@Generated(value="jsii-pacmak/1.74.0 (build 6d08790)", date="2023-03-02T14:17:13.859Z") @Stability(value=Stable) public class CfnCertificate extends CfnResource implements IInspectable
Use the AWS::IoT::Certificate resource to declare an AWS IoT X.509 certificate. For information about working with X.509 certificates, see X.509 Client Certificates in the AWS IoT Developer Guide .
Example:
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import software.amazon.awscdk.services.iot.*;
CfnCertificate cfnCertificate = CfnCertificate.Builder.create(this, "MyCfnCertificate")
.status("status")
// the properties below are optional
.caCertificatePem("caCertificatePem")
.certificateMode("certificateMode")
.certificatePem("certificatePem")
.certificateSigningRequest("certificateSigningRequest")
.build();
| Modifier and Type | Class and Description |
|---|---|
static class |
CfnCertificate.Builder
A fluent builder for
CfnCertificate. |
software.amazon.jsii.JsiiObject.InitializationModeIInspectable.Jsii$Default, IInspectable.Jsii$ProxyIConstruct.Jsii$Default| Modifier and Type | Field and Description |
|---|---|
static String |
CFN_RESOURCE_TYPE_NAME
The CloudFormation resource type name for this resource class.
|
| Modifier | Constructor and Description |
|---|---|
|
CfnCertificate(Construct scope,
String id,
CfnCertificateProps props)
Create a new `AWS::IoT::Certificate`.
|
protected |
CfnCertificate(software.amazon.jsii.JsiiObject.InitializationMode initializationMode) |
protected |
CfnCertificate(software.amazon.jsii.JsiiObjectRef objRef) |
| Modifier and Type | Method and Description |
|---|---|
String |
getAttrArn()
Returns the Amazon Resource Name (ARN) for the certificate.
|
String |
getAttrId()
The certificate ID.
|
String |
getCaCertificatePem()
The CA certificate used to sign the device certificate being registered, not available when CertificateMode is SNI_ONLY.
|
String |
getCertificateMode()
Specifies which mode of certificate registration to use with this resource.
|
String |
getCertificatePem()
The certificate data in PEM format.
|
String |
getCertificateSigningRequest()
The certificate signing request (CSR).
|
protected Map<String,Object> |
getCfnProperties() |
String |
getStatus()
The status of the certificate.
|
void |
inspect(TreeInspector inspector)
Examines the CloudFormation resource and discloses attributes.
|
protected Map<String,Object> |
renderProperties(Map<String,Object> props) |
void |
setCaCertificatePem(String value)
The CA certificate used to sign the device certificate being registered, not available when CertificateMode is SNI_ONLY.
|
void |
setCertificateMode(String value)
Specifies which mode of certificate registration to use with this resource.
|
void |
setCertificatePem(String value)
The certificate data in PEM format.
|
void |
setCertificateSigningRequest(String value)
The certificate signing request (CSR).
|
void |
setStatus(String value)
The status of the certificate.
|
addDeletionOverride, addDependsOn, addMetadata, addOverride, addPropertyDeletionOverride, addPropertyOverride, applyRemovalPolicy, applyRemovalPolicy, applyRemovalPolicy, getAtt, getCfnOptions, getCfnResourceType, getMetadata, getUpdatedProperites, isCfnResource, shouldSynthesize, toString, validatePropertiesgetRefgetCreationStack, getLogicalId, getStack, isCfnElement, overrideLogicalIdgetNode, isConstruct, onPrepare, onSynthesize, onValidate, prepare, synthesize, validatejsiiAsyncCall, jsiiAsyncCall, jsiiCall, jsiiCall, jsiiGet, jsiiGet, jsiiSet, jsiiStaticCall, jsiiStaticCall, jsiiStaticGet, jsiiStaticGet, jsiiStaticSet, jsiiStaticSet@Stability(value=Stable) public static final String CFN_RESOURCE_TYPE_NAME
protected CfnCertificate(software.amazon.jsii.JsiiObjectRef objRef)
protected CfnCertificate(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)
@Stability(value=Stable)
public CfnCertificate(@NotNull
Construct scope,
@NotNull
String id,
@NotNull
CfnCertificateProps props)
scope - - scope in which this resource is defined. This parameter is required.id - - scoped id of the resource. This parameter is required.props - - resource properties. This parameter is required.@Stability(value=Stable)
public void inspect(@NotNull
TreeInspector inspector)
inspect in interface IInspectableinspector - - tree inspector to collect and process attributes. This parameter is required.@Stability(value=Stable) @NotNull protected Map<String,Object> renderProperties(@NotNull Map<String,Object> props)
renderProperties in class CfnResourceprops - This parameter is required.@Stability(value=Stable) @NotNull public String getAttrArn()
{ "Fn::GetAtt": ["MyCertificate", "Arn"] }
A value similar to the following is returned:
arn:aws:iot:ap-southeast-2:123456789012:cert/a1234567b89c012d3e4fg567hij8k9l01mno1p23q45678901rs234567890t1u2
@Stability(value=Stable) @NotNull public String getAttrId()
@Stability(value=Stable) @NotNull protected Map<String,Object> getCfnProperties()
getCfnProperties in class CfnResource@Stability(value=Stable) @NotNull public String getStatus()
Valid values are ACTIVE, INACTIVE, REVOKED, PENDING_TRANSFER, and PENDING_ACTIVATION.
The status value REGISTER_INACTIVE is deprecated and should not be used.
@Stability(value=Stable)
public void setStatus(@NotNull
String value)
Valid values are ACTIVE, INACTIVE, REVOKED, PENDING_TRANSFER, and PENDING_ACTIVATION.
The status value REGISTER_INACTIVE is deprecated and should not be used.
@Stability(value=Stable) @Nullable public String getCaCertificatePem()
@Stability(value=Stable)
public void setCaCertificatePem(@Nullable
String value)
@Stability(value=Stable) @Nullable public String getCertificateMode()
Valid options are DEFAULT with CaCertificatePem and CertificatePem, SNI_ONLY with CertificatePem, and Default with CertificateSigningRequest.
DEFAULT : A certificate in DEFAULT mode is either generated by AWS IoT Core or registered with an issuer certificate authority (CA). Devices with certificates in DEFAULT mode aren't required to send the Server Name Indication (SNI) extension when connecting to AWS IoT Core . However, to use features such as custom domains and VPC endpoints, we recommend that you use the SNI extension when connecting to AWS IoT Core .
SNI_ONLY : A certificate in SNI_ONLY mode is registered without an issuer CA. Devices with certificates in SNI_ONLY mode must send the SNI extension when connecting to AWS IoT Core .
@Stability(value=Stable)
public void setCertificateMode(@Nullable
String value)
Valid options are DEFAULT with CaCertificatePem and CertificatePem, SNI_ONLY with CertificatePem, and Default with CertificateSigningRequest.
DEFAULT : A certificate in DEFAULT mode is either generated by AWS IoT Core or registered with an issuer certificate authority (CA). Devices with certificates in DEFAULT mode aren't required to send the Server Name Indication (SNI) extension when connecting to AWS IoT Core . However, to use features such as custom domains and VPC endpoints, we recommend that you use the SNI extension when connecting to AWS IoT Core .
SNI_ONLY : A certificate in SNI_ONLY mode is registered without an issuer CA. Devices with certificates in SNI_ONLY mode must send the SNI extension when connecting to AWS IoT Core .
@Stability(value=Stable) @Nullable public String getCertificatePem()
Requires SNI_ONLY for the certificate mode or the accompanying CACertificatePem for registration.
@Stability(value=Stable)
public void setCertificatePem(@Nullable
String value)
Requires SNI_ONLY for the certificate mode or the accompanying CACertificatePem for registration.
@Stability(value=Stable) @Nullable public String getCertificateSigningRequest()
@Stability(value=Stable)
public void setCertificateSigningRequest(@Nullable
String value)
Copyright © 2023. All rights reserved.