Interface CertificateAuthority.Builder
- All Superinterfaces:
Buildable
,CopyableBuilder<CertificateAuthority.Builder,
,CertificateAuthority> SdkBuilder<CertificateAuthority.Builder,
,CertificateAuthority> SdkPojo
- Enclosing class:
CertificateAuthority
-
Method Summary
Modifier and TypeMethodDescriptionAmazon Resource Name (ARN) for your private certificate authority (CA).default CertificateAuthority.Builder
certificateAuthorityConfiguration
(Consumer<CertificateAuthorityConfiguration.Builder> certificateAuthorityConfiguration) Your private CA configuration.certificateAuthorityConfiguration
(CertificateAuthorityConfiguration certificateAuthorityConfiguration) Your private CA configuration.Date and time at which your private CA was created.failureReason
(String failureReason) Reason the request to create your private CA failed.failureReason
(FailureReason failureReason) Reason the request to create your private CA failed.keyStorageSecurityStandard
(String keyStorageSecurityStandard) Defines a cryptographic key management compliance standard used for handling CA keys.keyStorageSecurityStandard
(KeyStorageSecurityStandard keyStorageSecurityStandard) Defines a cryptographic key management compliance standard used for handling CA keys.lastStateChangeAt
(Instant lastStateChangeAt) Date and time at which your private CA was last updated.Date and time after which your private CA certificate is not valid.Date and time before which your private CA certificate is not valid.ownerAccount
(String ownerAccount) The Amazon Web Services account ID that owns the certificate authority.restorableUntil
(Instant restorableUntil) The period during which a deleted CA can be restored.default CertificateAuthority.Builder
revocationConfiguration
(Consumer<RevocationConfiguration.Builder> revocationConfiguration) Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.revocationConfiguration
(RevocationConfiguration revocationConfiguration) Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.Serial number of your private CA.Status of your private CA.status
(CertificateAuthorityStatus status) Status of your private CA.Type of your private CA.type
(CertificateAuthorityType type) Type of your private CA.Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly.usageMode
(CertificateAuthorityUsageMode usageMode) Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly.Methods inherited from interface software.amazon.awssdk.utils.builder.CopyableBuilder
copy
Methods inherited from interface software.amazon.awssdk.utils.builder.SdkBuilder
applyMutation, build
Methods inherited from interface software.amazon.awssdk.core.SdkPojo
equalsBySdkFields, sdkFields
-
Method Details
-
arn
Amazon Resource Name (ARN) for your private certificate authority (CA). The format is
12345678-1234-1234-1234-123456789012
.- Parameters:
arn
- Amazon Resource Name (ARN) for your private certificate authority (CA). The format is12345678-1234-1234-1234-123456789012
.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
ownerAccount
The Amazon Web Services account ID that owns the certificate authority.
- Parameters:
ownerAccount
- The Amazon Web Services account ID that owns the certificate authority.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
createdAt
Date and time at which your private CA was created.
- Parameters:
createdAt
- Date and time at which your private CA was created.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
lastStateChangeAt
Date and time at which your private CA was last updated.
- Parameters:
lastStateChangeAt
- Date and time at which your private CA was last updated.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
type
Type of your private CA.
- Parameters:
type
- Type of your private CA.- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
type
Type of your private CA.
- Parameters:
type
- Type of your private CA.- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
serial
Serial number of your private CA.
- Parameters:
serial
- Serial number of your private CA.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
status
Status of your private CA.
- Parameters:
status
- Status of your private CA.- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
status
Status of your private CA.
- Parameters:
status
- Status of your private CA.- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
notBefore
Date and time before which your private CA certificate is not valid.
- Parameters:
notBefore
- Date and time before which your private CA certificate is not valid.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
notAfter
Date and time after which your private CA certificate is not valid.
- Parameters:
notAfter
- Date and time after which your private CA certificate is not valid.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
failureReason
Reason the request to create your private CA failed.
- Parameters:
failureReason
- Reason the request to create your private CA failed.- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
failureReason
Reason the request to create your private CA failed.
- Parameters:
failureReason
- Reason the request to create your private CA failed.- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
certificateAuthorityConfiguration
CertificateAuthority.Builder certificateAuthorityConfiguration(CertificateAuthorityConfiguration certificateAuthorityConfiguration) Your private CA configuration.
- Parameters:
certificateAuthorityConfiguration
- Your private CA configuration.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
certificateAuthorityConfiguration
default CertificateAuthority.Builder certificateAuthorityConfiguration(Consumer<CertificateAuthorityConfiguration.Builder> certificateAuthorityConfiguration) Your private CA configuration.
This is a convenience method that creates an instance of theCertificateAuthorityConfiguration.Builder
avoiding the need to create one manually viaCertificateAuthorityConfiguration.builder()
.When the
Consumer
completes,SdkBuilder.build()
is called immediately and its result is passed tocertificateAuthorityConfiguration(CertificateAuthorityConfiguration)
.- Parameters:
certificateAuthorityConfiguration
- a consumer that will call methods onCertificateAuthorityConfiguration.Builder
- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
revocationConfiguration
CertificateAuthority.Builder revocationConfiguration(RevocationConfiguration revocationConfiguration) Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.
- Parameters:
revocationConfiguration
- Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
revocationConfiguration
default CertificateAuthority.Builder revocationConfiguration(Consumer<RevocationConfiguration.Builder> revocationConfiguration) Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA.
This is a convenience method that creates an instance of theRevocationConfiguration.Builder
avoiding the need to create one manually viaRevocationConfiguration.builder()
.When the
Consumer
completes,SdkBuilder.build()
is called immediately and its result is passed torevocationConfiguration(RevocationConfiguration)
.- Parameters:
revocationConfiguration
- a consumer that will call methods onRevocationConfiguration.Builder
- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
restorableUntil
The period during which a deleted CA can be restored. For more information, see the
PermanentDeletionTimeInDays
parameter of the DeleteCertificateAuthorityRequest action.- Parameters:
restorableUntil
- The period during which a deleted CA can be restored. For more information, see thePermanentDeletionTimeInDays
parameter of the DeleteCertificateAuthorityRequest action.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
keyStorageSecurityStandard
Defines a cryptographic key management compliance standard used for handling CA keys.
Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an
InvalidArgsException
with the message "A certificate authority cannot be created in this region with the specified security standard."- Parameters:
keyStorageSecurityStandard
- Defines a cryptographic key management compliance standard used for handling CA keys.Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an
InvalidArgsException
with the message "A certificate authority cannot be created in this region with the specified security standard."- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
keyStorageSecurityStandard
CertificateAuthority.Builder keyStorageSecurityStandard(KeyStorageSecurityStandard keyStorageSecurityStandard) Defines a cryptographic key management compliance standard used for handling CA keys.
Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an
InvalidArgsException
with the message "A certificate authority cannot be created in this region with the specified security standard."- Parameters:
keyStorageSecurityStandard
- Defines a cryptographic key management compliance standard used for handling CA keys.Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER. You must explicitly specify this parameter and value when creating a CA in that Region. Specifying a different value (or no value) results in an
InvalidArgsException
with the message "A certificate authority cannot be created in this region with the specified security standard."- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
usageMode
Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.
The default value is GENERAL_PURPOSE.
- Parameters:
usageMode
- Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.The default value is GENERAL_PURPOSE.
- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-
usageMode
Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.
The default value is GENERAL_PURPOSE.
- Parameters:
usageMode
- Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days.The default value is GENERAL_PURPOSE.
- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-