package types

type ASN1Subject struct {

	// Fully qualified domain name (FQDN) associated with the certificate subject.
	CommonName *string

	// Two-digit code that specifies the country in which the certificate subject
	// located.
	Country *string

	// Disambiguating information for the certificate subject.
	DistinguishedNameQualifier *string

	// Typically a qualifier appended to the name of an individual. Examples include
	// Jr. for junior, Sr. for senior, and III for third.
	GenerationQualifier *string

	// First name.
	GivenName *string

	// Concatenation that typically contains the first letter of the GivenName, the
	// first letter of the middle name if one exists, and the first letter of the
	// SurName.
	Initials *string

	// The locality (such as a city or town) in which the certificate subject is
	// located.
	Locality *string

	// Legal name of the organization with which the certificate subject is affiliated.
	Organization *string

	// A subdivision or unit of the organization (such as sales or finance) with which
	// the certificate subject is affiliated.
	OrganizationalUnit *string

	// Typically a shortened version of a longer GivenName. For example, Jonathan is
	// often shortened to John. Elizabeth is often shortened to Beth, Liz, or Eliza.
	Pseudonym *string

	// The certificate serial number.
	SerialNumber *string

	// State in which the subject of the certificate is located.
	State *string

	// Family name. In the US and the UK, for example, the surname of an individual is
	// ordered last. In Asian cultures the surname is typically ordered first.
	Surname *string

	// A title such as Mr. or Ms., which is pre-pended to the name to refer formally to
	// the certificate subject.
	Title *string
}

Contains information about the certificate subject. The certificate can be one issued by your private certificate authority (CA) or it can be your private CA certificate. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate. The DN must be unique for each entity, but your private CA can issue more than one certificate with the same DN to the same entity.

type ActionType ¶

type ActionType string

const (
	ActionTypeIssuecertificate ActionType = "IssueCertificate"
	ActionTypeGetcertificate   ActionType = "GetCertificate"
	ActionTypeListpermissions  ActionType = "ListPermissions"
)

Enum values for ActionType

func (ActionType) Values ¶

func (ActionType) Values() []ActionType

Values returns all known values for ActionType. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type AuditReportResponseFormat ¶

type AuditReportResponseFormat string

const (
	AuditReportResponseFormatJson AuditReportResponseFormat = "JSON"
	AuditReportResponseFormatCsv  AuditReportResponseFormat = "CSV"
)

Enum values for AuditReportResponseFormat

func (AuditReportResponseFormat) Values ¶

func (AuditReportResponseFormat) Values() []AuditReportResponseFormat

Values returns all known values for AuditReportResponseFormat. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type AuditReportStatus ¶

type AuditReportStatus string

const (
	AuditReportStatusCreating AuditReportStatus = "CREATING"
	AuditReportStatusSuccess  AuditReportStatus = "SUCCESS"
	AuditReportStatusFailed   AuditReportStatus = "FAILED"
)

Enum values for AuditReportStatus

func (AuditReportStatus) Values ¶

func (AuditReportStatus) Values() []AuditReportStatus

Values returns all known values for AuditReportStatus. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type CertificateAuthority ¶

type CertificateAuthority struct {

	// Amazon Resource Name (ARN) for your private certificate authority (CA). The
	// format is  12345678-1234-1234-1234-123456789012 .
	Arn *string

	// Your private CA configuration.
	CertificateAuthorityConfiguration *CertificateAuthorityConfiguration

	// Date and time at which your private CA was created.
	CreatedAt *time.Time

	// Reason the request to create your private CA failed.
	FailureReason FailureReason

	// Date and time at which your private CA was last updated.
	LastStateChangeAt *time.Time

	// Date and time after which your private CA certificate is not valid.
	NotAfter *time.Time

	// Date and time before which your private CA certificate is not valid.
	NotBefore *time.Time

	// The AWS account ID that owns the certificate authority.
	OwnerAccount *string

	// The period during which a deleted CA can be restored. For more information, see
	// the PermanentDeletionTimeInDays parameter of the
	// DeleteCertificateAuthorityRequest
	// (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_DeleteCertificateAuthorityRequest.html)
	// action.
	RestorableUntil *time.Time

	// Information about the certificate revocation list (CRL) created and maintained
	// by your private CA.
	RevocationConfiguration *RevocationConfiguration

	// Serial number of your private CA.
	Serial *string

	// Status of your private CA.
	Status CertificateAuthorityStatus

	// Type of your private CA.
	Type CertificateAuthorityType
}

Contains information about your private certificate authority (CA). Your private CA can issue and revoke X.509 digital certificates. Digital certificates verify that the entity named in the certificate Subject field owns or controls the public key contained in the Subject Public Key Info field. Call the CreateCertificateAuthority (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_CreateCertificateAuthority.html) action to create your private CA. You must then call the GetCertificateAuthorityCertificate (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_GetCertificateAuthorityCertificate.html) action to retrieve a private CA certificate signing request (CSR). Sign the CSR with your ACM Private CA-hosted or on-premises root or subordinate CA certificate. Call the ImportCertificateAuthorityCertificate (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_ImportCertificateAuthorityCertificate.html) action to import the signed certificate into AWS Certificate Manager (ACM).

type CertificateAuthorityConfiguration ¶

type CertificateAuthorityConfiguration struct {

	// Type of the public key algorithm and size, in bits, of the key pair that your CA
	// creates when it issues a certificate. When you create a subordinate CA, you must
	// use a key algorithm supported by the parent CA.
	//
	// This member is required.
	KeyAlgorithm KeyAlgorithm

	// Name of the algorithm your private CA uses to sign certificate requests. This
	// parameter should not be confused with the SigningAlgorithm parameter used to
	// sign certificates when they are issued.
	//
	// This member is required.
	SigningAlgorithm SigningAlgorithm

	// Structure that contains X.500 distinguished name information for your private
	// CA.
	//
	// This member is required.
	Subject *ASN1Subject
}

Contains configuration information for your private certificate authority (CA). This includes information about the class of public key algorithm and the key pair that your private CA creates when it issues a certificate. It also includes the signature algorithm that it uses when issuing certificates, and its X.500 distinguished name. You must specify this information when you call the CreateCertificateAuthority (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_CreateCertificateAuthority.html) action.

type CertificateAuthorityStatus ¶

type CertificateAuthorityStatus string

const (
	CertificateAuthorityStatusCreating           CertificateAuthorityStatus = "CREATING"
	CertificateAuthorityStatusPendingCertificate CertificateAuthorityStatus = "PENDING_CERTIFICATE"
	CertificateAuthorityStatusActive             CertificateAuthorityStatus = "ACTIVE"
	CertificateAuthorityStatusDeleted            CertificateAuthorityStatus = "DELETED"
	CertificateAuthorityStatusDisabled           CertificateAuthorityStatus = "DISABLED"
	CertificateAuthorityStatusExpired            CertificateAuthorityStatus = "EXPIRED"
	CertificateAuthorityStatusFailed             CertificateAuthorityStatus = "FAILED"
)

Enum values for CertificateAuthorityStatus

func (CertificateAuthorityStatus) Values ¶

func (CertificateAuthorityStatus) Values() []CertificateAuthorityStatus

Values returns all known values for CertificateAuthorityStatus. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type CertificateAuthorityType ¶

type CertificateAuthorityType string

const (
	CertificateAuthorityTypeRoot        CertificateAuthorityType = "ROOT"
	CertificateAuthorityTypeSubordinate CertificateAuthorityType = "SUBORDINATE"
)

Enum values for CertificateAuthorityType

func (CertificateAuthorityType) Values ¶

func (CertificateAuthorityType) Values() []CertificateAuthorityType

Values returns all known values for CertificateAuthorityType. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type CertificateMismatchException ¶

type CertificateMismatchException struct {
	Message *string
}

The certificate authority certificate you are importing does not comply with conditions specified in the certificate that signed it.

func (*CertificateMismatchException) Error ¶

func (e *CertificateMismatchException) Error() string

func (*CertificateMismatchException) ErrorCode ¶

func (e *CertificateMismatchException) ErrorCode() string

func (*CertificateMismatchException) ErrorFault ¶

func (e *CertificateMismatchException) ErrorFault() smithy.ErrorFault

func (*CertificateMismatchException) ErrorMessage ¶

func (e *CertificateMismatchException) ErrorMessage() string

type ConcurrentModificationException ¶

type ConcurrentModificationException struct {
	Message *string
}

A previous update to your private CA is still ongoing.

func (*ConcurrentModificationException) Error ¶

func (e *ConcurrentModificationException) Error() string

func (*ConcurrentModificationException) ErrorCode ¶

func (e *ConcurrentModificationException) ErrorCode() string

func (*ConcurrentModificationException) ErrorFault ¶

func (e *ConcurrentModificationException) ErrorFault() smithy.ErrorFault

func (*ConcurrentModificationException) ErrorMessage ¶

func (e *ConcurrentModificationException) ErrorMessage() string

type CrlConfiguration ¶

type CrlConfiguration struct {

	// Boolean value that specifies whether certificate revocation lists (CRLs) are
	// enabled. You can use this value to enable certificate revocation for a new CA
	// when you call the CreateCertificateAuthority
	// (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_CreateCertificateAuthority.html)
	// action or for an existing CA when you call the UpdateCertificateAuthority
	// (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_UpdateCertificateAuthority.html)
	// action.
	//
	// This member is required.
	Enabled *bool

	// Name inserted into the certificate CRL Distribution Points extension that
	// enables the use of an alias for the CRL distribution point. Use this value if
	// you don't want the name of your S3 bucket to be public.
	CustomCname *string

	// Number of days until a certificate expires.
	ExpirationInDays *int32

	// Name of the S3 bucket that contains the CRL. If you do not provide a value for
	// the CustomCname argument, the name of your S3 bucket is placed into the CRL
	// Distribution Points extension of the issued certificate. You can change the name
	// of your bucket by calling the UpdateCertificateAuthority
	// (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_UpdateCertificateAuthority.html)
	// action. You must specify a bucket policy that allows ACM Private CA to write the
	// CRL to your bucket.
	S3BucketName *string
}

Contains configuration information for a certificate revocation list (CRL). Your private certificate authority (CA) creates base CRLs. Delta CRLs are not supported. You can enable CRLs for your new or an existing private CA by setting the Enabled parameter to true. Your private CA writes CRLs to an S3 bucket that you specify in the S3BucketName parameter. You can hide the name of your bucket by specifying a value for the CustomCname parameter. Your private CA copies the CNAME or the S3 bucket name to the CRL Distribution Points extension of each certificate it issues. Your S3 bucket policy must give write permission to ACM Private CA. ACM Private CAA assets that are stored in Amazon S3 can be protected with encryption. For more information, see Encrypting Your CRLs (https://docs.aws.amazon.com/acm-pca/latest/userguide/PcaCreateCa.html#crl-encryption). Your private CA uses the value in the ExpirationInDays parameter to calculate the nextUpdate field in the CRL. The CRL is refreshed at 1/2 the age of next update or when a certificate is revoked. When a certificate is revoked, it is recorded in the next CRL that is generated and in the next audit report. Only time valid certificates are listed in the CRL. Expired certificates are not included. CRLs contain the following fields:

* Version: The current version number defined in RFC 5280 is V2. The integer value is 0x1.

* Signature Algorithm: The name of the algorithm used to sign the CRL.

* Issuer: The X.500 distinguished name of your private CA that issued the CRL.

* Last Update: The issue date and time of this CRL.

* Next Update: The day and time by which the next CRL will be issued.

* Revoked Certificates: List of revoked certificates. Each list item contains the following information.

* Serial Number: The serial number, in hexadecimal format, of the revoked certificate.

* Revocation Date: Date and time the certificate was revoked.

* CRL Entry Extensions: Optional extensions for the CRL entry.

* X509v3 CRL Reason Code: Reason the certificate was revoked.

* CRL Extensions: Optional extensions for the CRL.

* X509v3 Authority Key Identifier: Identifies the public key associated with the private key used to sign the certificate.

* X509v3 CRL Number:: Decimal sequence number for the CRL.

* Signature Algorithm: Algorithm used by your private CA to sign the CRL.

* Signature Value: Signature computed over the CRL.

Certificate revocation lists created by ACM Private CA are DER-encoded. You can use the following OpenSSL command to list a CRL. openssl crl -inform DER -text -in crl_path -noout

type FailureReason ¶

type FailureReason string

const (
	FailureReasonRequestTimedOut      FailureReason = "REQUEST_TIMED_OUT"
	FailureReasonUnsupportedAlgorithm FailureReason = "UNSUPPORTED_ALGORITHM"
	FailureReasonOther                FailureReason = "OTHER"
)

Enum values for FailureReason

func (FailureReason) Values ¶

func (FailureReason) Values() []FailureReason

Values returns all known values for FailureReason. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type InvalidArgsException ¶

type InvalidArgsException struct {
	Message *string
}

One or more of the specified arguments was not valid.

func (*InvalidArgsException) Error ¶

func (e *InvalidArgsException) Error() string

func (*InvalidArgsException) ErrorCode ¶

func (e *InvalidArgsException) ErrorCode() string

func (*InvalidArgsException) ErrorFault ¶

func (e *InvalidArgsException) ErrorFault() smithy.ErrorFault

func (*InvalidArgsException) ErrorMessage ¶

func (e *InvalidArgsException) ErrorMessage() string

type InvalidArnException ¶

type InvalidArnException struct {
	Message *string
}

The requested Amazon Resource Name (ARN) does not refer to an existing resource.

func (*InvalidArnException) Error ¶

func (e *InvalidArnException) Error() string

func (*InvalidArnException) ErrorCode ¶

func (e *InvalidArnException) ErrorCode() string

func (*InvalidArnException) ErrorFault ¶

func (e *InvalidArnException) ErrorFault() smithy.ErrorFault

func (*InvalidArnException) ErrorMessage ¶

func (e *InvalidArnException) ErrorMessage() string

type InvalidNextTokenException ¶

type InvalidNextTokenException struct {
	Message *string
}

The token specified in the NextToken argument is not valid. Use the token returned from your previous call to ListCertificateAuthorities (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_ListCertificateAuthorities.html).

func (*InvalidNextTokenException) Error ¶

func (e *InvalidNextTokenException) Error() string

func (*InvalidNextTokenException) ErrorCode ¶

func (e *InvalidNextTokenException) ErrorCode() string

func (*InvalidNextTokenException) ErrorFault ¶

func (e *InvalidNextTokenException) ErrorFault() smithy.ErrorFault

func (*InvalidNextTokenException) ErrorMessage ¶

func (e *InvalidNextTokenException) ErrorMessage() string

type InvalidPolicyException ¶

type InvalidPolicyException struct {
	Message *string
}

The resource policy is invalid or is missing a required statement. For general information about IAM policy and statement structure, see Overview of JSON Policies (https://docs.aws.amazon.com/https:/docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#access_policies-json).

func (*InvalidPolicyException) Error ¶

func (e *InvalidPolicyException) Error() string

func (*InvalidPolicyException) ErrorCode ¶

func (e *InvalidPolicyException) ErrorCode() string

func (*InvalidPolicyException) ErrorFault ¶

func (e *InvalidPolicyException) ErrorFault() smithy.ErrorFault

func (*InvalidPolicyException) ErrorMessage ¶

func (e *InvalidPolicyException) ErrorMessage() string

type InvalidRequestException ¶

type InvalidRequestException struct {
	Message *string
}

The request action cannot be performed or is prohibited.

func (*InvalidRequestException) Error ¶

func (e *InvalidRequestException) Error() string

func (*InvalidRequestException) ErrorCode ¶

func (e *InvalidRequestException) ErrorCode() string

func (*InvalidRequestException) ErrorFault ¶

func (e *InvalidRequestException) ErrorFault() smithy.ErrorFault

func (*InvalidRequestException) ErrorMessage ¶

func (e *InvalidRequestException) ErrorMessage() string

type InvalidStateException ¶

type InvalidStateException struct {
	Message *string
}

The state of the private CA does not allow this action to occur.

func (*InvalidStateException) Error ¶

func (e *InvalidStateException) Error() string

func (*InvalidStateException) ErrorCode ¶

func (e *InvalidStateException) ErrorCode() string

func (*InvalidStateException) ErrorFault ¶

func (e *InvalidStateException) ErrorFault() smithy.ErrorFault

func (*InvalidStateException) ErrorMessage ¶

func (e *InvalidStateException) ErrorMessage() string

type InvalidTagException ¶

type InvalidTagException struct {
	Message *string
}

The tag associated with the CA is not valid. The invalid argument is contained in the message field.

func (*InvalidTagException) Error ¶

func (e *InvalidTagException) Error() string

func (*InvalidTagException) ErrorCode ¶

func (e *InvalidTagException) ErrorCode() string

func (*InvalidTagException) ErrorFault ¶

func (e *InvalidTagException) ErrorFault() smithy.ErrorFault

func (*InvalidTagException) ErrorMessage ¶

func (e *InvalidTagException) ErrorMessage() string

type KeyAlgorithm ¶

type KeyAlgorithm string

const (
	KeyAlgorithmRsa2048      KeyAlgorithm = "RSA_2048"
	KeyAlgorithmRsa4096      KeyAlgorithm = "RSA_4096"
	KeyAlgorithmEcPrime256v1 KeyAlgorithm = "EC_prime256v1"
	KeyAlgorithmEcSecp384r1  KeyAlgorithm = "EC_secp384r1"
)

Enum values for KeyAlgorithm

func (KeyAlgorithm) Values ¶

func (KeyAlgorithm) Values() []KeyAlgorithm

Values returns all known values for KeyAlgorithm. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type LimitExceededException ¶

type LimitExceededException struct {
	Message *string
}

An ACM Private CA quota has been exceeded. See the exception message returned to determine the quota that was exceeded.

func (*LimitExceededException) Error ¶

func (e *LimitExceededException) Error() string

func (*LimitExceededException) ErrorCode ¶

func (e *LimitExceededException) ErrorCode() string

func (*LimitExceededException) ErrorFault ¶

func (e *LimitExceededException) ErrorFault() smithy.ErrorFault

func (*LimitExceededException) ErrorMessage ¶

func (e *LimitExceededException) ErrorMessage() string

type LockoutPreventedException ¶

type LockoutPreventedException struct {
	Message *string
}

The current action was prevented because it would lock the caller out from performing subsequent actions. Verify that the specified parameters would not result in the caller being denied access to the resource.

func (*LockoutPreventedException) Error ¶

func (e *LockoutPreventedException) Error() string

func (*LockoutPreventedException) ErrorCode ¶

func (e *LockoutPreventedException) ErrorCode() string

func (*LockoutPreventedException) ErrorFault ¶

func (e *LockoutPreventedException) ErrorFault() smithy.ErrorFault

func (*LockoutPreventedException) ErrorMessage ¶

func (e *LockoutPreventedException) ErrorMessage() string

type MalformedCSRException ¶

type MalformedCSRException struct {
	Message *string
}

The certificate signing request is invalid.

func (*MalformedCSRException) Error ¶

func (e *MalformedCSRException) Error() string

func (*MalformedCSRException) ErrorCode ¶

func (e *MalformedCSRException) ErrorCode() string

func (*MalformedCSRException) ErrorFault ¶

func (e *MalformedCSRException) ErrorFault() smithy.ErrorFault

func (*MalformedCSRException) ErrorMessage ¶

func (e *MalformedCSRException) ErrorMessage() string

type MalformedCertificateException ¶

type MalformedCertificateException struct {
	Message *string
}

One or more fields in the certificate are invalid.

func (*MalformedCertificateException) Error ¶

func (e *MalformedCertificateException) Error() string

func (*MalformedCertificateException) ErrorCode ¶

func (e *MalformedCertificateException) ErrorCode() string

func (*MalformedCertificateException) ErrorFault ¶

func (e *MalformedCertificateException) ErrorFault() smithy.ErrorFault

func (*MalformedCertificateException) ErrorMessage ¶

func (e *MalformedCertificateException) ErrorMessage() string

type Permission ¶

type Permission struct {

	// The private CA actions that can be performed by the designated AWS service.
	Actions []ActionType

	// The Amazon Resource Number (ARN) of the private CA from which the permission was
	// issued.
	CertificateAuthorityArn *string

	// The time at which the permission was created.
	CreatedAt *time.Time

	// The name of the policy that is associated with the permission.
	Policy *string

	// The AWS service or entity that holds the permission. At this time, the only
	// valid principal is acm.amazonaws.com.
	Principal *string

	// The ID of the account that assigned the permission.
	SourceAccount *string
}

Permissions designate which private CA actions can be performed by an AWS service or entity. In order for ACM to automatically renew private certificates, you must give the ACM service principal all available permissions (IssueCertificate, GetCertificate, and ListPermissions). Permissions can be assigned with the CreatePermission (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_CreatePermission.html) action, removed with the DeletePermission (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_DeletePermission.html) action, and listed with the ListPermissions (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_ListPermissions.html) action.

type PermissionAlreadyExistsException ¶

type PermissionAlreadyExistsException struct {
	Message *string
}

The designated permission has already been given to the user.

func (*PermissionAlreadyExistsException) Error ¶

func (e *PermissionAlreadyExistsException) Error() string

func (*PermissionAlreadyExistsException) ErrorCode ¶

func (e *PermissionAlreadyExistsException) ErrorCode() string

func (*PermissionAlreadyExistsException) ErrorFault ¶

func (e *PermissionAlreadyExistsException) ErrorFault() smithy.ErrorFault

func (*PermissionAlreadyExistsException) ErrorMessage ¶

func (e *PermissionAlreadyExistsException) ErrorMessage() string

type RequestAlreadyProcessedException ¶

type RequestAlreadyProcessedException struct {
	Message *string
}

Your request has already been completed.

func (*RequestAlreadyProcessedException) Error ¶

func (e *RequestAlreadyProcessedException) Error() string

func (*RequestAlreadyProcessedException) ErrorCode ¶

func (e *RequestAlreadyProcessedException) ErrorCode() string

func (*RequestAlreadyProcessedException) ErrorFault ¶

func (e *RequestAlreadyProcessedException) ErrorFault() smithy.ErrorFault

func (*RequestAlreadyProcessedException) ErrorMessage ¶

func (e *RequestAlreadyProcessedException) ErrorMessage() string

type RequestFailedException ¶

type RequestFailedException struct {
	Message *string
}

The request has failed for an unspecified reason.

func (*RequestFailedException) Error ¶

func (e *RequestFailedException) Error() string

func (*RequestFailedException) ErrorCode ¶

func (e *RequestFailedException) ErrorCode() string

func (*RequestFailedException) ErrorFault ¶

func (e *RequestFailedException) ErrorFault() smithy.ErrorFault

func (*RequestFailedException) ErrorMessage ¶

func (e *RequestFailedException) ErrorMessage() string

type RequestInProgressException ¶

type RequestInProgressException struct {
	Message *string
}

Your request is already in progress.

func (*RequestInProgressException) Error ¶

func (e *RequestInProgressException) Error() string

func (*RequestInProgressException) ErrorCode ¶

func (e *RequestInProgressException) ErrorCode() string

func (*RequestInProgressException) ErrorFault ¶

func (e *RequestInProgressException) ErrorFault() smithy.ErrorFault

func (*RequestInProgressException) ErrorMessage ¶

func (e *RequestInProgressException) ErrorMessage() string

type ResourceNotFoundException ¶

type ResourceNotFoundException struct {
	Message *string
}

A resource such as a private CA, S3 bucket, certificate, audit report, or policy cannot be found.

func (*ResourceNotFoundException) Error ¶

func (e *ResourceNotFoundException) Error() string

func (*ResourceNotFoundException) ErrorCode ¶

func (e *ResourceNotFoundException) ErrorCode() string

func (*ResourceNotFoundException) ErrorFault ¶

func (e *ResourceNotFoundException) ErrorFault() smithy.ErrorFault

func (*ResourceNotFoundException) ErrorMessage ¶

func (e *ResourceNotFoundException) ErrorMessage() string

type ResourceOwner ¶

type ResourceOwner string

const (
	ResourceOwnerSelf          ResourceOwner = "SELF"
	ResourceOwnerOtherAccounts ResourceOwner = "OTHER_ACCOUNTS"
)

Enum values for ResourceOwner

func (ResourceOwner) Values ¶

func (ResourceOwner) Values() []ResourceOwner

Values returns all known values for ResourceOwner. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type RevocationConfiguration ¶

type RevocationConfiguration struct {

	// Configuration of the certificate revocation list (CRL), if any, maintained by
	// your private CA.
	CrlConfiguration *CrlConfiguration
}

Certificate revocation information used by the CreateCertificateAuthority (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_CreateCertificateAuthority.html) and UpdateCertificateAuthority (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_UpdateCertificateAuthority.html) actions. Your private certificate authority (CA) can create and maintain a certificate revocation list (CRL). A CRL contains information about certificates revoked by your CA. For more information, see RevokeCertificate (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_RevokeCertificate.html).

type RevocationReason ¶

type RevocationReason string

const (
	RevocationReasonUnspecified                    RevocationReason = "UNSPECIFIED"
	RevocationReasonKeyCompromise                  RevocationReason = "KEY_COMPROMISE"
	RevocationReasonCertificateAuthorityCompromise RevocationReason = "CERTIFICATE_AUTHORITY_COMPROMISE"
	RevocationReasonAffiliationChanged             RevocationReason = "AFFILIATION_CHANGED"
	RevocationReasonSuperseded                     RevocationReason = "SUPERSEDED"
	RevocationReasonCessationOfOperation           RevocationReason = "CESSATION_OF_OPERATION"
	RevocationReasonPrivilegeWithdrawn             RevocationReason = "PRIVILEGE_WITHDRAWN"
	RevocationReasonAACompromise                   RevocationReason = "A_A_COMPROMISE"
)

Enum values for RevocationReason

func (RevocationReason) Values ¶

func (RevocationReason) Values() []RevocationReason

Values returns all known values for RevocationReason. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type SigningAlgorithm ¶

type SigningAlgorithm string

const (
	SigningAlgorithmSha256withecdsa SigningAlgorithm = "SHA256WITHECDSA"
	SigningAlgorithmSha384withecdsa SigningAlgorithm = "SHA384WITHECDSA"
	SigningAlgorithmSha512withecdsa SigningAlgorithm = "SHA512WITHECDSA"
	SigningAlgorithmSha256withrsa   SigningAlgorithm = "SHA256WITHRSA"
	SigningAlgorithmSha384withrsa   SigningAlgorithm = "SHA384WITHRSA"
	SigningAlgorithmSha512withrsa   SigningAlgorithm = "SHA512WITHRSA"
)

Enum values for SigningAlgorithm

func (SigningAlgorithm) Values ¶

func (SigningAlgorithm) Values() []SigningAlgorithm

Values returns all known values for SigningAlgorithm. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

type Tag ¶

type Tag struct {

	// Key (name) of the tag.
	//
	// This member is required.
	Key *string

	// Value of the tag.
	Value *string
}

Tags are labels that you can use to identify and organize your private CAs. Each tag consists of a key and an optional value. You can associate up to 50 tags with a private CA. To add one or more tags to a private CA, call the TagCertificateAuthority (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_TagCertificateAuthority.html) action. To remove a tag, call the UntagCertificateAuthority (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_UntagCertificateAuthority.html) action.

type TooManyTagsException ¶

type TooManyTagsException struct {
	Message *string
}

You can associate up to 50 tags with a private CA. Exception information is contained in the exception message field.

func (*TooManyTagsException) Error ¶

func (e *TooManyTagsException) Error() string

func (*TooManyTagsException) ErrorCode ¶

func (e *TooManyTagsException) ErrorCode() string

func (*TooManyTagsException) ErrorFault ¶

func (e *TooManyTagsException) ErrorFault() smithy.ErrorFault

func (*TooManyTagsException) ErrorMessage ¶

func (e *TooManyTagsException) ErrorMessage() string

type Validity ¶

type Validity struct {

	// Determines how ACM Private CA interprets the Value parameter, an integer.
	// Supported validity types include those listed below. Type definitions with
	// values include a sample input value and the resulting output. END_DATE: The
	// specific date and time when the certificate will expire, expressed using UTCTime
	// (YYMMDDHHMMSS) or GeneralizedTime (YYYYMMDDHHMMSS) format. When UTCTime is used,
	// if the year field (YY) is greater than or equal to 50, the year is interpreted
	// as 19YY. If the year field is less than 50, the year is interpreted as 20YY.
	//
	// *
	// Sample input value: 491231235959 (UTCTime format)
	//
	// * Output expiration
	// date/time: 12/31/2049 23:59:59
	//
	// ABSOLUTE: The specific date and time when the
	// certificate will expire, expressed in seconds since the Unix Epoch.
	//
	// * Sample
	// input value: 2524608000
	//
	// * Output expiration date/time: 01/01/2050
	// 00:00:00
	//
	// DAYS, MONTHS, YEARS: The relative time from the moment of issuance
	// until the certificate will expire, expressed in days, months, or years. Example
	// if DAYS, issued on 10/12/2020 at 12:34:54 UTC:
	//
	// * Sample input value: 90
	//
	// *
	// Output expiration date: 01/10/2020 12:34:54 UTC
	//
	// This member is required.
	Type ValidityPeriodType

	// A long integer interpreted according to the value of Type, below.
	//
	// This member is required.
	Value *int64
}

Validity specifies the period of time during which a certificate is valid. Validity can be expressed as an explicit date and time when the certificate expires, or as a span of time after issuance, stated in days, months, or years. For more information, see Validity (https://tools.ietf.org/html/rfc5280#section-4.1.2.5) in RFC 5280. You can issue a certificate by calling the IssueCertificate (https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_IssueCertificate.html) action.

type ValidityPeriodType ¶

type ValidityPeriodType string

const (
	ValidityPeriodTypeEndDate  ValidityPeriodType = "END_DATE"
	ValidityPeriodTypeAbsolute ValidityPeriodType = "ABSOLUTE"
	ValidityPeriodTypeDays     ValidityPeriodType = "DAYS"
	ValidityPeriodTypeMonths   ValidityPeriodType = "MONTHS"
	ValidityPeriodTypeYears    ValidityPeriodType = "YEARS"
)

Enum values for ValidityPeriodType

func (ValidityPeriodType) Values ¶

func (ValidityPeriodType) Values() []ValidityPeriodType

Values returns all known values for ValidityPeriodType. Note that this can be expanded in the future, and so it is only as up to date as the client. The ordering of this slice is not guaranteed to be stable across updates.

Source Files ¶

enums.go errors.go types.go

Version: v0.29.0
Published: Oct 31, 2020
Platform: darwin/amd64
Imports: 3 packages
Last checked: 3 minutes ago –

Tools for package owners.

?	: This menu
/	: Search site
f	: Jump to identifier
g then g	: Go to top of page
g then b	: Go to end of page
G	: Go to end of page
g then i	: Go to index
g then e	: Go to examples