AllowedSubjectAltNames(mapping=None, *, ignore_unknown_fields=False, **kwargs)AllowedSubjectAltNames specifies the allowed values for SubjectAltNames by the CertificateAuthority when issuing Certificates.
Attributes | |
|---|---|
| Name | Description |
allowed_dns_names |
Sequence[str]
Optional. Contains valid, fully-qualified host names. Glob patterns are also supported. To allow an explicit wildcard certificate, escape with backlash (i.e. "*"). E.g. for globbed entries: '*bar.com' will allow foo.bar.com, but not *.bar.com, unless the allow_globbing_dns_wildcards field is set. E.g. for wildcard entries: '*.bar.com' will allow '*.bar.com', but not 'foo.bar.com'. |
allowed_uris |
Sequence[str]
Optional. Contains valid RFC 3986 URIs. Glob patterns are also supported. To match across path seperators (i.e. '/') use the double star glob pattern (i.e. '**'). |
allowed_email_addresses |
Sequence[str]
Optional. Contains valid RFC 2822 E-mail addresses. Glob patterns are also supported. |
allowed_ips |
Sequence[str]
Optional. Contains valid 32-bit IPv4 addresses and subnet ranges or RFC 4291 IPv6 addresses and subnet ranges. Subnet ranges are specified using the '/' notation (e.g. 10.0.0.0/8, 2001:700:300:1800::/64). Glob patterns are supported only for ip address entries (i.e. not for subnet ranges). |
allow_globbing_dns_wildcards |
bool
Optional. Specifies if glob patterns used for allowed_dns_names allows wildcard certificates. |
allow_custom_sans |
bool
Optional. Specifies if to allow custom X509Extension values. |