IssuancePolicy

google_cloud_security_privateca_v1::model::ca_pool

Struct IssuancePolicy 

Source 
#[non_exhaustive]
pub struct IssuancePolicy {
    pub allowed_key_types: Vec<AllowedKeyType>,
    pub backdate_duration: Option<Duration>,
    pub maximum_lifetime: Option<Duration>,
    pub allowed_issuance_modes: Option<IssuanceModes>,
    pub baseline_values: Option<X509Parameters>,
    pub identity_constraints: Option<CertificateIdentityConstraints>,
    pub passthrough_extensions: Option<CertificateExtensionConstraints>,
    /* private fields */
}
Expand description

Defines controls over all certificate issuance within a CaPool.

Fields (Non-exhaustive)§

This struct is marked as non-exhaustive
Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.
§allowed_key_types: Vec<AllowedKeyType>

Optional. If any AllowedKeyType is specified, then the certificate request’s public key must match one of the key types listed here. Otherwise, any key may be used.

§backdate_duration: Option<Duration>

Optional. The duration to backdate all certificates issued from this CaPool. If not set, the certificates will be issued with a not_before_time of the issuance time (i.e. the current time). If set, the certificates will be issued with a not_before_time of the issuance time minus the backdate_duration. The not_after_time will be adjusted to preserve the requested lifetime. The backdate_duration must be less than or equal to 48 hours.

§maximum_lifetime: Option<Duration>

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate resource’s requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

§allowed_issuance_modes: Option<IssuanceModes>

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

§baseline_values: Option<X509Parameters>

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

§identity_constraints: Option<CertificateIdentityConstraints>

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate’s identity.

§passthrough_extensions: Option<CertificateExtensionConstraints>

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don’t appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don’t appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate’s X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool’s baseline_values.

Implementations§

Source§

impl IssuancePolicy

Source

pub fn new() -> Self

Source

pub fn set_allowed_key_types<T, V>(self, v: T) -> Self
where T: IntoIterator<Item = V>, V: Into<AllowedKeyType>,

Sets the value of allowed_key_types.

§Example
use google_cloud_security_privateca_v1::model::ca_pool::issuance_policy::AllowedKeyType;
let x = IssuancePolicy::new()
    .set_allowed_key_types([
        AllowedKeyType::default()/* use setters */,
        AllowedKeyType::default()/* use (different) setters */,
    ]);
Source

pub fn set_backdate_duration<T>(self, v: T) -> Self
where T: Into<Duration>,

Sets the value of backdate_duration.

§Example
use wkt::Duration;
let x = IssuancePolicy::new().set_backdate_duration(Duration::default()/* use setters */);
Source

pub fn set_or_clear_backdate_duration<T>(self, v: Option<T>) -> Self
where T: Into<Duration>,

Sets or clears the value of backdate_duration.

§Example
use wkt::Duration;
let x = IssuancePolicy::new().set_or_clear_backdate_duration(Some(Duration::default()/* use setters */));
let x = IssuancePolicy::new().set_or_clear_backdate_duration(None::<Duration>);
Source

pub fn set_maximum_lifetime<T>(self, v: T) -> Self
where T: Into<Duration>,

Sets the value of maximum_lifetime.

§Example
use wkt::Duration;
let x = IssuancePolicy::new().set_maximum_lifetime(Duration::default()/* use setters */);
Source

pub fn set_or_clear_maximum_lifetime<T>(self, v: Option<T>) -> Self
where T: Into<Duration>,

Sets or clears the value of maximum_lifetime.

§Example
use wkt::Duration;
let x = IssuancePolicy::new().set_or_clear_maximum_lifetime(Some(Duration::default()/* use setters */));
let x = IssuancePolicy::new().set_or_clear_maximum_lifetime(None::<Duration>);
Source

pub fn set_allowed_issuance_modes<T>(self, v: T) -> Self
where T: Into<IssuanceModes>,

Sets the value of allowed_issuance_modes.

§Example
use google_cloud_security_privateca_v1::model::ca_pool::issuance_policy::IssuanceModes;
let x = IssuancePolicy::new().set_allowed_issuance_modes(IssuanceModes::default()/* use setters */);
Source

pub fn set_or_clear_allowed_issuance_modes<T>(self, v: Option<T>) -> Self
where T: Into<IssuanceModes>,

Sets or clears the value of allowed_issuance_modes.

§Example
use google_cloud_security_privateca_v1::model::ca_pool::issuance_policy::IssuanceModes;
let x = IssuancePolicy::new().set_or_clear_allowed_issuance_modes(Some(IssuanceModes::default()/* use setters */));
let x = IssuancePolicy::new().set_or_clear_allowed_issuance_modes(None::<IssuanceModes>);
Source

pub fn set_baseline_values<T>(self, v: T) -> Self
where T: Into<X509Parameters>,

Sets the value of baseline_values.

§Example
use google_cloud_security_privateca_v1::model::X509Parameters;
let x = IssuancePolicy::new().set_baseline_values(X509Parameters::default()/* use setters */);
Source

pub fn set_or_clear_baseline_values<T>(self, v: Option<T>) -> Self
where T: Into<X509Parameters>,

Sets or clears the value of baseline_values.

§Example
use google_cloud_security_privateca_v1::model::X509Parameters;
let x = IssuancePolicy::new().set_or_clear_baseline_values(Some(X509Parameters::default()/* use setters */));
let x = IssuancePolicy::new().set_or_clear_baseline_values(None::<X509Parameters>);
Source

pub fn set_identity_constraints<T>(self, v: T) -> Self
where T: Into<CertificateIdentityConstraints>,

Sets the value of identity_constraints.

§Example
use google_cloud_security_privateca_v1::model::CertificateIdentityConstraints;
let x = IssuancePolicy::new().set_identity_constraints(CertificateIdentityConstraints::default()/* use setters */);
Source

pub fn set_or_clear_identity_constraints<T>(self, v: Option<T>) -> Self
where T: Into<CertificateIdentityConstraints>,

Sets or clears the value of identity_constraints.

§Example
use google_cloud_security_privateca_v1::model::CertificateIdentityConstraints;
let x = IssuancePolicy::new().set_or_clear_identity_constraints(Some(CertificateIdentityConstraints::default()/* use setters */));
let x = IssuancePolicy::new().set_or_clear_identity_constraints(None::<CertificateIdentityConstraints>);
Source

pub fn set_passthrough_extensions<T>(self, v: T) -> Self
where T: Into<CertificateExtensionConstraints>,

Sets the value of passthrough_extensions.

§Example
use google_cloud_security_privateca_v1::model::CertificateExtensionConstraints;
let x = IssuancePolicy::new().set_passthrough_extensions(CertificateExtensionConstraints::default()/* use setters */);
Source

pub fn set_or_clear_passthrough_extensions<T>(self, v: Option<T>) -> Self
where T: Into<CertificateExtensionConstraints>,

Sets or clears the value of passthrough_extensions.

§Example
use google_cloud_security_privateca_v1::model::CertificateExtensionConstraints;
let x = IssuancePolicy::new().set_or_clear_passthrough_extensions(Some(CertificateExtensionConstraints::default()/* use setters */));
let x = IssuancePolicy::new().set_or_clear_passthrough_extensions(None::<CertificateExtensionConstraints>);

Trait Implementations§

Source§

impl Clone for IssuancePolicy

Source§

fn clone(&self) -> IssuancePolicy

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for IssuancePolicy

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for IssuancePolicy

Source§

fn default() -> IssuancePolicy

Returns the “default value” for a type. Read more
Source§

impl Message for IssuancePolicy

Source§

fn typename() -> &'static str

The typename of this message.
Source§

impl PartialEq for IssuancePolicy

Source§

fn eq(&self, other: &IssuancePolicy) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl StructuralPartialEq for IssuancePolicy

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,