CertificateAuthorityIssuanceRule¶

class oci.certificates_management.models.CertificateAuthorityIssuanceRule(**kwargs)¶

Bases: oci.certificates_management.models.certificate_authority_rule.CertificateAuthorityRule

Issuance rules apply constraints to a certificate authority (CA) to enforce certain conditions regarding the resources it issues. For example, a path length constraint restricts how many subordinate CAs a CA can have. Or, a name constraint on certificate subject names specifies allowable namespaces for the hierarchical name forms in certificates that any CA in the certificate chain issues. You can’t update the issuance rules configured for a CA after you create it.

Attributes

`RULE_TYPE_CERTIFICATE_AUTHORITY_ISSUANCE_EXPIRY_RULE`	str(object=’’) -> str
`RULE_TYPE_CERTIFICATE_AUTHORITY_ISSUANCE_RULE`	str(object=’’) -> str
`name_constraint`	Gets the name_constraint of this CertificateAuthorityIssuanceRule.
`path_length_constraint`	Gets the path_length_constraint of this CertificateAuthorityIssuanceRule.
`rule_type`	[Required] Gets the rule_type of this CertificateAuthorityRule.

Methods

`__init__`(**kwargs)	Initializes a new CertificateAuthorityIssuanceRule object with values from keyword arguments.
`get_subtype`(object_dictionary)	Given the hash representation of a subtype of this class, use the info in the hash to return the class of the subtype.

RULE_TYPE_CERTIFICATE_AUTHORITY_ISSUANCE_EXPIRY_RULE = 'CERTIFICATE_AUTHORITY_ISSUANCE_EXPIRY_RULE'¶

RULE_TYPE_CERTIFICATE_AUTHORITY_ISSUANCE_RULE = 'CERTIFICATE_AUTHORITY_ISSUANCE_RULE'¶

__init__(**kwargs)¶

Initializes a new CertificateAuthorityIssuanceRule object with values from keyword arguments. The default value of the rule_type attribute of this class is CERTIFICATE_AUTHORITY_ISSUANCE_RULE and it should not be changed. The following keyword arguments are supported (corresponding to the getters/setters of this class):

Parameters:

rule_type (str) – The value to assign to the rule_type property of this CertificateAuthorityIssuanceRule. Allowed values for this property are: “CERTIFICATE_AUTHORITY_ISSUANCE_EXPIRY_RULE”, “CERTIFICATE_AUTHORITY_ISSUANCE_RULE”
path_length_constraint (int) – The value to assign to the path_length_constraint property of this CertificateAuthorityIssuanceRule.
name_constraint (oci.certificates_management.models.NameConstraint) – The value to assign to the name_constraint property of this CertificateAuthorityIssuanceRule.

static get_subtype(object_dictionary)¶: Given the hash representation of a subtype of this class, use the info in the hash to return the class of the subtype.

name_constraint¶

Gets the name_constraint of this CertificateAuthorityIssuanceRule.

Returns:	The name_constraint of this CertificateAuthorityIssuanceRule.
Return type:	oci.certificates_management.models.NameConstraint

path_length_constraint¶

Gets the path_length_constraint of this CertificateAuthorityIssuanceRule. The number of levels of descendants that this certificate authority (CA) can issue. When set to zero, the CA can issue only leaf certificates. There is no limit if the constraint isn’t specified.

Returns:	The path_length_constraint of this CertificateAuthorityIssuanceRule.
Return type:	int

rule_type¶

[Required] Gets the rule_type of this CertificateAuthorityRule. The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

Allowed values for this property are: “CERTIFICATE_AUTHORITY_ISSUANCE_EXPIRY_RULE”, “CERTIFICATE_AUTHORITY_ISSUANCE_RULE”, ‘UNKNOWN_ENUM_VALUE’. Any unrecognized values returned by a service will be mapped to ‘UNKNOWN_ENUM_VALUE’.

Returns:	The rule_type of this CertificateAuthorityRule.
Return type:	str