Google Cloud Native is in preview. Google Cloud Classic is fully supported.
google-native.apigee/v1.TargetServer
Explore with Pulumi AI
Google Cloud Native is in preview. Google Cloud Classic is fully supported.
Creates a TargetServer in the specified environment.
Create TargetServer Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new TargetServer(name: string, args: TargetServerArgs, opts?: CustomResourceOptions);
@overload
def TargetServer(resource_name: str,
args: TargetServerArgs,
opts: Optional[ResourceOptions] = None)
@overload
def TargetServer(resource_name: str,
opts: Optional[ResourceOptions] = None,
environment_id: Optional[str] = None,
host: Optional[str] = None,
organization_id: Optional[str] = None,
port: Optional[int] = None,
description: Optional[str] = None,
is_enabled: Optional[bool] = None,
name: Optional[str] = None,
protocol: Optional[TargetServerProtocol] = None,
s_sl_info: Optional[GoogleCloudApigeeV1TlsInfoArgs] = None)
func NewTargetServer(ctx *Context, name string, args TargetServerArgs, opts ...ResourceOption) (*TargetServer, error)
public TargetServer(string name, TargetServerArgs args, CustomResourceOptions? opts = null)
public TargetServer(String name, TargetServerArgs args)
public TargetServer(String name, TargetServerArgs args, CustomResourceOptions options)
type: google-native:apigee/v1:TargetServer
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args TargetServerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args TargetServerArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args TargetServerArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args TargetServerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args TargetServerArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var targetServerResource = new GoogleNative.Apigee.V1.TargetServer("targetServerResource", new()
{
EnvironmentId = "string",
Host = "string",
OrganizationId = "string",
Port = 0,
Description = "string",
IsEnabled = false,
Name = "string",
Protocol = GoogleNative.Apigee.V1.TargetServerProtocol.ProtocolUnspecified,
SSLInfo = new GoogleNative.Apigee.V1.Inputs.GoogleCloudApigeeV1TlsInfoArgs
{
Enabled = false,
Ciphers = new[]
{
"string",
},
ClientAuthEnabled = false,
CommonName = new GoogleNative.Apigee.V1.Inputs.GoogleCloudApigeeV1TlsInfoCommonNameArgs
{
Value = "string",
WildcardMatch = false,
},
IgnoreValidationErrors = false,
KeyAlias = "string",
KeyStore = "string",
Protocols = new[]
{
"string",
},
TrustStore = "string",
},
});
example, err := apigee.NewTargetServer(ctx, "targetServerResource", &apigee.TargetServerArgs{
EnvironmentId: pulumi.String("string"),
Host: pulumi.String("string"),
OrganizationId: pulumi.String("string"),
Port: pulumi.Int(0),
Description: pulumi.String("string"),
IsEnabled: pulumi.Bool(false),
Name: pulumi.String("string"),
Protocol: apigee.TargetServerProtocolProtocolUnspecified,
SSLInfo: &apigee.GoogleCloudApigeeV1TlsInfoArgs{
Enabled: pulumi.Bool(false),
Ciphers: pulumi.StringArray{
pulumi.String("string"),
},
ClientAuthEnabled: pulumi.Bool(false),
CommonName: &apigee.GoogleCloudApigeeV1TlsInfoCommonNameArgs{
Value: pulumi.String("string"),
WildcardMatch: pulumi.Bool(false),
},
IgnoreValidationErrors: pulumi.Bool(false),
KeyAlias: pulumi.String("string"),
KeyStore: pulumi.String("string"),
Protocols: pulumi.StringArray{
pulumi.String("string"),
},
TrustStore: pulumi.String("string"),
},
})
var targetServerResource = new TargetServer("targetServerResource", TargetServerArgs.builder()
.environmentId("string")
.host("string")
.organizationId("string")
.port(0)
.description("string")
.isEnabled(false)
.name("string")
.protocol("PROTOCOL_UNSPECIFIED")
.sSLInfo(GoogleCloudApigeeV1TlsInfoArgs.builder()
.enabled(false)
.ciphers("string")
.clientAuthEnabled(false)
.commonName(GoogleCloudApigeeV1TlsInfoCommonNameArgs.builder()
.value("string")
.wildcardMatch(false)
.build())
.ignoreValidationErrors(false)
.keyAlias("string")
.keyStore("string")
.protocols("string")
.trustStore("string")
.build())
.build());
target_server_resource = google_native.apigee.v1.TargetServer("targetServerResource",
environment_id="string",
host="string",
organization_id="string",
port=0,
description="string",
is_enabled=False,
name="string",
protocol=google_native.apigee.v1.TargetServerProtocol.PROTOCOL_UNSPECIFIED,
s_sl_info={
"enabled": False,
"ciphers": ["string"],
"client_auth_enabled": False,
"common_name": {
"value": "string",
"wildcard_match": False,
},
"ignore_validation_errors": False,
"key_alias": "string",
"key_store": "string",
"protocols": ["string"],
"trust_store": "string",
})
const targetServerResource = new google_native.apigee.v1.TargetServer("targetServerResource", {
environmentId: "string",
host: "string",
organizationId: "string",
port: 0,
description: "string",
isEnabled: false,
name: "string",
protocol: google_native.apigee.v1.TargetServerProtocol.ProtocolUnspecified,
sSLInfo: {
enabled: false,
ciphers: ["string"],
clientAuthEnabled: false,
commonName: {
value: "string",
wildcardMatch: false,
},
ignoreValidationErrors: false,
keyAlias: "string",
keyStore: "string",
protocols: ["string"],
trustStore: "string",
},
});
type: google-native:apigee/v1:TargetServer
properties:
description: string
environmentId: string
host: string
isEnabled: false
name: string
organizationId: string
port: 0
protocol: PROTOCOL_UNSPECIFIED
sSLInfo:
ciphers:
- string
clientAuthEnabled: false
commonName:
value: string
wildcardMatch: false
enabled: false
ignoreValidationErrors: false
keyAlias: string
keyStore: string
protocols:
- string
trustStore: string
TargetServer Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The TargetServer resource accepts the following input properties:
- Environment
Id string - Host string
- The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
- Organization
Id string - Port int
- The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
- Description string
- Optional. A human-readable description of this TargetServer.
- Is
Enabled bool - Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
- Name string
- The resource id of this target server. Values must match the regular expression
- Protocol
Pulumi.
Google Native. Apigee. V1. Target Server Protocol - Immutable. The protocol used by this TargetServer.
- SSLInfo
Pulumi.
Google Native. Apigee. V1. Inputs. Google Cloud Apigee V1Tls Info - Optional. Specifies TLS configuration info for this TargetServer. The JSON name is
sSLInfo
for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
- Environment
Id string - Host string
- The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
- Organization
Id string - Port int
- The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
- Description string
- Optional. A human-readable description of this TargetServer.
- Is
Enabled bool - Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
- Name string
- The resource id of this target server. Values must match the regular expression
- Protocol
Target
Server Protocol - Immutable. The protocol used by this TargetServer.
- SSLInfo
Google
Cloud Apigee V1Tls Info Args - Optional. Specifies TLS configuration info for this TargetServer. The JSON name is
sSLInfo
for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
- environment
Id String - host String
- The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
- organization
Id String - port Integer
- The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
- description String
- Optional. A human-readable description of this TargetServer.
- is
Enabled Boolean - Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
- name String
- The resource id of this target server. Values must match the regular expression
- protocol
Target
Server Protocol - Immutable. The protocol used by this TargetServer.
- s
SLInfo GoogleCloud Apigee V1Tls Info - Optional. Specifies TLS configuration info for this TargetServer. The JSON name is
sSLInfo
for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
- environment
Id string - host string
- The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
- organization
Id string - port number
- The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
- description string
- Optional. A human-readable description of this TargetServer.
- is
Enabled boolean - Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
- name string
- The resource id of this target server. Values must match the regular expression
- protocol
Target
Server Protocol - Immutable. The protocol used by this TargetServer.
- s
SLInfo GoogleCloud Apigee V1Tls Info - Optional. Specifies TLS configuration info for this TargetServer. The JSON name is
sSLInfo
for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
- environment_
id str - host str
- The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
- organization_
id str - port int
- The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
- description str
- Optional. A human-readable description of this TargetServer.
- is_
enabled bool - Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
- name str
- The resource id of this target server. Values must match the regular expression
- protocol
Target
Server Protocol - Immutable. The protocol used by this TargetServer.
- s_
sl_ Googleinfo Cloud Apigee V1Tls Info Args - Optional. Specifies TLS configuration info for this TargetServer. The JSON name is
sSLInfo
for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
- environment
Id String - host String
- The host name this target connects to. Value must be a valid hostname as described by RFC-1123.
- organization
Id String - port Number
- The port number this target connects to on the given host. Value must be between 1 and 65535, inclusive.
- description String
- Optional. A human-readable description of this TargetServer.
- is
Enabled Boolean - Optional. Enabling/disabling a TargetServer is useful when TargetServers are used in load balancing configurations, and one or more TargetServers need to taken out of rotation periodically. Defaults to true.
- name String
- The resource id of this target server. Values must match the regular expression
- protocol "PROTOCOL_UNSPECIFIED" | "HTTP" | "HTTP2" | "GRPC_TARGET" | "GRPC" | "EXTERNAL_CALLOUT"
- Immutable. The protocol used by this TargetServer.
- s
SLInfo Property Map - Optional. Specifies TLS configuration info for this TargetServer. The JSON name is
sSLInfo
for legacy/backwards compatibility reasons -- Edge originally supported SSL, and the name is still used for TLS configuration.
Outputs
All input properties are implicitly available as output properties. Additionally, the TargetServer resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Supporting Types
GoogleCloudApigeeV1TlsInfo, GoogleCloudApigeeV1TlsInfoArgs
- Enabled bool
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- Ciphers List<string>
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- Client
Auth boolEnabled - Optional. Enables two-way TLS.
- Common
Name Pulumi.Google Native. Apigee. V1. Inputs. Google Cloud Apigee V1Tls Info Common Name - The TLS Common Name of the certificate.
- Ignore
Validation boolErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- Key
Alias string - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - Key
Store string - Required if
client_auth_enabled
is true. The resource ID of the keystore. - Protocols List<string>
- The TLS versioins to be used.
- Trust
Store string - The resource ID of the truststore.
- Enabled bool
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- Ciphers []string
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- Client
Auth boolEnabled - Optional. Enables two-way TLS.
- Common
Name GoogleCloud Apigee V1Tls Info Common Name - The TLS Common Name of the certificate.
- Ignore
Validation boolErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- Key
Alias string - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - Key
Store string - Required if
client_auth_enabled
is true. The resource ID of the keystore. - Protocols []string
- The TLS versioins to be used.
- Trust
Store string - The resource ID of the truststore.
- enabled Boolean
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ciphers List<String>
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client
Auth BooleanEnabled - Optional. Enables two-way TLS.
- common
Name GoogleCloud Apigee V1Tls Info Common Name - The TLS Common Name of the certificate.
- ignore
Validation BooleanErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key
Alias String - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key
Store String - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols List<String>
- The TLS versioins to be used.
- trust
Store String - The resource ID of the truststore.
- enabled boolean
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ciphers string[]
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client
Auth booleanEnabled - Optional. Enables two-way TLS.
- common
Name GoogleCloud Apigee V1Tls Info Common Name - The TLS Common Name of the certificate.
- ignore
Validation booleanErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key
Alias string - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key
Store string - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols string[]
- The TLS versioins to be used.
- trust
Store string - The resource ID of the truststore.
- enabled bool
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ciphers Sequence[str]
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client_
auth_ boolenabled - Optional. Enables two-way TLS.
- common_
name GoogleCloud Apigee V1Tls Info Common Name - The TLS Common Name of the certificate.
- ignore_
validation_ boolerrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key_
alias str - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key_
store str - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols Sequence[str]
- The TLS versioins to be used.
- trust_
store str - The resource ID of the truststore.
- enabled Boolean
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ciphers List<String>
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client
Auth BooleanEnabled - Optional. Enables two-way TLS.
- common
Name Property Map - The TLS Common Name of the certificate.
- ignore
Validation BooleanErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key
Alias String - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key
Store String - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols List<String>
- The TLS versioins to be used.
- trust
Store String - The resource ID of the truststore.
GoogleCloudApigeeV1TlsInfoCommonName, GoogleCloudApigeeV1TlsInfoCommonNameArgs
- Value string
- The TLS Common Name string of the certificate.
- Wildcard
Match bool - Indicates whether the cert should be matched against as a wildcard cert.
- Value string
- The TLS Common Name string of the certificate.
- Wildcard
Match bool - Indicates whether the cert should be matched against as a wildcard cert.
- value String
- The TLS Common Name string of the certificate.
- wildcard
Match Boolean - Indicates whether the cert should be matched against as a wildcard cert.
- value string
- The TLS Common Name string of the certificate.
- wildcard
Match boolean - Indicates whether the cert should be matched against as a wildcard cert.
- value str
- The TLS Common Name string of the certificate.
- wildcard_
match bool - Indicates whether the cert should be matched against as a wildcard cert.
- value String
- The TLS Common Name string of the certificate.
- wildcard
Match Boolean - Indicates whether the cert should be matched against as a wildcard cert.
GoogleCloudApigeeV1TlsInfoCommonNameResponse, GoogleCloudApigeeV1TlsInfoCommonNameResponseArgs
- Value string
- The TLS Common Name string of the certificate.
- Wildcard
Match bool - Indicates whether the cert should be matched against as a wildcard cert.
- Value string
- The TLS Common Name string of the certificate.
- Wildcard
Match bool - Indicates whether the cert should be matched against as a wildcard cert.
- value String
- The TLS Common Name string of the certificate.
- wildcard
Match Boolean - Indicates whether the cert should be matched against as a wildcard cert.
- value string
- The TLS Common Name string of the certificate.
- wildcard
Match boolean - Indicates whether the cert should be matched against as a wildcard cert.
- value str
- The TLS Common Name string of the certificate.
- wildcard_
match bool - Indicates whether the cert should be matched against as a wildcard cert.
- value String
- The TLS Common Name string of the certificate.
- wildcard
Match Boolean - Indicates whether the cert should be matched against as a wildcard cert.
GoogleCloudApigeeV1TlsInfoResponse, GoogleCloudApigeeV1TlsInfoResponseArgs
- Ciphers List<string>
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- Client
Auth boolEnabled - Optional. Enables two-way TLS.
- Common
Name Pulumi.Google Native. Apigee. V1. Inputs. Google Cloud Apigee V1Tls Info Common Name Response - The TLS Common Name of the certificate.
- Enabled bool
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- Ignore
Validation boolErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- Key
Alias string - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - Key
Store string - Required if
client_auth_enabled
is true. The resource ID of the keystore. - Protocols List<string>
- The TLS versioins to be used.
- Trust
Store string - The resource ID of the truststore.
- Ciphers []string
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- Client
Auth boolEnabled - Optional. Enables two-way TLS.
- Common
Name GoogleCloud Apigee V1Tls Info Common Name Response - The TLS Common Name of the certificate.
- Enabled bool
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- Ignore
Validation boolErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- Key
Alias string - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - Key
Store string - Required if
client_auth_enabled
is true. The resource ID of the keystore. - Protocols []string
- The TLS versioins to be used.
- Trust
Store string - The resource ID of the truststore.
- ciphers List<String>
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client
Auth BooleanEnabled - Optional. Enables two-way TLS.
- common
Name GoogleCloud Apigee V1Tls Info Common Name Response - The TLS Common Name of the certificate.
- enabled Boolean
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ignore
Validation BooleanErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key
Alias String - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key
Store String - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols List<String>
- The TLS versioins to be used.
- trust
Store String - The resource ID of the truststore.
- ciphers string[]
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client
Auth booleanEnabled - Optional. Enables two-way TLS.
- common
Name GoogleCloud Apigee V1Tls Info Common Name Response - The TLS Common Name of the certificate.
- enabled boolean
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ignore
Validation booleanErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key
Alias string - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key
Store string - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols string[]
- The TLS versioins to be used.
- trust
Store string - The resource ID of the truststore.
- ciphers Sequence[str]
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client_
auth_ boolenabled - Optional. Enables two-way TLS.
- common_
name GoogleCloud Apigee V1Tls Info Common Name Response - The TLS Common Name of the certificate.
- enabled bool
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ignore_
validation_ boolerrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key_
alias str - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key_
store str - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols Sequence[str]
- The TLS versioins to be used.
- trust_
store str - The resource ID of the truststore.
- ciphers List<String>
- The SSL/TLS cipher suites to be used. For programmable proxies, it must be one of the cipher suite names listed in: http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites. For configurable proxies, it must follow the configuration specified in: https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#Cipher-suite-configuration. This setting has no effect for configurable proxies when negotiating TLS 1.3.
- client
Auth BooleanEnabled - Optional. Enables two-way TLS.
- common
Name Property Map - The TLS Common Name of the certificate.
- enabled Boolean
- Enables TLS. If false, neither one-way nor two-way TLS will be enabled.
- ignore
Validation BooleanErrors - If true, Edge ignores TLS certificate errors. Valid when configuring TLS for target servers and target endpoints, and when configuring virtual hosts that use 2-way TLS. When used with a target endpoint/target server, if the backend system uses SNI and returns a cert with a subject Distinguished Name (DN) that does not match the hostname, there is no way to ignore the error and the connection fails.
- key
Alias String - Required if
client_auth_enabled
is true. The resource ID for the alias containing the private key and cert. - key
Store String - Required if
client_auth_enabled
is true. The resource ID of the keystore. - protocols List<String>
- The TLS versioins to be used.
- trust
Store String - The resource ID of the truststore.
TargetServerProtocol, TargetServerProtocolArgs
- Protocol
Unspecified - PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
- Http
- HTTPThe TargetServer uses HTTP.
- Http2
- HTTP2The TargetSever uses HTTP2.
- Grpc
Target - GRPC_TARGETThe TargetServer uses GRPC.
- Grpc
- GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
- External
Callout - EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
- Target
Server Protocol Protocol Unspecified - PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
- Target
Server Protocol Http - HTTPThe TargetServer uses HTTP.
- Target
Server Protocol Http2 - HTTP2The TargetSever uses HTTP2.
- Target
Server Protocol Grpc Target - GRPC_TARGETThe TargetServer uses GRPC.
- Target
Server Protocol Grpc - GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
- Target
Server Protocol External Callout - EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
- Protocol
Unspecified - PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
- Http
- HTTPThe TargetServer uses HTTP.
- Http2
- HTTP2The TargetSever uses HTTP2.
- Grpc
Target - GRPC_TARGETThe TargetServer uses GRPC.
- Grpc
- GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
- External
Callout - EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
- Protocol
Unspecified - PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
- Http
- HTTPThe TargetServer uses HTTP.
- Http2
- HTTP2The TargetSever uses HTTP2.
- Grpc
Target - GRPC_TARGETThe TargetServer uses GRPC.
- Grpc
- GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
- External
Callout - EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
- PROTOCOL_UNSPECIFIED
- PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
- HTTP
- HTTPThe TargetServer uses HTTP.
- HTTP2
- HTTP2The TargetSever uses HTTP2.
- GRPC_TARGET
- GRPC_TARGETThe TargetServer uses GRPC.
- GRPC
- GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
- EXTERNAL_CALLOUT
- EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
- "PROTOCOL_UNSPECIFIED"
- PROTOCOL_UNSPECIFIEDUNSPECIFIED defaults to HTTP for backwards compatibility.
- "HTTP"
- HTTPThe TargetServer uses HTTP.
- "HTTP2"
- HTTP2The TargetSever uses HTTP2.
- "GRPC_TARGET"
- GRPC_TARGETThe TargetServer uses GRPC.
- "GRPC"
- GRPCGRPC TargetServer to be used in ExternalCallout Policy. Prefer to use EXTERNAL_CALLOUT instead. TODO(b/266125112) deprecate once EXTERNAL _CALLOUT generally available.
- "EXTERNAL_CALLOUT"
- EXTERNAL_CALLOUTThe TargetServer is to be used in the ExternalCallout Policy
Package Details
- Repository
- Google Cloud Native pulumi/pulumi-google-native
- License
- Apache-2.0
Google Cloud Native is in preview. Google Cloud Classic is fully supported.