Interface CfnTemplateProps
- All Superinterfaces:
software.amazon.jsii.JsiiSerializable
- All Known Implementing Classes:
CfnTemplateProps.Jsii$Proxy
@Generated(value="jsii-pacmak/1.119.0 (build 1634eac)",
date="2025-11-17T14:40:56.616Z")
@Stability(Stable)
public interface CfnTemplateProps
extends software.amazon.jsii.JsiiSerializable
Properties for defining a
CfnTemplate.
Example:
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import software.amazon.awscdk.services.pcaconnectorad.*;
CfnTemplateProps cfnTemplateProps = CfnTemplateProps.builder()
.connectorArn("connectorArn")
.definition(TemplateDefinitionProperty.builder()
.templateV2(TemplateV2Property.builder()
.certificateValidity(CertificateValidityProperty.builder()
.renewalPeriod(ValidityPeriodProperty.builder()
.period(123)
.periodType("periodType")
.build())
.validityPeriod(ValidityPeriodProperty.builder()
.period(123)
.periodType("periodType")
.build())
.build())
.enrollmentFlags(EnrollmentFlagsV2Property.builder()
.enableKeyReuseOnNtTokenKeysetStorageFull(false)
.includeSymmetricAlgorithms(false)
.noSecurityExtension(false)
.removeInvalidCertificateFromPersonalStore(false)
.userInteractionRequired(false)
.build())
.extensions(ExtensionsV2Property.builder()
.keyUsage(KeyUsageProperty.builder()
.usageFlags(KeyUsageFlagsProperty.builder()
.dataEncipherment(false)
.digitalSignature(false)
.keyAgreement(false)
.keyEncipherment(false)
.nonRepudiation(false)
.build())
// the properties below are optional
.critical(false)
.build())
// the properties below are optional
.applicationPolicies(ApplicationPoliciesProperty.builder()
.policies(List.of(ApplicationPolicyProperty.builder()
.policyObjectIdentifier("policyObjectIdentifier")
.policyType("policyType")
.build()))
// the properties below are optional
.critical(false)
.build())
.build())
.generalFlags(GeneralFlagsV2Property.builder()
.autoEnrollment(false)
.machineType(false)
.build())
.privateKeyAttributes(PrivateKeyAttributesV2Property.builder()
.keySpec("keySpec")
.minimalKeyLength(123)
// the properties below are optional
.cryptoProviders(List.of("cryptoProviders"))
.build())
.privateKeyFlags(PrivateKeyFlagsV2Property.builder()
.clientVersion("clientVersion")
// the properties below are optional
.exportableKey(false)
.strongKeyProtectionRequired(false)
.build())
.subjectNameFlags(SubjectNameFlagsV2Property.builder()
.requireCommonName(false)
.requireDirectoryPath(false)
.requireDnsAsCn(false)
.requireEmail(false)
.sanRequireDirectoryGuid(false)
.sanRequireDns(false)
.sanRequireDomainDns(false)
.sanRequireEmail(false)
.sanRequireSpn(false)
.sanRequireUpn(false)
.build())
// the properties below are optional
.supersededTemplates(List.of("supersededTemplates"))
.build())
.templateV3(TemplateV3Property.builder()
.certificateValidity(CertificateValidityProperty.builder()
.renewalPeriod(ValidityPeriodProperty.builder()
.period(123)
.periodType("periodType")
.build())
.validityPeriod(ValidityPeriodProperty.builder()
.period(123)
.periodType("periodType")
.build())
.build())
.enrollmentFlags(EnrollmentFlagsV3Property.builder()
.enableKeyReuseOnNtTokenKeysetStorageFull(false)
.includeSymmetricAlgorithms(false)
.noSecurityExtension(false)
.removeInvalidCertificateFromPersonalStore(false)
.userInteractionRequired(false)
.build())
.extensions(ExtensionsV3Property.builder()
.keyUsage(KeyUsageProperty.builder()
.usageFlags(KeyUsageFlagsProperty.builder()
.dataEncipherment(false)
.digitalSignature(false)
.keyAgreement(false)
.keyEncipherment(false)
.nonRepudiation(false)
.build())
// the properties below are optional
.critical(false)
.build())
// the properties below are optional
.applicationPolicies(ApplicationPoliciesProperty.builder()
.policies(List.of(ApplicationPolicyProperty.builder()
.policyObjectIdentifier("policyObjectIdentifier")
.policyType("policyType")
.build()))
// the properties below are optional
.critical(false)
.build())
.build())
.generalFlags(GeneralFlagsV3Property.builder()
.autoEnrollment(false)
.machineType(false)
.build())
.hashAlgorithm("hashAlgorithm")
.privateKeyAttributes(PrivateKeyAttributesV3Property.builder()
.algorithm("algorithm")
.keySpec("keySpec")
.keyUsageProperty(KeyUsagePropertyProperty.builder()
.propertyFlags(KeyUsagePropertyFlagsProperty.builder()
.decrypt(false)
.keyAgreement(false)
.sign(false)
.build())
.propertyType("propertyType")
.build())
.minimalKeyLength(123)
// the properties below are optional
.cryptoProviders(List.of("cryptoProviders"))
.build())
.privateKeyFlags(PrivateKeyFlagsV3Property.builder()
.clientVersion("clientVersion")
// the properties below are optional
.exportableKey(false)
.requireAlternateSignatureAlgorithm(false)
.strongKeyProtectionRequired(false)
.build())
.subjectNameFlags(SubjectNameFlagsV3Property.builder()
.requireCommonName(false)
.requireDirectoryPath(false)
.requireDnsAsCn(false)
.requireEmail(false)
.sanRequireDirectoryGuid(false)
.sanRequireDns(false)
.sanRequireDomainDns(false)
.sanRequireEmail(false)
.sanRequireSpn(false)
.sanRequireUpn(false)
.build())
// the properties below are optional
.supersededTemplates(List.of("supersededTemplates"))
.build())
.templateV4(TemplateV4Property.builder()
.certificateValidity(CertificateValidityProperty.builder()
.renewalPeriod(ValidityPeriodProperty.builder()
.period(123)
.periodType("periodType")
.build())
.validityPeriod(ValidityPeriodProperty.builder()
.period(123)
.periodType("periodType")
.build())
.build())
.enrollmentFlags(EnrollmentFlagsV4Property.builder()
.enableKeyReuseOnNtTokenKeysetStorageFull(false)
.includeSymmetricAlgorithms(false)
.noSecurityExtension(false)
.removeInvalidCertificateFromPersonalStore(false)
.userInteractionRequired(false)
.build())
.extensions(ExtensionsV4Property.builder()
.keyUsage(KeyUsageProperty.builder()
.usageFlags(KeyUsageFlagsProperty.builder()
.dataEncipherment(false)
.digitalSignature(false)
.keyAgreement(false)
.keyEncipherment(false)
.nonRepudiation(false)
.build())
// the properties below are optional
.critical(false)
.build())
// the properties below are optional
.applicationPolicies(ApplicationPoliciesProperty.builder()
.policies(List.of(ApplicationPolicyProperty.builder()
.policyObjectIdentifier("policyObjectIdentifier")
.policyType("policyType")
.build()))
// the properties below are optional
.critical(false)
.build())
.build())
.generalFlags(GeneralFlagsV4Property.builder()
.autoEnrollment(false)
.machineType(false)
.build())
.privateKeyAttributes(PrivateKeyAttributesV4Property.builder()
.keySpec("keySpec")
.minimalKeyLength(123)
// the properties below are optional
.algorithm("algorithm")
.cryptoProviders(List.of("cryptoProviders"))
.keyUsageProperty(KeyUsagePropertyProperty.builder()
.propertyFlags(KeyUsagePropertyFlagsProperty.builder()
.decrypt(false)
.keyAgreement(false)
.sign(false)
.build())
.propertyType("propertyType")
.build())
.build())
.privateKeyFlags(PrivateKeyFlagsV4Property.builder()
.clientVersion("clientVersion")
// the properties below are optional
.exportableKey(false)
.requireAlternateSignatureAlgorithm(false)
.requireSameKeyRenewal(false)
.strongKeyProtectionRequired(false)
.useLegacyProvider(false)
.build())
.subjectNameFlags(SubjectNameFlagsV4Property.builder()
.requireCommonName(false)
.requireDirectoryPath(false)
.requireDnsAsCn(false)
.requireEmail(false)
.sanRequireDirectoryGuid(false)
.sanRequireDns(false)
.sanRequireDomainDns(false)
.sanRequireEmail(false)
.sanRequireSpn(false)
.sanRequireUpn(false)
.build())
// the properties below are optional
.hashAlgorithm("hashAlgorithm")
.supersededTemplates(List.of("supersededTemplates"))
.build())
.build())
.name("name")
// the properties below are optional
.reenrollAllCertificateHolders(false)
.tags(Map.of(
"tagsKey", "tags"))
.build();
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeInterfaceDescriptionstatic final classA builder forCfnTemplatePropsstatic final classAn implementation forCfnTemplateProps -
Method Summary
Modifier and TypeMethodDescriptionstatic CfnTemplateProps.Builderbuilder()The Amazon Resource Name (ARN) that was returned when you called CreateConnector .Template configuration to define the information included in certificates.getName()Name of the templates.default ObjectThis setting allows the major version of a template to be increased automatically.getTags()Metadata assigned to a template consisting of a key-value pair.Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson
-
Method Details
-
getConnectorArn
The Amazon Resource Name (ARN) that was returned when you called CreateConnector .- See Also:
-
getDefinition
Template configuration to define the information included in certificates.Define certificate validity and renewal periods, certificate request handling and enrollment options, key usage extensions, application policies, and cryptography settings.
Returns union: either
IResolvableorCfnTemplate.TemplateDefinitionProperty- See Also:
-
getName
Name of the templates.Template names must be unique.
- See Also:
-
getReenrollAllCertificateHolders
This setting allows the major version of a template to be increased automatically.All members of Active Directory groups that are allowed to enroll with a template will receive a new certificate issued using that template.
Returns union: either
BooleanorIResolvable- See Also:
-
getTags
Metadata assigned to a template consisting of a key-value pair.- See Also:
-
builder
- Returns:
- a
CfnTemplateProps.BuilderofCfnTemplateProps
-