Skip to main content

akeyless_api/models/
cert_access_rules.rs

1/*
2 * Akeyless API
3 *
4 * The purpose of this application is to provide access to Akeyless API.
5 *
6 * The version of the OpenAPI document: 3.0
7 * Contact: support@akeyless.io
8 * Generated by: https://openapi-generator.tech
9 */
10
11use crate::models;
12use serde::{Deserialize, Serialize};
13
14#[derive(Clone, Default, Debug, PartialEq, Serialize, Deserialize)]
15pub struct CertAccessRules {
16    /// a list of allowed cors domains if used for browser authentication
17    #[serde(rename = "allowed_cors", skip_serializing_if = "Option::is_none")]
18    pub allowed_cors: Option<Vec<String>>,
19    /// A list of names. At least one must exist in the Common Name. Supports globbing.
20    #[serde(rename = "bound_common_names", skip_serializing_if = "Option::is_none")]
21    pub bound_common_names: Option<Vec<String>>,
22    /// A list of DNS names. At least one must exist in the SANs. Supports globbing.
23    #[serde(rename = "bound_dns_sans", skip_serializing_if = "Option::is_none")]
24    pub bound_dns_sans: Option<Vec<String>>,
25    /// A list of Email Addresses. At least one must exist in the SANs. Supports globbing.
26    #[serde(rename = "bound_email_sans", skip_serializing_if = "Option::is_none")]
27    pub bound_email_sans: Option<Vec<String>>,
28    /// A list of extensions formatted as \"oid:value\". Expects the extension value to be some type of ASN1 encoded string. All values must match. Supports globbing on \"value\".
29    #[serde(rename = "bound_extensions", skip_serializing_if = "Option::is_none")]
30    pub bound_extensions: Option<Vec<String>>,
31    /// A list of Organizational Units names. At least one must exist in the OU field.
32    #[serde(rename = "bound_organizational_units", skip_serializing_if = "Option::is_none")]
33    pub bound_organizational_units: Option<Vec<String>>,
34    /// A list of URIs. At least one must exist in the SANs. Supports globbing.
35    #[serde(rename = "bound_uri_sans", skip_serializing_if = "Option::is_none")]
36    pub bound_uri_sans: Option<Vec<String>>,
37    /// Base64 encdoed PEM certificate
38    #[serde(rename = "certificate", skip_serializing_if = "Option::is_none")]
39    pub certificate: Option<String>,
40    /// RequireCrlDp indicates whether CRL distribution points are required on the leaf client certificate, and whether CRL validation must be enforced during authentication.
41    #[serde(rename = "require_crl_dp", skip_serializing_if = "Option::is_none")]
42    pub require_crl_dp: Option<bool>,
43    /// A list of revoked cert ids
44    #[serde(rename = "revoked_cert_ids", skip_serializing_if = "Option::is_none")]
45    pub revoked_cert_ids: Option<Vec<String>>,
46    /// A unique identifier to distinguish different users
47    #[serde(rename = "unique_identifier", skip_serializing_if = "Option::is_none")]
48    pub unique_identifier: Option<String>,
49}
50
51impl CertAccessRules {
52    pub fn new() -> CertAccessRules {
53        CertAccessRules {
54            allowed_cors: None,
55            bound_common_names: None,
56            bound_dns_sans: None,
57            bound_email_sans: None,
58            bound_extensions: None,
59            bound_organizational_units: None,
60            bound_uri_sans: None,
61            certificate: None,
62            require_crl_dp: None,
63            revoked_cert_ids: None,
64            unique_identifier: None,
65        }
66    }
67}
68