Copyright | (c) 2013-2018 Brendan Hay |
---|---|
License | Mozilla Public License, v. 2.0. |
Maintainer | Brendan Hay <brendan.g.hay+amazonka@gmail.com> |
Stability | auto-generated |
Portability | non-portable (GHC extensions) |
Safe Haskell | None |
Language | Haskell2010 |
- Service Configuration
- Errors
- CertificateStatus
- CertificateTransparencyLoggingPreference
- CertificateType
- DomainStatus
- ExtendedKeyUsageName
- FailureReason
- KeyAlgorithm
- KeyUsageName
- RecordType
- RenewalEligibility
- RenewalStatus
- RevocationReason
- ValidationMethod
- CertificateDetail
- CertificateOptions
- CertificateSummary
- DomainValidation
- DomainValidationOption
- ExtendedKeyUsage
- Filters
- KeyUsage
- RenewalSummary
- ResourceRecord
- Tag
Synopsis
- certificateManager :: Service
- _InvalidTagException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidDomainValidationOptionsException :: AsError a => Getting (First ServiceError) a ServiceError
- _TooManyTagsException :: AsError a => Getting (First ServiceError) a ServiceError
- _RequestInProgressException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidARNException :: AsError a => Getting (First ServiceError) a ServiceError
- _ResourceNotFoundException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidStateException :: AsError a => Getting (First ServiceError) a ServiceError
- _LimitExceededException :: AsError a => Getting (First ServiceError) a ServiceError
- _ResourceInUseException :: AsError a => Getting (First ServiceError) a ServiceError
- data CertificateStatus
- data CertificateTransparencyLoggingPreference
- data CertificateType
- data DomainStatus
- data ExtendedKeyUsageName
- data FailureReason
- data KeyAlgorithm
- data KeyUsageName
- data RecordType = Cname
- data RenewalEligibility
- data RenewalStatus
- data RevocationReason
- data ValidationMethod
- data CertificateDetail
- certificateDetail :: CertificateDetail
- cdSubject :: Lens' CertificateDetail (Maybe Text)
- cdStatus :: Lens' CertificateDetail (Maybe CertificateStatus)
- cdFailureReason :: Lens' CertificateDetail (Maybe FailureReason)
- cdSubjectAlternativeNames :: Lens' CertificateDetail (Maybe (NonEmpty Text))
- cdInUseBy :: Lens' CertificateDetail [Text]
- cdCreatedAt :: Lens' CertificateDetail (Maybe UTCTime)
- cdCertificateARN :: Lens' CertificateDetail (Maybe Text)
- cdSerial :: Lens' CertificateDetail (Maybe Text)
- cdRenewalEligibility :: Lens' CertificateDetail (Maybe RenewalEligibility)
- cdExtendedKeyUsages :: Lens' CertificateDetail [ExtendedKeyUsage]
- cdImportedAt :: Lens' CertificateDetail (Maybe UTCTime)
- cdKeyUsages :: Lens' CertificateDetail [KeyUsage]
- cdRevokedAt :: Lens' CertificateDetail (Maybe UTCTime)
- cdNotBefore :: Lens' CertificateDetail (Maybe UTCTime)
- cdRevocationReason :: Lens' CertificateDetail (Maybe RevocationReason)
- cdDomainName :: Lens' CertificateDetail (Maybe Text)
- cdRenewalSummary :: Lens' CertificateDetail (Maybe RenewalSummary)
- cdKeyAlgorithm :: Lens' CertificateDetail (Maybe KeyAlgorithm)
- cdType :: Lens' CertificateDetail (Maybe CertificateType)
- cdOptions :: Lens' CertificateDetail (Maybe CertificateOptions)
- cdIssuedAt :: Lens' CertificateDetail (Maybe UTCTime)
- cdSignatureAlgorithm :: Lens' CertificateDetail (Maybe Text)
- cdDomainValidationOptions :: Lens' CertificateDetail (Maybe (NonEmpty DomainValidation))
- cdIssuer :: Lens' CertificateDetail (Maybe Text)
- cdNotAfter :: Lens' CertificateDetail (Maybe UTCTime)
- cdCertificateAuthorityARN :: Lens' CertificateDetail (Maybe Text)
- data CertificateOptions
- certificateOptions :: CertificateOptions
- coCertificateTransparencyLoggingPreference :: Lens' CertificateOptions (Maybe CertificateTransparencyLoggingPreference)
- data CertificateSummary
- certificateSummary :: CertificateSummary
- csCertificateARN :: Lens' CertificateSummary (Maybe Text)
- csDomainName :: Lens' CertificateSummary (Maybe Text)
- data DomainValidation
- domainValidation :: Text -> DomainValidation
- dvValidationEmails :: Lens' DomainValidation [Text]
- dvValidationMethod :: Lens' DomainValidation (Maybe ValidationMethod)
- dvResourceRecord :: Lens' DomainValidation (Maybe ResourceRecord)
- dvValidationStatus :: Lens' DomainValidation (Maybe DomainStatus)
- dvValidationDomain :: Lens' DomainValidation (Maybe Text)
- dvDomainName :: Lens' DomainValidation Text
- data DomainValidationOption
- domainValidationOption :: Text -> Text -> DomainValidationOption
- dvoDomainName :: Lens' DomainValidationOption Text
- dvoValidationDomain :: Lens' DomainValidationOption Text
- data ExtendedKeyUsage
- extendedKeyUsage :: ExtendedKeyUsage
- ekuOId :: Lens' ExtendedKeyUsage (Maybe Text)
- ekuName :: Lens' ExtendedKeyUsage (Maybe ExtendedKeyUsageName)
- data Filters
- filters :: Filters
- fKeyTypes :: Lens' Filters [KeyAlgorithm]
- fKeyUsage :: Lens' Filters [KeyUsageName]
- fExtendedKeyUsage :: Lens' Filters [ExtendedKeyUsageName]
- data KeyUsage
- keyUsage :: KeyUsage
- kuName :: Lens' KeyUsage (Maybe KeyUsageName)
- data RenewalSummary
- renewalSummary :: RenewalStatus -> NonEmpty DomainValidation -> RenewalSummary
- rsRenewalStatus :: Lens' RenewalSummary RenewalStatus
- rsDomainValidationOptions :: Lens' RenewalSummary (NonEmpty DomainValidation)
- data ResourceRecord
- resourceRecord :: Text -> RecordType -> Text -> ResourceRecord
- rrName :: Lens' ResourceRecord Text
- rrType :: Lens' ResourceRecord RecordType
- rrValue :: Lens' ResourceRecord Text
- data Tag
- tag :: Text -> Tag
- tagValue :: Lens' Tag (Maybe Text)
- tagKey :: Lens' Tag Text
Service Configuration
certificateManager :: Service Source #
API version 2015-12-08
of the Amazon Certificate Manager SDK configuration.
Errors
_InvalidTagException :: AsError a => Getting (First ServiceError) a ServiceError Source #
One or both of the values that make up the key-value pair is not valid. For example, you cannot specify a tag value that begins with aws:
.
_InvalidDomainValidationOptionsException :: AsError a => Getting (First ServiceError) a ServiceError Source #
One or more values in the DomainValidationOption
structure is incorrect.
_TooManyTagsException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request contains too many tags. Try the request again with fewer tags.
_RequestInProgressException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The certificate request is in process and the certificate in your account has not yet been issued.
_InvalidARNException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The requested Amazon Resource Name (ARN) does not refer to an existing resource.
_ResourceNotFoundException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The specified certificate cannot be found in the caller's account or the caller's account cannot be found.
_InvalidStateException :: AsError a => Getting (First ServiceError) a ServiceError Source #
Processing has reached an invalid state.
_LimitExceededException :: AsError a => Getting (First ServiceError) a ServiceError Source #
An ACM limit has been exceeded.
_ResourceInUseException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The certificate is in use by another AWS service in the caller's account. Remove the association and try again.
CertificateStatus
data CertificateStatus Source #
Instances
CertificateTransparencyLoggingPreference
data CertificateTransparencyLoggingPreference Source #
Instances
CertificateType
data CertificateType Source #
Instances
DomainStatus
data DomainStatus Source #
Instances
ExtendedKeyUsageName
data ExtendedKeyUsageName Source #
Any | |
CodeSigning | |
Custom | |
EmailProtection | |
IPsecEndSystem | |
IPsecTunnel | |
IPsecUser | |
None | |
OcspSigning | |
TLSWebClientAuthentication | |
TLSWebServerAuthentication | |
TimeStamping |
Instances
FailureReason
data FailureReason Source #
Instances
KeyAlgorithm
data KeyAlgorithm Source #
Instances
KeyUsageName
data KeyUsageName Source #
KUNAny | |
KUNCertificateSigning | |
KUNCrlSigning | |
KUNCustom | |
KUNDataEncipherment | |
KUNDecipherOnly | |
KUNDigitalSignature | |
KUNEncipherOnly | |
KUNKeyAgreement | |
KUNKeyEncipherment | |
KUNNonRepudiation |
Instances
RecordType
data RecordType Source #
Instances
RenewalEligibility
data RenewalEligibility Source #
Instances
RenewalStatus
data RenewalStatus Source #
Instances
RevocationReason
data RevocationReason Source #
AACompromise | |
AffiliationChanged | |
CaCompromise | |
CertificateHold | |
CessationOfOperation | |
KeyCompromise | |
PrivilegeWithdrawn | |
RemoveFromCrl | |
Superceded | |
Unspecified |
Instances
ValidationMethod
data ValidationMethod Source #
Instances
CertificateDetail
data CertificateDetail Source #
Contains metadata about an ACM certificate. This structure is returned in the response to a DescribeCertificate
request.
See: certificateDetail
smart constructor.
Instances
certificateDetail :: CertificateDetail Source #
Creates a value of CertificateDetail
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
cdSubject
- The name of the entity that is associated with the public key contained in the certificate.cdStatus
- The status of the certificate.cdFailureReason
- The reason the certificate request failed. This value exists only when the certificate status isFAILED
. For more information, see Certificate Request Failed in the AWS Certificate Manager User Guide .cdSubjectAlternativeNames
- One or more domain names (subject alternative names) included in the certificate. This list contains the domain names that are bound to the public key that is contained in the certificate. The subject alternative names include the canonical domain name (CN) of the certificate and additional domain names that can be used to connect to the website.cdInUseBy
- A list of ARNs for the AWS resources that are using the certificate. A certificate can be used by multiple AWS resources.cdCreatedAt
- The time at which the certificate was requested. This value exists only when the certificate type isAMAZON_ISSUED
.cdCertificateARN
- The Amazon Resource Name (ARN) of the certificate. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference .cdSerial
- The serial number of the certificate.cdRenewalEligibility
- Specifies whether the certificate is eligible for renewal.cdExtendedKeyUsages
- Contains a list of Extended Key Usage X.509 v3 extension objects. Each object specifies a purpose for which the certificate public key can be used and consists of a name and an object identifier (OID).cdImportedAt
- The date and time at which the certificate was imported. This value exists only when the certificate type isIMPORTED
.cdKeyUsages
- A list of Key Usage X.509 v3 extension objects. Each object is a string value that identifies the purpose of the public key contained in the certificate. Possible extension values include DIGITAL_SIGNATURE, KEY_ENCHIPHERMENT, NON_REPUDIATION, and more.cdRevokedAt
- The time at which the certificate was revoked. This value exists only when the certificate status isREVOKED
.cdNotBefore
- The time before which the certificate is not valid.cdRevocationReason
- The reason the certificate was revoked. This value exists only when the certificate status isREVOKED
.cdDomainName
- The fully qualified domain name for the certificate, such as www.example.com or example.com.cdRenewalSummary
- Contains information about the status of ACM's managed renewal for the certificate. This field exists only when the certificate type isAMAZON_ISSUED
.cdKeyAlgorithm
- The algorithm that was used to generate the public-private key pair.cdType
- The source of the certificate. For certificates provided by ACM, this value isAMAZON_ISSUED
. For certificates that you imported withImportCertificate
, this value isIMPORTED
. ACM does not provide managed renewal for imported certificates. For more information about the differences between certificates that you import and those that ACM provides, see Importing Certificates in the AWS Certificate Manager User Guide .cdOptions
- Value that specifies whether to add the certificate to a transparency log. Certificate transparency makes it possible to detect SSL certificates that have been mistakenly or maliciously issued. A browser might respond to certificate that has not been logged by showing an error message. The logs are cryptographically secure.cdIssuedAt
- The time at which the certificate was issued. This value exists only when the certificate type isAMAZON_ISSUED
.cdSignatureAlgorithm
- The algorithm that was used to sign the certificate.cdDomainValidationOptions
- Contains information about the initial validation of each domain name that occurs as a result of theRequestCertificate
request. This field exists only when the certificate type isAMAZON_ISSUED
.cdIssuer
- The name of the certificate authority that issued and signed the certificate.cdNotAfter
- The time after which the certificate is not valid.cdCertificateAuthorityARN
- The Amazon Resource Name (ARN) of the ACM PCA private certificate authority (CA) that issued the certificate. This has the following format:arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
cdSubject :: Lens' CertificateDetail (Maybe Text) Source #
The name of the entity that is associated with the public key contained in the certificate.
cdStatus :: Lens' CertificateDetail (Maybe CertificateStatus) Source #
The status of the certificate.
cdFailureReason :: Lens' CertificateDetail (Maybe FailureReason) Source #
The reason the certificate request failed. This value exists only when the certificate status is FAILED
. For more information, see Certificate Request Failed in the AWS Certificate Manager User Guide .
cdSubjectAlternativeNames :: Lens' CertificateDetail (Maybe (NonEmpty Text)) Source #
One or more domain names (subject alternative names) included in the certificate. This list contains the domain names that are bound to the public key that is contained in the certificate. The subject alternative names include the canonical domain name (CN) of the certificate and additional domain names that can be used to connect to the website.
cdInUseBy :: Lens' CertificateDetail [Text] Source #
A list of ARNs for the AWS resources that are using the certificate. A certificate can be used by multiple AWS resources.
cdCreatedAt :: Lens' CertificateDetail (Maybe UTCTime) Source #
The time at which the certificate was requested. This value exists only when the certificate type is AMAZON_ISSUED
.
cdCertificateARN :: Lens' CertificateDetail (Maybe Text) Source #
The Amazon Resource Name (ARN) of the certificate. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference .
cdRenewalEligibility :: Lens' CertificateDetail (Maybe RenewalEligibility) Source #
Specifies whether the certificate is eligible for renewal.
cdExtendedKeyUsages :: Lens' CertificateDetail [ExtendedKeyUsage] Source #
Contains a list of Extended Key Usage X.509 v3 extension objects. Each object specifies a purpose for which the certificate public key can be used and consists of a name and an object identifier (OID).
cdImportedAt :: Lens' CertificateDetail (Maybe UTCTime) Source #
The date and time at which the certificate was imported. This value exists only when the certificate type is IMPORTED
.
cdKeyUsages :: Lens' CertificateDetail [KeyUsage] Source #
A list of Key Usage X.509 v3 extension objects. Each object is a string value that identifies the purpose of the public key contained in the certificate. Possible extension values include DIGITAL_SIGNATURE, KEY_ENCHIPHERMENT, NON_REPUDIATION, and more.
cdRevokedAt :: Lens' CertificateDetail (Maybe UTCTime) Source #
The time at which the certificate was revoked. This value exists only when the certificate status is REVOKED
.
cdNotBefore :: Lens' CertificateDetail (Maybe UTCTime) Source #
The time before which the certificate is not valid.
cdRevocationReason :: Lens' CertificateDetail (Maybe RevocationReason) Source #
The reason the certificate was revoked. This value exists only when the certificate status is REVOKED
.
cdDomainName :: Lens' CertificateDetail (Maybe Text) Source #
The fully qualified domain name for the certificate, such as www.example.com or example.com.
cdRenewalSummary :: Lens' CertificateDetail (Maybe RenewalSummary) Source #
Contains information about the status of ACM's managed renewal for the certificate. This field exists only when the certificate type is AMAZON_ISSUED
.
cdKeyAlgorithm :: Lens' CertificateDetail (Maybe KeyAlgorithm) Source #
The algorithm that was used to generate the public-private key pair.
cdType :: Lens' CertificateDetail (Maybe CertificateType) Source #
The source of the certificate. For certificates provided by ACM, this value is AMAZON_ISSUED
. For certificates that you imported with ImportCertificate
, this value is IMPORTED
. ACM does not provide managed renewal for imported certificates. For more information about the differences between certificates that you import and those that ACM provides, see Importing Certificates in the AWS Certificate Manager User Guide .
cdOptions :: Lens' CertificateDetail (Maybe CertificateOptions) Source #
Value that specifies whether to add the certificate to a transparency log. Certificate transparency makes it possible to detect SSL certificates that have been mistakenly or maliciously issued. A browser might respond to certificate that has not been logged by showing an error message. The logs are cryptographically secure.
cdIssuedAt :: Lens' CertificateDetail (Maybe UTCTime) Source #
The time at which the certificate was issued. This value exists only when the certificate type is AMAZON_ISSUED
.
cdSignatureAlgorithm :: Lens' CertificateDetail (Maybe Text) Source #
The algorithm that was used to sign the certificate.
cdDomainValidationOptions :: Lens' CertificateDetail (Maybe (NonEmpty DomainValidation)) Source #
Contains information about the initial validation of each domain name that occurs as a result of the RequestCertificate
request. This field exists only when the certificate type is AMAZON_ISSUED
.
cdIssuer :: Lens' CertificateDetail (Maybe Text) Source #
The name of the certificate authority that issued and signed the certificate.
cdNotAfter :: Lens' CertificateDetail (Maybe UTCTime) Source #
The time after which the certificate is not valid.
cdCertificateAuthorityARN :: Lens' CertificateDetail (Maybe Text) Source #
The Amazon Resource Name (ARN) of the ACM PCA private certificate authority (CA) that issued the certificate. This has the following format: arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
CertificateOptions
data CertificateOptions Source #
Structure that contains options for your certificate. Currently, you can use this only to specify whether to opt in to or out of certificate transparency logging. Some browsers require that public certificates issued for your domain be recorded in a log. Certificates that are not logged typically generate a browser error. Transparency makes it possible for you to detect SSLTLS certificates that have been mistakenly or maliciously issued for your domain. For general information, see <http:docs.aws.amazon.comacmlatestuserguide/acm-concepts.html#concept-transparency Certificate Transparency Logging> .
See: certificateOptions
smart constructor.
Instances
certificateOptions :: CertificateOptions Source #
Creates a value of CertificateOptions
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
coCertificateTransparencyLoggingPreference
- You can opt out of certificate transparency logging by specifying theDISABLED
option. Opt in by specifyingENABLED
.
coCertificateTransparencyLoggingPreference :: Lens' CertificateOptions (Maybe CertificateTransparencyLoggingPreference) Source #
You can opt out of certificate transparency logging by specifying the DISABLED
option. Opt in by specifying ENABLED
.
CertificateSummary
data CertificateSummary Source #
This structure is returned in the response object of ListCertificates
action.
See: certificateSummary
smart constructor.
Instances
certificateSummary :: CertificateSummary Source #
Creates a value of CertificateSummary
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
csCertificateARN
- Amazon Resource Name (ARN) of the certificate. This is of the form:arn:aws:acm:region:123456789012:certificate/12345678-1234-1234-1234-123456789012
For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces .csDomainName
- Fully qualified domain name (FQDN), such as www.example.com or example.com, for the certificate.
csCertificateARN :: Lens' CertificateSummary (Maybe Text) Source #
Amazon Resource Name (ARN) of the certificate. This is of the form: arn:aws:acm:region:123456789012:certificate/12345678-1234-1234-1234-123456789012
For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces .
csDomainName :: Lens' CertificateSummary (Maybe Text) Source #
Fully qualified domain name (FQDN), such as www.example.com or example.com, for the certificate.
DomainValidation
data DomainValidation Source #
Contains information about the validation of each domain name in the certificate.
See: domainValidation
smart constructor.
Instances
Creates a value of DomainValidation
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
dvValidationEmails
- A list of email addresses that ACM used to send domain validation emails.dvValidationMethod
- Specifies the domain validation method.dvResourceRecord
- Contains the CNAME record that you add to your DNS database for domain validation. For more information, see Use DNS to Validate Domain Ownership .dvValidationStatus
- The validation status of the domain name. This can be one of the following values: *PENDING_VALIDATION
* SUCCESS * FAILEDdvValidationDomain
- The domain name that ACM used to send domain validation emails.dvDomainName
- A fully qualified domain name (FQDN) in the certificate. For example,www.example.com
orexample.com
.
dvValidationEmails :: Lens' DomainValidation [Text] Source #
A list of email addresses that ACM used to send domain validation emails.
dvValidationMethod :: Lens' DomainValidation (Maybe ValidationMethod) Source #
Specifies the domain validation method.
dvResourceRecord :: Lens' DomainValidation (Maybe ResourceRecord) Source #
Contains the CNAME record that you add to your DNS database for domain validation. For more information, see Use DNS to Validate Domain Ownership .
dvValidationStatus :: Lens' DomainValidation (Maybe DomainStatus) Source #
The validation status of the domain name. This can be one of the following values: * PENDING_VALIDATION
* SUCCESS * FAILED
dvValidationDomain :: Lens' DomainValidation (Maybe Text) Source #
The domain name that ACM used to send domain validation emails.
dvDomainName :: Lens' DomainValidation Text Source #
A fully qualified domain name (FQDN) in the certificate. For example, www.example.com
or example.com
.
DomainValidationOption
data DomainValidationOption Source #
Contains information about the domain names that you want ACM to use to send you emails that enable you to validate domain ownership.
See: domainValidationOption
smart constructor.
Instances
domainValidationOption Source #
Creates a value of DomainValidationOption
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
dvoDomainName
- A fully qualified domain name (FQDN) in the certificate request.dvoValidationDomain
- The domain name that you want ACM to use to send you validation emails. This domain name is the suffix of the email addresses that you want ACM to use. This must be the same as theDomainName
value or a superdomain of theDomainName
value. For example, if you request a certificate fortesting.example.com
, you can specifyexample.com
for this value. In that case, ACM sends domain validation emails to the following five addresses: * adminexample.com * administrator
example.com * hostmasterexample.com * postmaster
example.com * webmaster@example.com
dvoDomainName :: Lens' DomainValidationOption Text Source #
A fully qualified domain name (FQDN) in the certificate request.
dvoValidationDomain :: Lens' DomainValidationOption Text Source #
The domain name that you want ACM to use to send you validation emails. This domain name is the suffix of the email addresses that you want ACM to use. This must be the same as the DomainName
value or a superdomain of the DomainName
value. For example, if you request a certificate for testing.example.com
, you can specify example.com
for this value. In that case, ACM sends domain validation emails to the following five addresses: * adminexample.com * administrator
example.com * hostmasterexample.com * postmaster
example.com * webmaster@example.com
ExtendedKeyUsage
data ExtendedKeyUsage Source #
The Extended Key Usage X.509 v3 extension defines one or more purposes for which the public key can be used. This is in addition to or in place of the basic purposes specified by the Key Usage extension.
See: extendedKeyUsage
smart constructor.
Instances
extendedKeyUsage :: ExtendedKeyUsage Source #
Creates a value of ExtendedKeyUsage
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
ekuOId
- An object identifier (OID) for the extension value. OIDs are strings of numbers separated by periods. The following OIDs are defined in RFC 3280 and RFC 5280. *1.3.6.1.5.5.7.3.1 (TLS_WEB_SERVER_AUTHENTICATION)
*1.3.6.1.5.5.7.3.2 (TLS_WEB_CLIENT_AUTHENTICATION)
*1.3.6.1.5.5.7.3.3 (CODE_SIGNING)
*1.3.6.1.5.5.7.3.4 (EMAIL_PROTECTION)
*1.3.6.1.5.5.7.3.8 (TIME_STAMPING)
*1.3.6.1.5.5.7.3.9 (OCSP_SIGNING)
*1.3.6.1.5.5.7.3.5 (IPSEC_END_SYSTEM)
*1.3.6.1.5.5.7.3.6 (IPSEC_TUNNEL)
*1.3.6.1.5.5.7.3.7 (IPSEC_USER)
ekuName
- The name of an Extended Key Usage value.
ekuOId :: Lens' ExtendedKeyUsage (Maybe Text) Source #
An object identifier (OID) for the extension value. OIDs are strings of numbers separated by periods. The following OIDs are defined in RFC 3280 and RFC 5280. * 1.3.6.1.5.5.7.3.1 (TLS_WEB_SERVER_AUTHENTICATION)
* 1.3.6.1.5.5.7.3.2 (TLS_WEB_CLIENT_AUTHENTICATION)
* 1.3.6.1.5.5.7.3.3 (CODE_SIGNING)
* 1.3.6.1.5.5.7.3.4 (EMAIL_PROTECTION)
* 1.3.6.1.5.5.7.3.8 (TIME_STAMPING)
* 1.3.6.1.5.5.7.3.9 (OCSP_SIGNING)
* 1.3.6.1.5.5.7.3.5 (IPSEC_END_SYSTEM)
* 1.3.6.1.5.5.7.3.6 (IPSEC_TUNNEL)
* 1.3.6.1.5.5.7.3.7 (IPSEC_USER)
ekuName :: Lens' ExtendedKeyUsage (Maybe ExtendedKeyUsageName) Source #
The name of an Extended Key Usage value.
Filters
This structure can be used in the ListCertificates
action to filter the output of the certificate list.
See: filters
smart constructor.
Instances
Creates a value of Filters
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
fKeyTypes
- Specify one or more algorithms that can be used to generate key pairs.fKeyUsage
- Specify one or moreKeyUsage
extension values.fExtendedKeyUsage
- Specify one or moreExtendedKeyUsage
extension values.
fKeyTypes :: Lens' Filters [KeyAlgorithm] Source #
Specify one or more algorithms that can be used to generate key pairs.
fExtendedKeyUsage :: Lens' Filters [ExtendedKeyUsageName] Source #
Specify one or more ExtendedKeyUsage
extension values.
KeyUsage
The Key Usage X.509 v3 extension defines the purpose of the public key contained in the certificate.
See: keyUsage
smart constructor.
Instances
Eq KeyUsage Source # | |
Data KeyUsage Source # | |
Defined in Network.AWS.CertificateManager.Types.Product gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> KeyUsage -> c KeyUsage # gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c KeyUsage # toConstr :: KeyUsage -> Constr # dataTypeOf :: KeyUsage -> DataType # dataCast1 :: Typeable t => (forall d. Data d => c (t d)) -> Maybe (c KeyUsage) # dataCast2 :: Typeable t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c KeyUsage) # gmapT :: (forall b. Data b => b -> b) -> KeyUsage -> KeyUsage # gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> KeyUsage -> r # gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> KeyUsage -> r # gmapQ :: (forall d. Data d => d -> u) -> KeyUsage -> [u] # gmapQi :: Int -> (forall d. Data d => d -> u) -> KeyUsage -> u # gmapM :: Monad m => (forall d. Data d => d -> m d) -> KeyUsage -> m KeyUsage # gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> KeyUsage -> m KeyUsage # gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> KeyUsage -> m KeyUsage # | |
Read KeyUsage Source # | |
Show KeyUsage Source # | |
Generic KeyUsage Source # | |
Hashable KeyUsage Source # | |
Defined in Network.AWS.CertificateManager.Types.Product | |
FromJSON KeyUsage Source # | |
NFData KeyUsage Source # | |
Defined in Network.AWS.CertificateManager.Types.Product | |
type Rep KeyUsage Source # | |
Defined in Network.AWS.CertificateManager.Types.Product type Rep KeyUsage = D1 (MetaData "KeyUsage" "Network.AWS.CertificateManager.Types.Product" "amazonka-certificatemanager-1.6.1-4shwck4gg3E1zBQz4D8KdL" True) (C1 (MetaCons "KeyUsage'" PrefixI True) (S1 (MetaSel (Just "_kuName") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe KeyUsageName)))) |
kuName :: Lens' KeyUsage (Maybe KeyUsageName) Source #
A string value that contains a Key Usage extension name.
RenewalSummary
data RenewalSummary Source #
Contains information about the status of ACM's managed renewal for the certificate. This structure exists only when the certificate type is AMAZON_ISSUED
.
See: renewalSummary
smart constructor.
Instances
Creates a value of RenewalSummary
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
rsRenewalStatus
- The status of ACM's managed renewal of the certificate.rsDomainValidationOptions
- Contains information about the validation of each domain name in the certificate, as it pertains to ACM's managed renewal . This is different from the initial validation that occurs as a result of theRequestCertificate
request. This field exists only when the certificate type isAMAZON_ISSUED
.
rsRenewalStatus :: Lens' RenewalSummary RenewalStatus Source #
The status of ACM's managed renewal of the certificate.
rsDomainValidationOptions :: Lens' RenewalSummary (NonEmpty DomainValidation) Source #
Contains information about the validation of each domain name in the certificate, as it pertains to ACM's managed renewal . This is different from the initial validation that occurs as a result of the RequestCertificate
request. This field exists only when the certificate type is AMAZON_ISSUED
.
ResourceRecord
data ResourceRecord Source #
Contains a DNS record value that you can use to can use to validate ownership or control of a domain. This is used by the DescribeCertificate
action.
See: resourceRecord
smart constructor.
Instances
Creates a value of ResourceRecord
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
rrName :: Lens' ResourceRecord Text Source #
The name of the DNS record to create in your domain. This is supplied by ACM.
rrType :: Lens' ResourceRecord RecordType Source #
The type of DNS record. Currently this can be CNAME
.
rrValue :: Lens' ResourceRecord Text Source #
The value of the CNAME record to add to your DNS database. This is supplied by ACM.
Tag
A key-value pair that identifies or specifies metadata about an ACM resource.
See: tag
smart constructor.
Instances
Eq Tag Source # | |
Data Tag Source # | |
Defined in Network.AWS.CertificateManager.Types.Product gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> Tag -> c Tag # gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c Tag # dataTypeOf :: Tag -> DataType # dataCast1 :: Typeable t => (forall d. Data d => c (t d)) -> Maybe (c Tag) # dataCast2 :: Typeable t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c Tag) # gmapT :: (forall b. Data b => b -> b) -> Tag -> Tag # gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> Tag -> r # gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> Tag -> r # gmapQ :: (forall d. Data d => d -> u) -> Tag -> [u] # gmapQi :: Int -> (forall d. Data d => d -> u) -> Tag -> u # gmapM :: Monad m => (forall d. Data d => d -> m d) -> Tag -> m Tag # gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> Tag -> m Tag # gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> Tag -> m Tag # | |
Read Tag Source # | |
Show Tag Source # | |
Generic Tag Source # | |
Hashable Tag Source # | |
Defined in Network.AWS.CertificateManager.Types.Product | |
ToJSON Tag Source # | |
Defined in Network.AWS.CertificateManager.Types.Product | |
FromJSON Tag Source # | |
NFData Tag Source # | |
Defined in Network.AWS.CertificateManager.Types.Product | |
type Rep Tag Source # | |
Defined in Network.AWS.CertificateManager.Types.Product type Rep Tag = D1 (MetaData "Tag" "Network.AWS.CertificateManager.Types.Product" "amazonka-certificatemanager-1.6.1-4shwck4gg3E1zBQz4D8KdL" False) (C1 (MetaCons "Tag'" PrefixI True) (S1 (MetaSel (Just "_tagValue") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 (Maybe Text)) :*: S1 (MetaSel (Just "_tagKey") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text))) |