com.pulumi.gcp.compute.kotlin.MangedSslCertificateArgs.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-gcp-kotlin Show documentation
Show all versions of pulumi-gcp-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.gcp.compute.kotlin
import com.pulumi.core.Output
import com.pulumi.core.Output.of
import com.pulumi.gcp.compute.MangedSslCertificateArgs.builder
import com.pulumi.gcp.compute.kotlin.inputs.MangedSslCertificateManagedArgs
import com.pulumi.gcp.compute.kotlin.inputs.MangedSslCertificateManagedArgsBuilder
import com.pulumi.kotlin.ConvertibleToJava
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.applySuspend
import kotlin.Deprecated
import kotlin.Int
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.jvm.JvmName
/**
* An SslCertificate resource, used for HTTPS load balancing. This resource
* represents a certificate for which the certificate secrets are created and
* managed by Google.
* For a resource where you provide the key, see the
* SSL Certificate resource.
* To get more information about ManagedSslCertificate, see:
* * [API documentation](https://cloud.google.com/compute/docs/reference/rest/v1/sslCertificates)
* * How-to Guides
* * [Official Documentation](https://cloud.google.com/load-balancing/docs/ssl-certificates)
* > **Warning:** This resource should be used with extreme caution! Provisioning an SSL
* certificate is complex. Ensure that you understand the lifecycle of a
* certificate before attempting complex tasks like cert rotation automatically.
* This resource will "return" as soon as the certificate object is created,
* but post-creation the certificate object will go through a "provisioning"
* process. The provisioning process can complete only when the domain name
* for which the certificate is created points to a target pool which, itself,
* points at the certificate. Depending on your DNS provider, this may take
* some time, and migrating from self-managed certificates to Google-managed
* certificates may entail some downtime while the certificate provisions.
* In conclusion: Be extremely cautious.
* ## Example Usage
* ### Managed Ssl Certificate Basic
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as gcp from "@pulumi/gcp";
* const _default = new gcp.compute.ManagedSslCertificate("default", {
* name: "test-cert",
* managed: {
* domains: ["sslcert.tf-test.club."],
* },
* });
* const defaultHttpHealthCheck = new gcp.compute.HttpHealthCheck("default", {
* name: "http-health-check",
* requestPath: "/",
* checkIntervalSec: 1,
* timeoutSec: 1,
* });
* const defaultBackendService = new gcp.compute.BackendService("default", {
* name: "backend-service",
* portName: "http",
* protocol: "HTTP",
* timeoutSec: 10,
* healthChecks: defaultHttpHealthCheck.id,
* });
* const defaultURLMap = new gcp.compute.URLMap("default", {
* name: "url-map",
* description: "a description",
* defaultService: defaultBackendService.id,
* hostRules: [{
* hosts: ["sslcert.tf-test.club"],
* pathMatcher: "allpaths",
* }],
* pathMatchers: [{
* name: "allpaths",
* defaultService: defaultBackendService.id,
* pathRules: [{
* paths: ["/*"],
* service: defaultBackendService.id,
* }],
* }],
* });
* const defaultTargetHttpsProxy = new gcp.compute.TargetHttpsProxy("default", {
* name: "test-proxy",
* urlMap: defaultURLMap.id,
* sslCertificates: [_default.id],
* });
* const defaultGlobalForwardingRule = new gcp.compute.GlobalForwardingRule("default", {
* name: "forwarding-rule",
* target: defaultTargetHttpsProxy.id,
* portRange: "443",
* });
* ```
* ```python
* import pulumi
* import pulumi_gcp as gcp
* default = gcp.compute.ManagedSslCertificate("default",
* name="test-cert",
* managed=gcp.compute.ManagedSslCertificateManagedArgs(
* domains=["sslcert.tf-test.club."],
* ))
* default_http_health_check = gcp.compute.HttpHealthCheck("default",
* name="http-health-check",
* request_path="/",
* check_interval_sec=1,
* timeout_sec=1)
* default_backend_service = gcp.compute.BackendService("default",
* name="backend-service",
* port_name="http",
* protocol="HTTP",
* timeout_sec=10,
* health_checks=default_http_health_check.id)
* default_url_map = gcp.compute.URLMap("default",
* name="url-map",
* description="a description",
* default_service=default_backend_service.id,
* host_rules=[gcp.compute.URLMapHostRuleArgs(
* hosts=["sslcert.tf-test.club"],
* path_matcher="allpaths",
* )],
* path_matchers=[gcp.compute.URLMapPathMatcherArgs(
* name="allpaths",
* default_service=default_backend_service.id,
* path_rules=[gcp.compute.URLMapPathMatcherPathRuleArgs(
* paths=["/*"],
* service=default_backend_service.id,
* )],
* )])
* default_target_https_proxy = gcp.compute.TargetHttpsProxy("default",
* name="test-proxy",
* url_map=default_url_map.id,
* ssl_certificates=[default.id])
* default_global_forwarding_rule = gcp.compute.GlobalForwardingRule("default",
* name="forwarding-rule",
* target=default_target_https_proxy.id,
* port_range="443")
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Gcp = Pulumi.Gcp;
* return await Deployment.RunAsync(() =>
* {
* var @default = new Gcp.Compute.ManagedSslCertificate("default", new()
* {
* Name = "test-cert",
* Managed = new Gcp.Compute.Inputs.ManagedSslCertificateManagedArgs
* {
* Domains = new[]
* {
* "sslcert.tf-test.club.",
* },
* },
* });
* var defaultHttpHealthCheck = new Gcp.Compute.HttpHealthCheck("default", new()
* {
* Name = "http-health-check",
* RequestPath = "/",
* CheckIntervalSec = 1,
* TimeoutSec = 1,
* });
* var defaultBackendService = new Gcp.Compute.BackendService("default", new()
* {
* Name = "backend-service",
* PortName = "http",
* Protocol = "HTTP",
* TimeoutSec = 10,
* HealthChecks = defaultHttpHealthCheck.Id,
* });
* var defaultURLMap = new Gcp.Compute.URLMap("default", new()
* {
* Name = "url-map",
* Description = "a description",
* DefaultService = defaultBackendService.Id,
* HostRules = new[]
* {
* new Gcp.Compute.Inputs.URLMapHostRuleArgs
* {
* Hosts = new[]
* {
* "sslcert.tf-test.club",
* },
* PathMatcher = "allpaths",
* },
* },
* PathMatchers = new[]
* {
* new Gcp.Compute.Inputs.URLMapPathMatcherArgs
* {
* Name = "allpaths",
* DefaultService = defaultBackendService.Id,
* PathRules = new[]
* {
* new Gcp.Compute.Inputs.URLMapPathMatcherPathRuleArgs
* {
* Paths = new[]
* {
* "/*",
* },
* Service = defaultBackendService.Id,
* },
* },
* },
* },
* });
* var defaultTargetHttpsProxy = new Gcp.Compute.TargetHttpsProxy("default", new()
* {
* Name = "test-proxy",
* UrlMap = defaultURLMap.Id,
* SslCertificates = new[]
* {
* @default.Id,
* },
* });
* var defaultGlobalForwardingRule = new Gcp.Compute.GlobalForwardingRule("default", new()
* {
* Name = "forwarding-rule",
* Target = defaultTargetHttpsProxy.Id,
* PortRange = "443",
* });
* });
* ```
* ```go
* package main
* import (
* "github.com/pulumi/pulumi-gcp/sdk/v7/go/gcp/compute"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* _, err := compute.NewManagedSslCertificate(ctx, "default", &compute.ManagedSslCertificateArgs{
* Name: pulumi.String("test-cert"),
* Managed: &compute.ManagedSslCertificateManagedArgs{
* Domains: pulumi.StringArray{
* pulumi.String("sslcert.tf-test.club."),
* },
* },
* })
* if err != nil {
* return err
* }
* defaultHttpHealthCheck, err := compute.NewHttpHealthCheck(ctx, "default", &compute.HttpHealthCheckArgs{
* Name: pulumi.String("http-health-check"),
* RequestPath: pulumi.String("/"),
* CheckIntervalSec: pulumi.Int(1),
* TimeoutSec: pulumi.Int(1),
* })
* if err != nil {
* return err
* }
* defaultBackendService, err := compute.NewBackendService(ctx, "default", &compute.BackendServiceArgs{
* Name: pulumi.String("backend-service"),
* PortName: pulumi.String("http"),
* Protocol: pulumi.String("HTTP"),
* TimeoutSec: pulumi.Int(10),
* HealthChecks: defaultHttpHealthCheck.ID(),
* })
* if err != nil {
* return err
* }
* defaultURLMap, err := compute.NewURLMap(ctx, "default", &compute.URLMapArgs{
* Name: pulumi.String("url-map"),
* Description: pulumi.String("a description"),
* DefaultService: defaultBackendService.ID(),
* HostRules: compute.URLMapHostRuleArray{
* &compute.URLMapHostRuleArgs{
* Hosts: pulumi.StringArray{
* pulumi.String("sslcert.tf-test.club"),
* },
* PathMatcher: pulumi.String("allpaths"),
* },
* },
* PathMatchers: compute.URLMapPathMatcherArray{
* &compute.URLMapPathMatcherArgs{
* Name: pulumi.String("allpaths"),
* DefaultService: defaultBackendService.ID(),
* PathRules: compute.URLMapPathMatcherPathRuleArray{
* &compute.URLMapPathMatcherPathRuleArgs{
* Paths: pulumi.StringArray{
* pulumi.String("/*"),
* },
* Service: defaultBackendService.ID(),
* },
* },
* },
* },
* })
* if err != nil {
* return err
* }
* defaultTargetHttpsProxy, err := compute.NewTargetHttpsProxy(ctx, "default", &compute.TargetHttpsProxyArgs{
* Name: pulumi.String("test-proxy"),
* UrlMap: defaultURLMap.ID(),
* SslCertificates: pulumi.StringArray{
* _default.ID(),
* },
* })
* if err != nil {
* return err
* }
* _, err = compute.NewGlobalForwardingRule(ctx, "default", &compute.GlobalForwardingRuleArgs{
* Name: pulumi.String("forwarding-rule"),
* Target: defaultTargetHttpsProxy.ID(),
* PortRange: pulumi.String("443"),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.gcp.compute.ManagedSslCertificate;
* import com.pulumi.gcp.compute.ManagedSslCertificateArgs;
* import com.pulumi.gcp.compute.inputs.ManagedSslCertificateManagedArgs;
* import com.pulumi.gcp.compute.HttpHealthCheck;
* import com.pulumi.gcp.compute.HttpHealthCheckArgs;
* import com.pulumi.gcp.compute.BackendService;
* import com.pulumi.gcp.compute.BackendServiceArgs;
* import com.pulumi.gcp.compute.URLMap;
* import com.pulumi.gcp.compute.URLMapArgs;
* import com.pulumi.gcp.compute.inputs.URLMapHostRuleArgs;
* import com.pulumi.gcp.compute.inputs.URLMapPathMatcherArgs;
* import com.pulumi.gcp.compute.TargetHttpsProxy;
* import com.pulumi.gcp.compute.TargetHttpsProxyArgs;
* import com.pulumi.gcp.compute.GlobalForwardingRule;
* import com.pulumi.gcp.compute.GlobalForwardingRuleArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var default_ = new ManagedSslCertificate("default", ManagedSslCertificateArgs.builder()
* .name("test-cert")
* .managed(ManagedSslCertificateManagedArgs.builder()
* .domains("sslcert.tf-test.club.")
* .build())
* .build());
* var defaultHttpHealthCheck = new HttpHealthCheck("defaultHttpHealthCheck", HttpHealthCheckArgs.builder()
* .name("http-health-check")
* .requestPath("/")
* .checkIntervalSec(1)
* .timeoutSec(1)
* .build());
* var defaultBackendService = new BackendService("defaultBackendService", BackendServiceArgs.builder()
* .name("backend-service")
* .portName("http")
* .protocol("HTTP")
* .timeoutSec(10)
* .healthChecks(defaultHttpHealthCheck.id())
* .build());
* var defaultURLMap = new URLMap("defaultURLMap", URLMapArgs.builder()
* .name("url-map")
* .description("a description")
* .defaultService(defaultBackendService.id())
* .hostRules(URLMapHostRuleArgs.builder()
* .hosts("sslcert.tf-test.club")
* .pathMatcher("allpaths")
* .build())
* .pathMatchers(URLMapPathMatcherArgs.builder()
* .name("allpaths")
* .defaultService(defaultBackendService.id())
* .pathRules(URLMapPathMatcherPathRuleArgs.builder()
* .paths("/*")
* .service(defaultBackendService.id())
* .build())
* .build())
* .build());
* var defaultTargetHttpsProxy = new TargetHttpsProxy("defaultTargetHttpsProxy", TargetHttpsProxyArgs.builder()
* .name("test-proxy")
* .urlMap(defaultURLMap.id())
* .sslCertificates(default_.id())
* .build());
* var defaultGlobalForwardingRule = new GlobalForwardingRule("defaultGlobalForwardingRule", GlobalForwardingRuleArgs.builder()
* .name("forwarding-rule")
* .target(defaultTargetHttpsProxy.id())
* .portRange(443)
* .build());
* }
* }
* ```
* ```yaml
* resources:
* default:
* type: gcp:compute:ManagedSslCertificate
* properties:
* name: test-cert
* managed:
* domains:
* - sslcert.tf-test.club.
* defaultTargetHttpsProxy:
* type: gcp:compute:TargetHttpsProxy
* name: default
* properties:
* name: test-proxy
* urlMap: ${defaultURLMap.id}
* sslCertificates:
* - ${default.id}
* defaultURLMap:
* type: gcp:compute:URLMap
* name: default
* properties:
* name: url-map
* description: a description
* defaultService: ${defaultBackendService.id}
* hostRules:
* - hosts:
* - sslcert.tf-test.club
* pathMatcher: allpaths
* pathMatchers:
* - name: allpaths
* defaultService: ${defaultBackendService.id}
* pathRules:
* - paths:
* - /*
* service: ${defaultBackendService.id}
* defaultBackendService:
* type: gcp:compute:BackendService
* name: default
* properties:
* name: backend-service
* portName: http
* protocol: HTTP
* timeoutSec: 10
* healthChecks: ${defaultHttpHealthCheck.id}
* defaultHttpHealthCheck:
* type: gcp:compute:HttpHealthCheck
* name: default
* properties:
* name: http-health-check
* requestPath: /
* checkIntervalSec: 1
* timeoutSec: 1
* defaultGlobalForwardingRule:
* type: gcp:compute:GlobalForwardingRule
* name: default
* properties:
* name: forwarding-rule
* target: ${defaultTargetHttpsProxy.id}
* portRange: 443
* ```
*
* ## Import
* ManagedSslCertificate can be imported using any of these accepted formats:
* * `projects/{{project}}/global/sslCertificates/{{name}}`
* * `{{project}}/{{name}}`
* * `{{name}}`
* When using the `pulumi import` command, ManagedSslCertificate can be imported using one of the formats above. For example:
* ```sh
* $ pulumi import gcp:compute/mangedSslCertificate:MangedSslCertificate default projects/{{project}}/global/sslCertificates/{{name}}
* ```
* ```sh
* $ pulumi import gcp:compute/mangedSslCertificate:MangedSslCertificate default {{project}}/{{name}}
* ```
* ```sh
* $ pulumi import gcp:compute/mangedSslCertificate:MangedSslCertificate default {{name}}
* ```
* @property certificateId The unique identifier for the resource.
* @property description An optional description of this resource.
* @property managed Properties relevant to a managed certificate. These will be used if the
* certificate is managed (as indicated by a value of `MANAGED` in `type`).
* Structure is documented below.
* @property name Name of the resource. Provided by the client when the resource is
* created. The name must be 1-63 characters long, and comply with
* RFC1035. Specifically, the name must be 1-63 characters long and match
* the regular expression `a-z?` which means the
* first character must be a lowercase letter, and all following
* characters must be a dash, lowercase letter, or digit, except the last
* character, which cannot be a dash.
* These are in the same namespace as the managed SSL certificates.
* @property project The ID of the project in which the resource belongs.
* If it is not provided, the provider project is used.
* @property type Enum field whose value is always `MANAGED` - used to signal to the API
* which type this is.
* Default value is `MANAGED`.
* Possible values are: `MANAGED`.
* */*/*/*/*/*/
*/
public data class MangedSslCertificateArgs
@Deprecated(
message = """
gcp.compute.MangedSslCertificate has been deprecated in favor of gcp.compute.ManagedSslCertificate
""",
)
constructor(
public val certificateId: Output? = null,
public val description: Output? = null,
public val managed: Output? = null,
public val name: Output? = null,
public val project: Output? = null,
public val type: Output? = null,
) : ConvertibleToJava {
override fun toJava(): com.pulumi.gcp.compute.MangedSslCertificateArgs =
com.pulumi.gcp.compute.MangedSslCertificateArgs.builder()
.certificateId(certificateId?.applyValue({ args0 -> args0 }))
.description(description?.applyValue({ args0 -> args0 }))
.managed(managed?.applyValue({ args0 -> args0.let({ args0 -> args0.toJava() }) }))
.name(name?.applyValue({ args0 -> args0 }))
.project(project?.applyValue({ args0 -> args0 }))
.type(type?.applyValue({ args0 -> args0 })).build()
}
/**
* Builder for [MangedSslCertificateArgs].
*/
@PulumiTagMarker
@Deprecated(
message = """
gcp.compute.MangedSslCertificate has been deprecated in favor of gcp.compute.ManagedSslCertificate
""",
)
public class MangedSslCertificateArgsBuilder internal constructor() {
private var certificateId: Output? = null
private var description: Output? = null
private var managed: Output? = null
private var name: Output? = null
private var project: Output? = null
private var type: Output? = null
/**
* @param value The unique identifier for the resource.
*/
@JvmName("eolywocscybaalqs")
public suspend fun certificateId(`value`: Output) {
this.certificateId = value
}
/**
* @param value An optional description of this resource.
*/
@JvmName("tstvrrexdcxapnwf")
public suspend fun description(`value`: Output) {
this.description = value
}
/**
* @param value Properties relevant to a managed certificate. These will be used if the
* certificate is managed (as indicated by a value of `MANAGED` in `type`).
* Structure is documented below.
*/
@JvmName("uefdeepdjasnfaum")
public suspend fun managed(`value`: Output) {
this.managed = value
}
/**
* @param value Name of the resource. Provided by the client when the resource is
* created. The name must be 1-63 characters long, and comply with
* RFC1035. Specifically, the name must be 1-63 characters long and match
* the regular expression `a-z?` which means the
* first character must be a lowercase letter, and all following
* characters must be a dash, lowercase letter, or digit, except the last
* character, which cannot be a dash.
* These are in the same namespace as the managed SSL certificates.
*/
@JvmName("pqhhddxajinqiomw")
public suspend fun name(`value`: Output) {
this.name = value
}
/**
* @param value The ID of the project in which the resource belongs.
* If it is not provided, the provider project is used.
*/
@JvmName("swuqeyflxwhnldbr")
public suspend fun project(`value`: Output) {
this.project = value
}
/**
* @param value Enum field whose value is always `MANAGED` - used to signal to the API
* which type this is.
* Default value is `MANAGED`.
* Possible values are: `MANAGED`.
*/
@JvmName("hisrinldcgxpvsfd")
public suspend fun type(`value`: Output) {
this.type = value
}
/**
* @param value The unique identifier for the resource.
*/
@JvmName("pnamqwfqiwmgcfoo")
public suspend fun certificateId(`value`: Int?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.certificateId = mapped
}
/**
* @param value An optional description of this resource.
*/
@JvmName("bwhnyltreluwwmfw")
public suspend fun description(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.description = mapped
}
/**
* @param value Properties relevant to a managed certificate. These will be used if the
* certificate is managed (as indicated by a value of `MANAGED` in `type`).
* Structure is documented below.
*/
@JvmName("nntknskbtxklrypt")
public suspend fun managed(`value`: MangedSslCertificateManagedArgs?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.managed = mapped
}
/**
* @param argument Properties relevant to a managed certificate. These will be used if the
* certificate is managed (as indicated by a value of `MANAGED` in `type`).
* Structure is documented below.
*/
@JvmName("eqrypnidytxkrngm")
public suspend fun managed(argument: suspend MangedSslCertificateManagedArgsBuilder.() -> Unit) {
val toBeMapped = MangedSslCertificateManagedArgsBuilder().applySuspend { argument() }.build()
val mapped = of(toBeMapped)
this.managed = mapped
}
/**
* @param value Name of the resource. Provided by the client when the resource is
* created. The name must be 1-63 characters long, and comply with
* RFC1035. Specifically, the name must be 1-63 characters long and match
* the regular expression `a-z?` which means the
* first character must be a lowercase letter, and all following
* characters must be a dash, lowercase letter, or digit, except the last
* character, which cannot be a dash.
* These are in the same namespace as the managed SSL certificates.
*/
@JvmName("jbcroxjldruanxug")
public suspend fun name(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.name = mapped
}
/**
* @param value The ID of the project in which the resource belongs.
* If it is not provided, the provider project is used.
*/
@JvmName("hscdvnnuheuqylcx")
public suspend fun project(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.project = mapped
}
/**
* @param value Enum field whose value is always `MANAGED` - used to signal to the API
* which type this is.
* Default value is `MANAGED`.
* Possible values are: `MANAGED`.
*/
@JvmName("qqjwtixmljkevkvd")
public suspend fun type(`value`: String?) {
val toBeMapped = value
val mapped = toBeMapped?.let({ args0 -> of(args0) })
this.type = mapped
}
internal fun build(): MangedSslCertificateArgs = MangedSslCertificateArgs(
certificateId = certificateId,
description = description,
managed = managed,
name = name,
project = project,
type = type,
)
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy