latest--aws-acmpca-certificateauthority

shared
Type object
Schema URL https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--aws-acmpca-certificateauthority.json
Parent schema serverless-framework-configuration
Type: object

Private certificate authority.. Source:- https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/AWS_ACMPCA.html

Properties

Type string | Aws_CF_FunctionString required

The type of the certificate authority.

KeyAlgorithm string | Aws_CF_FunctionString required

Public key algorithm and size, in bits, of the key pair that your CA creates when it issues a certificate.

SigningAlgorithm string | Aws_CF_FunctionString required

Algorithm your CA uses to sign certificate requests.

Subject object required

Structure that contains X.500 distinguished name information for your CA.

15 nested properties
Country string | Aws_CF_FunctionString
Organization string | Aws_CF_FunctionString
OrganizationalUnit string | Aws_CF_FunctionString
DistinguishedNameQualifier string | Aws_CF_FunctionString
State string | Aws_CF_FunctionString
CommonName string | Aws_CF_FunctionString
SerialNumber string | Aws_CF_FunctionString
Locality string | Aws_CF_FunctionString
Title string | Aws_CF_FunctionString
Surname string | Aws_CF_FunctionString
GivenName string | Aws_CF_FunctionString
Initials string | Aws_CF_FunctionString
Pseudonym string | Aws_CF_FunctionString
GenerationQualifier string | Aws_CF_FunctionString
CustomAttributes CustomAttribute[]

Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.

RevocationConfiguration object

Certificate Authority revocation information.

2 nested properties
CrlConfiguration object

Your certificate authority can create and maintain a certificate revocation list (CRL). A CRL contains information about certificates that have been revoked.

5 nested properties
Enabled boolean
ExpirationInDays integer
CustomCname string | Aws_CF_FunctionString
S3BucketName string | Aws_CF_FunctionString
S3ObjectAcl string | Aws_CF_FunctionString
OcspConfiguration object

Helps to configure online certificate status protocol (OCSP) responder for your certificate authority

2 nested properties
Enabled boolean
OcspCustomCname string | Aws_CF_FunctionString
Tags Tag[]
CsrExtensions object

Structure that contains CSR pass though extensions information.

2 nested properties
KeyUsage object

Structure that contains X.509 KeyUsage information.

9 nested properties
DigitalSignature boolean
Default: false
NonRepudiation boolean
Default: false
KeyEncipherment boolean
Default: false
DataEncipherment boolean
Default: false
KeyAgreement boolean
Default: false
KeyCertSign boolean
Default: false
CRLSign boolean
Default: false
EncipherOnly boolean
Default: false
DecipherOnly boolean
Default: false
SubjectInformationAccess AccessDescription[]

Array of X.509 AccessDescription.

KeyStorageSecurityStandard string | Aws_CF_FunctionString

KeyStorageSecurityStadard defines a cryptographic key management compliance standard used for handling CA keys.

UsageMode string | Aws_CF_FunctionString

Usage mode of the ceritificate authority.

Definitions

Arn string | Aws_CF_FunctionString
Tag object
Key string | Aws_CF_FunctionString
Value string | Aws_CF_FunctionString
Subject object

Structure that contains X.500 distinguished name information for your CA.

Country string | Aws_CF_FunctionString
Organization string | Aws_CF_FunctionString
OrganizationalUnit string | Aws_CF_FunctionString
DistinguishedNameQualifier string | Aws_CF_FunctionString
State string | Aws_CF_FunctionString
CommonName string | Aws_CF_FunctionString
SerialNumber string | Aws_CF_FunctionString
Locality string | Aws_CF_FunctionString
Title string | Aws_CF_FunctionString
Surname string | Aws_CF_FunctionString
GivenName string | Aws_CF_FunctionString
Initials string | Aws_CF_FunctionString
Pseudonym string | Aws_CF_FunctionString
GenerationQualifier string | Aws_CF_FunctionString
CustomAttributes CustomAttribute[]

Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.

CustomAttributeList CustomAttribute[]

Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.

CustomAttribute object

Structure that contains X.500 attribute type and value.

ObjectIdentifier string | Aws_CF_FunctionString required

String that contains X.509 ObjectIdentifier information.

Value string | Aws_CF_FunctionString required
CrlConfiguration object

Your certificate authority can create and maintain a certificate revocation list (CRL). A CRL contains information about certificates that have been revoked.

Enabled boolean
ExpirationInDays integer
CustomCname string | Aws_CF_FunctionString
S3BucketName string | Aws_CF_FunctionString
S3ObjectAcl string | Aws_CF_FunctionString
OcspConfiguration object

Helps to configure online certificate status protocol (OCSP) responder for your certificate authority

Enabled boolean
OcspCustomCname string | Aws_CF_FunctionString
RevocationConfiguration object

Certificate Authority revocation information.

CrlConfiguration object

Your certificate authority can create and maintain a certificate revocation list (CRL). A CRL contains information about certificates that have been revoked.

5 nested properties
Enabled boolean
ExpirationInDays integer
CustomCname string | Aws_CF_FunctionString
S3BucketName string | Aws_CF_FunctionString
S3ObjectAcl string | Aws_CF_FunctionString
OcspConfiguration object

Helps to configure online certificate status protocol (OCSP) responder for your certificate authority

2 nested properties
Enabled boolean
OcspCustomCname string | Aws_CF_FunctionString
KeyUsage object

Structure that contains X.509 KeyUsage information.

DigitalSignature boolean
Default: false
NonRepudiation boolean
Default: false
KeyEncipherment boolean
Default: false
DataEncipherment boolean
Default: false
KeyAgreement boolean
Default: false
KeyCertSign boolean
Default: false
CRLSign boolean
Default: false
EncipherOnly boolean
Default: false
DecipherOnly boolean
Default: false
CustomObjectIdentifier string | Aws_CF_FunctionString

String that contains X.509 ObjectIdentifier information.

AccessMethodType string | Aws_CF_FunctionString

Pre-defined enum string for X.509 AccessMethod ObjectIdentifiers.

AccessMethod object

Structure that contains X.509 AccessMethod information. Assign one and ONLY one field.

CustomObjectIdentifier string | Aws_CF_FunctionString

String that contains X.509 ObjectIdentifier information.

AccessMethodType string | Aws_CF_FunctionString

Pre-defined enum string for X.509 AccessMethod ObjectIdentifiers.

OtherName object

Structure that contains X.509 OtherName information.

TypeId string | Aws_CF_FunctionString required

String that contains X.509 ObjectIdentifier information.

Value string | Aws_CF_FunctionString required
Rfc822Name string | Aws_CF_FunctionString

String that contains X.509 Rfc822Name information.

DnsName string | Aws_CF_FunctionString

String that contains X.509 DnsName information.

EdiPartyName object

Structure that contains X.509 EdiPartyName information.

PartyName string | Aws_CF_FunctionString required
NameAssigner string | Aws_CF_FunctionString required
UniformResourceIdentifier string | Aws_CF_FunctionString

String that contains X.509 UniformResourceIdentifier information.

IpAddress string | Aws_CF_FunctionString

String that contains X.509 IpAddress information.

GeneralName object

Structure that contains X.509 GeneralName information. Assign one and ONLY one field.

OtherName object

Structure that contains X.509 OtherName information.

2 nested properties
TypeId string | Aws_CF_FunctionString required

String that contains X.509 ObjectIdentifier information.

Value string | Aws_CF_FunctionString required
Rfc822Name string | Aws_CF_FunctionString

String that contains X.509 Rfc822Name information.

DnsName string | Aws_CF_FunctionString

String that contains X.509 DnsName information.

DirectoryName object

Structure that contains X.500 distinguished name information for your CA.

15 nested properties
Country string | Aws_CF_FunctionString
Organization string | Aws_CF_FunctionString
OrganizationalUnit string | Aws_CF_FunctionString
DistinguishedNameQualifier string | Aws_CF_FunctionString
State string | Aws_CF_FunctionString
CommonName string | Aws_CF_FunctionString
SerialNumber string | Aws_CF_FunctionString
Locality string | Aws_CF_FunctionString
Title string | Aws_CF_FunctionString
Surname string | Aws_CF_FunctionString
GivenName string | Aws_CF_FunctionString
Initials string | Aws_CF_FunctionString
Pseudonym string | Aws_CF_FunctionString
GenerationQualifier string | Aws_CF_FunctionString
CustomAttributes CustomAttribute[]

Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.

EdiPartyName object

Structure that contains X.509 EdiPartyName information.

2 nested properties
PartyName string | Aws_CF_FunctionString required
NameAssigner string | Aws_CF_FunctionString required
UniformResourceIdentifier string | Aws_CF_FunctionString

String that contains X.509 UniformResourceIdentifier information.

IpAddress string | Aws_CF_FunctionString

String that contains X.509 IpAddress information.

RegisteredId string | Aws_CF_FunctionString

String that contains X.509 ObjectIdentifier information.

AccessDescription object

Structure that contains X.509 AccessDescription information.

AccessMethod object required

Structure that contains X.509 AccessMethod information. Assign one and ONLY one field.

2 nested properties
CustomObjectIdentifier string | Aws_CF_FunctionString

String that contains X.509 ObjectIdentifier information.

AccessMethodType string | Aws_CF_FunctionString

Pre-defined enum string for X.509 AccessMethod ObjectIdentifiers.

AccessLocation object required

Structure that contains X.509 GeneralName information. Assign one and ONLY one field.

8 nested properties
OtherName object

Structure that contains X.509 OtherName information.

2 nested properties
TypeId string | Aws_CF_FunctionString required

String that contains X.509 ObjectIdentifier information.

Value string | Aws_CF_FunctionString required
Rfc822Name string | Aws_CF_FunctionString

String that contains X.509 Rfc822Name information.

DnsName string | Aws_CF_FunctionString

String that contains X.509 DnsName information.

DirectoryName object

Structure that contains X.500 distinguished name information for your CA.

15 nested properties
Country string | Aws_CF_FunctionString
Organization string | Aws_CF_FunctionString
OrganizationalUnit string | Aws_CF_FunctionString
DistinguishedNameQualifier string | Aws_CF_FunctionString
State string | Aws_CF_FunctionString
CommonName string | Aws_CF_FunctionString
SerialNumber string | Aws_CF_FunctionString
Locality string | Aws_CF_FunctionString
Title string | Aws_CF_FunctionString
Surname string | Aws_CF_FunctionString
GivenName string | Aws_CF_FunctionString
Initials string | Aws_CF_FunctionString
Pseudonym string | Aws_CF_FunctionString
GenerationQualifier string | Aws_CF_FunctionString
CustomAttributes CustomAttribute[]

Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.

EdiPartyName object

Structure that contains X.509 EdiPartyName information.

2 nested properties
PartyName string | Aws_CF_FunctionString required
NameAssigner string | Aws_CF_FunctionString required
UniformResourceIdentifier string | Aws_CF_FunctionString

String that contains X.509 UniformResourceIdentifier information.

IpAddress string | Aws_CF_FunctionString

String that contains X.509 IpAddress information.

RegisteredId string | Aws_CF_FunctionString

String that contains X.509 ObjectIdentifier information.

SubjectInformationAccess AccessDescription[]

Array of X.509 AccessDescription.

CsrExtensions object

Structure that contains CSR pass though extensions information.

KeyUsage object

Structure that contains X.509 KeyUsage information.

9 nested properties
DigitalSignature boolean
Default: false
NonRepudiation boolean
Default: false
KeyEncipherment boolean
Default: false
DataEncipherment boolean
Default: false
KeyAgreement boolean
Default: false
KeyCertSign boolean
Default: false
CRLSign boolean
Default: false
EncipherOnly boolean
Default: false
DecipherOnly boolean
Default: false
SubjectInformationAccess AccessDescription[]

Array of X.509 AccessDescription.