Struct aws_sdk_acmpca::types::CertificateAuthority

source · 
#[non_exhaustive]
pub struct CertificateAuthority {
Show 15 fields
    pub arn: Option<String>,
    pub owner_account: Option<String>,
    pub created_at: Option<DateTime>,
    pub last_state_change_at: Option<DateTime>,
    pub type: Option<CertificateAuthorityType>,
    pub serial: Option<String>,
    pub status: Option<CertificateAuthorityStatus>,
    pub not_before: Option<DateTime>,
    pub not_after: Option<DateTime>,
    pub failure_reason: Option<FailureReason>,
    pub certificate_authority_configuration: Option<CertificateAuthorityConfiguration>,
    pub revocation_configuration: Option<RevocationConfiguration>,
    pub restorable_until: Option<DateTime>,
    pub key_storage_security_standard: Option<KeyStorageSecurityStandard>,
    pub usage_mode: Option<CertificateAuthorityUsageMode>,

}
Expand description

Contains information about your private certificate authority (CA). Your private CA can issue and revoke X.509 digital certificates. Digital certificates verify that the entity named in the certificate Subject field owns or controls the public key contained in the Subject Public Key Info field. Call the CreateCertificateAuthority action to create your private CA. You must then call the GetCertificateAuthorityCertificate action to retrieve a private CA certificate signing request (CSR). Sign the CSR with your Amazon Web Services Private CA-hosted or on-premises root or subordinate CA certificate. Call the ImportCertificateAuthorityCertificate action to import the signed certificate into Certificate Manager (ACM).

Fields (Non-exhaustive)§

This struct is marked as non-exhaustive
Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.
§arn: Option<String>

Amazon Resource Name (ARN) for your private certificate authority (CA). The format is 12345678-1234-1234-1234-123456789012 .

§owner_account: Option<String>

The Amazon Web Services account ID that owns the certificate authority.

§created_at: Option<DateTime>

Date and time at which your private CA was created.

§last_state_change_at: Option<DateTime>

Date and time at which your private CA was last updated.

§type: Option<CertificateAuthorityType>

Type of your private CA.

§serial: Option<String>

Serial number of your private CA.

§status: Option<CertificateAuthorityStatus>

Status of your private CA.

§not_before: Option<DateTime>

Date and time before which your private CA certificate is not valid.

§not_after: Option<DateTime>

Date and time after which your private CA certificate is not valid.

§failure_reason: Option<FailureReason>

Reason the request to create your private CA failed.

§certificate_authority_configuration: Option<CertificateAuthorityConfiguration>

Your private CA configuration.

§revocation_configuration: Option<RevocationConfiguration>

Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.

§restorable_until: Option<DateTime>

The period during which a deleted CA can be restored. For more information, see the PermanentDeletionTimeInDays parameter of the DeleteCertificateAuthorityRequest action.

§key_storage_security_standard: Option<KeyStorageSecurityStandard>

Defines a cryptographic key management compliance standard used for handling CA keys.

Default: FIPS_140_2_LEVEL_3_OR_HIGHER

Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an InvalidArgsException with the message "A certificate authority cannot be created in this region with the specified security standard."

§usage_mode: Option<CertificateAuthorityUsageMode>

Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.

The default value is GENERAL_PURPOSE.

Implementations§

source§

impl CertificateAuthority

source

pub fn arn(&self) -> Option<&str>

Amazon Resource Name (ARN) for your private certificate authority (CA). The format is 12345678-1234-1234-1234-123456789012 .

source

pub fn owner_account(&self) -> Option<&str>

The Amazon Web Services account ID that owns the certificate authority.

source

pub fn created_at(&self) -> Option<&DateTime>

Date and time at which your private CA was created.

source

pub fn last_state_change_at(&self) -> Option<&DateTime>

Date and time at which your private CA was last updated.

source

pub fn type(&self) -> Option<&CertificateAuthorityType>

Type of your private CA.

source

pub fn serial(&self) -> Option<&str>

Serial number of your private CA.

source

pub fn status(&self) -> Option<&CertificateAuthorityStatus>

Status of your private CA.

source

pub fn not_before(&self) -> Option<&DateTime>

Date and time before which your private CA certificate is not valid.

source

pub fn not_after(&self) -> Option<&DateTime>

Date and time after which your private CA certificate is not valid.

source

pub fn failure_reason(&self) -> Option<&FailureReason>

Reason the request to create your private CA failed.

source

pub fn certificate_authority_configuration( &self ) -> Option<&CertificateAuthorityConfiguration>

Your private CA configuration.

source

pub fn revocation_configuration(&self) -> Option<&RevocationConfiguration>

Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.

source

pub fn restorable_until(&self) -> Option<&DateTime>

The period during which a deleted CA can be restored. For more information, see the PermanentDeletionTimeInDays parameter of the DeleteCertificateAuthorityRequest action.

source

pub fn key_storage_security_standard( &self ) -> Option<&KeyStorageSecurityStandard>

Defines a cryptographic key management compliance standard used for handling CA keys.

Default: FIPS_140_2_LEVEL_3_OR_HIGHER

Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an InvalidArgsException with the message "A certificate authority cannot be created in this region with the specified security standard."

source

pub fn usage_mode(&self) -> Option<&CertificateAuthorityUsageMode>

Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.

The default value is GENERAL_PURPOSE.

source§

impl CertificateAuthority

source

pub fn builder() -> CertificateAuthorityBuilder

Creates a new builder-style object to manufacture CertificateAuthority.

Trait Implementations§

source§

impl Clone for CertificateAuthority

source§

fn clone(&self) -> CertificateAuthority

Returns a copy of the value. Read more
1.0.0 · source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
source§

impl Debug for CertificateAuthority

source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
source§

impl PartialEq for CertificateAuthority

source§

fn eq(&self, other: &CertificateAuthority) -> bool

This method tests for self and other values to be equal, and is used by ==.
1.0.0 · source§

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
source§

impl StructuralPartialEq for CertificateAuthority

Auto Trait Implementations§

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T> Instrument for T

source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T> IntoEither for T

source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
source§

impl<Unshared, Shared> IntoShared<Shared> for Unshared
where Shared: FromUnshared<Unshared>,

source§

fn into_shared(self) -> Shared

Creates a shared type from an unshared type.
source§

impl<T> Same for T

§

type Output = T

Should always be Self
source§

impl<T> ToOwned for T
where T: Clone,

§

type Owned = T

The resulting type after obtaining ownership.
source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
source§

impl<T> WithSubscriber for T

source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more