Class: Google::Apis::ComputeV1::SecuritySettings

Inherits:

Object

Object
Google::Apis::ComputeV1::SecuritySettings

show all

Includes:: Google::Apis::Core::Hashable, Google::Apis::Core::JsonObjectSupport

Defined in:: lib/google/apis/compute_v1/classes.rb,
lib/google/apis/compute_v1/representations.rb,
lib/google/apis/compute_v1/representations.rb

Overview

The authentication and authorization settings for a BackendService.

Instance Attribute Summary collapse

#client_tls_policy ⇒ String
Optional.
#subject_alt_names ⇒ Array<String>
Optional.

Instance Method Summary collapse

#initialize(**args) ⇒ SecuritySettings constructor
A new instance of SecuritySettings.
#update!(**args) ⇒ Object
Update properties of this object.

Constructor Details

#initialize(**args) ⇒ `SecuritySettings`

Returns a new instance of SecuritySettings.



34077
34078
34079

# File 'lib/google/apis/compute_v1/classes.rb', line 34077

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#client_tls_policy ⇒ `String`

Optional. A URL referring to a networksecurity.ClientTlsPolicy resource that describes how clients should authenticate with this service's backends. clientTlsPolicy only applies to a global BackendService with the loadBalancingScheme set to INTERNAL_SELF_MANAGED. If left blank, communications are not encrypted. Note: This field currently has no impact. Corresponds to the JSON property clientTlsPolicy

Returns:

(String)



34059
34060
34061

# File 'lib/google/apis/compute_v1/classes.rb', line 34059

def client_tls_policy
  @client_tls_policy
end

#subject_alt_names ⇒ `Array<String>`

Optional. A list of Subject Alternative Names (SANs) that the client verifies during a mutual TLS handshake with an server/endpoint for this BackendService. When the server presents its X.509 certificate to the client, the client inspects the certificate's subjectAltName field. If the field contains one of the specified values, the communication continues. Otherwise, it fails. This additional check enables the client to verify that the server is authorized to run the requested service. Note that the contents of the server certificate's subjectAltName field are configured by the Public Key Infrastructure which provisions server identities. Only applies to a global BackendService with loadBalancingScheme set to INTERNAL_SELF_MANAGED. Only applies when BackendService has an attached clientTlsPolicy with clientCertificate (mTLS mode). Note: This field currently has no impact. Corresponds to the JSON property subjectAltNames

Returns:

(Array<String>)



34075
34076
34077

# File 'lib/google/apis/compute_v1/classes.rb', line 34075

def subject_alt_names
  @subject_alt_names
end

Instance Method Details

#update!(**args) ⇒ `Object`

Update properties of this object

# File 'lib/google/apis/compute_v1/classes.rb', line 34082

def update!(**args)
  @client_tls_policy = args[:client_tls_policy] if args.key?(:client_tls_policy)
  @subject_alt_names = args[:subject_alt_names] if args.key?(:subject_alt_names)
end