Class CertificateAuthority
A [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] represents an individual Certificate Authority. A [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] can be used to create [Certificates][google.cloud.security.privateca.v1beta1.Certificate].
Inheritance
Inherited Members
Namespace: Google.Cloud.Security.PrivateCA.V1Beta1
Assembly: Google.Cloud.Security.PrivateCA.V1Beta1.dll
Syntax
public sealed class CertificateAuthority : IMessage<CertificateAuthority>, IEquatable<CertificateAuthority>, IDeepCloneable<CertificateAuthority>, IBufferMessage, IMessageConstructors
CertificateAuthority()
Declaration
public CertificateAuthority()CertificateAuthority(CertificateAuthority)
Declaration
public CertificateAuthority(CertificateAuthority other)Parameters
| Type | Name | Description |
|---|---|---|
| CertificateAuthority | other |
Properties
AccessUrls
Output only. URLs for accessing content published by this CA, such as the CA certificate and CRLs.
Declaration
public CertificateAuthority.Types.AccessUrls AccessUrls { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthority.Types.AccessUrls |
CaCertificateDescriptions
Output only. A structured description of this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s CA certificate and its issuers. Ordered as self-to-root.
Declaration
public RepeatedField<CertificateDescription> CaCertificateDescriptions { get; }Property Value
| Type | Description |
|---|---|
| RepeatedField<CertificateDescription> |
CertificateAuthorityName
CertificateAuthorityName-typed view over the Name resource name property.
Declaration
public CertificateAuthorityName CertificateAuthorityName { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthorityName |
CertificatePolicy
Optional. The [CertificateAuthorityPolicy][google.cloud.security.privateca.v1beta1.CertificateAuthority.CertificateAuthorityPolicy] to enforce when issuing [Certificates][google.cloud.security.privateca.v1beta1.Certificate] from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
Declaration
public CertificateAuthority.Types.CertificateAuthorityPolicy CertificatePolicy { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthority.Types.CertificateAuthorityPolicy |
Config
Required. Immutable. The config used to create a self-signed X.509 certificate or CSR.
Declaration
public CertificateConfig Config { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateConfig |
CreateTime
Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] was created.
Declaration
public Timestamp CreateTime { get; set; }Property Value
| Type | Description |
|---|---|
| Timestamp |
DeleteTime
Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will be deleted, if scheduled for deletion.
Declaration
public Timestamp DeleteTime { get; set; }Property Value
| Type | Description |
|---|---|
| Timestamp |
GcsBucket
Immutable. The name of a Cloud Storage bucket where this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] will
publish content, such as the CA certificate and CRLs. This must be a bucket
name, without any prefixes (such as gs://) or suffixes (such as
.googleapis.com). For example, to use a bucket named my-bucket, you
would simply specify my-bucket. If not specified, a managed bucket will
be created.
Declaration
public string GcsBucket { get; set; }Property Value
| Type | Description |
|---|---|
| System.String |
IssuingOptions
Optional. The [IssuingOptions][google.cloud.security.privateca.v1beta1.CertificateAuthority.IssuingOptions] to follow when issuing [Certificates][google.cloud.security.privateca.v1beta1.Certificate] from this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
Declaration
public CertificateAuthority.Types.IssuingOptions IssuingOptions { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthority.Types.IssuingOptions |
KeySpec
Required. Immutable. Used when issuing certificates for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]. If this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] is a self-signed CertificateAuthority, this key is also used to sign the self-signed CA certificate. Otherwise, it is used to sign a CSR.
Declaration
public CertificateAuthority.Types.KeyVersionSpec KeySpec { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthority.Types.KeyVersionSpec |
Labels
Optional. Labels with user-defined metadata.
Declaration
public MapField<string, string> Labels { get; }Property Value
| Type | Description |
|---|---|
| MapField<System.String, System.String> |
Lifetime
Required. The desired lifetime of the CA certificate. Used to create the "not_before_time" and "not_after_time" fields inside an X.509 certificate.
Declaration
public Duration Lifetime { get; set; }Property Value
| Type | Description |
|---|---|
| Duration |
Name
Output only. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] in the
format projects/*/locations/*/certificateAuthorities/*.
Declaration
public string Name { get; set; }Property Value
| Type | Description |
|---|---|
| System.String |
PemCaCertificates
Output only. This [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s certificate chain, including the current [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s certificate. Ordered such that the root issuer is the final element (consistent with RFC 5246). For a self-signed CA, this will only list the current [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority]'s certificate.
Declaration
public RepeatedField<string> PemCaCertificates { get; }Property Value
| Type | Description |
|---|---|
| RepeatedField<System.String> |
State
Output only. The [State][google.cloud.security.privateca.v1beta1.CertificateAuthority.State] for this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
Declaration
public CertificateAuthority.Types.State State { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthority.Types.State |
SubordinateConfig
Optional. If this is a subordinate [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority], this field will be set with the subordinate configuration, which describes its issuers. This may be updated, but this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] must continue to validate.
Declaration
public SubordinateConfig SubordinateConfig { get; set; }Property Value
| Type | Description |
|---|---|
| SubordinateConfig |
Tier
Required. Immutable. The [Tier][google.cloud.security.privateca.v1beta1.CertificateAuthority.Tier] of this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
Declaration
public CertificateAuthority.Types.Tier Tier { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthority.Types.Tier |
Type
Required. Immutable. The [Type][google.cloud.security.privateca.v1beta1.CertificateAuthority.Type] of this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority].
Declaration
public CertificateAuthority.Types.Type Type { get; set; }Property Value
| Type | Description |
|---|---|
| CertificateAuthority.Types.Type |
UpdateTime
Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1beta1.CertificateAuthority] was updated.
Declaration
public Timestamp UpdateTime { get; set; }Property Value
| Type | Description |
|---|---|
| Timestamp |