Certificate(mapping=None, *, ignore_unknown_fields=False, **kwargs)
A Certificate corresponds to a signed X.509 certificate issued by a CertificateAuthority.
This message has oneof
_ fields (mutually exclusive fields).
For each oneof, at most one member field can be set at the same time.
Setting any member of the oneof automatically clears all other
members.
.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields
Attributes
Name | Description |
name |
str
Output only. The resource name for this Certificate in the format ``projects/*/locations/*/caPools/*/certificates/*``. |
pem_csr |
str
Immutable. A pem-encoded X.509 certificate signing request (CSR). This field is a member of `oneof`_ ``certificate_config``. |
config |
google.cloud.security.privateca_v1.types.CertificateConfig
Immutable. A description of the certificate and key that does not require X.509 or ASN.1. This field is a member of `oneof`_ ``certificate_config``. |
issuer_certificate_authority |
str
Output only. The resource name of the issuing CertificateAuthority in the format ``projects/*/locations/*/caPools/*/certificateAuthorities/*``. |
lifetime |
google.protobuf.duration_pb2.Duration
Required. Immutable. The desired lifetime of a certificate. Used to create the "not_before_time" and "not_after_time" fields inside an X.509 certificate. Note that the lifetime may be truncated if it would extend past the life of any certificate authority in the issuing chain. |
certificate_template |
str
Immutable. The resource name for a CertificateTemplate used to issue this certificate, in the format ``projects/*/locations/*/certificateTemplates/*``. If this is specified, the caller must have the necessary permission to use this template. If this is omitted, no template will be used. This template must be in the same location as the Certificate. |
subject_mode |
google.cloud.security.privateca_v1.types.SubjectRequestMode
Immutable. Specifies how the Certificate's identity fields are to be decided. If this is omitted, the ``DEFAULT`` subject mode will be used. |
revocation_details |
google.cloud.security.privateca_v1.types.Certificate.RevocationDetails
Output only. Details regarding the revocation of this Certificate. This Certificate is considered revoked if and only if this field is present. |
pem_certificate |
str
Output only. The pem-encoded, signed X.509 certificate. |
certificate_description |
google.cloud.security.privateca_v1.types.CertificateDescription
Output only. A structured description of the issued X.509 certificate. |
pem_certificate_chain |
Sequence[str]
Output only. The chain that may be used to verify the X.509 certificate. Expected to be in issuer-to-root order according to RFC 5246. |
create_time |
google.protobuf.timestamp_pb2.Timestamp
Output only. The time at which this Certificate was created. |
update_time |
google.protobuf.timestamp_pb2.Timestamp
Output only. The time at which this Certificate was updated. |
labels |
Mapping[str, str]
Optional. Labels with user-defined metadata. |
Inheritance
builtins.object > proto.message.Message > CertificateClasses
LabelsEntry
LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)
The abstract base class for a message.
Name | Description |
kwargs |
dict
Keys and values corresponding to the fields of the message. |
mapping |
Union[dict, `.Message`]
A dictionary or message to be used to determine the values for this message. |
ignore_unknown_fields |
Optional(bool)
If True, do not raise errors for unknown fields. Only applied if |
RevocationDetails
RevocationDetails(mapping=None, *, ignore_unknown_fields=False, **kwargs)
Describes fields that are relavent to the revocation of a Certificate.