interface TemplateDefinitionProperty
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.Mixins.Preview.AWS.PCAConnectorAD.Mixins.CfnTemplatePropsMixin.TemplateDefinitionProperty |
 Go | github.com/aws/aws-cdk-go/awscdkmixinspreview/v2/awspcaconnectorad/mixins#CfnTemplatePropsMixin_TemplateDefinitionProperty |
 Java | software.amazon.awscdk.mixins.preview.services.pcaconnectorad.mixins.CfnTemplatePropsMixin.TemplateDefinitionProperty |
 Python | aws_cdk.mixins_preview.aws_pcaconnectorad.mixins.CfnTemplatePropsMixin.TemplateDefinitionProperty |
 TypeScript | @aws-cdk/mixins-preview » aws_pcaconnectorad » mixins » CfnTemplatePropsMixin » TemplateDefinitionProperty |
Template configuration to define the information included in certificates.
Define certificate validity and renewal periods, certificate request handling and enrollment options, key usage extensions, application policies, and cryptography settings.
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { mixins as pcaconnectorad_mixins } from '@aws-cdk/mixins-preview/aws-pcaconnectorad';
const templateDefinitionProperty: pcaconnectorad_mixins.CfnTemplatePropsMixin.TemplateDefinitionProperty = {
templateV2: {
certificateValidity: {
renewalPeriod: {
period: 123,
periodType: 'periodType',
},
validityPeriod: {
period: 123,
periodType: 'periodType',
},
},
enrollmentFlags: {
enableKeyReuseOnNtTokenKeysetStorageFull: false,
includeSymmetricAlgorithms: false,
noSecurityExtension: false,
removeInvalidCertificateFromPersonalStore: false,
userInteractionRequired: false,
},
extensions: {
applicationPolicies: {
critical: false,
policies: [{
policyObjectIdentifier: 'policyObjectIdentifier',
policyType: 'policyType',
}],
},
keyUsage: {
critical: false,
usageFlags: {
dataEncipherment: false,
digitalSignature: false,
keyAgreement: false,
keyEncipherment: false,
nonRepudiation: false,
},
},
},
generalFlags: {
autoEnrollment: false,
machineType: false,
},
privateKeyAttributes: {
cryptoProviders: ['cryptoProviders'],
keySpec: 'keySpec',
minimalKeyLength: 123,
},
privateKeyFlags: {
clientVersion: 'clientVersion',
exportableKey: false,
strongKeyProtectionRequired: false,
},
subjectNameFlags: {
requireCommonName: false,
requireDirectoryPath: false,
requireDnsAsCn: false,
requireEmail: false,
sanRequireDirectoryGuid: false,
sanRequireDns: false,
sanRequireDomainDns: false,
sanRequireEmail: false,
sanRequireSpn: false,
sanRequireUpn: false,
},
supersededTemplates: ['supersededTemplates'],
},
templateV3: {
certificateValidity: {
renewalPeriod: {
period: 123,
periodType: 'periodType',
},
validityPeriod: {
period: 123,
periodType: 'periodType',
},
},
enrollmentFlags: {
enableKeyReuseOnNtTokenKeysetStorageFull: false,
includeSymmetricAlgorithms: false,
noSecurityExtension: false,
removeInvalidCertificateFromPersonalStore: false,
userInteractionRequired: false,
},
extensions: {
applicationPolicies: {
critical: false,
policies: [{
policyObjectIdentifier: 'policyObjectIdentifier',
policyType: 'policyType',
}],
},
keyUsage: {
critical: false,
usageFlags: {
dataEncipherment: false,
digitalSignature: false,
keyAgreement: false,
keyEncipherment: false,
nonRepudiation: false,
},
},
},
generalFlags: {
autoEnrollment: false,
machineType: false,
},
hashAlgorithm: 'hashAlgorithm',
privateKeyAttributes: {
algorithm: 'algorithm',
cryptoProviders: ['cryptoProviders'],
keySpec: 'keySpec',
keyUsageProperty: {
propertyFlags: {
decrypt: false,
keyAgreement: false,
sign: false,
},
propertyType: 'propertyType',
},
minimalKeyLength: 123,
},
privateKeyFlags: {
clientVersion: 'clientVersion',
exportableKey: false,
requireAlternateSignatureAlgorithm: false,
strongKeyProtectionRequired: false,
},
subjectNameFlags: {
requireCommonName: false,
requireDirectoryPath: false,
requireDnsAsCn: false,
requireEmail: false,
sanRequireDirectoryGuid: false,
sanRequireDns: false,
sanRequireDomainDns: false,
sanRequireEmail: false,
sanRequireSpn: false,
sanRequireUpn: false,
},
supersededTemplates: ['supersededTemplates'],
},
templateV4: {
certificateValidity: {
renewalPeriod: {
period: 123,
periodType: 'periodType',
},
validityPeriod: {
period: 123,
periodType: 'periodType',
},
},
enrollmentFlags: {
enableKeyReuseOnNtTokenKeysetStorageFull: false,
includeSymmetricAlgorithms: false,
noSecurityExtension: false,
removeInvalidCertificateFromPersonalStore: false,
userInteractionRequired: false,
},
extensions: {
applicationPolicies: {
critical: false,
policies: [{
policyObjectIdentifier: 'policyObjectIdentifier',
policyType: 'policyType',
}],
},
keyUsage: {
critical: false,
usageFlags: {
dataEncipherment: false,
digitalSignature: false,
keyAgreement: false,
keyEncipherment: false,
nonRepudiation: false,
},
},
},
generalFlags: {
autoEnrollment: false,
machineType: false,
},
hashAlgorithm: 'hashAlgorithm',
privateKeyAttributes: {
algorithm: 'algorithm',
cryptoProviders: ['cryptoProviders'],
keySpec: 'keySpec',
keyUsageProperty: {
propertyFlags: {
decrypt: false,
keyAgreement: false,
sign: false,
},
propertyType: 'propertyType',
},
minimalKeyLength: 123,
},
privateKeyFlags: {
clientVersion: 'clientVersion',
exportableKey: false,
requireAlternateSignatureAlgorithm: false,
requireSameKeyRenewal: false,
strongKeyProtectionRequired: false,
useLegacyProvider: false,
},
subjectNameFlags: {
requireCommonName: false,
requireDirectoryPath: false,
requireDnsAsCn: false,
requireEmail: false,
sanRequireDirectoryGuid: false,
sanRequireDns: false,
sanRequireDomainDns: false,
sanRequireEmail: false,
sanRequireSpn: false,
sanRequireUpn: false,
},
supersededTemplates: ['supersededTemplates'],
},
};
Properties
| Name | Type | Description |
|---|---|---|
| template | IResolvable | Template | Template configuration to define the information included in certificates. |
| template | IResolvable | Template | Template configuration to define the information included in certificates. |
| template | IResolvable | Template | Template configuration to define the information included in certificates. |
templateV2?
Type:
IResolvable | Template
(optional)
Template configuration to define the information included in certificates.
Define certificate validity and renewal periods, certificate request handling and enrollment options, key usage extensions, application policies, and cryptography settings.
templateV3?
Type:
IResolvable | Template
(optional)
Template configuration to define the information included in certificates.
Define certificate validity and renewal periods, certificate request handling and enrollment options, key usage extensions, application policies, and cryptography settings.
templateV4?
Type:
IResolvable | Template
(optional)
Template configuration to define the information included in certificates.
Define certificate validity and renewal periods, certificate request handling and enrollment options, key usage extensions, application policies, and cryptography settings.