Class CertificateAuthority (2.3.0)

public sealed class CertificateAuthority : IMessage<CertificateAuthority>, IEquatable<CertificateAuthority>, IDeepCloneable<CertificateAuthority>, IBufferMessage, IMessage

A [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] represents an individual Certificate Authority. A [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] can be used to create [Certificates][google.cloud.security.privateca.v1.Certificate].

Inheritance

Object > CertificateAuthority

Namespace

Google.Cloud.Security.PrivateCA.V1

Assembly

Google.Cloud.Security.PrivateCA.V1.dll

Constructors

CertificateAuthority()

public CertificateAuthority()

CertificateAuthority(CertificateAuthority)

public CertificateAuthority(CertificateAuthority other)
Parameter
NameDescription
otherCertificateAuthority

Properties

AccessUrls

public CertificateAuthority.Types.AccessUrls AccessUrls { get; set; }

Output only. URLs for accessing content published by this CA, such as the CA certificate and CRLs.

Property Value
TypeDescription
CertificateAuthority.Types.AccessUrls

CaCertificateDescriptions

public RepeatedField<CertificateDescription> CaCertificateDescriptions { get; }

Output only. A structured description of this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority]'s CA certificate and its issuers. Ordered as self-to-root.

Property Value
TypeDescription
RepeatedField<CertificateDescription>

CertificateAuthorityName

public CertificateAuthorityName CertificateAuthorityName { get; set; }

CertificateAuthorityName-typed view over the Name resource name property.

Property Value
TypeDescription
CertificateAuthorityName

Config

public CertificateConfig Config { get; set; }

Required. Immutable. The config used to create a self-signed X.509 certificate or CSR.

Property Value
TypeDescription
CertificateConfig

CreateTime

public Timestamp CreateTime { get; set; }

Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] was created.

Property Value
TypeDescription
Timestamp

DeleteTime

public Timestamp DeleteTime { get; set; }

Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] was soft deleted, if it is in the [DELETED][google.cloud.security.privateca.v1.CertificateAuthority.State.DELETED] state.

Property Value
TypeDescription
Timestamp

ExpireTime

public Timestamp ExpireTime { get; set; }

Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] will be permanently purged, if it is in the [DELETED][google.cloud.security.privateca.v1.CertificateAuthority.State.DELETED] state.

Property Value
TypeDescription
Timestamp

GcsBucket

public string GcsBucket { get; set; }

Immutable. The name of a Cloud Storage bucket where this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] will publish content, such as the CA certificate and CRLs. This must be a bucket name, without any prefixes (such as gs://) or suffixes (such as .googleapis.com). For example, to use a bucket named my-bucket, you would simply specify my-bucket. If not specified, a managed bucket will be created.

Property Value
TypeDescription
String

KeySpec

public CertificateAuthority.Types.KeyVersionSpec KeySpec { get; set; }

Required. Immutable. Used when issuing certificates for this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority]. If this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] is a self-signed CertificateAuthority, this key is also used to sign the self-signed CA certificate. Otherwise, it is used to sign a CSR.

Property Value
TypeDescription
CertificateAuthority.Types.KeyVersionSpec

Labels

public MapField<string, string> Labels { get; }

Optional. Labels with user-defined metadata.

Property Value
TypeDescription
MapField<String, String>

Lifetime

public Duration Lifetime { get; set; }

Required. Immutable. The desired lifetime of the CA certificate. Used to create the "not_before_time" and "not_after_time" fields inside an X.509 certificate.

Property Value
TypeDescription
Duration

Name

public string Name { get; set; }

Output only. The resource name for this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] in the format projects/*/locations/*/caPools/*/certificateAuthorities/*.

Property Value
TypeDescription
String

PemCaCertificates

public RepeatedField<string> PemCaCertificates { get; }

Output only. This [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority]'s certificate chain, including the current [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority]'s certificate. Ordered such that the root issuer is the final element (consistent with RFC 5246). For a self-signed CA, this will only list the current [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority]'s certificate.

Property Value
TypeDescription
RepeatedField<String>

State

public CertificateAuthority.Types.State State { get; set; }

Output only. The [State][google.cloud.security.privateca.v1.CertificateAuthority.State] for this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority].

Property Value
TypeDescription
CertificateAuthority.Types.State

SubordinateConfig

public SubordinateConfig SubordinateConfig { get; set; }

Optional. If this is a subordinate [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority], this field will be set with the subordinate configuration, which describes its issuers. This may be updated, but this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] must continue to validate.

Property Value
TypeDescription
SubordinateConfig

Tier

public CaPool.Types.Tier Tier { get; set; }

Output only. The [CaPool.Tier][google.cloud.security.privateca.v1.CaPool.Tier] of the [CaPool][google.cloud.security.privateca.v1.CaPool] that includes this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority].

Property Value
TypeDescription
CaPool.Types.Tier

Type

public CertificateAuthority.Types.Type Type { get; set; }

Required. Immutable. The [Type][google.cloud.security.privateca.v1.CertificateAuthority.Type] of this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority].

Property Value
TypeDescription
CertificateAuthority.Types.Type

UpdateTime

public Timestamp UpdateTime { get; set; }

Output only. The time at which this [CertificateAuthority][google.cloud.security.privateca.v1.CertificateAuthority] was last updated.

Property Value
TypeDescription
Timestamp