aws-cdk-lib.aws_appmesh.CfnVirtualNode.ClientPolicyTlsProperty

interface ClientPolicyTlsProperty

LanguageType name
.NETAmazon.CDK.AWS.AppMesh.CfnVirtualNode.ClientPolicyTlsProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsappmesh#CfnVirtualNode_ClientPolicyTlsProperty
Javasoftware.amazon.awscdk.services.appmesh.CfnVirtualNode.ClientPolicyTlsProperty
Pythonaws_cdk.aws_appmesh.CfnVirtualNode.ClientPolicyTlsProperty
TypeScript aws-cdk-lib » aws_appmesh » CfnVirtualNode » ClientPolicyTlsProperty

A reference to an object that represents a Transport Layer Security (TLS) client policy.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_appmesh as appmesh } from 'aws-cdk-lib';
const clientPolicyTlsProperty: appmesh.CfnVirtualNode.ClientPolicyTlsProperty = {
  validation: {
    trust: {
      acm: {
        certificateAuthorityArns: ['certificateAuthorityArns'],
      },
      file: {
        certificateChain: 'certificateChain',
      },
      sds: {
        secretName: 'secretName',
      },
    },

    // the properties below are optional
    subjectAlternativeNames: {
      match: {
        exact: ['exact'],
      },
    },
  },

  // the properties below are optional
  certificate: {
    file: {
      certificateChain: 'certificateChain',
      privateKey: 'privateKey',
    },
    sds: {
      secretName: 'secretName',
    },
  },
  enforce: false,
  ports: [123],
};

Properties

NameTypeDescription
validationIResolvable | TlsValidationContextPropertyA reference to an object that represents a TLS validation context.
certificate?IResolvable | ClientTlsCertificatePropertyA reference to an object that represents a client's TLS certificate.
enforce?boolean | IResolvableWhether the policy is enforced.
ports?number[] | IResolvableOne or more ports that the policy is enforced for.

validation

Type: IResolvable | TlsValidationContextProperty

A reference to an object that represents a TLS validation context.


certificate?

Type: IResolvable | ClientTlsCertificateProperty (optional)

A reference to an object that represents a client's TLS certificate.


enforce?

Type: boolean | IResolvable (optional)

Whether the policy is enforced.

The default is True , if a value isn't specified.


ports?

Type: number[] | IResolvable (optional)

One or more ports that the policy is enforced for.