Struct aws_sdk_acmpca::client::Client
source · [−]pub struct Client { /* private fields */ }
Expand description
Client for AWS Certificate Manager Private Certificate Authority
Client for invoking operations on AWS Certificate Manager Private Certificate Authority. Each operation on AWS Certificate Manager Private Certificate Authority is a method on this
this struct. .send()
MUST be invoked on the generated operations to dispatch the request to the service.
Examples
Constructing a client and invoking an operation
// create a shared configuration. This can be used & shared between multiple service clients.
let shared_config = aws_config::load_from_env().await;
let client = aws_sdk_acmpca::Client::new(&shared_config);
// invoke an operation
/* let rsp = client
.<operation_name>().
.<param>("some value")
.send().await; */
Constructing a client with custom configuration
use aws_config::RetryConfig;
let shared_config = aws_config::load_from_env().await;
let config = aws_sdk_acmpca::config::Builder::from(&shared_config)
.retry_config(RetryConfig::disabled())
.build();
let client = aws_sdk_acmpca::Client::from_conf(config);
Implementations
sourceimpl Client
impl Client
sourcepub fn with_config(
client: Client<DynConnector, DynMiddleware<DynConnector>>,
conf: Config
) -> Self
pub fn with_config(
client: Client<DynConnector, DynMiddleware<DynConnector>>,
conf: Config
) -> Self
Creates a client with the given service configuration.
sourceimpl Client
impl Client
Constructs a fluent builder for the CreateCertificateAuthority
operation.
- The fluent builder is configurable:
certificate_authority_configuration(CertificateAuthorityConfiguration)
/set_certificate_authority_configuration(Option<CertificateAuthorityConfiguration>)
:Name and bit size of the private key algorithm, the name of the signing algorithm, and X.500 certificate subject information.
revocation_configuration(RevocationConfiguration)
/set_revocation_configuration(Option<RevocationConfiguration>)
:Contains information to enable Online Certificate Status Protocol (OCSP) support, to enable a certificate revocation list (CRL), to enable both, or to enable neither. The default is for both certificate validation mechanisms to be disabled. For more information, see the OcspConfiguration and CrlConfiguration types.
certificate_authority_type(CertificateAuthorityType)
/set_certificate_authority_type(Option<CertificateAuthorityType>)
:The type of the certificate authority.
idempotency_token(impl Into<String>)
/set_idempotency_token(Option<String>)
:Custom string that can be used to distinguish between calls to the CreateCertificateAuthority action. Idempotency tokens for CreateCertificateAuthority time out after five minutes. Therefore, if you call CreateCertificateAuthority multiple times with the same idempotency token within five minutes, ACM Private CA recognizes that you are requesting only certificate authority and will issue only one. If you change the idempotency token for each call, PCA recognizes that you are requesting multiple certificate authorities.
key_storage_security_standard(KeyStorageSecurityStandard)
/set_key_storage_security_standard(Option<KeyStorageSecurityStandard>)
:Specifies a cryptographic key management compliance standard used for handling CA keys.
Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note:
FIPS_140_2_LEVEL_3_OR_HIGHER
is not supported in Region ap-northeast-3. When creating a CA in the ap-northeast-3, you must provideFIPS_140_2_LEVEL_2_OR_HIGHER
as the argument forKeyStorageSecurityStandard
. Failure to do this results in anInvalidArgsException
with the message, “A certificate authority cannot be created in this region with the specified security standard.”tags(Vec<Tag>)
/set_tags(Option<Vec<Tag>>)
:Key-value pairs that will be attached to the new private CA. You can associate up to 50 tags with a private CA. For information using tags with IAM to manage permissions, see Controlling Access Using IAM Tags.
- On success, responds with
CreateCertificateAuthorityOutput
with field(s):certificate_authority_arn(Option<String>)
:If successful, the Amazon Resource Name (ARN) of the certificate authority (CA). This is of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.
- On failure, responds with
SdkError<CreateCertificateAuthorityError>
Constructs a fluent builder for the CreateCertificateAuthorityAuditReport
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) of the CA to be audited. This is of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.s3_bucket_name(impl Into<String>)
/set_s3_bucket_name(Option<String>)
:The name of the S3 bucket that will contain the audit report.
audit_report_response_format(AuditReportResponseFormat)
/set_audit_report_response_format(Option<AuditReportResponseFormat>)
:The format in which to create the report. This can be either JSON or CSV.
- On success, responds with
CreateCertificateAuthorityAuditReportOutput
with field(s):audit_report_id(Option<String>)
:An alphanumeric string that contains a report identifier.
s3_key(Option<String>)
:The key that uniquely identifies the report file in your S3 bucket.
- On failure, responds with
SdkError<CreateCertificateAuthorityAuditReportError>
sourcepub fn create_permission(&self) -> CreatePermission
pub fn create_permission(&self) -> CreatePermission
Constructs a fluent builder for the CreatePermission
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) of the CA that grants the permissions. You can find the ARN by calling the ListCertificateAuthorities action. This must have the following form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.principal(impl Into<String>)
/set_principal(Option<String>)
:The AWS service or identity that receives the permission. At this time, the only valid principal is
acm.amazonaws.com
.source_account(impl Into<String>)
/set_source_account(Option<String>)
:The ID of the calling account.
actions(Vec<ActionType>)
/set_actions(Option<Vec<ActionType>>)
:The actions that the specified AWS service principal can use. These include
IssueCertificate
,GetCertificate
, andListPermissions
.
- On success, responds with
CreatePermissionOutput
- On failure, responds with
SdkError<CreatePermissionError>
Constructs a fluent builder for the DeleteCertificateAuthority
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called CreateCertificateAuthority. This must have the following form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.permanent_deletion_time_in_days(i32)
/set_permanent_deletion_time_in_days(Option<i32>)
:The number of days to make a CA restorable after it has been deleted. This can be anywhere from 7 to 30 days, with 30 being the default.
- On success, responds with
DeleteCertificateAuthorityOutput
- On failure, responds with
SdkError<DeleteCertificateAuthorityError>
sourcepub fn delete_permission(&self) -> DeletePermission
pub fn delete_permission(&self) -> DeletePermission
Constructs a fluent builder for the DeletePermission
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Number (ARN) of the private CA that issued the permissions. You can find the CA’s ARN by calling the ListCertificateAuthorities action. This must have the following form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.principal(impl Into<String>)
/set_principal(Option<String>)
:The AWS service or identity that will have its CA permissions revoked. At this time, the only valid service principal is
acm.amazonaws.com
source_account(impl Into<String>)
/set_source_account(Option<String>)
:The AWS account that calls this action.
- On success, responds with
DeletePermissionOutput
- On failure, responds with
SdkError<DeletePermissionError>
sourcepub fn delete_policy(&self) -> DeletePolicy
pub fn delete_policy(&self) -> DeletePolicy
Constructs a fluent builder for the DeletePolicy
operation.
- The fluent builder is configurable:
resource_arn(impl Into<String>)
/set_resource_arn(Option<String>)
:The Amazon Resource Number (ARN) of the private CA that will have its policy deleted. You can find the CA’s ARN by calling the ListCertificateAuthorities action. The ARN value must have the form
arn:aws:acm-pca:region:account:certificate-authority/01234567-89ab-cdef-0123-0123456789ab
.
- On success, responds with
DeletePolicyOutput
- On failure, responds with
SdkError<DeletePolicyError>
Constructs a fluent builder for the DescribeCertificateAuthority
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called CreateCertificateAuthority. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.
- On success, responds with
DescribeCertificateAuthorityOutput
with field(s):certificate_authority(Option<CertificateAuthority>)
:A CertificateAuthority structure that contains information about your private CA.
- On failure, responds with
SdkError<DescribeCertificateAuthorityError>
Constructs a fluent builder for the DescribeCertificateAuthorityAuditReport
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) of the private CA. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.audit_report_id(impl Into<String>)
/set_audit_report_id(Option<String>)
:The report ID returned by calling the CreateCertificateAuthorityAuditReport action.
- On success, responds with
DescribeCertificateAuthorityAuditReportOutput
with field(s):audit_report_status(Option<AuditReportStatus>)
:Specifies whether report creation is in progress, has succeeded, or has failed.
s3_bucket_name(Option<String>)
:Name of the S3 bucket that contains the report.
s3_key(Option<String>)
:S3 key that uniquely identifies the report file in your S3 bucket.
created_at(Option<DateTime>)
:The date and time at which the report was created.
- On failure, responds with
SdkError<DescribeCertificateAuthorityAuditReportError>
sourcepub fn get_certificate(&self) -> GetCertificate
pub fn get_certificate(&self) -> GetCertificate
Constructs a fluent builder for the GetCertificate
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called CreateCertificateAuthority. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.certificate_arn(impl Into<String>)
/set_certificate_arn(Option<String>)
:The ARN of the issued certificate. The ARN contains the certificate serial number and must be in the following form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012/certificate/286535153982981100925020015808220737245
- On success, responds with
GetCertificateOutput
with field(s):certificate(Option<String>)
:The base64 PEM-encoded certificate specified by the
CertificateArn
parameter.certificate_chain(Option<String>)
:The base64 PEM-encoded certificate chain that chains up to the root CA certificate that you used to sign your private CA certificate.
- On failure, responds with
SdkError<GetCertificateError>
Constructs a fluent builder for the GetCertificateAuthorityCertificate
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) of your private CA. This is of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
.
- On success, responds with
GetCertificateAuthorityCertificateOutput
with field(s):certificate(Option<String>)
:Base64-encoded certificate authority (CA) certificate.
certificate_chain(Option<String>)
:Base64-encoded certificate chain that includes any intermediate certificates and chains up to root certificate that you used to sign your private CA certificate. The chain does not include your private CA certificate. If this is a root CA, the value will be null.
- On failure, responds with
SdkError<GetCertificateAuthorityCertificateError>
Constructs a fluent builder for the GetCertificateAuthorityCsr
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called the CreateCertificateAuthority action. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
- On success, responds with
GetCertificateAuthorityCsrOutput
with field(s):csr(Option<String>)
:The base64 PEM-encoded certificate signing request (CSR) for your private CA certificate.
- On failure, responds with
SdkError<GetCertificateAuthorityCsrError>
sourcepub fn get_policy(&self) -> GetPolicy
pub fn get_policy(&self) -> GetPolicy
Constructs a fluent builder for the GetPolicy
operation.
- The fluent builder is configurable:
resource_arn(impl Into<String>)
/set_resource_arn(Option<String>)
:The Amazon Resource Number (ARN) of the private CA that will have its policy retrieved. You can find the CA’s ARN by calling the ListCertificateAuthorities action.
- On success, responds with
GetPolicyOutput
with field(s):policy(Option<String>)
:The policy attached to the private CA as a JSON document.
- On failure, responds with
SdkError<GetPolicyError>
Constructs a fluent builder for the ImportCertificateAuthorityCertificate
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called CreateCertificateAuthority. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
certificate(Blob)
/set_certificate(Option<Blob>)
:The PEM-encoded certificate for a private CA. This may be a self-signed certificate in the case of a root CA, or it may be signed by another CA that you control.
certificate_chain(Blob)
/set_certificate_chain(Option<Blob>)
:A PEM-encoded file that contains all of your certificates, other than the certificate you’re importing, chaining up to your root CA. Your ACM Private CA-hosted or on-premises root certificate is the last in the chain, and each certificate in the chain signs the one preceding.
This parameter must be supplied when you import a subordinate CA. When you import a root CA, there is no chain.
- On success, responds with
ImportCertificateAuthorityCertificateOutput
- On failure, responds with
SdkError<ImportCertificateAuthorityCertificateError>
sourcepub fn issue_certificate(&self) -> IssueCertificate
pub fn issue_certificate(&self) -> IssueCertificate
Constructs a fluent builder for the IssueCertificate
operation.
- The fluent builder is configurable:
api_passthrough(ApiPassthrough)
/set_api_passthrough(Option<ApiPassthrough>)
:Specifies X.509 certificate information to be included in the issued certificate. An
APIPassthrough
orAPICSRPassthrough
template variant must be selected, or else this parameter is ignored. For more information about using these templates, see Understanding Certificate Templates.If conflicting or duplicate certificate information is supplied during certificate issuance, ACM Private CA applies order of operation rules to determine what information is used.
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called CreateCertificateAuthority. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
csr(Blob)
/set_csr(Option<Blob>)
:The certificate signing request (CSR) for the certificate you want to issue. As an example, you can use the following OpenSSL command to create the CSR and a 2048 bit RSA private key.
openssl req -new -newkey rsa:2048 -days 365 -keyout private/test_cert_priv_key.pem -out csr/test_cert_.csr
If you have a configuration file, you can then use the following OpenSSL command. The
usr_cert
block in the configuration file contains your X509 version 3 extensions.openssl req -new -config openssl_rsa.cnf -extensions usr_cert -newkey rsa:2048 -days -365 -keyout private/test_cert_priv_key.pem -out csr/test_cert_.csr
Note: A CSR must provide either a subject name or a subject alternative name or the request will be rejected.
signing_algorithm(SigningAlgorithm)
/set_signing_algorithm(Option<SigningAlgorithm>)
:The name of the algorithm that will be used to sign the certificate to be issued.
This parameter should not be confused with the
SigningAlgorithm
parameter used to sign a CSR in theCreateCertificateAuthority
action.template_arn(impl Into<String>)
/set_template_arn(Option<String>)
:Specifies a custom configuration template to use when issuing a certificate. If this parameter is not provided, ACM Private CA defaults to the
EndEntityCertificate/V1
template. For CA certificates, you should choose the shortest path length that meets your needs. The path length is indicated by the PathLenN portion of the ARN, where N is the CA depth.Note: The CA depth configured on a subordinate CA certificate must not exceed the limit set by its parents in the CA hierarchy.
For a list of
TemplateArn
values supported by ACM Private CA, see Understanding Certificate Templates.validity(Validity)
/set_validity(Option<Validity>)
:Information describing the end of the validity period of the certificate. This parameter sets the “Not After” date for the certificate.
Certificate validity is the period of time during which a certificate is valid. Validity can be expressed as an explicit date and time when the certificate expires, or as a span of time after issuance, stated in days, months, or years. For more information, see Validity in RFC 5280.
This value is unaffected when
ValidityNotBefore
is also specified. For example, ifValidity
is set to 20 days in the future, the certificate will expire 20 days from issuance time regardless of theValidityNotBefore
value.The end of the validity period configured on a certificate must not exceed the limit set on its parents in the CA hierarchy.
validity_not_before(Validity)
/set_validity_not_before(Option<Validity>)
:Information describing the start of the validity period of the certificate. This parameter sets the “Not Before“ date for the certificate.
By default, when issuing a certificate, ACM Private CA sets the “Not Before” date to the issuance time minus 60 minutes. This compensates for clock inconsistencies across computer systems. The
ValidityNotBefore
parameter can be used to customize the “Not Before” value.Unlike the
Validity
parameter, theValidityNotBefore
parameter is optional.The
ValidityNotBefore
value is expressed as an explicit date and time, using theValidity
type valueABSOLUTE
. For more information, see Validity in this API reference and Validity in RFC 5280.idempotency_token(impl Into<String>)
/set_idempotency_token(Option<String>)
:Alphanumeric string that can be used to distinguish between calls to the IssueCertificate action. Idempotency tokens for IssueCertificate time out after one minute. Therefore, if you call IssueCertificate multiple times with the same idempotency token within one minute, ACM Private CA recognizes that you are requesting only one certificate and will issue only one. If you change the idempotency token for each call, PCA recognizes that you are requesting multiple certificates.
- On success, responds with
IssueCertificateOutput
with field(s):certificate_arn(Option<String>)
:The Amazon Resource Name (ARN) of the issued certificate and the certificate serial number. This is of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012/certificate/286535153982981100925020015808220737245
- On failure, responds with
SdkError<IssueCertificateError>
Constructs a fluent builder for the ListCertificateAuthorities
operation.
This operation supports pagination; See into_paginator()
.
- The fluent builder is configurable:
next_token(impl Into<String>)
/set_next_token(Option<String>)
:Use this parameter when paginating results in a subsequent request after you receive a response with truncated results. Set it to the value of the
NextToken
parameter from the response you just received.max_results(i32)
/set_max_results(Option<i32>)
:Use this parameter when paginating results to specify the maximum number of items to return in the response on each page. If additional items exist beyond the number you specify, the
NextToken
element is sent in the response. Use thisNextToken
value in a subsequent request to retrieve additional items.resource_owner(ResourceOwner)
/set_resource_owner(Option<ResourceOwner>)
:Use this parameter to filter the returned set of certificate authorities based on their owner. The default is SELF.
- On success, responds with
ListCertificateAuthoritiesOutput
with field(s):certificate_authorities(Option<Vec<CertificateAuthority>>)
:Summary information about each certificate authority you have created.
next_token(Option<String>)
:When the list is truncated, this value is present and should be used for the
NextToken
parameter in a subsequent pagination request.
- On failure, responds with
SdkError<ListCertificateAuthoritiesError>
sourcepub fn list_permissions(&self) -> ListPermissions
pub fn list_permissions(&self) -> ListPermissions
Constructs a fluent builder for the ListPermissions
operation.
This operation supports pagination; See into_paginator()
.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Number (ARN) of the private CA to inspect. You can find the ARN by calling the ListCertificateAuthorities action. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
You can get a private CA’s ARN by running the ListCertificateAuthorities action.next_token(impl Into<String>)
/set_next_token(Option<String>)
:When paginating results, use this parameter in a subsequent request after you receive a response with truncated results. Set it to the value of NextToken from the response you just received.
max_results(i32)
/set_max_results(Option<i32>)
:When paginating results, use this parameter to specify the maximum number of items to return in the response. If additional items exist beyond the number you specify, the NextToken element is sent in the response. Use this NextToken value in a subsequent request to retrieve additional items.
- On success, responds with
ListPermissionsOutput
with field(s):permissions(Option<Vec<Permission>>)
:Summary information about each permission assigned by the specified private CA, including the action enabled, the policy provided, and the time of creation.
next_token(Option<String>)
:When the list is truncated, this value is present and should be used for the NextToken parameter in a subsequent pagination request.
- On failure, responds with
SdkError<ListPermissionsError>
Constructs a fluent builder for the ListTags
operation.
This operation supports pagination; See into_paginator()
.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called the CreateCertificateAuthority action. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
next_token(impl Into<String>)
/set_next_token(Option<String>)
:Use this parameter when paginating results in a subsequent request after you receive a response with truncated results. Set it to the value of NextToken from the response you just received.
max_results(i32)
/set_max_results(Option<i32>)
:Use this parameter when paginating results to specify the maximum number of items to return in the response. If additional items exist beyond the number you specify, the NextToken element is sent in the response. Use this NextToken value in a subsequent request to retrieve additional items.
- On success, responds with
ListTagsOutput
with field(s):tags(Option<Vec<Tag>>)
:The tags associated with your private CA.
next_token(Option<String>)
:When the list is truncated, this value is present and should be used for the NextToken parameter in a subsequent pagination request.
- On failure, responds with
SdkError<ListTagsError>
sourcepub fn put_policy(&self) -> PutPolicy
pub fn put_policy(&self) -> PutPolicy
Constructs a fluent builder for the PutPolicy
operation.
- The fluent builder is configurable:
resource_arn(impl Into<String>)
/set_resource_arn(Option<String>)
:The Amazon Resource Number (ARN) of the private CA to associate with the policy. The ARN of the CA can be found by calling the ListCertificateAuthorities action.
policy(impl Into<String>)
/set_policy(Option<String>)
:The path and file name of a JSON-formatted IAM policy to attach to the specified private CA resource. If this policy does not contain all required statements or if it includes any statement that is not allowed, the
PutPolicy
action returns anInvalidPolicyException
. For information about IAM policy and statement structure, see Overview of JSON Policies.
- On success, responds with
PutPolicyOutput
- On failure, responds with
SdkError<PutPolicyError>
Constructs a fluent builder for the RestoreCertificateAuthority
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called the CreateCertificateAuthority action. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
- On success, responds with
RestoreCertificateAuthorityOutput
- On failure, responds with
SdkError<RestoreCertificateAuthorityError>
sourcepub fn revoke_certificate(&self) -> RevokeCertificate
pub fn revoke_certificate(&self) -> RevokeCertificate
Constructs a fluent builder for the RevokeCertificate
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:Amazon Resource Name (ARN) of the private CA that issued the certificate to be revoked. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
certificate_serial(impl Into<String>)
/set_certificate_serial(Option<String>)
:Serial number of the certificate to be revoked. This must be in hexadecimal format. You can retrieve the serial number by calling GetCertificate with the Amazon Resource Name (ARN) of the certificate you want and the ARN of your private CA. The GetCertificate action retrieves the certificate in the PEM format. You can use the following OpenSSL command to list the certificate in text format and copy the hexadecimal serial number.
openssl x509 -in file_path -text -noout
You can also copy the serial number from the console or use the DescribeCertificate action in the AWS Certificate Manager API Reference.
revocation_reason(RevocationReason)
/set_revocation_reason(Option<RevocationReason>)
:Specifies why you revoked the certificate.
- On success, responds with
RevokeCertificateOutput
- On failure, responds with
SdkError<RevokeCertificateError>
Constructs a fluent builder for the TagCertificateAuthority
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called CreateCertificateAuthority. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
tags(Vec<Tag>)
/set_tags(Option<Vec<Tag>>)
:List of tags to be associated with the CA.
- On success, responds with
TagCertificateAuthorityOutput
- On failure, responds with
SdkError<TagCertificateAuthorityError>
Constructs a fluent builder for the UntagCertificateAuthority
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:The Amazon Resource Name (ARN) that was returned when you called CreateCertificateAuthority. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
tags(Vec<Tag>)
/set_tags(Option<Vec<Tag>>)
:List of tags to be removed from the CA.
- On success, responds with
UntagCertificateAuthorityOutput
- On failure, responds with
SdkError<UntagCertificateAuthorityError>
Constructs a fluent builder for the UpdateCertificateAuthority
operation.
- The fluent builder is configurable:
certificate_authority_arn(impl Into<String>)
/set_certificate_authority_arn(Option<String>)
:Amazon Resource Name (ARN) of the private CA that issued the certificate to be revoked. This must be of the form:
arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
revocation_configuration(RevocationConfiguration)
/set_revocation_configuration(Option<RevocationConfiguration>)
:Contains information to enable Online Certificate Status Protocol (OCSP) support, to enable a certificate revocation list (CRL), to enable both, or to enable neither. If this parameter is not supplied, existing capibilites remain unchanged. For more information, see the OcspConfiguration and CrlConfiguration types.
status(CertificateAuthorityStatus)
/set_status(Option<CertificateAuthorityStatus>)
:Status of your private CA.
- On success, responds with
UpdateCertificateAuthorityOutput
- On failure, responds with
SdkError<UpdateCertificateAuthorityError>
sourceimpl Client
impl Client
sourcepub fn from_conf_conn<C, E>(conf: Config, conn: C) -> Self where
C: SmithyConnector<Error = E> + Send + 'static,
E: Into<ConnectorError>,
pub fn from_conf_conn<C, E>(conf: Config, conn: C) -> Self where
C: SmithyConnector<Error = E> + Send + 'static,
E: Into<ConnectorError>,
Creates a client with the given service config and connector override.
Trait Implementations
sourceimpl From<Client<DynConnector, DynMiddleware<DynConnector>, Standard>> for Client
impl From<Client<DynConnector, DynMiddleware<DynConnector>, Standard>> for Client
sourcefn from(client: Client<DynConnector, DynMiddleware<DynConnector>>) -> Self
fn from(client: Client<DynConnector, DynMiddleware<DynConnector>>) -> Self
Performs the conversion.
Auto Trait Implementations
impl !RefUnwindSafe for Client
impl Send for Client
impl Sync for Client
impl Unpin for Client
impl !UnwindSafe for Client
Blanket Implementations
sourceimpl<T> BorrowMut<T> for T where
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized,
const: unstable · sourcefn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
Mutably borrows from an owned value. Read more
sourceimpl<T> Instrument for T
impl<T> Instrument for T
sourcefn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
sourcefn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
sourceimpl<T> ToOwned for T where
T: Clone,
impl<T> ToOwned for T where
T: Clone,
type Owned = T
type Owned = T
The resulting type after obtaining ownership.
sourcefn clone_into(&self, target: &mut T)
fn clone_into(&self, target: &mut T)
toowned_clone_into
)Uses borrowed data to replace owned data, usually by cloning. Read more
sourceimpl<T> WithSubscriber for T
impl<T> WithSubscriber for T
sourcefn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self> where
S: Into<Dispatch>,
fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self> where
S: Into<Dispatch>,
Attaches the provided Subscriber
to this type, returning a
WithDispatch
wrapper. Read more
sourcefn with_current_subscriber(self) -> WithDispatch<Self>
fn with_current_subscriber(self) -> WithDispatch<Self>
Attaches the current default Subscriber
to this type, returning a
WithDispatch
wrapper. Read more