MutualTransportLayerSecurity¶

class oci.service_mesh.models.MutualTransportLayerSecurity(**kwargs)¶

Bases: object

Mutual TLS settings used when communicating with other virtual services or ingress gateways within the mesh.

Attributes

`MODE_DISABLED`	A constant which can be used with the mode property of a MutualTransportLayerSecurity.
`MODE_PERMISSIVE`	A constant which can be used with the mode property of a MutualTransportLayerSecurity.
`MODE_STRICT`	A constant which can be used with the mode property of a MutualTransportLayerSecurity.
`certificate_id`	[Required] Gets the certificate_id of this MutualTransportLayerSecurity.
`maximum_validity`	Gets the maximum_validity of this MutualTransportLayerSecurity.
`mode`	[Required] Gets the mode of this MutualTransportLayerSecurity.

Methods

__init__(**kwargs) Initializes a new MutualTransportLayerSecurity object with values from keyword arguments.

MODE_DISABLED = 'DISABLED'¶: A constant which can be used with the mode property of a MutualTransportLayerSecurity. This constant has a value of “DISABLED”

MODE_PERMISSIVE = 'PERMISSIVE'¶: A constant which can be used with the mode property of a MutualTransportLayerSecurity. This constant has a value of “PERMISSIVE”

MODE_STRICT = 'STRICT'¶: A constant which can be used with the mode property of a MutualTransportLayerSecurity. This constant has a value of “STRICT”

__init__(**kwargs)¶

Initializes a new MutualTransportLayerSecurity object with values from keyword arguments. The following keyword arguments are supported (corresponding to the getters/setters of this class):

Parameters:

certificate_id (str) – The value to assign to the certificate_id property of this MutualTransportLayerSecurity.
maximum_validity (int) – The value to assign to the maximum_validity property of this MutualTransportLayerSecurity.
mode (str) – The value to assign to the mode property of this MutualTransportLayerSecurity. Allowed values for this property are: “DISABLED”, “PERMISSIVE”, “STRICT”, ‘UNKNOWN_ENUM_VALUE’. Any unrecognized values returned by a service will be mapped to ‘UNKNOWN_ENUM_VALUE’.

certificate_id¶

[Required] Gets the certificate_id of this MutualTransportLayerSecurity. The OCID of the certificate resource that will be used for mTLS authentication with other virtual services in the mesh.

Returns:	The certificate_id of this MutualTransportLayerSecurity.
Return type:	str

maximum_validity¶

Gets the maximum_validity of this MutualTransportLayerSecurity. The number of days the mTLS certificate is valid. This value should be less than the Maximum Validity Duration for Certificates (Days) setting on the Certificate Authority associated with this Mesh. The certificate will be automatically renewed after 2/3 of the validity period, so a certificate with a maximum validity of 45 days will be renewed every 30 days.

Returns:	The maximum_validity of this MutualTransportLayerSecurity.
Return type:	int

mode¶

[Required] Gets the mode of this MutualTransportLayerSecurity. DISABLED: Connection is not tunneled. PERMISSIVE: Connection can be either plaintext or an mTLS tunnel. STRICT: Connection is an mTLS tunnel. Clients without a valid certificate will be rejected.

Allowed values for this property are: “DISABLED”, “PERMISSIVE”, “STRICT”, ‘UNKNOWN_ENUM_VALUE’. Any unrecognized values returned by a service will be mapped to ‘UNKNOWN_ENUM_VALUE’.

Returns:	The mode of this MutualTransportLayerSecurity.
Return type:	str