1. Packages
  2. Google Cloud Native
  3. API Docs
  4. certificatemanager
  5. certificatemanager/v1
  6. TrustConfig

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.certificatemanager/v1.TrustConfig

Explore with Pulumi AI

google-native logo

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

    Creates a new TrustConfig in a given project and location.

    Create TrustConfig Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new TrustConfig(name: string, args: TrustConfigArgs, opts?: CustomResourceOptions);
    @overload
    def TrustConfig(resource_name: str,
                    args: TrustConfigArgs,
                    opts: Optional[ResourceOptions] = None)
    
    @overload
    def TrustConfig(resource_name: str,
                    opts: Optional[ResourceOptions] = None,
                    trust_config_id: Optional[str] = None,
                    description: Optional[str] = None,
                    etag: Optional[str] = None,
                    labels: Optional[Mapping[str, str]] = None,
                    location: Optional[str] = None,
                    name: Optional[str] = None,
                    project: Optional[str] = None,
                    trust_stores: Optional[Sequence[TrustStoreArgs]] = None)
    func NewTrustConfig(ctx *Context, name string, args TrustConfigArgs, opts ...ResourceOption) (*TrustConfig, error)
    public TrustConfig(string name, TrustConfigArgs args, CustomResourceOptions? opts = null)
    public TrustConfig(String name, TrustConfigArgs args)
    public TrustConfig(String name, TrustConfigArgs args, CustomResourceOptions options)
    
    type: google-native:certificatemanager/v1:TrustConfig
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args TrustConfigArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args TrustConfigArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args TrustConfigArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args TrustConfigArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args TrustConfigArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var trustConfigResource = new GoogleNative.CertificateManager.V1.TrustConfig("trustConfigResource", new()
    {
        TrustConfigId = "string",
        Description = "string",
        Etag = "string",
        Labels = 
        {
            { "string", "string" },
        },
        Location = "string",
        Name = "string",
        Project = "string",
        TrustStores = new[]
        {
            new GoogleNative.CertificateManager.V1.Inputs.TrustStoreArgs
            {
                IntermediateCas = new[]
                {
                    new GoogleNative.CertificateManager.V1.Inputs.IntermediateCAArgs
                    {
                        PemCertificate = "string",
                    },
                },
                TrustAnchors = new[]
                {
                    new GoogleNative.CertificateManager.V1.Inputs.TrustAnchorArgs
                    {
                        PemCertificate = "string",
                    },
                },
            },
        },
    });
    
    example, err := certificatemanager.NewTrustConfig(ctx, "trustConfigResource", &certificatemanager.TrustConfigArgs{
    TrustConfigId: pulumi.String("string"),
    Description: pulumi.String("string"),
    Etag: pulumi.String("string"),
    Labels: pulumi.StringMap{
    "string": pulumi.String("string"),
    },
    Location: pulumi.String("string"),
    Name: pulumi.String("string"),
    Project: pulumi.String("string"),
    TrustStores: certificatemanager.TrustStoreArray{
    &certificatemanager.TrustStoreArgs{
    IntermediateCas: certificatemanager.IntermediateCAArray{
    &certificatemanager.IntermediateCAArgs{
    PemCertificate: pulumi.String("string"),
    },
    },
    TrustAnchors: certificatemanager.TrustAnchorArray{
    &certificatemanager.TrustAnchorArgs{
    PemCertificate: pulumi.String("string"),
    },
    },
    },
    },
    })
    
    var trustConfigResource = new TrustConfig("trustConfigResource", TrustConfigArgs.builder()
        .trustConfigId("string")
        .description("string")
        .etag("string")
        .labels(Map.of("string", "string"))
        .location("string")
        .name("string")
        .project("string")
        .trustStores(TrustStoreArgs.builder()
            .intermediateCas(IntermediateCAArgs.builder()
                .pemCertificate("string")
                .build())
            .trustAnchors(TrustAnchorArgs.builder()
                .pemCertificate("string")
                .build())
            .build())
        .build());
    
    trust_config_resource = google_native.certificatemanager.v1.TrustConfig("trustConfigResource",
        trust_config_id="string",
        description="string",
        etag="string",
        labels={
            "string": "string",
        },
        location="string",
        name="string",
        project="string",
        trust_stores=[google_native.certificatemanager.v1.TrustStoreArgs(
            intermediate_cas=[google_native.certificatemanager.v1.IntermediateCAArgs(
                pem_certificate="string",
            )],
            trust_anchors=[google_native.certificatemanager.v1.TrustAnchorArgs(
                pem_certificate="string",
            )],
        )])
    
    const trustConfigResource = new google_native.certificatemanager.v1.TrustConfig("trustConfigResource", {
        trustConfigId: "string",
        description: "string",
        etag: "string",
        labels: {
            string: "string",
        },
        location: "string",
        name: "string",
        project: "string",
        trustStores: [{
            intermediateCas: [{
                pemCertificate: "string",
            }],
            trustAnchors: [{
                pemCertificate: "string",
            }],
        }],
    });
    
    type: google-native:certificatemanager/v1:TrustConfig
    properties:
        description: string
        etag: string
        labels:
            string: string
        location: string
        name: string
        project: string
        trustConfigId: string
        trustStores:
            - intermediateCas:
                - pemCertificate: string
              trustAnchors:
                - pemCertificate: string
    

    TrustConfig Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The TrustConfig resource accepts the following input properties:

    TrustConfigId string
    Required. A user-provided name of the TrustConfig. Must match the regexp [a-z0-9-]{1,63}.
    Description string
    One or more paragraphs of text description of a TrustConfig.
    Etag string
    This checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
    Labels Dictionary<string, string>
    Set of labels associated with a TrustConfig.
    Location string
    Name string
    A user-defined name of the trust config. TrustConfig names must be unique globally and match pattern projects/*/locations/*/trustConfigs/*.
    Project string
    TrustStores List<Pulumi.GoogleNative.CertificateManager.V1.Inputs.TrustStore>
    Set of trust stores to perform validation against. This field is supported when TrustConfig is configured with Load Balancers, currently not supported for SPIFFE certificate validation. Only one TrustStore specified is currently allowed.
    TrustConfigId string
    Required. A user-provided name of the TrustConfig. Must match the regexp [a-z0-9-]{1,63}.
    Description string
    One or more paragraphs of text description of a TrustConfig.
    Etag string
    This checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
    Labels map[string]string
    Set of labels associated with a TrustConfig.
    Location string
    Name string
    A user-defined name of the trust config. TrustConfig names must be unique globally and match pattern projects/*/locations/*/trustConfigs/*.
    Project string
    TrustStores []TrustStoreArgs
    Set of trust stores to perform validation against. This field is supported when TrustConfig is configured with Load Balancers, currently not supported for SPIFFE certificate validation. Only one TrustStore specified is currently allowed.
    trustConfigId String
    Required. A user-provided name of the TrustConfig. Must match the regexp [a-z0-9-]{1,63}.
    description String
    One or more paragraphs of text description of a TrustConfig.
    etag String
    This checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
    labels Map<String,String>
    Set of labels associated with a TrustConfig.
    location String
    name String
    A user-defined name of the trust config. TrustConfig names must be unique globally and match pattern projects/*/locations/*/trustConfigs/*.
    project String
    trustStores List<TrustStore>
    Set of trust stores to perform validation against. This field is supported when TrustConfig is configured with Load Balancers, currently not supported for SPIFFE certificate validation. Only one TrustStore specified is currently allowed.
    trustConfigId string
    Required. A user-provided name of the TrustConfig. Must match the regexp [a-z0-9-]{1,63}.
    description string
    One or more paragraphs of text description of a TrustConfig.
    etag string
    This checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
    labels {[key: string]: string}
    Set of labels associated with a TrustConfig.
    location string
    name string
    A user-defined name of the trust config. TrustConfig names must be unique globally and match pattern projects/*/locations/*/trustConfigs/*.
    project string
    trustStores TrustStore[]
    Set of trust stores to perform validation against. This field is supported when TrustConfig is configured with Load Balancers, currently not supported for SPIFFE certificate validation. Only one TrustStore specified is currently allowed.
    trust_config_id str
    Required. A user-provided name of the TrustConfig. Must match the regexp [a-z0-9-]{1,63}.
    description str
    One or more paragraphs of text description of a TrustConfig.
    etag str
    This checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
    labels Mapping[str, str]
    Set of labels associated with a TrustConfig.
    location str
    name str
    A user-defined name of the trust config. TrustConfig names must be unique globally and match pattern projects/*/locations/*/trustConfigs/*.
    project str
    trust_stores Sequence[TrustStoreArgs]
    Set of trust stores to perform validation against. This field is supported when TrustConfig is configured with Load Balancers, currently not supported for SPIFFE certificate validation. Only one TrustStore specified is currently allowed.
    trustConfigId String
    Required. A user-provided name of the TrustConfig. Must match the regexp [a-z0-9-]{1,63}.
    description String
    One or more paragraphs of text description of a TrustConfig.
    etag String
    This checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
    labels Map<String>
    Set of labels associated with a TrustConfig.
    location String
    name String
    A user-defined name of the trust config. TrustConfig names must be unique globally and match pattern projects/*/locations/*/trustConfigs/*.
    project String
    trustStores List<Property Map>
    Set of trust stores to perform validation against. This field is supported when TrustConfig is configured with Load Balancers, currently not supported for SPIFFE certificate validation. Only one TrustStore specified is currently allowed.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the TrustConfig resource produces the following output properties:

    CreateTime string
    The creation timestamp of a TrustConfig.
    Id string
    The provider-assigned unique ID for this managed resource.
    UpdateTime string
    The last update timestamp of a TrustConfig.
    CreateTime string
    The creation timestamp of a TrustConfig.
    Id string
    The provider-assigned unique ID for this managed resource.
    UpdateTime string
    The last update timestamp of a TrustConfig.
    createTime String
    The creation timestamp of a TrustConfig.
    id String
    The provider-assigned unique ID for this managed resource.
    updateTime String
    The last update timestamp of a TrustConfig.
    createTime string
    The creation timestamp of a TrustConfig.
    id string
    The provider-assigned unique ID for this managed resource.
    updateTime string
    The last update timestamp of a TrustConfig.
    create_time str
    The creation timestamp of a TrustConfig.
    id str
    The provider-assigned unique ID for this managed resource.
    update_time str
    The last update timestamp of a TrustConfig.
    createTime String
    The creation timestamp of a TrustConfig.
    id String
    The provider-assigned unique ID for this managed resource.
    updateTime String
    The last update timestamp of a TrustConfig.

    Supporting Types

    IntermediateCA, IntermediateCAArgs

    PemCertificate string
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    PemCertificate string
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate string
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pem_certificate str
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.

    IntermediateCAResponse, IntermediateCAResponseArgs

    PemCertificate string
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    PemCertificate string
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate string
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pem_certificate str
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM intermediate certificate used for building up paths for validation. Each certificate provided in PEM format may occupy up to 5kB.

    TrustAnchor, TrustAnchorArgs

    PemCertificate string
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    PemCertificate string
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate string
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pem_certificate str
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.

    TrustAnchorResponse, TrustAnchorResponseArgs

    PemCertificate string
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    PemCertificate string
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate string
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pem_certificate str
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.
    pemCertificate String
    PEM root certificate of the PKI used for validation. Each certificate provided in PEM format may occupy up to 5kB.

    TrustStore, TrustStoreArgs

    IntermediateCas List<Pulumi.GoogleNative.CertificateManager.V1.Inputs.IntermediateCA>
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    TrustAnchors List<Pulumi.GoogleNative.CertificateManager.V1.Inputs.TrustAnchor>
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    IntermediateCas []IntermediateCA
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    TrustAnchors []TrustAnchor
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediateCas List<IntermediateCA>
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trustAnchors List<TrustAnchor>
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediateCas IntermediateCA[]
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trustAnchors TrustAnchor[]
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediate_cas Sequence[IntermediateCA]
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trust_anchors Sequence[TrustAnchor]
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediateCas List<Property Map>
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trustAnchors List<Property Map>
    List of Trust Anchors to be used while performing validation against a given TrustStore.

    TrustStoreResponse, TrustStoreResponseArgs

    IntermediateCas List<Pulumi.GoogleNative.CertificateManager.V1.Inputs.IntermediateCAResponse>
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    TrustAnchors List<Pulumi.GoogleNative.CertificateManager.V1.Inputs.TrustAnchorResponse>
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    IntermediateCas []IntermediateCAResponse
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    TrustAnchors []TrustAnchorResponse
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediateCas List<IntermediateCAResponse>
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trustAnchors List<TrustAnchorResponse>
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediateCas IntermediateCAResponse[]
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trustAnchors TrustAnchorResponse[]
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediate_cas Sequence[IntermediateCAResponse]
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trust_anchors Sequence[TrustAnchorResponse]
    List of Trust Anchors to be used while performing validation against a given TrustStore.
    intermediateCas List<Property Map>
    Set of intermediate CA certificates used for the path building phase of chain validation. The field is currently not supported if TrustConfig is used for the workload certificate feature.
    trustAnchors List<Property Map>
    List of Trust Anchors to be used while performing validation against a given TrustStore.

    Package Details

    Repository
    Google Cloud Native pulumi/pulumi-google-native
    License
    Apache-2.0
    google-native logo

    Google Cloud Native is in preview. Google Cloud Classic is fully supported.

    Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi