Certificate Authority API C++ Client Library

An idiomatic C++ client library for the Certificate Authority API. The Certificate Authority Service API is a highly-available, scalable service that enables you to simplify and automate the management of private certificate authorities (CAs) while staying in control of your private keys.

While this library is GA, please note Google Cloud C++ client libraries do not follow Semantic Versioning.


The following shows the code that you'll run in the google/cloud/privateca/quickstart/ directory, which should give you a taste of the Certificate Authority API C++ client library API.

#include "google/cloud/privateca/v1/certificate_authority_client.h"
#include "google/cloud/location.h"
#include <iostream>

int main(int argc, char* argv[]) try {
  if (argc != 3) {
    std::cerr << "Usage: " << argv[0] << " project-id location-id\n";
    return 1;

  auto const location = google::cloud::Location(argv[1], argv[2]);

  namespace privateca = ::google::cloud::privateca_v1;
  auto client = privateca::CertificateAuthorityServiceClient(

  for (auto ca_pool : client.ListCaPools(location.FullName())) {
    if (!ca_pool) throw std::move(ca_pool).status();
    std::cout << ca_pool->DebugString() << "\n";

  return 0;
} catch (google::cloud::Status const& status) {
  std::cerr << "google::cloud::Status thrown: " << status << "\n";
  return 1;

Main classes

The main class in this library is privateca_v1::CertificateAuthorityServiceClient. All RPCs are exposed as member functions of this class. Other classes provide helpers, configuration parameters, and infrastructure to mock privateca_v1::CertificateAuthorityServiceClient when testing your application.

More Information