AllowedSubjectAltNames(mapping=None, *, ignore_unknown_fields=False, **kwargs)
AllowedSubjectAltNames specifies the allowed values for SubjectAltNames by the CertificateAuthority when issuing Certificates.
Attributes | |
---|---|
Name | Description |
allowed_dns_names |
MutableSequence[str]
Optional. Contains valid, fully-qualified host names. Glob patterns are also supported. To allow an explicit wildcard certificate, escape with backlash (i.e. \* ). E.g. for
globbed entries: *bar.com will allow foo.bar.com ,
but not *.bar.com , unless the
allow_globbing_dns_wildcards
field is set. E.g. for wildcard entries: \*.bar.com will
allow *.bar.com , but not foo.bar.com .
|
allowed_uris |
MutableSequence[str]
Optional. Contains valid RFC 3986 URIs. Glob patterns are also supported. To match across path seperators (i.e. '/') use the double star glob pattern (i.e. '**'). |
allowed_email_addresses |
MutableSequence[str]
Optional. Contains valid RFC 2822 E-mail addresses. Glob patterns are also supported. |
allowed_ips |
MutableSequence[str]
Optional. Contains valid 32-bit IPv4 addresses and subnet ranges or RFC 4291 IPv6 addresses and subnet ranges. Subnet ranges are specified using the '/' notation (e.g. 10.0.0.0/8, 2001:700:300:1800::/64). Glob patterns are supported only for ip address entries (i.e. not for subnet ranges). |
allow_globbing_dns_wildcards |
bool
Optional. Specifies if glob patterns used for allowed_dns_names allows wildcard certificates. |
allow_custom_sans |
bool
Optional. Specifies if to allow custom X509Extension values. |