A CaPool represents a group of CertificateAuthorities that form a trust anchor. A CaPool can be used to manage issuance policies for one or more CertificateAuthority resources and to rotate CA certificates in and out of the trust anchor.
Output only. The resource name for this CaPool in the format ``projects/*/locations/*/caPools/*``.
Required. Immutable. The Tier of this CaPool.
Optional. The IssuancePolicy to control how Certificates will be issued from this CaPool.
Optional. The PublishingOptions to follow when issuing Certificates from any CertificateAuthority in this CaPool.
Optional. Labels with user-defined metadata.
Inheritancebuiltins.object > proto.message.Message > CaPool
IssuancePolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)
Defines controls over all certificate issuance within a CaPool.
LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)
API documentation for
PublishingOptions(mapping=None, *, ignore_unknown_fields=False, **kwargs)
Options relating to the publication of each CertificateAuthority's CA certificate and CRLs and their inclusion as extensions in issued Certificates. The options set here apply to certificates issued by any CertificateAuthority in the CaPool.
The tier of a CaPool, indicating its supported functionality and/or billing SKU.