Struct aws_sdk_acmpca::types::CertificateAuthority
source · #[non_exhaustive]pub struct CertificateAuthority {Show 15 fields
pub arn: Option<String>,
pub owner_account: Option<String>,
pub created_at: Option<DateTime>,
pub last_state_change_at: Option<DateTime>,
pub type: Option<CertificateAuthorityType>,
pub serial: Option<String>,
pub status: Option<CertificateAuthorityStatus>,
pub not_before: Option<DateTime>,
pub not_after: Option<DateTime>,
pub failure_reason: Option<FailureReason>,
pub certificate_authority_configuration: Option<CertificateAuthorityConfiguration>,
pub revocation_configuration: Option<RevocationConfiguration>,
pub restorable_until: Option<DateTime>,
pub key_storage_security_standard: Option<KeyStorageSecurityStandard>,
pub usage_mode: Option<CertificateAuthorityUsageMode>,
}
Expand description
Contains information about your private certificate authority (CA). Your private CA can issue and revoke X.509 digital certificates. Digital certificates verify that the entity named in the certificate Subject field owns or controls the public key contained in the Subject Public Key Info field. Call the CreateCertificateAuthority action to create your private CA. You must then call the GetCertificateAuthorityCertificate action to retrieve a private CA certificate signing request (CSR). Sign the CSR with your Amazon Web Services Private CA-hosted or on-premises root or subordinate CA certificate. Call the ImportCertificateAuthorityCertificate action to import the signed certificate into Certificate Manager (ACM).
Fields (Non-exhaustive)§
This struct is marked as non-exhaustive
Struct { .. }
syntax; cannot be matched against without a wildcard ..
; and struct update syntax will not work.arn: Option<String>
Amazon Resource Name (ARN) for your private certificate authority (CA). The format is 12345678-1234-1234-1234-123456789012
.
owner_account: Option<String>
The Amazon Web Services account ID that owns the certificate authority.
created_at: Option<DateTime>
Date and time at which your private CA was created.
last_state_change_at: Option<DateTime>
Date and time at which your private CA was last updated.
type: Option<CertificateAuthorityType>
Type of your private CA.
serial: Option<String>
Serial number of your private CA.
status: Option<CertificateAuthorityStatus>
Status of your private CA.
not_before: Option<DateTime>
Date and time before which your private CA certificate is not valid.
not_after: Option<DateTime>
Date and time after which your private CA certificate is not valid.
failure_reason: Option<FailureReason>
Reason the request to create your private CA failed.
Your private CA configuration.
revocation_configuration: Option<RevocationConfiguration>
Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.
restorable_until: Option<DateTime>
The period during which a deleted CA can be restored. For more information, see the PermanentDeletionTimeInDays
parameter of the DeleteCertificateAuthorityRequest action.
key_storage_security_standard: Option<KeyStorageSecurityStandard>
Defines a cryptographic key management compliance standard used for handling CA keys.
Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an InvalidArgsException
with the message "A certificate authority cannot be created in this region with the specified security standard."
usage_mode: Option<CertificateAuthorityUsageMode>
Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.
The default value is GENERAL_PURPOSE.
Implementations§
source§impl CertificateAuthority
impl CertificateAuthority
sourcepub fn arn(&self) -> Option<&str>
pub fn arn(&self) -> Option<&str>
Amazon Resource Name (ARN) for your private certificate authority (CA). The format is 12345678-1234-1234-1234-123456789012
.
sourcepub fn owner_account(&self) -> Option<&str>
pub fn owner_account(&self) -> Option<&str>
The Amazon Web Services account ID that owns the certificate authority.
sourcepub fn created_at(&self) -> Option<&DateTime>
pub fn created_at(&self) -> Option<&DateTime>
Date and time at which your private CA was created.
sourcepub fn last_state_change_at(&self) -> Option<&DateTime>
pub fn last_state_change_at(&self) -> Option<&DateTime>
Date and time at which your private CA was last updated.
sourcepub fn type(&self) -> Option<&CertificateAuthorityType>
pub fn type(&self) -> Option<&CertificateAuthorityType>
Type of your private CA.
sourcepub fn status(&self) -> Option<&CertificateAuthorityStatus>
pub fn status(&self) -> Option<&CertificateAuthorityStatus>
Status of your private CA.
sourcepub fn not_before(&self) -> Option<&DateTime>
pub fn not_before(&self) -> Option<&DateTime>
Date and time before which your private CA certificate is not valid.
sourcepub fn not_after(&self) -> Option<&DateTime>
pub fn not_after(&self) -> Option<&DateTime>
Date and time after which your private CA certificate is not valid.
sourcepub fn failure_reason(&self) -> Option<&FailureReason>
pub fn failure_reason(&self) -> Option<&FailureReason>
Reason the request to create your private CA failed.
Your private CA configuration.
sourcepub fn revocation_configuration(&self) -> Option<&RevocationConfiguration>
pub fn revocation_configuration(&self) -> Option<&RevocationConfiguration>
Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.
sourcepub fn restorable_until(&self) -> Option<&DateTime>
pub fn restorable_until(&self) -> Option<&DateTime>
The period during which a deleted CA can be restored. For more information, see the PermanentDeletionTimeInDays
parameter of the DeleteCertificateAuthorityRequest action.
sourcepub fn key_storage_security_standard(
&self
) -> Option<&KeyStorageSecurityStandard>
pub fn key_storage_security_standard( &self ) -> Option<&KeyStorageSecurityStandard>
Defines a cryptographic key management compliance standard used for handling CA keys.
Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an InvalidArgsException
with the message "A certificate authority cannot be created in this region with the specified security standard."
sourcepub fn usage_mode(&self) -> Option<&CertificateAuthorityUsageMode>
pub fn usage_mode(&self) -> Option<&CertificateAuthorityUsageMode>
Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.
The default value is GENERAL_PURPOSE.
source§impl CertificateAuthority
impl CertificateAuthority
sourcepub fn builder() -> CertificateAuthorityBuilder
pub fn builder() -> CertificateAuthorityBuilder
Creates a new builder-style object to manufacture CertificateAuthority
.
Trait Implementations§
source§impl Clone for CertificateAuthority
impl Clone for CertificateAuthority
source§fn clone(&self) -> CertificateAuthority
fn clone(&self) -> CertificateAuthority
1.0.0 · source§fn clone_from(&mut self, source: &Self)
fn clone_from(&mut self, source: &Self)
source
. Read moresource§impl Debug for CertificateAuthority
impl Debug for CertificateAuthority
source§impl PartialEq for CertificateAuthority
impl PartialEq for CertificateAuthority
source§fn eq(&self, other: &CertificateAuthority) -> bool
fn eq(&self, other: &CertificateAuthority) -> bool
self
and other
values to be equal, and is used
by ==
.impl StructuralPartialEq for CertificateAuthority
Auto Trait Implementations§
impl Freeze for CertificateAuthority
impl RefUnwindSafe for CertificateAuthority
impl Send for CertificateAuthority
impl Sync for CertificateAuthority
impl Unpin for CertificateAuthority
impl UnwindSafe for CertificateAuthority
Blanket Implementations§
source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
source§impl<T> Instrument for T
impl<T> Instrument for T
source§fn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
source§fn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
source§impl<T> IntoEither for T
impl<T> IntoEither for T
source§fn into_either(self, into_left: bool) -> Either<Self, Self>
fn into_either(self, into_left: bool) -> Either<Self, Self>
self
into a Left
variant of Either<Self, Self>
if into_left
is true
.
Converts self
into a Right
variant of Either<Self, Self>
otherwise. Read moresource§fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
self
into a Left
variant of Either<Self, Self>
if into_left(&self)
returns true
.
Converts self
into a Right
variant of Either<Self, Self>
otherwise. Read more