ManagedSslCertificate

An SslCertificate resource, used for HTTPS load balancing. This resource represents a certificate for which the certificate secrets are created and managed by Google.

For a resource where you provide the key, see the SSL Certificate resource.

To get more information about ManagedSslCertificate, see:

API documentation
How-to Guides
- Official Documentation

Warning: This resource should be used with extreme caution! Provisioning an SSL certificate is complex. Ensure that you understand the lifecycle of a certificate before attempting complex tasks like cert rotation automatically. This resource will “return” as soon as the certificate object is created, but post-creation the certificate object will go through a “provisioning” process. The provisioning process can complete only when the domain name for which the certificate is created points to a target pool which, itself, points at the certificate. Depending on your DNS provider, this may take some time, and migrating from self-managed certificates to Google-managed certificates may entail some downtime while the certificate provisions.

In conclusion: Be extremely cautious.

Create a ManagedSslCertificate Resource

new ManagedSslCertificate(name: string, args?: ManagedSslCertificateArgs, opts?: CustomResourceOptions);

def ManagedSslCertificate(resource_name, opts=None, certificate_id=None, description=None, managed=None, name=None, project=None, type=None, __props__=None);

func NewManagedSslCertificate(ctx *Context, name string, args *ManagedSslCertificateArgs, opts ...ResourceOption) (*ManagedSslCertificate, error)

public ManagedSslCertificate(string name, ManagedSslCertificateArgs? args = null, CustomResourceOptions? opts = null)

name string: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
opts ResourceOptions: A bag of options that control this resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ManagedSslCertificateArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

ManagedSslCertificate Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Programming Model docs.

Inputs

The ManagedSslCertificate resource accepts the following input properties:

CertificateId int: The unique identifier for the resource.
Description string: An optional description of this resource.
Managed ManagedSslCertificateManagedArgs: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
Name string: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
Project string: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
Type string: Enum field whose value is always MANAGED - used to signal to the API which type this is.

CertificateId int: The unique identifier for the resource.
Description string: An optional description of this resource.
Managed ManagedSslCertificateManaged: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
Name string: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
Project string: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
Type string: Enum field whose value is always MANAGED - used to signal to the API which type this is.

certificateId number: The unique identifier for the resource.
description string: An optional description of this resource.
managed ManagedSslCertificateManaged: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
name string: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
project string: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
type string: Enum field whose value is always MANAGED - used to signal to the API which type this is.

certificate_id float: The unique identifier for the resource.
description str: An optional description of this resource.
managed Dict[ManagedSslCertificateManaged]: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
name str: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
project str: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
type str: Enum field whose value is always MANAGED - used to signal to the API which type this is.

Outputs

All input properties are implicitly available as output properties. Additionally, the ManagedSslCertificate resource produces the following output properties:

CreationTimestamp string: Creation timestamp in RFC3339 text format.
ExpireTime string: Expire time of the certificate.
Id string: The provider-assigned unique ID for this managed resource.
SelfLink string: The URI of the created resource.
SubjectAlternativeNames List<string>: Domains associated with the certificate via Subject Alternative Name.

CreationTimestamp string: Creation timestamp in RFC3339 text format.
ExpireTime string: Expire time of the certificate.
Id string: The provider-assigned unique ID for this managed resource.
SelfLink string: The URI of the created resource.
SubjectAlternativeNames []string: Domains associated with the certificate via Subject Alternative Name.

creationTimestamp string: Creation timestamp in RFC3339 text format.
expireTime string: Expire time of the certificate.
id string: The provider-assigned unique ID for this managed resource.
selfLink string: The URI of the created resource.
subjectAlternativeNames string[]: Domains associated with the certificate via Subject Alternative Name.

creation_timestamp str: Creation timestamp in RFC3339 text format.
expire_time str: Expire time of the certificate.
id str: The provider-assigned unique ID for this managed resource.
self_link str: The URI of the created resource.
subject_alternative_names List[str]: Domains associated with the certificate via Subject Alternative Name.

Look up an Existing ManagedSslCertificate Resource

Get an existing ManagedSslCertificate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ManagedSslCertificateState, opts?: CustomResourceOptions): ManagedSslCertificate

static get(resource_name, id, opts=None, certificate_id=None, creation_timestamp=None, description=None, expire_time=None, managed=None, name=None, project=None, self_link=None, subject_alternative_names=None, type=None, __props__=None);

func GetManagedSslCertificate(ctx *Context, name string, id IDInput, state *ManagedSslCertificateState, opts ...ResourceOption) (*ManagedSslCertificate, error)

public static ManagedSslCertificate Get(string name, Input<string> id, ManagedSslCertificateState? state, CustomResourceOptions? opts = null)

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

CertificateId int: The unique identifier for the resource.
CreationTimestamp string: Creation timestamp in RFC3339 text format.
Description string: An optional description of this resource.
ExpireTime string: Expire time of the certificate.
Managed ManagedSslCertificateManagedArgs: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
Name string: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
Project string: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
SelfLink string: The URI of the created resource.
SubjectAlternativeNames List<string>: Domains associated with the certificate via Subject Alternative Name.
Type string: Enum field whose value is always MANAGED - used to signal to the API which type this is.

CertificateId int: The unique identifier for the resource.
CreationTimestamp string: Creation timestamp in RFC3339 text format.
Description string: An optional description of this resource.
ExpireTime string: Expire time of the certificate.
Managed ManagedSslCertificateManaged: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
Name string: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
Project string: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
SelfLink string: The URI of the created resource.
SubjectAlternativeNames []string: Domains associated with the certificate via Subject Alternative Name.
Type string: Enum field whose value is always MANAGED - used to signal to the API which type this is.

certificateId number: The unique identifier for the resource.
creationTimestamp string: Creation timestamp in RFC3339 text format.
description string: An optional description of this resource.
expireTime string: Expire time of the certificate.
managed ManagedSslCertificateManaged: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
name string: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
project string: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
selfLink string: The URI of the created resource.
subjectAlternativeNames string[]: Domains associated with the certificate via Subject Alternative Name.
type string: Enum field whose value is always MANAGED - used to signal to the API which type this is.

certificate_id float: The unique identifier for the resource.
creation_timestamp str: Creation timestamp in RFC3339 text format.
description str: An optional description of this resource.
expire_time str: Expire time of the certificate.
managed Dict[ManagedSslCertificateManaged]: Properties relevant to a managed certificate. These will be used if the certificate is managed (as indicated by a value of MANAGED in type). Structure is documented below.
name str: Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression a-z? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
project str: The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
self_link str: The URI of the created resource.
subject_alternative_names List[str]: Domains associated with the certificate via Subject Alternative Name.
type str: Enum field whose value is always MANAGED - used to signal to the API which type this is.

Supporting Types

ManagedSslCertificateManaged

See the input and output API doc for this type.

Domains List<string>: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

Domains []string: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

domains string[]: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

domains List[str]: Domains for which a managed SSL certificate will be valid. Currently, there can be up to 100 domains in this list.

Package Details

Repository: https://github.com/pulumi/pulumi-gcp
License: Apache-2.0
Notes: This Pulumi package is based on the google-beta Terraform Provider.

The Pulumi Platform

Get Started

Migrate to Pulumi

Solutions for All Teams and Engineers

Any Code

Any Cloud