firewall checks if the server certificate presented by the server in the SSL/TLS connection has a revoked or unkown status. If the certificate has an unknown or revoked status, you must specify the actions that Network Firewall takes on outbound traffic. To check the certificate revocation status, you must also specify aCertificateAuthorityArn
in ServerCertificateConfiguration .- Returns:
this
-
scopes
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder scopes(IResolvable scopes) - Parameters:
scopes
- A list of scopes.- Returns:
this
-
scopes
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder scopes(List<? extends Object> scopes) - Parameters:
scopes
- A list of scopes.- Returns:
this
-
serverCertificates
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder serverCertificates(IResolvable serverCertificates) Sets the value ofCfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.getServerCertificates()
- Parameters:
serverCertificates
- The list of server certificates to use for inbound SSL/TLS inspection.- Returns:
this
-
serverCertificates
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.Builder serverCertificates(List<? extends Object> serverCertificates) Sets the value ofCfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty.getServerCertificates()
- Parameters:
serverCertificates
- The list of server certificates to use for inbound SSL/TLS inspection.- Returns:
this
-
build
@Stability(Stable) public CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty build()Builds the configured instance.- Specified by:
build
in interfacesoftware.amazon.jsii.Builder<CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty>
- Returns:
- a new instance of
CfnTLSInspectionConfiguration.ServerCertificateConfigurationProperty
- Throws:
NullPointerException
- if any required attribute was not provided
-