Class: Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType

Inherits:

Object

Object
Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType

Extended by:: Protobuf::MessageExts::ClassMethods

Includes:: Protobuf::MessageExts

Defined in:: proto_docs/google/cloud/security/privateca/v1/resources.rb

Overview

Describes a "type" of key that may be used in a Certificate issued from a CaPool. Note that a single AllowedKeyType may refer to either a fully-qualified key algorithm, such as RSA 4096, or a family of key algorithms, such as any RSA key.

Defined Under Namespace

Classes: EcKeyType, RsaKeyType

Instance Attribute Summary collapse

#elliptic_curve ⇒ ::Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType::EcKeyType
Represents an allowed Elliptic Curve key type.
#rsa ⇒ ::Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType::RsaKeyType
Represents an allowed RSA key type.

Instance Attribute Details

#elliptic_curve ⇒ `::Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType::EcKeyType`

Returns Represents an allowed Elliptic Curve key type.

Returns:

(::Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType::EcKeyType) —
Represents an allowed Elliptic Curve key type.

# File 'proto_docs/google/cloud/security/privateca/v1/resources.rb', line 437

class AllowedKeyType
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Describes an RSA key that may be used in a
  # {::Google::Cloud::Security::PrivateCA::V1::Certificate Certificate} issued
  # from a {::Google::Cloud::Security::PrivateCA::V1::CaPool CaPool}.
  # @!attribute [rw] min_modulus_size
  #   @return [::Integer]
  #     Optional. The minimum allowed RSA modulus size (inclusive), in bits.
  #     If this is not set, or if set to zero, the service-level min RSA
  #     modulus size will continue to apply.
  # @!attribute [rw] max_modulus_size
  #   @return [::Integer]
  #     Optional. The maximum allowed RSA modulus size (inclusive), in bits.
  #     If this is not set, or if set to zero, the service will not enforce
  #     an explicit upper bound on RSA modulus sizes.
  class RsaKeyType
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # Describes an Elliptic Curve key that may be used in a
  # {::Google::Cloud::Security::PrivateCA::V1::Certificate Certificate} issued
  # from a {::Google::Cloud::Security::PrivateCA::V1::CaPool CaPool}.
  # @!attribute [rw] signature_algorithm
  #   @return [::Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType::EcKeyType::EcSignatureAlgorithm]
  #     Optional. A signature algorithm that must be used. If this is
  #     omitted, any EC-based signature algorithm will be allowed.
  class EcKeyType
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Describes an elliptic curve-based signature algorithm that may be
    # used in a
    # {::Google::Cloud::Security::PrivateCA::V1::Certificate Certificate} issued
    # from a {::Google::Cloud::Security::PrivateCA::V1::CaPool CaPool}.
    module EcSignatureAlgorithm
      # Not specified. Signifies that any signature algorithm may be used.
      EC_SIGNATURE_ALGORITHM_UNSPECIFIED = 0

      # Refers to the Elliptic Curve Digital Signature Algorithm over the
      # NIST P-256 curve.
      ECDSA_P256 = 1

      # Refers to the Elliptic Curve Digital Signature Algorithm over the
      # NIST P-384 curve.
      ECDSA_P384 = 2

      # Refers to the Edwards-curve Digital Signature Algorithm over curve
      # 25519, as described in RFC 8410.
      EDDSA_25519 = 3
    end
  end
end

#rsa ⇒ `::Google::Cloud::Security::PrivateCA::V1::CaPool::IssuancePolicy::AllowedKeyType::RsaKeyType`

Returns Represents an allowed RSA key type.