Class AllowedSubjectAltNames (1.12.0)

AllowedSubjectAltNames(mapping=None, *, ignore_unknown_fields=False, **kwargs)

AllowedSubjectAltNames specifies the allowed values for SubjectAltNames by the CertificateAuthority when issuing Certificates.


allowed_dns_names MutableSequence[str]
Optional. Contains valid, fully-qualified host names. Glob patterns are also supported. To allow an explicit wildcard certificate, escape with backlash (i.e. \*). E.g. for globbed entries: * will allow, but not *, unless the allow_globbing_dns_wildcards field is set. E.g. for wildcard entries: \* will allow *, but not
allowed_uris MutableSequence[str]
Optional. Contains valid RFC 3986 URIs. Glob patterns are also supported. To match across path seperators (i.e. '/') use the double star glob pattern (i.e. '**').
allowed_email_addresses MutableSequence[str]
Optional. Contains valid RFC 2822 E-mail addresses. Glob patterns are also supported.
allowed_ips MutableSequence[str]
Optional. Contains valid 32-bit IPv4 addresses and subnet ranges or RFC 4291 IPv6 addresses and subnet ranges. Subnet ranges are specified using the '/' notation (e.g., 2001:700:300:1800::/64). Glob patterns are supported only for ip address entries (i.e. not for subnet ranges).
allow_globbing_dns_wildcards bool
Optional. Specifies if glob patterns used for allowed_dns_names allows wildcard certificates.
allow_custom_sans bool
Optional. Specifies if to allow custom X509Extension values.