privateca library
Private CA (Certificate Authority Service) — CA pools for managed certificate issuance via Certificate Manager.
Classes
- GooglePrivatecaCaPool
-
Factory wrapper for
google_privateca_ca_pool. - GooglePrivatecaCaPoolIamMember
-
Factory wrapper for
google_privateca_ca_pool_iam_member. - GooglePrivatecaCertificate
-
Factory wrapper for
google_privateca_certificate. - GooglePrivatecaCertificateAuthority
-
Factory wrapper for
google_privateca_certificate_authority. - GooglePrivatecaCertificateTemplate
-
Factory wrapper for
google_privateca_certificate_template. - PrivatecaCaPoolEllipticCurveKeyType
-
allowed_key_types.elliptic_curveissuance-policy helper. - PrivatecaCaPoolPublishingOptions
-
publishing_optionsblock — CRL / CA cert publication settings. - PrivatecaCertificateAuthorityBaseKeyUsage
-
config.x509_config.key_usage.base_key_usage. - PrivatecaCertificateAuthorityCaOptions
-
config.x509_config.ca_options. - PrivatecaCertificateAuthorityConfig
-
configblock — subject + X.509 profile. - PrivatecaCertificateAuthorityExtendedKeyUsage
-
config.x509_config.key_usage.extended_key_usage. - PrivatecaCertificateAuthorityKeySpec
-
key_specblock — managed key algorithm or Cloud KMS version. - PrivatecaCertificateAuthorityKeyUsage
-
config.x509_config.key_usage. - PrivatecaCertificateAuthoritySubject
-
config.subject_config.subject— distinguished name fields. - PrivatecaCertificateAuthoritySubjectConfig
-
config.subject_configblock. - PrivatecaCertificateAuthorityX509Config
-
config.x509_config— X.509 profile for the CA certificate. - PrivatecaCertificateBaseKeyUsage
-
config.x509_config.key_usage.base_key_usage. - PrivatecaCertificateCaOptions
-
config.x509_config.ca_options. - PrivatecaCertificateConfig
-
configblock — subject, X.509 profile, and optional public key. - PrivatecaCertificateExtendedKeyUsage
-
config.x509_config.key_usage.extended_key_usage. - PrivatecaCertificateKeyUsage
-
config.x509_config.key_usage. - PrivatecaCertificatePublicKey
-
config.public_keyblock. - PrivatecaCertificateSubject
-
config.subject_config.subject— distinguished name fields. - PrivatecaCertificateSubjectAltName
-
config.subject_config.subject_alt_nameblock. - PrivatecaCertificateSubjectConfig
-
config.subject_configblock. - PrivatecaCertificateTemplateCelExpression
-
identity_constraints.cel_expressionblock. - PrivatecaCertificateTemplateIdentityConstraints
-
identity_constraintsblock — subject / SAN passthrough policy. - PrivatecaCertificateX509Config
-
config.x509_config— X.509 profile for the leaf certificate.
Enums
- PrivatecaCaPoolEllipticCurveSignatureAlgorithm
-
signature_algorithmon elliptic-curve key types in issuance policy. - PrivatecaCaPoolPublishingOptionsEncodingFormat
-
encoding_formaton PrivatecaCaPoolPublishingOptions. - PrivatecaCaPoolTier
-
tier— CAS pool service tier. - PrivatecaCertificateAuthorityDesiredState
-
desired_state— operational state target for the CA. - PrivatecaCertificateAuthorityKeyAlgorithm
-
key_spec.algorithm— managed Cloud KMS key algorithm. - PrivatecaCertificateAuthorityType
-
type— CA tier (must match the parent pool tier). - PrivatecaCertificatePublicKeyFormat
-
public_key.format— only PEM is supported today.