aws-cdk-lib.aws_acmpca.CfnCertificate.ApiPassthroughProperty

interface ApiPassthroughProperty

LanguageType name
.NETAmazon.CDK.AWS.ACMPCA.CfnCertificate.ApiPassthroughProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsacmpca#CfnCertificate_ApiPassthroughProperty
Javasoftware.amazon.awscdk.services.acmpca.CfnCertificate.ApiPassthroughProperty
Pythonaws_cdk.aws_acmpca.CfnCertificate.ApiPassthroughProperty
TypeScript aws-cdk-lib » aws_acmpca » CfnCertificate » ApiPassthroughProperty

Contains X.509 certificate information to be placed in an issued certificate. An APIPassthrough or APICSRPassthrough template variant must be selected, or else this parameter is ignored.

If conflicting or duplicate certificate information is supplied from other sources, AWS Private CA applies order of operation rules to determine what information is used.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_acmpca as acmpca } from 'aws-cdk-lib';
const apiPassthroughProperty: acmpca.CfnCertificate.ApiPassthroughProperty = {
  extensions: {
    certificatePolicies: [{
      certPolicyId: 'certPolicyId',

      // the properties below are optional
      policyQualifiers: [{
        policyQualifierId: 'policyQualifierId',
        qualifier: {
          cpsUri: 'cpsUri',
        },
      }],
    }],
    customExtensions: [{
      objectIdentifier: 'objectIdentifier',
      value: 'value',

      // the properties below are optional
      critical: false,
    }],
    extendedKeyUsage: [{
      extendedKeyUsageObjectIdentifier: 'extendedKeyUsageObjectIdentifier',
      extendedKeyUsageType: 'extendedKeyUsageType',
    }],
    keyUsage: {
      crlSign: false,
      dataEncipherment: false,
      decipherOnly: false,
      digitalSignature: false,
      encipherOnly: false,
      keyAgreement: false,
      keyCertSign: false,
      keyEncipherment: false,
      nonRepudiation: false,
    },
    subjectAlternativeNames: [{
      directoryName: {
        commonName: 'commonName',
        country: 'country',
        customAttributes: [{
          objectIdentifier: 'objectIdentifier',
          value: 'value',
        }],
        distinguishedNameQualifier: 'distinguishedNameQualifier',
        generationQualifier: 'generationQualifier',
        givenName: 'givenName',
        initials: 'initials',
        locality: 'locality',
        organization: 'organization',
        organizationalUnit: 'organizationalUnit',
        pseudonym: 'pseudonym',
        serialNumber: 'serialNumber',
        state: 'state',
        surname: 'surname',
        title: 'title',
      },
      dnsName: 'dnsName',
      ediPartyName: {
        nameAssigner: 'nameAssigner',
        partyName: 'partyName',
      },
      ipAddress: 'ipAddress',
      otherName: {
        typeId: 'typeId',
        value: 'value',
      },
      registeredId: 'registeredId',
      rfc822Name: 'rfc822Name',
      uniformResourceIdentifier: 'uniformResourceIdentifier',
    }],
  },
  subject: {
    commonName: 'commonName',
    country: 'country',
    customAttributes: [{
      objectIdentifier: 'objectIdentifier',
      value: 'value',
    }],
    distinguishedNameQualifier: 'distinguishedNameQualifier',
    generationQualifier: 'generationQualifier',
    givenName: 'givenName',
    initials: 'initials',
    locality: 'locality',
    organization: 'organization',
    organizationalUnit: 'organizationalUnit',
    pseudonym: 'pseudonym',
    serialNumber: 'serialNumber',
    state: 'state',
    surname: 'surname',
    title: 'title',
  },
};

Properties

NameTypeDescription
extensions?IResolvable | ExtensionsPropertySpecifies X.509 extension information for a certificate.
subject?IResolvable | SubjectPropertyContains information about the certificate subject.

extensions?

Type: IResolvable | ExtensionsProperty (optional)

Specifies X.509 extension information for a certificate.


subject?

Type: IResolvable | SubjectProperty (optional)

Contains information about the certificate subject.

The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.