Struct aws_sdk_route53::operation::create_key_signing_key::builders::CreateKeySigningKeyFluentBuilder
source · pub struct CreateKeySigningKeyFluentBuilder { /* private fields */ }
Expand description
Fluent builder constructing a request to CreateKeySigningKey
.
Creates a new key-signing key (KSK) associated with a hosted zone. You can only have two KSKs per hosted zone.
Implementations§
source§impl CreateKeySigningKeyFluentBuilder
impl CreateKeySigningKeyFluentBuilder
sourcepub fn as_input(&self) -> &CreateKeySigningKeyInputBuilder
pub fn as_input(&self) -> &CreateKeySigningKeyInputBuilder
Access the CreateKeySigningKey as a reference.
sourcepub async fn send(
self
) -> Result<CreateKeySigningKeyOutput, SdkError<CreateKeySigningKeyError, HttpResponse>>
pub async fn send( self ) -> Result<CreateKeySigningKeyOutput, SdkError<CreateKeySigningKeyError, HttpResponse>>
Sends the request and returns the response.
If an error occurs, an SdkError
will be returned with additional details that
can be matched against.
By default, any retryable failures will be retried twice. Retry behavior is configurable with the RetryConfig, which can be set when configuring the client.
sourcepub fn customize(
self
) -> CustomizableOperation<CreateKeySigningKeyOutput, CreateKeySigningKeyError, Self>
pub fn customize( self ) -> CustomizableOperation<CreateKeySigningKeyOutput, CreateKeySigningKeyError, Self>
Consumes this builder, creating a customizable operation that can be modified before being sent.
sourcepub fn caller_reference(self, input: impl Into<String>) -> Self
pub fn caller_reference(self, input: impl Into<String>) -> Self
A unique string that identifies the request.
sourcepub fn set_caller_reference(self, input: Option<String>) -> Self
pub fn set_caller_reference(self, input: Option<String>) -> Self
A unique string that identifies the request.
sourcepub fn get_caller_reference(&self) -> &Option<String>
pub fn get_caller_reference(&self) -> &Option<String>
A unique string that identifies the request.
sourcepub fn hosted_zone_id(self, input: impl Into<String>) -> Self
pub fn hosted_zone_id(self, input: impl Into<String>) -> Self
The unique string (ID) used to identify a hosted zone.
sourcepub fn set_hosted_zone_id(self, input: Option<String>) -> Self
pub fn set_hosted_zone_id(self, input: Option<String>) -> Self
The unique string (ID) used to identify a hosted zone.
sourcepub fn get_hosted_zone_id(&self) -> &Option<String>
pub fn get_hosted_zone_id(&self) -> &Option<String>
The unique string (ID) used to identify a hosted zone.
sourcepub fn key_management_service_arn(self, input: impl Into<String>) -> Self
pub fn key_management_service_arn(self, input: impl Into<String>) -> Self
The Amazon resource name (ARN) for a customer managed key in Key Management Service (KMS). The KeyManagementServiceArn
must be unique for each key-signing key (KSK) in a single hosted zone. To see an example of KeyManagementServiceArn
that grants the correct permissions for DNSSEC, scroll down to Example.
You must configure the customer managed customer managed key as follows:
- Status
-
Enabled
- Key spec
-
ECC_NIST_P256
- Key usage
-
Sign and verify
- Key policy
-
The key policy must give permission for the following actions:
-
DescribeKey
-
GetPublicKey
-
Sign
The key policy must also include the Amazon Route 53 service in the principal for your account. Specify the following:
-
"Service": "dnssec-route53.amazonaws.com"
-
For more information about working with a customer managed key in KMS, see Key Management Service concepts.
sourcepub fn set_key_management_service_arn(self, input: Option<String>) -> Self
pub fn set_key_management_service_arn(self, input: Option<String>) -> Self
The Amazon resource name (ARN) for a customer managed key in Key Management Service (KMS). The KeyManagementServiceArn
must be unique for each key-signing key (KSK) in a single hosted zone. To see an example of KeyManagementServiceArn
that grants the correct permissions for DNSSEC, scroll down to Example.
You must configure the customer managed customer managed key as follows:
- Status
-
Enabled
- Key spec
-
ECC_NIST_P256
- Key usage
-
Sign and verify
- Key policy
-
The key policy must give permission for the following actions:
-
DescribeKey
-
GetPublicKey
-
Sign
The key policy must also include the Amazon Route 53 service in the principal for your account. Specify the following:
-
"Service": "dnssec-route53.amazonaws.com"
-
For more information about working with a customer managed key in KMS, see Key Management Service concepts.
sourcepub fn get_key_management_service_arn(&self) -> &Option<String>
pub fn get_key_management_service_arn(&self) -> &Option<String>
The Amazon resource name (ARN) for a customer managed key in Key Management Service (KMS). The KeyManagementServiceArn
must be unique for each key-signing key (KSK) in a single hosted zone. To see an example of KeyManagementServiceArn
that grants the correct permissions for DNSSEC, scroll down to Example.
You must configure the customer managed customer managed key as follows:
- Status
-
Enabled
- Key spec
-
ECC_NIST_P256
- Key usage
-
Sign and verify
- Key policy
-
The key policy must give permission for the following actions:
-
DescribeKey
-
GetPublicKey
-
Sign
The key policy must also include the Amazon Route 53 service in the principal for your account. Specify the following:
-
"Service": "dnssec-route53.amazonaws.com"
-
For more information about working with a customer managed key in KMS, see Key Management Service concepts.
sourcepub fn name(self, input: impl Into<String>) -> Self
pub fn name(self, input: impl Into<String>) -> Self
A string used to identify a key-signing key (KSK). Name
can include numbers, letters, and underscores (_). Name
must be unique for each key-signing key in the same hosted zone.
sourcepub fn set_name(self, input: Option<String>) -> Self
pub fn set_name(self, input: Option<String>) -> Self
A string used to identify a key-signing key (KSK). Name
can include numbers, letters, and underscores (_). Name
must be unique for each key-signing key in the same hosted zone.
sourcepub fn get_name(&self) -> &Option<String>
pub fn get_name(&self) -> &Option<String>
A string used to identify a key-signing key (KSK). Name
can include numbers, letters, and underscores (_). Name
must be unique for each key-signing key in the same hosted zone.
sourcepub fn status(self, input: impl Into<String>) -> Self
pub fn status(self, input: impl Into<String>) -> Self
A string specifying the initial status of the key-signing key (KSK). You can set the value to ACTIVE
or INACTIVE
.
sourcepub fn set_status(self, input: Option<String>) -> Self
pub fn set_status(self, input: Option<String>) -> Self
A string specifying the initial status of the key-signing key (KSK). You can set the value to ACTIVE
or INACTIVE
.
sourcepub fn get_status(&self) -> &Option<String>
pub fn get_status(&self) -> &Option<String>
A string specifying the initial status of the key-signing key (KSK). You can set the value to ACTIVE
or INACTIVE
.
Trait Implementations§
source§impl Clone for CreateKeySigningKeyFluentBuilder
impl Clone for CreateKeySigningKeyFluentBuilder
source§fn clone(&self) -> CreateKeySigningKeyFluentBuilder
fn clone(&self) -> CreateKeySigningKeyFluentBuilder
1.0.0 · source§fn clone_from(&mut self, source: &Self)
fn clone_from(&mut self, source: &Self)
source
. Read moreAuto Trait Implementations§
impl Freeze for CreateKeySigningKeyFluentBuilder
impl !RefUnwindSafe for CreateKeySigningKeyFluentBuilder
impl Send for CreateKeySigningKeyFluentBuilder
impl Sync for CreateKeySigningKeyFluentBuilder
impl Unpin for CreateKeySigningKeyFluentBuilder
impl !UnwindSafe for CreateKeySigningKeyFluentBuilder
Blanket Implementations§
source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
source§impl<T> Instrument for T
impl<T> Instrument for T
source§fn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
source§fn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
source§impl<T> IntoEither for T
impl<T> IntoEither for T
source§fn into_either(self, into_left: bool) -> Either<Self, Self>
fn into_either(self, into_left: bool) -> Either<Self, Self>
self
into a Left
variant of Either<Self, Self>
if into_left
is true
.
Converts self
into a Right
variant of Either<Self, Self>
otherwise. Read moresource§fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
self
into a Left
variant of Either<Self, Self>
if into_left(&self)
returns true
.
Converts self
into a Right
variant of Either<Self, Self>
otherwise. Read more