Class CaPool.IssuancePolicy.Builder (2.42.0)

public static final class CaPool.IssuancePolicy.Builder extends GeneratedMessageV3.Builder<CaPool.IssuancePolicy.Builder> implements CaPool.IssuancePolicyOrBuilder

Defines controls over all certificate issuance within a CaPool.

Protobuf type google.cloud.security.privateca.v1.CaPool.IssuancePolicy

Static Methods

getDescriptor()

public static final Descriptors.Descriptor getDescriptor()
Returns
TypeDescription
Descriptor

Methods

addAllAllowedKeyTypes(Iterable<? extends CaPool.IssuancePolicy.AllowedKeyType> values)

public CaPool.IssuancePolicy.Builder addAllAllowedKeyTypes(Iterable<? extends CaPool.IssuancePolicy.AllowedKeyType> values)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valuesIterable<? extends com.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType>
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType value)

public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType value)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueCaPool.IssuancePolicy.AllowedKeyType
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)

public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
builderForValueCaPool.IssuancePolicy.AllowedKeyType.Builder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)

public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameters
NameDescription
indexint
valueCaPool.IssuancePolicy.AllowedKeyType
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)

public CaPool.IssuancePolicy.Builder addAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameters
NameDescription
indexint
builderForValueCaPool.IssuancePolicy.AllowedKeyType.Builder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

addAllowedKeyTypesBuilder()

public CaPool.IssuancePolicy.AllowedKeyType.Builder addAllowedKeyTypesBuilder()

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.AllowedKeyType.Builder

addAllowedKeyTypesBuilder(int index)

public CaPool.IssuancePolicy.AllowedKeyType.Builder addAllowedKeyTypesBuilder(int index)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
indexint
Returns
TypeDescription
CaPool.IssuancePolicy.AllowedKeyType.Builder

addRepeatedField(Descriptors.FieldDescriptor field, Object value)

public CaPool.IssuancePolicy.Builder addRepeatedField(Descriptors.FieldDescriptor field, Object value)
Parameters
NameDescription
fieldFieldDescriptor
valueObject
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

build()

public CaPool.IssuancePolicy build()
Returns
TypeDescription
CaPool.IssuancePolicy

buildPartial()

public CaPool.IssuancePolicy buildPartial()
Returns
TypeDescription
CaPool.IssuancePolicy

clear()

public CaPool.IssuancePolicy.Builder clear()
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

clearAllowedIssuanceModes()

public CaPool.IssuancePolicy.Builder clearAllowedIssuanceModes()

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.Builder

clearAllowedKeyTypes()

public CaPool.IssuancePolicy.Builder clearAllowedKeyTypes()

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.Builder

clearBaselineValues()

public CaPool.IssuancePolicy.Builder clearBaselineValues()

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.Builder

clearField(Descriptors.FieldDescriptor field)

public CaPool.IssuancePolicy.Builder clearField(Descriptors.FieldDescriptor field)
Parameter
NameDescription
fieldFieldDescriptor
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

clearIdentityConstraints()

public CaPool.IssuancePolicy.Builder clearIdentityConstraints()

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.Builder

clearMaximumLifetime()

public CaPool.IssuancePolicy.Builder clearMaximumLifetime()

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.Builder

clearOneof(Descriptors.OneofDescriptor oneof)

public CaPool.IssuancePolicy.Builder clearOneof(Descriptors.OneofDescriptor oneof)
Parameter
NameDescription
oneofOneofDescriptor
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

clearPassthroughExtensions()

public CaPool.IssuancePolicy.Builder clearPassthroughExtensions()

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.Builder

clone()

public CaPool.IssuancePolicy.Builder clone()
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

getAllowedIssuanceModes()

public CaPool.IssuancePolicy.IssuanceModes getAllowedIssuanceModes()

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.IssuanceModes

The allowedIssuanceModes.

getAllowedIssuanceModesBuilder()

public CaPool.IssuancePolicy.IssuanceModes.Builder getAllowedIssuanceModesBuilder()

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.IssuanceModes.Builder

getAllowedIssuanceModesOrBuilder()

public CaPool.IssuancePolicy.IssuanceModesOrBuilder getAllowedIssuanceModesOrBuilder()

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CaPool.IssuancePolicy.IssuanceModesOrBuilder

getAllowedKeyTypes(int index)

public CaPool.IssuancePolicy.AllowedKeyType getAllowedKeyTypes(int index)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
indexint
Returns
TypeDescription
CaPool.IssuancePolicy.AllowedKeyType

getAllowedKeyTypesBuilder(int index)

public CaPool.IssuancePolicy.AllowedKeyType.Builder getAllowedKeyTypesBuilder(int index)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
indexint
Returns
TypeDescription
CaPool.IssuancePolicy.AllowedKeyType.Builder

getAllowedKeyTypesBuilderList()

public List<CaPool.IssuancePolicy.AllowedKeyType.Builder> getAllowedKeyTypesBuilderList()

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
List<Builder>

getAllowedKeyTypesCount()

public int getAllowedKeyTypesCount()

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
int

getAllowedKeyTypesList()

public List<CaPool.IssuancePolicy.AllowedKeyType> getAllowedKeyTypesList()

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
List<AllowedKeyType>

getAllowedKeyTypesOrBuilder(int index)

public CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder getAllowedKeyTypesOrBuilder(int index)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
indexint
Returns
TypeDescription
CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder

getAllowedKeyTypesOrBuilderList()

public List<? extends CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder> getAllowedKeyTypesOrBuilderList()

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
List<? extends com.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyTypeOrBuilder>

getBaselineValues()

public X509Parameters getBaselineValues()

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
X509Parameters

The baselineValues.

getBaselineValuesBuilder()

public X509Parameters.Builder getBaselineValuesBuilder()

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
X509Parameters.Builder

getBaselineValuesOrBuilder()

public X509ParametersOrBuilder getBaselineValuesOrBuilder()

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
X509ParametersOrBuilder

getDefaultInstanceForType()

public CaPool.IssuancePolicy getDefaultInstanceForType()
Returns
TypeDescription
CaPool.IssuancePolicy

getDescriptorForType()

public Descriptors.Descriptor getDescriptorForType()
Returns
TypeDescription
Descriptor
Overrides

getIdentityConstraints()

public CertificateIdentityConstraints getIdentityConstraints()

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CertificateIdentityConstraints

The identityConstraints.

getIdentityConstraintsBuilder()

public CertificateIdentityConstraints.Builder getIdentityConstraintsBuilder()

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CertificateIdentityConstraints.Builder

getIdentityConstraintsOrBuilder()

public CertificateIdentityConstraintsOrBuilder getIdentityConstraintsOrBuilder()

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CertificateIdentityConstraintsOrBuilder

getMaximumLifetime()

public Duration getMaximumLifetime()

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
Duration

The maximumLifetime.

getMaximumLifetimeBuilder()

public Duration.Builder getMaximumLifetimeBuilder()

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
Builder

getMaximumLifetimeOrBuilder()

public DurationOrBuilder getMaximumLifetimeOrBuilder()

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
DurationOrBuilder

getPassthroughExtensions()

public CertificateExtensionConstraints getPassthroughExtensions()

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CertificateExtensionConstraints

The passthroughExtensions.

getPassthroughExtensionsBuilder()

public CertificateExtensionConstraints.Builder getPassthroughExtensionsBuilder()

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CertificateExtensionConstraints.Builder

getPassthroughExtensionsOrBuilder()

public CertificateExtensionConstraintsOrBuilder getPassthroughExtensionsOrBuilder()

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
CertificateExtensionConstraintsOrBuilder

hasAllowedIssuanceModes()

public boolean hasAllowedIssuanceModes()

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
boolean

Whether the allowedIssuanceModes field is set.

hasBaselineValues()

public boolean hasBaselineValues()

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
boolean

Whether the baselineValues field is set.

hasIdentityConstraints()

public boolean hasIdentityConstraints()

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
boolean

Whether the identityConstraints field is set.

hasMaximumLifetime()

public boolean hasMaximumLifetime()

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
boolean

Whether the maximumLifetime field is set.

hasPassthroughExtensions()

public boolean hasPassthroughExtensions()

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Returns
TypeDescription
boolean

Whether the passthroughExtensions field is set.

internalGetFieldAccessorTable()

protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Returns
TypeDescription
FieldAccessorTable
Overrides

isInitialized()

public final boolean isInitialized()
Returns
TypeDescription
boolean
Overrides

mergeAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)

public CaPool.IssuancePolicy.Builder mergeAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueCaPool.IssuancePolicy.IssuanceModes
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

mergeBaselineValues(X509Parameters value)

public CaPool.IssuancePolicy.Builder mergeBaselineValues(X509Parameters value)

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueX509Parameters
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

mergeFrom(CaPool.IssuancePolicy other)

public CaPool.IssuancePolicy.Builder mergeFrom(CaPool.IssuancePolicy other)
Parameter
NameDescription
otherCaPool.IssuancePolicy
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)

public CaPool.IssuancePolicy.Builder mergeFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Parameters
NameDescription
inputCodedInputStream
extensionRegistryExtensionRegistryLite
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides
Exceptions
TypeDescription
IOException

mergeFrom(Message other)

public CaPool.IssuancePolicy.Builder mergeFrom(Message other)
Parameter
NameDescription
otherMessage
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

mergeIdentityConstraints(CertificateIdentityConstraints value)

public CaPool.IssuancePolicy.Builder mergeIdentityConstraints(CertificateIdentityConstraints value)

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueCertificateIdentityConstraints
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

mergeMaximumLifetime(Duration value)

public CaPool.IssuancePolicy.Builder mergeMaximumLifetime(Duration value)

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueDuration
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

mergePassthroughExtensions(CertificateExtensionConstraints value)

public CaPool.IssuancePolicy.Builder mergePassthroughExtensions(CertificateExtensionConstraints value)

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueCertificateExtensionConstraints
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

mergeUnknownFields(UnknownFieldSet unknownFields)

public final CaPool.IssuancePolicy.Builder mergeUnknownFields(UnknownFieldSet unknownFields)
Parameter
NameDescription
unknownFieldsUnknownFieldSet
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

removeAllowedKeyTypes(int index)

public CaPool.IssuancePolicy.Builder removeAllowedKeyTypes(int index)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
indexint
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)

public CaPool.IssuancePolicy.Builder setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes value)

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueCaPool.IssuancePolicy.IssuanceModes
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes.Builder builderForValue)

public CaPool.IssuancePolicy.Builder setAllowedIssuanceModes(CaPool.IssuancePolicy.IssuanceModes.Builder builderForValue)

Optional. If specified, then only methods allowed in the IssuanceModes may be used to issue Certificates.

.google.cloud.security.privateca.v1.CaPool.IssuancePolicy.IssuanceModes allowed_issuance_modes = 3 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
builderForValueCaPool.IssuancePolicy.IssuanceModes.Builder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)

public CaPool.IssuancePolicy.Builder setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType value)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameters
NameDescription
indexint
valueCaPool.IssuancePolicy.AllowedKeyType
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)

public CaPool.IssuancePolicy.Builder setAllowedKeyTypes(int index, CaPool.IssuancePolicy.AllowedKeyType.Builder builderForValue)

Optional. If any AllowedKeyType is specified, then the certificate request's public key must match one of the key types listed here. Otherwise, any key may be used.

repeated .google.cloud.security.privateca.v1.CaPool.IssuancePolicy.AllowedKeyType allowed_key_types = 1 [(.google.api.field_behavior) = OPTIONAL];

Parameters
NameDescription
indexint
builderForValueCaPool.IssuancePolicy.AllowedKeyType.Builder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setBaselineValues(X509Parameters value)

public CaPool.IssuancePolicy.Builder setBaselineValues(X509Parameters value)

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueX509Parameters
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setBaselineValues(X509Parameters.Builder builderForValue)

public CaPool.IssuancePolicy.Builder setBaselineValues(X509Parameters.Builder builderForValue)

Optional. A set of X.509 values that will be applied to all certificates issued through this CaPool. If a certificate request includes conflicting values for the same properties, they will be overwritten by the values defined here. If a certificate request uses a CertificateTemplate that defines conflicting predefined_values for the same properties, the certificate issuance request will fail.

.google.cloud.security.privateca.v1.X509Parameters baseline_values = 4 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
builderForValueX509Parameters.Builder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setField(Descriptors.FieldDescriptor field, Object value)

public CaPool.IssuancePolicy.Builder setField(Descriptors.FieldDescriptor field, Object value)
Parameters
NameDescription
fieldFieldDescriptor
valueObject
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

setIdentityConstraints(CertificateIdentityConstraints value)

public CaPool.IssuancePolicy.Builder setIdentityConstraints(CertificateIdentityConstraints value)

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueCertificateIdentityConstraints
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setIdentityConstraints(CertificateIdentityConstraints.Builder builderForValue)

public CaPool.IssuancePolicy.Builder setIdentityConstraints(CertificateIdentityConstraints.Builder builderForValue)

Optional. Describes constraints on identities that may appear in Certificates issued through this CaPool. If this is omitted, then this CaPool will not add restrictions on a certificate's identity.

.google.cloud.security.privateca.v1.CertificateIdentityConstraints identity_constraints = 5 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
builderForValueCertificateIdentityConstraints.Builder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setMaximumLifetime(Duration value)

public CaPool.IssuancePolicy.Builder setMaximumLifetime(Duration value)

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueDuration
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setMaximumLifetime(Duration.Builder builderForValue)

public CaPool.IssuancePolicy.Builder setMaximumLifetime(Duration.Builder builderForValue)

Optional. The maximum lifetime allowed for issued Certificates. Note that if the issuing CertificateAuthority expires before a Certificate's requested maximum_lifetime, the effective lifetime will be explicitly truncated to match it.

.google.protobuf.Duration maximum_lifetime = 2 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
builderForValueBuilder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setPassthroughExtensions(CertificateExtensionConstraints value)

public CaPool.IssuancePolicy.Builder setPassthroughExtensions(CertificateExtensionConstraints value)

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
valueCertificateExtensionConstraints
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setPassthroughExtensions(CertificateExtensionConstraints.Builder builderForValue)

public CaPool.IssuancePolicy.Builder setPassthroughExtensions(CertificateExtensionConstraints.Builder builderForValue)

Optional. Describes the set of X.509 extensions that may appear in a Certificate issued through this CaPool. If a certificate request sets extensions that don't appear in the passthrough_extensions, those extensions will be dropped. If a certificate request uses a CertificateTemplate with predefined_values that don't appear here, the certificate issuance request will fail. If this is omitted, then this CaPool will not add restrictions on a certificate's X.509 extensions. These constraints do not apply to X.509 extensions set in this CaPool's baseline_values.

.google.cloud.security.privateca.v1.CertificateExtensionConstraints passthrough_extensions = 6 [(.google.api.field_behavior) = OPTIONAL];

Parameter
NameDescription
builderForValueCertificateExtensionConstraints.Builder
Returns
TypeDescription
CaPool.IssuancePolicy.Builder

setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)

public CaPool.IssuancePolicy.Builder setRepeatedField(Descriptors.FieldDescriptor field, int index, Object value)
Parameters
NameDescription
fieldFieldDescriptor
indexint
valueObject
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides

setUnknownFields(UnknownFieldSet unknownFields)

public final CaPool.IssuancePolicy.Builder setUnknownFields(UnknownFieldSet unknownFields)
Parameter
NameDescription
unknownFieldsUnknownFieldSet
Returns
TypeDescription
CaPool.IssuancePolicy.Builder
Overrides