Google Cloud Native v0.32.0, Nov 29 23

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.compute/alpha.SslPolicy

Explore with Pulumi AI

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

Create SslPolicy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

new SslPolicy(name: string, args?: SslPolicyArgs, opts?: CustomResourceOptions);

@overload
def SslPolicy(resource_name: str,
              args: Optional[SslPolicyArgs] = None,
              opts: Optional[ResourceOptions] = None)

@overload
def SslPolicy(resource_name: str,
              opts: Optional[ResourceOptions] = None,
              custom_features: Optional[Sequence[str]] = None,
              description: Optional[str] = None,
              min_tls_version: Optional[SslPolicyMinTlsVersion] = None,
              name: Optional[str] = None,
              profile: Optional[SslPolicyProfile] = None,
              project: Optional[str] = None,
              request_id: Optional[str] = None,
              tls_settings: Optional[ServerTlsSettingsArgs] = None)

func NewSslPolicy(ctx *Context, name string, args *SslPolicyArgs, opts ...ResourceOption) (*SslPolicy, error)

public SslPolicy(string name, SslPolicyArgs? args = null, CustomResourceOptions? opts = null)

public SslPolicy(String name, SslPolicyArgs args)
public SslPolicy(String name, SslPolicyArgs args, CustomResourceOptions options)

type: google-native:compute/alpha:SslPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args SslPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args SslPolicyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SslPolicyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SslPolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args SslPolicyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

TypeScript
Python
Go
C#
Java
YAML

var sslPolicyResource = new GoogleNative.Compute.Alpha.SslPolicy("sslPolicyResource", new()
{
    CustomFeatures = new[]
    {
        "string",
    },
    Description = "string",
    MinTlsVersion = GoogleNative.Compute.Alpha.SslPolicyMinTlsVersion.Tls10,
    Name = "string",
    Profile = GoogleNative.Compute.Alpha.SslPolicyProfile.Compatible,
    Project = "string",
    RequestId = "string",
    TlsSettings = new GoogleNative.Compute.Alpha.Inputs.ServerTlsSettingsArgs
    {
        ProxyTlsContext = new GoogleNative.Compute.Alpha.Inputs.TlsContextArgs
        {
            CertificateContext = new GoogleNative.Compute.Alpha.Inputs.TlsCertificateContextArgs
            {
                CertificatePaths = new GoogleNative.Compute.Alpha.Inputs.TlsCertificatePathsArgs
                {
                    CertificatePath = "string",
                    PrivateKeyPath = "string",
                },
                CertificateSource = GoogleNative.Compute.Alpha.TlsCertificateContextCertificateSource.Invalid,
                SdsConfig = new GoogleNative.Compute.Alpha.Inputs.SdsConfigArgs
                {
                    GrpcServiceConfig = new GoogleNative.Compute.Alpha.Inputs.GrpcServiceConfigArgs
                    {
                        CallCredentials = new GoogleNative.Compute.Alpha.Inputs.CallCredentialsArgs
                        {
                            CallCredentialType = GoogleNative.Compute.Alpha.CallCredentialsCallCredentialType.FromPlugin,
                            FromPlugin = new GoogleNative.Compute.Alpha.Inputs.MetadataCredentialsFromPluginArgs
                            {
                                Name = "string",
                                StructConfig = "string",
                            },
                        },
                        ChannelCredentials = new GoogleNative.Compute.Alpha.Inputs.ChannelCredentialsArgs
                        {
                            Certificates = new GoogleNative.Compute.Alpha.Inputs.TlsCertificatePathsArgs
                            {
                                CertificatePath = "string",
                                PrivateKeyPath = "string",
                            },
                            ChannelCredentialType = GoogleNative.Compute.Alpha.ChannelCredentialsChannelCredentialType.Certificates,
                        },
                        TargetUri = "string",
                    },
                },
            },
            ValidationContext = new GoogleNative.Compute.Alpha.Inputs.TlsValidationContextArgs
            {
                CertificatePath = "string",
                SdsConfig = new GoogleNative.Compute.Alpha.Inputs.SdsConfigArgs
                {
                    GrpcServiceConfig = new GoogleNative.Compute.Alpha.Inputs.GrpcServiceConfigArgs
                    {
                        CallCredentials = new GoogleNative.Compute.Alpha.Inputs.CallCredentialsArgs
                        {
                            CallCredentialType = GoogleNative.Compute.Alpha.CallCredentialsCallCredentialType.FromPlugin,
                            FromPlugin = new GoogleNative.Compute.Alpha.Inputs.MetadataCredentialsFromPluginArgs
                            {
                                Name = "string",
                                StructConfig = "string",
                            },
                        },
                        ChannelCredentials = new GoogleNative.Compute.Alpha.Inputs.ChannelCredentialsArgs
                        {
                            Certificates = new GoogleNative.Compute.Alpha.Inputs.TlsCertificatePathsArgs
                            {
                                CertificatePath = "string",
                                PrivateKeyPath = "string",
                            },
                            ChannelCredentialType = GoogleNative.Compute.Alpha.ChannelCredentialsChannelCredentialType.Certificates,
                        },
                        TargetUri = "string",
                    },
                },
                ValidationSource = GoogleNative.Compute.Alpha.TlsValidationContextValidationSource.Invalid,
            },
        },
        SubjectAltNames = new[]
        {
            "string",
        },
        TlsMode = GoogleNative.Compute.Alpha.ServerTlsSettingsTlsMode.Invalid,
    },
});

example, err := compute.NewSslPolicy(ctx, "sslPolicyResource", &compute.SslPolicyArgs{
	CustomFeatures: pulumi.StringArray{
		pulumi.String("string"),
	},
	Description:   pulumi.String("string"),
	MinTlsVersion: compute.SslPolicyMinTlsVersionTls10,
	Name:          pulumi.String("string"),
	Profile:       compute.SslPolicyProfileCompatible,
	Project:       pulumi.String("string"),
	RequestId:     pulumi.String("string"),
	TlsSettings: &compute.ServerTlsSettingsArgs{
		ProxyTlsContext: &compute.TlsContextArgs{
			CertificateContext: &compute.TlsCertificateContextArgs{
				CertificatePaths: &compute.TlsCertificatePathsArgs{
					CertificatePath: pulumi.String("string"),
					PrivateKeyPath:  pulumi.String("string"),
				},
				CertificateSource: compute.TlsCertificateContextCertificateSourceInvalid,
				SdsConfig: &compute.SdsConfigArgs{
					GrpcServiceConfig: &compute.GrpcServiceConfigArgs{
						CallCredentials: &compute.CallCredentialsArgs{
							CallCredentialType: compute.CallCredentialsCallCredentialTypeFromPlugin,
							FromPlugin: &compute.MetadataCredentialsFromPluginArgs{
								Name:         pulumi.String("string"),
								StructConfig: pulumi.String("string"),
							},
						},
						ChannelCredentials: &compute.ChannelCredentialsArgs{
							Certificates: &compute.TlsCertificatePathsArgs{
								CertificatePath: pulumi.String("string"),
								PrivateKeyPath:  pulumi.String("string"),
							},
							ChannelCredentialType: compute.ChannelCredentialsChannelCredentialTypeCertificates,
						},
						TargetUri: pulumi.String("string"),
					},
				},
			},
			ValidationContext: &compute.TlsValidationContextArgs{
				CertificatePath: pulumi.String("string"),
				SdsConfig: &compute.SdsConfigArgs{
					GrpcServiceConfig: &compute.GrpcServiceConfigArgs{
						CallCredentials: &compute.CallCredentialsArgs{
							CallCredentialType: compute.CallCredentialsCallCredentialTypeFromPlugin,
							FromPlugin: &compute.MetadataCredentialsFromPluginArgs{
								Name:         pulumi.String("string"),
								StructConfig: pulumi.String("string"),
							},
						},
						ChannelCredentials: &compute.ChannelCredentialsArgs{
							Certificates: &compute.TlsCertificatePathsArgs{
								CertificatePath: pulumi.String("string"),
								PrivateKeyPath:  pulumi.String("string"),
							},
							ChannelCredentialType: compute.ChannelCredentialsChannelCredentialTypeCertificates,
						},
						TargetUri: pulumi.String("string"),
					},
				},
				ValidationSource: compute.TlsValidationContextValidationSourceInvalid,
			},
		},
		SubjectAltNames: pulumi.StringArray{
			pulumi.String("string"),
		},
		TlsMode: compute.ServerTlsSettingsTlsModeInvalid,
	},
})

var sslPolicyResource = new SslPolicy("sslPolicyResource", SslPolicyArgs.builder()
    .customFeatures("string")
    .description("string")
    .minTlsVersion("TLS_1_0")
    .name("string")
    .profile("COMPATIBLE")
    .project("string")
    .requestId("string")
    .tlsSettings(ServerTlsSettingsArgs.builder()
        .proxyTlsContext(TlsContextArgs.builder()
            .certificateContext(TlsCertificateContextArgs.builder()
                .certificatePaths(TlsCertificatePathsArgs.builder()
                    .certificatePath("string")
                    .privateKeyPath("string")
                    .build())
                .certificateSource("INVALID")
                .sdsConfig(SdsConfigArgs.builder()
                    .grpcServiceConfig(GrpcServiceConfigArgs.builder()
                        .callCredentials(CallCredentialsArgs.builder()
                            .callCredentialType("FROM_PLUGIN")
                            .fromPlugin(MetadataCredentialsFromPluginArgs.builder()
                                .name("string")
                                .structConfig("string")
                                .build())
                            .build())
                        .channelCredentials(ChannelCredentialsArgs.builder()
                            .certificates(TlsCertificatePathsArgs.builder()
                                .certificatePath("string")
                                .privateKeyPath("string")
                                .build())
                            .channelCredentialType("CERTIFICATES")
                            .build())
                        .targetUri("string")
                        .build())
                    .build())
                .build())
            .validationContext(TlsValidationContextArgs.builder()
                .certificatePath("string")
                .sdsConfig(SdsConfigArgs.builder()
                    .grpcServiceConfig(GrpcServiceConfigArgs.builder()
                        .callCredentials(CallCredentialsArgs.builder()
                            .callCredentialType("FROM_PLUGIN")
                            .fromPlugin(MetadataCredentialsFromPluginArgs.builder()
                                .name("string")
                                .structConfig("string")
                                .build())
                            .build())
                        .channelCredentials(ChannelCredentialsArgs.builder()
                            .certificates(TlsCertificatePathsArgs.builder()
                                .certificatePath("string")
                                .privateKeyPath("string")
                                .build())
                            .channelCredentialType("CERTIFICATES")
                            .build())
                        .targetUri("string")
                        .build())
                    .build())
                .validationSource("INVALID")
                .build())
            .build())
        .subjectAltNames("string")
        .tlsMode("INVALID")
        .build())
    .build());

ssl_policy_resource = google_native.compute.alpha.SslPolicy("sslPolicyResource",
    custom_features=["string"],
    description="string",
    min_tls_version=google_native.compute.alpha.SslPolicyMinTlsVersion.TLS10,
    name="string",
    profile=google_native.compute.alpha.SslPolicyProfile.COMPATIBLE,
    project="string",
    request_id="string",
    tls_settings={
        "proxy_tls_context": {
            "certificate_context": {
                "certificate_paths": {
                    "certificate_path": "string",
                    "private_key_path": "string",
                },
                "certificate_source": google_native.compute.alpha.TlsCertificateContextCertificateSource.INVALID,
                "sds_config": {
                    "grpc_service_config": {
                        "call_credentials": {
                            "call_credential_type": google_native.compute.alpha.CallCredentialsCallCredentialType.FROM_PLUGIN,
                            "from_plugin": {
                                "name": "string",
                                "struct_config": "string",
                            },
                        },
                        "channel_credentials": {
                            "certificates": {
                                "certificate_path": "string",
                                "private_key_path": "string",
                            },
                            "channel_credential_type": google_native.compute.alpha.ChannelCredentialsChannelCredentialType.CERTIFICATES,
                        },
                        "target_uri": "string",
                    },
                },
            },
            "validation_context": {
                "certificate_path": "string",
                "sds_config": {
                    "grpc_service_config": {
                        "call_credentials": {
                            "call_credential_type": google_native.compute.alpha.CallCredentialsCallCredentialType.FROM_PLUGIN,
                            "from_plugin": {
                                "name": "string",
                                "struct_config": "string",
                            },
                        },
                        "channel_credentials": {
                            "certificates": {
                                "certificate_path": "string",
                                "private_key_path": "string",
                            },
                            "channel_credential_type": google_native.compute.alpha.ChannelCredentialsChannelCredentialType.CERTIFICATES,
                        },
                        "target_uri": "string",
                    },
                },
                "validation_source": google_native.compute.alpha.TlsValidationContextValidationSource.INVALID,
            },
        },
        "subject_alt_names": ["string"],
        "tls_mode": google_native.compute.alpha.ServerTlsSettingsTlsMode.INVALID,
    })

const sslPolicyResource = new google_native.compute.alpha.SslPolicy("sslPolicyResource", {
    customFeatures: ["string"],
    description: "string",
    minTlsVersion: google_native.compute.alpha.SslPolicyMinTlsVersion.Tls10,
    name: "string",
    profile: google_native.compute.alpha.SslPolicyProfile.Compatible,
    project: "string",
    requestId: "string",
    tlsSettings: {
        proxyTlsContext: {
            certificateContext: {
                certificatePaths: {
                    certificatePath: "string",
                    privateKeyPath: "string",
                },
                certificateSource: google_native.compute.alpha.TlsCertificateContextCertificateSource.Invalid,
                sdsConfig: {
                    grpcServiceConfig: {
                        callCredentials: {
                            callCredentialType: google_native.compute.alpha.CallCredentialsCallCredentialType.FromPlugin,
                            fromPlugin: {
                                name: "string",
                                structConfig: "string",
                            },
                        },
                        channelCredentials: {
                            certificates: {
                                certificatePath: "string",
                                privateKeyPath: "string",
                            },
                            channelCredentialType: google_native.compute.alpha.ChannelCredentialsChannelCredentialType.Certificates,
                        },
                        targetUri: "string",
                    },
                },
            },
            validationContext: {
                certificatePath: "string",
                sdsConfig: {
                    grpcServiceConfig: {
                        callCredentials: {
                            callCredentialType: google_native.compute.alpha.CallCredentialsCallCredentialType.FromPlugin,
                            fromPlugin: {
                                name: "string",
                                structConfig: "string",
                            },
                        },
                        channelCredentials: {
                            certificates: {
                                certificatePath: "string",
                                privateKeyPath: "string",
                            },
                            channelCredentialType: google_native.compute.alpha.ChannelCredentialsChannelCredentialType.Certificates,
                        },
                        targetUri: "string",
                    },
                },
                validationSource: google_native.compute.alpha.TlsValidationContextValidationSource.Invalid,
            },
        },
        subjectAltNames: ["string"],
        tlsMode: google_native.compute.alpha.ServerTlsSettingsTlsMode.Invalid,
    },
});

type: google-native:compute/alpha:SslPolicy
properties:
    customFeatures:
        - string
    description: string
    minTlsVersion: TLS_1_0
    name: string
    profile: COMPATIBLE
    project: string
    requestId: string
    tlsSettings:
        proxyTlsContext:
            certificateContext:
                certificatePaths:
                    certificatePath: string
                    privateKeyPath: string
                certificateSource: INVALID
                sdsConfig:
                    grpcServiceConfig:
                        callCredentials:
                            callCredentialType: FROM_PLUGIN
                            fromPlugin:
                                name: string
                                structConfig: string
                        channelCredentials:
                            certificates:
                                certificatePath: string
                                privateKeyPath: string
                            channelCredentialType: CERTIFICATES
                        targetUri: string
            validationContext:
                certificatePath: string
                sdsConfig:
                    grpcServiceConfig:
                        callCredentials:
                            callCredentialType: FROM_PLUGIN
                            fromPlugin:
                                name: string
                                structConfig: string
                        channelCredentials:
                            certificates:
                                certificatePath: string
                                privateKeyPath: string
                            channelCredentialType: CERTIFICATES
                        targetUri: string
                validationSource: INVALID
        subjectAltNames:
            - string
        tlsMode: INVALID

SslPolicy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The SslPolicy resource accepts the following input properties:

CustomFeatures List<string>: A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
Description string: An optional description of this resource. Provide this property when you create the resource.
MinTlsVersion Pulumi.GoogleNative.Compute.Alpha.SslPolicyMinTlsVersion: The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
Name string: Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
Profile Pulumi.GoogleNative.Compute.Alpha.SslPolicyProfile: Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
Project string
RequestId string: An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
TlsSettings Pulumi.GoogleNative.Compute.Alpha.Inputs.ServerTlsSettings: Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.

CustomFeatures []string: A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
Description string: An optional description of this resource. Provide this property when you create the resource.
MinTlsVersion SslPolicyMinTlsVersion: The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
Name string: Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
Profile SslPolicyProfile: Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
Project string
RequestId string: An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
TlsSettings ServerTlsSettingsArgs: Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.

customFeatures List<String>: A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
description String: An optional description of this resource. Provide this property when you create the resource.
minTlsVersion SslPolicyMinTlsVersion: The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
name String: Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
profile SslPolicyProfile: Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
project String
requestId String: An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
tlsSettings ServerTlsSettings: Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.

customFeatures string[]: A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
description string: An optional description of this resource. Provide this property when you create the resource.
minTlsVersion SslPolicyMinTlsVersion: The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
name string: Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
profile SslPolicyProfile: Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
project string
requestId string: An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
tlsSettings ServerTlsSettings: Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.

custom_features Sequence[str]: A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
description str: An optional description of this resource. Provide this property when you create the resource.
min_tls_version SslPolicyMinTlsVersion: The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
name str: Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
profile SslPolicyProfile: Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
project str
request_id str: An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
tls_settings ServerTlsSettingsArgs: Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.

customFeatures List<String>: A list of features enabled when the selected profile is CUSTOM. The method returns the set of features that can be specified in this list. This field must be empty if the profile is not CUSTOM.
description String: An optional description of this resource. Provide this property when you create the resource.
minTlsVersion "TLS_1_0" | "TLS_1_1" | "TLS_1_2": The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. This can be one of TLS_1_0, TLS_1_1, TLS_1_2.
name String: Name of the resource. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
profile "COMPATIBLE" | "CUSTOM" | "MODERN" | "RESTRICTED": Profile specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. This can be one of COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the customFeatures field.
project String
requestId String: An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server will know to ignore the request if it has already been completed. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, will ignore the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported ( 00000000-0000-0000-0000-000000000000).
tlsSettings Property Map: Security settings for the proxy. This field is only applicable to a global backend service with the loadBalancingScheme set to INTERNAL_SELF_MANAGED.

Outputs

All input properties are implicitly available as output properties. Additionally, the SslPolicy resource produces the following output properties:

CreationTimestamp string: Creation timestamp in RFC3339 text format.
EnabledFeatures List<string>: The list of features enabled in the SSL policy.
Fingerprint string: Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
Id string: The provider-assigned unique ID for this managed resource.
Kind string: [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
Region string: URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
SelfLink string: Server-defined URL for the resource.
SelfLinkWithId string: Server-defined URL for this resource with the resource id.
Warnings List<Pulumi.GoogleNative.Compute.Alpha.Outputs.SslPolicyWarningsItemResponse>: If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

CreationTimestamp string: Creation timestamp in RFC3339 text format.
EnabledFeatures []string: The list of features enabled in the SSL policy.
Fingerprint string: Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
Id string: The provider-assigned unique ID for this managed resource.
Kind string: [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
Region string: URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
SelfLink string: Server-defined URL for the resource.
SelfLinkWithId string: Server-defined URL for this resource with the resource id.
Warnings []SslPolicyWarningsItemResponse: If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

creationTimestamp String: Creation timestamp in RFC3339 text format.
enabledFeatures List<String>: The list of features enabled in the SSL policy.
fingerprint String: Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
id String: The provider-assigned unique ID for this managed resource.
kind String: [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
region String: URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
selfLink String: Server-defined URL for the resource.
selfLinkWithId String: Server-defined URL for this resource with the resource id.
warnings List<SslPolicyWarningsItemResponse>: If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

creationTimestamp string: Creation timestamp in RFC3339 text format.
enabledFeatures string[]: The list of features enabled in the SSL policy.
fingerprint string: Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
id string: The provider-assigned unique ID for this managed resource.
kind string: [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
region string: URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
selfLink string: Server-defined URL for the resource.
selfLinkWithId string: Server-defined URL for this resource with the resource id.
warnings SslPolicyWarningsItemResponse[]: If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

creation_timestamp str: Creation timestamp in RFC3339 text format.
enabled_features Sequence[str]: The list of features enabled in the SSL policy.
fingerprint str: Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
id str: The provider-assigned unique ID for this managed resource.
kind str: [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
region str: URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
self_link str: Server-defined URL for the resource.
self_link_with_id str: Server-defined URL for this resource with the resource id.
warnings Sequence[SslPolicyWarningsItemResponse]: If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

creationTimestamp String: Creation timestamp in RFC3339 text format.
enabledFeatures List<String>: The list of features enabled in the SSL policy.
fingerprint String: Fingerprint of this resource. A hash of the contents stored in this object. This field is used in optimistic locking. This field will be ignored when inserting a SslPolicy. An up-to-date fingerprint must be provided in order to update the SslPolicy, otherwise the request will fail with error 412 conditionNotMet. To see the latest fingerprint, make a get() request to retrieve an SslPolicy.
id String: The provider-assigned unique ID for this managed resource.
kind String: [Output only] Type of the resource. Always compute#sslPolicyfor SSL policies.
region String: URL of the region where the regional SSL policy resides. This field is not applicable to global SSL policies.
selfLink String: Server-defined URL for the resource.
selfLinkWithId String: Server-defined URL for this resource with the resource id.
warnings List<Property Map>: If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

Supporting Types

CallCredentials
, CallCredentialsArgs

CallCredentialType Pulumi.GoogleNative.Compute.Alpha.CallCredentialsCallCredentialType: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
FromPlugin Pulumi.GoogleNative.Compute.Alpha.Inputs.MetadataCredentialsFromPlugin: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

CallCredentialType CallCredentialsCallCredentialType: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
FromPlugin MetadataCredentialsFromPlugin: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

callCredentialType CallCredentialsCallCredentialType: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
fromPlugin MetadataCredentialsFromPlugin: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

callCredentialType CallCredentialsCallCredentialType: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
fromPlugin MetadataCredentialsFromPlugin: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

call_credential_type CallCredentialsCallCredentialType: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
from_plugin MetadataCredentialsFromPlugin: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

callCredentialType "FROM_PLUGIN" | "GCE_VM" | "INVALID": The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
fromPlugin Property Map: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

CallCredentialsCallCredentialType
, CallCredentialsCallCredentialTypeArgs

FromPlugin: FROM_PLUGINCustom authenticator credentials are used to access the SDS server.
GceVm: GCE_VMThe local GCE VM service account credentials are used to access the SDS server.
Invalid: INVALID

CallCredentialsCallCredentialTypeFromPlugin: FROM_PLUGINCustom authenticator credentials are used to access the SDS server.
CallCredentialsCallCredentialTypeGceVm: GCE_VMThe local GCE VM service account credentials are used to access the SDS server.
CallCredentialsCallCredentialTypeInvalid: INVALID

FromPlugin: FROM_PLUGINCustom authenticator credentials are used to access the SDS server.
GceVm: GCE_VMThe local GCE VM service account credentials are used to access the SDS server.
Invalid: INVALID

FromPlugin: FROM_PLUGINCustom authenticator credentials are used to access the SDS server.
GceVm: GCE_VMThe local GCE VM service account credentials are used to access the SDS server.
Invalid: INVALID

FROM_PLUGIN: FROM_PLUGINCustom authenticator credentials are used to access the SDS server.
GCE_VM: GCE_VMThe local GCE VM service account credentials are used to access the SDS server.
INVALID: INVALID

"FROM_PLUGIN": FROM_PLUGINCustom authenticator credentials are used to access the SDS server.
"GCE_VM": GCE_VMThe local GCE VM service account credentials are used to access the SDS server.
"INVALID": INVALID

CallCredentialsResponse
, CallCredentialsResponseArgs

CallCredentialType string: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
FromPlugin Pulumi.GoogleNative.Compute.Alpha.Inputs.MetadataCredentialsFromPluginResponse: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

CallCredentialType string: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
FromPlugin MetadataCredentialsFromPluginResponse: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

callCredentialType String: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
fromPlugin MetadataCredentialsFromPluginResponse: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

callCredentialType string: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
fromPlugin MetadataCredentialsFromPluginResponse: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

call_credential_type str: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
from_plugin MetadataCredentialsFromPluginResponse: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

callCredentialType String: The type of call credentials to use for GRPC requests to the SDS server. This field can be set to one of the following: - GCE_VM: The local GCE VM service account credentials are used to access the SDS server. - FROM_PLUGIN: Custom authenticator credentials are used to access the SDS server.
fromPlugin Property Map: Custom authenticator credentials. Valid if callCredentialType is FROM_PLUGIN.

ChannelCredentials
, ChannelCredentialsArgs

Certificates Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificatePaths: The call credentials to access the SDS server.
ChannelCredentialType Pulumi.GoogleNative.Compute.Alpha.ChannelCredentialsChannelCredentialType: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

Certificates TlsCertificatePaths: The call credentials to access the SDS server.
ChannelCredentialType ChannelCredentialsChannelCredentialType: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates TlsCertificatePaths: The call credentials to access the SDS server.
channelCredentialType ChannelCredentialsChannelCredentialType: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates TlsCertificatePaths: The call credentials to access the SDS server.
channelCredentialType ChannelCredentialsChannelCredentialType: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates TlsCertificatePaths: The call credentials to access the SDS server.
channel_credential_type ChannelCredentialsChannelCredentialType: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates Property Map: The call credentials to access the SDS server.
channelCredentialType "CERTIFICATES" | "GCE_VM" | "INVALID": The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

ChannelCredentialsChannelCredentialType
, ChannelCredentialsChannelCredentialTypeArgs

Certificates: CERTIFICATESUse TLS certificates to access the SDS server.
GceVm: GCE_VMUse local GCE VM credentials to access the SDS server.
Invalid: INVALID

ChannelCredentialsChannelCredentialTypeCertificates: CERTIFICATESUse TLS certificates to access the SDS server.
ChannelCredentialsChannelCredentialTypeGceVm: GCE_VMUse local GCE VM credentials to access the SDS server.
ChannelCredentialsChannelCredentialTypeInvalid: INVALID

Certificates: CERTIFICATESUse TLS certificates to access the SDS server.
GceVm: GCE_VMUse local GCE VM credentials to access the SDS server.
Invalid: INVALID

Certificates: CERTIFICATESUse TLS certificates to access the SDS server.
GceVm: GCE_VMUse local GCE VM credentials to access the SDS server.
Invalid: INVALID

CERTIFICATES: CERTIFICATESUse TLS certificates to access the SDS server.
GCE_VM: GCE_VMUse local GCE VM credentials to access the SDS server.
INVALID: INVALID

"CERTIFICATES": CERTIFICATESUse TLS certificates to access the SDS server.
"GCE_VM": GCE_VMUse local GCE VM credentials to access the SDS server.
"INVALID": INVALID

ChannelCredentialsResponse
, ChannelCredentialsResponseArgs

Certificates Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificatePathsResponse: The call credentials to access the SDS server.
ChannelCredentialType string: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

Certificates TlsCertificatePathsResponse: The call credentials to access the SDS server.
ChannelCredentialType string: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates TlsCertificatePathsResponse: The call credentials to access the SDS server.
channelCredentialType String: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates TlsCertificatePathsResponse: The call credentials to access the SDS server.
channelCredentialType string: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates TlsCertificatePathsResponse: The call credentials to access the SDS server.
channel_credential_type str: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

certificates Property Map: The call credentials to access the SDS server.
channelCredentialType String: The channel credentials to access the SDS server. This field can be set to one of the following: CERTIFICATES: Use TLS certificates to access the SDS server. GCE_VM: Use local GCE VM credentials to access the SDS server.

GrpcServiceConfig
, GrpcServiceConfigArgs

CallCredentials Pulumi.GoogleNative.Compute.Alpha.Inputs.CallCredentials: The call credentials to access the SDS server.
ChannelCredentials Pulumi.GoogleNative.Compute.Alpha.Inputs.ChannelCredentials: The channel credentials to access the SDS server.
TargetUri string: The target URI of the SDS server.

CallCredentials CallCredentials: The call credentials to access the SDS server.
ChannelCredentials ChannelCredentials: The channel credentials to access the SDS server.
TargetUri string: The target URI of the SDS server.

callCredentials CallCredentials: The call credentials to access the SDS server.
channelCredentials ChannelCredentials: The channel credentials to access the SDS server.
targetUri String: The target URI of the SDS server.

callCredentials CallCredentials: The call credentials to access the SDS server.
channelCredentials ChannelCredentials: The channel credentials to access the SDS server.
targetUri string: The target URI of the SDS server.

call_credentials CallCredentials: The call credentials to access the SDS server.
channel_credentials ChannelCredentials: The channel credentials to access the SDS server.
target_uri str: The target URI of the SDS server.

callCredentials Property Map: The call credentials to access the SDS server.
channelCredentials Property Map: The channel credentials to access the SDS server.
targetUri String: The target URI of the SDS server.

GrpcServiceConfigResponse
, GrpcServiceConfigResponseArgs

CallCredentials Pulumi.GoogleNative.Compute.Alpha.Inputs.CallCredentialsResponse: The call credentials to access the SDS server.
ChannelCredentials Pulumi.GoogleNative.Compute.Alpha.Inputs.ChannelCredentialsResponse: The channel credentials to access the SDS server.
TargetUri string: The target URI of the SDS server.

CallCredentials CallCredentialsResponse: The call credentials to access the SDS server.
ChannelCredentials ChannelCredentialsResponse: The channel credentials to access the SDS server.
TargetUri string: The target URI of the SDS server.

callCredentials CallCredentialsResponse: The call credentials to access the SDS server.
channelCredentials ChannelCredentialsResponse: The channel credentials to access the SDS server.
targetUri String: The target URI of the SDS server.

callCredentials CallCredentialsResponse: The call credentials to access the SDS server.
channelCredentials ChannelCredentialsResponse: The channel credentials to access the SDS server.
targetUri string: The target URI of the SDS server.

call_credentials CallCredentialsResponse: The call credentials to access the SDS server.
channel_credentials ChannelCredentialsResponse: The channel credentials to access the SDS server.
target_uri str: The target URI of the SDS server.

callCredentials Property Map: The call credentials to access the SDS server.
channelCredentials Property Map: The channel credentials to access the SDS server.
targetUri String: The target URI of the SDS server.

MetadataCredentialsFromPlugin
, MetadataCredentialsFromPluginArgs

Name string: Plugin name.
StructConfig string: A text proto that conforms to a Struct type definition interpreted by the plugin.

Name string: Plugin name.
StructConfig string: A text proto that conforms to a Struct type definition interpreted by the plugin.

name String: Plugin name.
structConfig String: A text proto that conforms to a Struct type definition interpreted by the plugin.

name string: Plugin name.
structConfig string: A text proto that conforms to a Struct type definition interpreted by the plugin.

name str: Plugin name.
struct_config str: A text proto that conforms to a Struct type definition interpreted by the plugin.

name String: Plugin name.
structConfig String: A text proto that conforms to a Struct type definition interpreted by the plugin.

MetadataCredentialsFromPluginResponse
, MetadataCredentialsFromPluginResponseArgs

Name string: Plugin name.
StructConfig string: A text proto that conforms to a Struct type definition interpreted by the plugin.

Name string: Plugin name.
StructConfig string: A text proto that conforms to a Struct type definition interpreted by the plugin.

name String: Plugin name.
structConfig String: A text proto that conforms to a Struct type definition interpreted by the plugin.

name string: Plugin name.
structConfig string: A text proto that conforms to a Struct type definition interpreted by the plugin.

name str: Plugin name.
struct_config str: A text proto that conforms to a Struct type definition interpreted by the plugin.

name String: Plugin name.
structConfig String: A text proto that conforms to a Struct type definition interpreted by the plugin.

SdsConfig
, SdsConfigArgs

GrpcServiceConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.GrpcServiceConfig: The configuration to access the SDS server over GRPC.

GrpcServiceConfig GrpcServiceConfig: The configuration to access the SDS server over GRPC.

grpcServiceConfig GrpcServiceConfig: The configuration to access the SDS server over GRPC.

grpcServiceConfig GrpcServiceConfig: The configuration to access the SDS server over GRPC.

grpc_service_config GrpcServiceConfig: The configuration to access the SDS server over GRPC.

grpcServiceConfig Property Map: The configuration to access the SDS server over GRPC.

SdsConfigResponse
, SdsConfigResponseArgs

GrpcServiceConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.GrpcServiceConfigResponse: The configuration to access the SDS server over GRPC.

GrpcServiceConfig GrpcServiceConfigResponse: The configuration to access the SDS server over GRPC.

grpcServiceConfig GrpcServiceConfigResponse: The configuration to access the SDS server over GRPC.

grpcServiceConfig GrpcServiceConfigResponse: The configuration to access the SDS server over GRPC.

grpc_service_config GrpcServiceConfigResponse: The configuration to access the SDS server over GRPC.

grpcServiceConfig Property Map: The configuration to access the SDS server over GRPC.

ServerTlsSettings
, ServerTlsSettingsArgs

ProxyTlsContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsContext: Configures the mechanism to obtain security certificates and identity information.
SubjectAltNames List<string>: A list of alternate names to verify the subject identity in the certificate presented by the client.
TlsMode Pulumi.GoogleNative.Compute.Alpha.ServerTlsSettingsTlsMode: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

ProxyTlsContext TlsContext: Configures the mechanism to obtain security certificates and identity information.
SubjectAltNames []string: A list of alternate names to verify the subject identity in the certificate presented by the client.
TlsMode ServerTlsSettingsTlsMode: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxyTlsContext TlsContext: Configures the mechanism to obtain security certificates and identity information.
subjectAltNames List<String>: A list of alternate names to verify the subject identity in the certificate presented by the client.
tlsMode ServerTlsSettingsTlsMode: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxyTlsContext TlsContext: Configures the mechanism to obtain security certificates and identity information.
subjectAltNames string[]: A list of alternate names to verify the subject identity in the certificate presented by the client.
tlsMode ServerTlsSettingsTlsMode: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxy_tls_context TlsContext: Configures the mechanism to obtain security certificates and identity information.
subject_alt_names Sequence[str]: A list of alternate names to verify the subject identity in the certificate presented by the client.
tls_mode ServerTlsSettingsTlsMode: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxyTlsContext Property Map: Configures the mechanism to obtain security certificates and identity information.
subjectAltNames List<String>: A list of alternate names to verify the subject identity in the certificate presented by the client.
tlsMode "INVALID" | "MUTUAL" | "SIMPLE": Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

ServerTlsSettingsResponse
, ServerTlsSettingsResponseArgs

ProxyTlsContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsContextResponse: Configures the mechanism to obtain security certificates and identity information.
SubjectAltNames List<string>: A list of alternate names to verify the subject identity in the certificate presented by the client.
TlsMode string: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

ProxyTlsContext TlsContextResponse: Configures the mechanism to obtain security certificates and identity information.
SubjectAltNames []string: A list of alternate names to verify the subject identity in the certificate presented by the client.
TlsMode string: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxyTlsContext TlsContextResponse: Configures the mechanism to obtain security certificates and identity information.
subjectAltNames List<String>: A list of alternate names to verify the subject identity in the certificate presented by the client.
tlsMode String: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxyTlsContext TlsContextResponse: Configures the mechanism to obtain security certificates and identity information.
subjectAltNames string[]: A list of alternate names to verify the subject identity in the certificate presented by the client.
tlsMode string: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxy_tls_context TlsContextResponse: Configures the mechanism to obtain security certificates and identity information.
subject_alt_names Sequence[str]: A list of alternate names to verify the subject identity in the certificate presented by the client.
tls_mode str: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

proxyTlsContext Property Map: Configures the mechanism to obtain security certificates and identity information.
subjectAltNames List<String>: A list of alternate names to verify the subject identity in the certificate presented by the client.
tlsMode String: Indicates whether connections should be secured using TLS. The value of this field determines how TLS is enforced. This field can be set to one of the following: - SIMPLE Secure connections with standard TLS semantics. - MUTUAL Secure connections to the backends using mutual TLS by presenting client certificates for authentication.

ServerTlsSettingsTlsMode
, ServerTlsSettingsTlsModeArgs

Invalid: INVALID
Mutual: MUTUALSecure connections to the backends using mutual TLS by presenting client certificates for authentication.
Simple: SIMPLESecure connections with standard TLS semantics.

ServerTlsSettingsTlsModeInvalid: INVALID
ServerTlsSettingsTlsModeMutual: MUTUALSecure connections to the backends using mutual TLS by presenting client certificates for authentication.
ServerTlsSettingsTlsModeSimple: SIMPLESecure connections with standard TLS semantics.

Invalid: INVALID
Mutual: MUTUALSecure connections to the backends using mutual TLS by presenting client certificates for authentication.
Simple: SIMPLESecure connections with standard TLS semantics.

Invalid: INVALID
Mutual: MUTUALSecure connections to the backends using mutual TLS by presenting client certificates for authentication.
Simple: SIMPLESecure connections with standard TLS semantics.

INVALID: INVALID
MUTUAL: MUTUALSecure connections to the backends using mutual TLS by presenting client certificates for authentication.
SIMPLE: SIMPLESecure connections with standard TLS semantics.

"INVALID": INVALID
"MUTUAL": MUTUALSecure connections to the backends using mutual TLS by presenting client certificates for authentication.
"SIMPLE": SIMPLESecure connections with standard TLS semantics.

SslPolicyMinTlsVersion
, SslPolicyMinTlsVersionArgs

Tls10: TLS_1_0TLS 1.0
Tls11: TLS_1_1TLS 1.1
Tls12: TLS_1_2TLS 1.2

SslPolicyMinTlsVersionTls10: TLS_1_0TLS 1.0
SslPolicyMinTlsVersionTls11: TLS_1_1TLS 1.1
SslPolicyMinTlsVersionTls12: TLS_1_2TLS 1.2

Tls10: TLS_1_0TLS 1.0
Tls11: TLS_1_1TLS 1.1
Tls12: TLS_1_2TLS 1.2

Tls10: TLS_1_0TLS 1.0
Tls11: TLS_1_1TLS 1.1
Tls12: TLS_1_2TLS 1.2

TLS10: TLS_1_0TLS 1.0
TLS11: TLS_1_1TLS 1.1
TLS12: TLS_1_2TLS 1.2

"TLS_1_0": TLS_1_0TLS 1.0
"TLS_1_1": TLS_1_1TLS 1.1
"TLS_1_2": TLS_1_2TLS 1.2

SslPolicyProfile
, SslPolicyProfileArgs

Compatible: COMPATIBLECompatible profile. Allows the broadset set of clients, even those which support only out-of-date SSL features to negotiate with the load balancer.
Custom: CUSTOMCustom profile. Allow only the set of allowed SSL features specified in the customFeatures field.
Modern: MODERNModern profile. Supports a wide set of SSL features, allowing modern clients to negotiate SSL with the load balancer.
Restricted: RESTRICTEDRestricted profile. Supports a reduced set of SSL features, intended to meet stricter compliance requirements.

SslPolicyProfileCompatible: COMPATIBLECompatible profile. Allows the broadset set of clients, even those which support only out-of-date SSL features to negotiate with the load balancer.
SslPolicyProfileCustom: CUSTOMCustom profile. Allow only the set of allowed SSL features specified in the customFeatures field.
SslPolicyProfileModern: MODERNModern profile. Supports a wide set of SSL features, allowing modern clients to negotiate SSL with the load balancer.
SslPolicyProfileRestricted: RESTRICTEDRestricted profile. Supports a reduced set of SSL features, intended to meet stricter compliance requirements.

Compatible: COMPATIBLECompatible profile. Allows the broadset set of clients, even those which support only out-of-date SSL features to negotiate with the load balancer.
Custom: CUSTOMCustom profile. Allow only the set of allowed SSL features specified in the customFeatures field.
Modern: MODERNModern profile. Supports a wide set of SSL features, allowing modern clients to negotiate SSL with the load balancer.
Restricted: RESTRICTEDRestricted profile. Supports a reduced set of SSL features, intended to meet stricter compliance requirements.

Compatible: COMPATIBLECompatible profile. Allows the broadset set of clients, even those which support only out-of-date SSL features to negotiate with the load balancer.
Custom: CUSTOMCustom profile. Allow only the set of allowed SSL features specified in the customFeatures field.
Modern: MODERNModern profile. Supports a wide set of SSL features, allowing modern clients to negotiate SSL with the load balancer.
Restricted: RESTRICTEDRestricted profile. Supports a reduced set of SSL features, intended to meet stricter compliance requirements.

COMPATIBLE: COMPATIBLECompatible profile. Allows the broadset set of clients, even those which support only out-of-date SSL features to negotiate with the load balancer.
CUSTOM: CUSTOMCustom profile. Allow only the set of allowed SSL features specified in the customFeatures field.
MODERN: MODERNModern profile. Supports a wide set of SSL features, allowing modern clients to negotiate SSL with the load balancer.
RESTRICTED: RESTRICTEDRestricted profile. Supports a reduced set of SSL features, intended to meet stricter compliance requirements.

"COMPATIBLE": COMPATIBLECompatible profile. Allows the broadset set of clients, even those which support only out-of-date SSL features to negotiate with the load balancer.
"CUSTOM": CUSTOMCustom profile. Allow only the set of allowed SSL features specified in the customFeatures field.
"MODERN": MODERNModern profile. Supports a wide set of SSL features, allowing modern clients to negotiate SSL with the load balancer.
"RESTRICTED": RESTRICTEDRestricted profile. Supports a reduced set of SSL features, intended to meet stricter compliance requirements.

SslPolicyWarningsItemDataItemResponse
, SslPolicyWarningsItemDataItemResponseArgs

Key string: A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
Value string: A warning data value corresponding to the key.

Key string: A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
Value string: A warning data value corresponding to the key.

key String: A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
value String: A warning data value corresponding to the key.

key string: A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
value string: A warning data value corresponding to the key.

key str: A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
value str: A warning data value corresponding to the key.

key String: A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
value String: A warning data value corresponding to the key.

SslPolicyWarningsItemResponse
, SslPolicyWarningsItemResponseArgs

Code string: A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
Data List<Pulumi.GoogleNative.Compute.Alpha.Inputs.SslPolicyWarningsItemDataItemResponse>: Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
Message string: A human-readable description of the warning code.

Code string: A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
Data []SslPolicyWarningsItemDataItemResponse: Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
Message string: A human-readable description of the warning code.

code String: A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
data List<SslPolicyWarningsItemDataItemResponse>: Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
message String: A human-readable description of the warning code.

code string: A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
data SslPolicyWarningsItemDataItemResponse[]: Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
message string: A human-readable description of the warning code.

code str: A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
data Sequence[SslPolicyWarningsItemDataItemResponse]: Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
message str: A human-readable description of the warning code.

code String: A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
data List<Property Map>: Metadata about this warning in key: value format. For example: "data": [ { "key": "scope", "value": "zones/us-east1-d" }
message String: A human-readable description of the warning code.

TlsCertificateContext
, TlsCertificateContextArgs

CertificatePaths Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificatePaths: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
CertificateSource Pulumi.GoogleNative.Compute.Alpha.TlsCertificateContextCertificateSource: Defines how TLS certificates are obtained.
SdsConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

CertificatePaths TlsCertificatePaths: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
CertificateSource TlsCertificateContextCertificateSource: Defines how TLS certificates are obtained.
SdsConfig SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificatePaths TlsCertificatePaths: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificateSource TlsCertificateContextCertificateSource: Defines how TLS certificates are obtained.
sdsConfig SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificatePaths TlsCertificatePaths: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificateSource TlsCertificateContextCertificateSource: Defines how TLS certificates are obtained.
sdsConfig SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificate_paths TlsCertificatePaths: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificate_source TlsCertificateContextCertificateSource: Defines how TLS certificates are obtained.
sds_config SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificatePaths Property Map: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificateSource "INVALID" | "USE_PATH" | "USE_SDS": Defines how TLS certificates are obtained.
sdsConfig Property Map: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

TlsCertificateContextCertificateSource
, TlsCertificateContextCertificateSourceArgs

Invalid: INVALID
UsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
UseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

TlsCertificateContextCertificateSourceInvalid: INVALID
TlsCertificateContextCertificateSourceUsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
TlsCertificateContextCertificateSourceUseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

Invalid: INVALID
UsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
UseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

Invalid: INVALID
UsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
UseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

INVALID: INVALID
USE_PATH: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
USE_SDS: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

"INVALID": INVALID
"USE_PATH": USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
"USE_SDS": USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

TlsCertificateContextResponse
, TlsCertificateContextResponseArgs

CertificatePaths Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificatePathsResponse: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
CertificateSource string: Defines how TLS certificates are obtained.
SdsConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

CertificatePaths TlsCertificatePathsResponse: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
CertificateSource string: Defines how TLS certificates are obtained.
SdsConfig SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificatePaths TlsCertificatePathsResponse: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificateSource String: Defines how TLS certificates are obtained.
sdsConfig SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificatePaths TlsCertificatePathsResponse: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificateSource string: Defines how TLS certificates are obtained.
sdsConfig SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificate_paths TlsCertificatePathsResponse: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificate_source str: Defines how TLS certificates are obtained.
sds_config SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

certificatePaths Property Map: Specifies the certificate and private key paths. This field is applicable only if tlsCertificateSource is set to USE_PATH.
certificateSource String: Defines how TLS certificates are obtained.
sdsConfig Property Map: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.

TlsCertificatePaths
, TlsCertificatePathsArgs

CertificatePath string: The path to the file holding the client or server TLS certificate to use.
PrivateKeyPath string: The path to the file holding the client or server private key.

CertificatePath string: The path to the file holding the client or server TLS certificate to use.
PrivateKeyPath string: The path to the file holding the client or server private key.

certificatePath String: The path to the file holding the client or server TLS certificate to use.
privateKeyPath String: The path to the file holding the client or server private key.

certificatePath string: The path to the file holding the client or server TLS certificate to use.
privateKeyPath string: The path to the file holding the client or server private key.

certificate_path str: The path to the file holding the client or server TLS certificate to use.
private_key_path str: The path to the file holding the client or server private key.

certificatePath String: The path to the file holding the client or server TLS certificate to use.
privateKeyPath String: The path to the file holding the client or server private key.

TlsCertificatePathsResponse
, TlsCertificatePathsResponseArgs

CertificatePath string: The path to the file holding the client or server TLS certificate to use.
PrivateKeyPath string: The path to the file holding the client or server private key.

CertificatePath string: The path to the file holding the client or server TLS certificate to use.
PrivateKeyPath string: The path to the file holding the client or server private key.

certificatePath String: The path to the file holding the client or server TLS certificate to use.
privateKeyPath String: The path to the file holding the client or server private key.

certificatePath string: The path to the file holding the client or server TLS certificate to use.
privateKeyPath string: The path to the file holding the client or server private key.

certificate_path str: The path to the file holding the client or server TLS certificate to use.
private_key_path str: The path to the file holding the client or server private key.

certificatePath String: The path to the file holding the client or server TLS certificate to use.
privateKeyPath String: The path to the file holding the client or server private key.

TlsContext
, TlsContextArgs

CertificateContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificateContext: Defines the mechanism to obtain the client or server certificate.
ValidationContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsValidationContext: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

CertificateContext TlsCertificateContext: Defines the mechanism to obtain the client or server certificate.
ValidationContext TlsValidationContext: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificateContext TlsCertificateContext: Defines the mechanism to obtain the client or server certificate.
validationContext TlsValidationContext: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificateContext TlsCertificateContext: Defines the mechanism to obtain the client or server certificate.
validationContext TlsValidationContext: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificate_context TlsCertificateContext: Defines the mechanism to obtain the client or server certificate.
validation_context TlsValidationContext: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificateContext Property Map: Defines the mechanism to obtain the client or server certificate.
validationContext Property Map: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

TlsContextResponse
, TlsContextResponseArgs

CertificateContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsCertificateContextResponse: Defines the mechanism to obtain the client or server certificate.
ValidationContext Pulumi.GoogleNative.Compute.Alpha.Inputs.TlsValidationContextResponse: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

CertificateContext TlsCertificateContextResponse: Defines the mechanism to obtain the client or server certificate.
ValidationContext TlsValidationContextResponse: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificateContext TlsCertificateContextResponse: Defines the mechanism to obtain the client or server certificate.
validationContext TlsValidationContextResponse: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificateContext TlsCertificateContextResponse: Defines the mechanism to obtain the client or server certificate.
validationContext TlsValidationContextResponse: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificate_context TlsCertificateContextResponse: Defines the mechanism to obtain the client or server certificate.
validation_context TlsValidationContextResponse: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

certificateContext Property Map: Defines the mechanism to obtain the client or server certificate.
validationContext Property Map: Defines the mechanism to obtain the Certificate Authority certificate to validate the client/server certificate. If omitted, the proxy will not validate the server or client certificate.

TlsValidationContext
, TlsValidationContextArgs

CertificatePath string: The path to the file holding the CA certificate to validate the client or server certificate.
SdsConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
ValidationSource Pulumi.GoogleNative.Compute.Alpha.TlsValidationContextValidationSource: Defines how TLS certificates are obtained.

CertificatePath string: The path to the file holding the CA certificate to validate the client or server certificate.
SdsConfig SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
ValidationSource TlsValidationContextValidationSource: Defines how TLS certificates are obtained.

certificatePath String: The path to the file holding the CA certificate to validate the client or server certificate.
sdsConfig SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validationSource TlsValidationContextValidationSource: Defines how TLS certificates are obtained.

certificatePath string: The path to the file holding the CA certificate to validate the client or server certificate.
sdsConfig SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validationSource TlsValidationContextValidationSource: Defines how TLS certificates are obtained.

certificate_path str: The path to the file holding the CA certificate to validate the client or server certificate.
sds_config SdsConfig: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validation_source TlsValidationContextValidationSource: Defines how TLS certificates are obtained.

certificatePath String: The path to the file holding the CA certificate to validate the client or server certificate.
sdsConfig Property Map: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validationSource "INVALID" | "USE_PATH" | "USE_SDS": Defines how TLS certificates are obtained.

TlsValidationContextResponse
, TlsValidationContextResponseArgs

CertificatePath string: The path to the file holding the CA certificate to validate the client or server certificate.
SdsConfig Pulumi.GoogleNative.Compute.Alpha.Inputs.SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
ValidationSource string: Defines how TLS certificates are obtained.

CertificatePath string: The path to the file holding the CA certificate to validate the client or server certificate.
SdsConfig SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
ValidationSource string: Defines how TLS certificates are obtained.

certificatePath String: The path to the file holding the CA certificate to validate the client or server certificate.
sdsConfig SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validationSource String: Defines how TLS certificates are obtained.

certificatePath string: The path to the file holding the CA certificate to validate the client or server certificate.
sdsConfig SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validationSource string: Defines how TLS certificates are obtained.

certificate_path str: The path to the file holding the CA certificate to validate the client or server certificate.
sds_config SdsConfigResponse: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validation_source str: Defines how TLS certificates are obtained.

certificatePath String: The path to the file holding the CA certificate to validate the client or server certificate.
sdsConfig Property Map: Specifies the config to retrieve certificates through SDS. This field is applicable only if tlsCertificateSource is set to USE_SDS.
validationSource String: Defines how TLS certificates are obtained.

TlsValidationContextValidationSource
, TlsValidationContextValidationSourceArgs

Invalid: INVALID
UsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
UseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

TlsValidationContextValidationSourceInvalid: INVALID
TlsValidationContextValidationSourceUsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
TlsValidationContextValidationSourceUseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

Invalid: INVALID
UsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
UseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

Invalid: INVALID
UsePath: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
UseSds: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

INVALID: INVALID
USE_PATH: USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
USE_SDS: USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

"INVALID": INVALID
"USE_PATH": USE_PATHUSE_PATH specifies that the certificates and private key are obtained from a locally mounted filesystem path.
"USE_SDS": USE_SDSUSE_SDS specifies that the certificates and private key are obtained from a SDS server.

Package Details

Repository: Google Cloud Native pulumi/pulumi-google-native
License: Apache-2.0

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

pulumi/pulumi-google-native

google-native.compute/alpha.SslPolicy

On this page

On this page

Create SslPolicy Resource

Constructor syntax

Parameters

Constructor example

SslPolicy Resource Properties

Inputs

Outputs

Supporting Types

CallCredentials, CallCredentialsArgs

CallCredentialsCallCredentialType, CallCredentialsCallCredentialTypeArgs

CallCredentialsResponse, CallCredentialsResponseArgs

ChannelCredentials, ChannelCredentialsArgs

ChannelCredentialsChannelCredentialType, ChannelCredentialsChannelCredentialTypeArgs

ChannelCredentialsResponse, ChannelCredentialsResponseArgs

GrpcServiceConfig, GrpcServiceConfigArgs

GrpcServiceConfigResponse, GrpcServiceConfigResponseArgs

MetadataCredentialsFromPlugin, MetadataCredentialsFromPluginArgs

MetadataCredentialsFromPluginResponse, MetadataCredentialsFromPluginResponseArgs

SdsConfig, SdsConfigArgs

SdsConfigResponse, SdsConfigResponseArgs

ServerTlsSettings, ServerTlsSettingsArgs

ServerTlsSettingsResponse, ServerTlsSettingsResponseArgs

ServerTlsSettingsTlsMode, ServerTlsSettingsTlsModeArgs

SslPolicyMinTlsVersion, SslPolicyMinTlsVersionArgs

SslPolicyProfile, SslPolicyProfileArgs

SslPolicyWarningsItemDataItemResponse, SslPolicyWarningsItemDataItemResponseArgs

SslPolicyWarningsItemResponse, SslPolicyWarningsItemResponseArgs

TlsCertificateContext, TlsCertificateContextArgs

TlsCertificateContextCertificateSource, TlsCertificateContextCertificateSourceArgs

TlsCertificateContextResponse, TlsCertificateContextResponseArgs

TlsCertificatePaths, TlsCertificatePathsArgs

TlsCertificatePathsResponse, TlsCertificatePathsResponseArgs

TlsContext, TlsContextArgs

TlsContextResponse, TlsContextResponseArgs

TlsValidationContext, TlsValidationContextArgs

TlsValidationContextResponse, TlsValidationContextResponseArgs

TlsValidationContextValidationSource, TlsValidationContextValidationSourceArgs

Package Details

On this page

On this page

CallCredentials
, CallCredentialsArgs

CallCredentialsCallCredentialType
, CallCredentialsCallCredentialTypeArgs

CallCredentialsResponse
, CallCredentialsResponseArgs

ChannelCredentials
, ChannelCredentialsArgs

ChannelCredentialsChannelCredentialType
, ChannelCredentialsChannelCredentialTypeArgs

ChannelCredentialsResponse
, ChannelCredentialsResponseArgs

GrpcServiceConfig
, GrpcServiceConfigArgs

GrpcServiceConfigResponse
, GrpcServiceConfigResponseArgs

MetadataCredentialsFromPlugin
, MetadataCredentialsFromPluginArgs

MetadataCredentialsFromPluginResponse
, MetadataCredentialsFromPluginResponseArgs

SdsConfig
, SdsConfigArgs

SdsConfigResponse
, SdsConfigResponseArgs

ServerTlsSettings
, ServerTlsSettingsArgs

ServerTlsSettingsResponse
, ServerTlsSettingsResponseArgs

ServerTlsSettingsTlsMode
, ServerTlsSettingsTlsModeArgs

SslPolicyMinTlsVersion
, SslPolicyMinTlsVersionArgs

SslPolicyProfile
, SslPolicyProfileArgs

SslPolicyWarningsItemDataItemResponse
, SslPolicyWarningsItemDataItemResponseArgs

SslPolicyWarningsItemResponse
, SslPolicyWarningsItemResponseArgs

TlsCertificateContext
, TlsCertificateContextArgs

TlsCertificateContextCertificateSource
, TlsCertificateContextCertificateSourceArgs

TlsCertificateContextResponse
, TlsCertificateContextResponseArgs

TlsCertificatePaths
, TlsCertificatePathsArgs

TlsCertificatePathsResponse
, TlsCertificatePathsResponseArgs

TlsContext
, TlsContextArgs

TlsContextResponse
, TlsContextResponseArgs

TlsValidationContext
, TlsValidationContextArgs

TlsValidationContextResponse
, TlsValidationContextResponseArgs

TlsValidationContextValidationSource
, TlsValidationContextValidationSourceArgs