REST Resource: projects.locations.certificateIssuanceConfigs

Resource: CertificateIssuanceConfig

CertificateIssuanceConfig specifies how to issue and manage a certificate.

JSON representation 
{
  "name": string,
  "createTime": string,
  "updateTime": string,
  "labels": {
    string: string,
    ...
  },
  "description": string,
  "certificateAuthorityConfig": {
    object (CertificateAuthorityConfig)
  },
  "lifetime": string,
  "rotationWindowPercentage": integer,
  "keyAlgorithm": enum (KeyAlgorithm)
}
Fields
name

string

A user-defined name of the certificate issuance config. CertificateIssuanceConfig names must be unique globally and match pattern projects/*/locations/*/certificateIssuanceConfigs/*.
createTime

string (Timestamp format)

Output only. The creation timestamp of a CertificateIssuanceConfig.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
updateTime

string (Timestamp format)

Output only. The last update timestamp of a CertificateIssuanceConfig.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
labels

map (key: string, value: string)

Set of labels associated with a CertificateIssuanceConfig.

An object containing a list of "key": value pairs. Example: { "name": "wrench", "mass": "1.3kg", "count": "3" }.
description

string

One or more paragraphs of text description of a CertificateIssuanceConfig.
certificateAuthorityConfig

object (CertificateAuthorityConfig)

Required. The CA that issues the workload certificate. It includes the CA address, type, authentication to CA service, etc.
lifetime

string (Duration format)

Required. Workload certificate lifetime requested.

A duration in seconds with up to nine fractional digits, ending with 's'. Example: "3.5s".
rotationWindowPercentage

integer

Required. Specifies the percentage of elapsed time of the certificate lifetime to wait before renewing the certificate. Must be a number between 1-99, inclusive.
keyAlgorithm

enum (KeyAlgorithm)

Required. The key algorithm to use when generating the private key.

CertificateAuthorityConfig

The CA that issues the workload certificate. It includes CA address, type, authentication to CA service, etc.

JSON representation 
{

  // Union field kind can be only one of the following:
  "certificateAuthorityServiceConfig": {
    object (CertificateAuthorityServiceConfig)
  }
  // End of list of possible types for union field kind.
}
Fields

Union field kind.

kind can be only one of the following:
certificateAuthorityServiceConfig

object (CertificateAuthorityServiceConfig)

Defines a CertificateAuthorityServiceConfig.

CertificateAuthorityServiceConfig

Contains information required to contact CA service.

JSON representation 
{
  "caPool": string
}
Fields
caPool

string

Required. A CA pool resource used to issue a certificate. The CA pool string has a relative resource path following the form "projects/{project}/locations/{location}/caPools/{caPool}".

KeyAlgorithm

The type of keypair to generate.

Enums
KEY_ALGORITHM_UNSPECIFIED Unspecified key algorithm.
RSA_2048 Specifies RSA with a 2048-bit modulus.
ECDSA_P256 Specifies ECDSA with curve P256.

Methods

create

 Creates a new CertificateIssuanceConfig in a given project and location.

delete

 Deletes a single CertificateIssuanceConfig.

get

 Gets details of a single CertificateIssuanceConfig.

list

 Lists CertificateIssuanceConfigs in a given project and location.