ALIYUN::ESA::ClientCertificate类型用于创建客户端证书。
语法
{
"Type": "ALIYUN::ESA::ClientCertificate",
"Properties": {
"SiteId": Integer,
"ValidityDays": Integer,
"CSR": String,
"PkeyType": String
}
}属性
属性名称 | 类型 | 必须 | 允许更新 | 描述 | 约束 |
SiteId | Integer | 是 | 否 | 站点 ID。 | 无 |
ValidityDays | Integer | 是 | 否 | 证书有效期。 | 单位:天。 |
CSR | String | 否 | 否 | 证书签名请求内容。 | 无 |
PkeyType | String | 否 | 否 | 私钥算法类型。 | 无 |
返回值
Fn::GetAtt
SAN:证书主题备用名。
SiteId:站点 ID。
SiteName:站点名称。
ClientCertificateName:证书名称。
CACertificateId:CA 证书 ID。
Issuer:证书颁发机构。
PubkeyAlgorithm:证书公钥算法。
CreateTime:创建时间。
SignatureAlgorithm:证书签名算法。
ClientCertId:证书 ID。
NotAfter:证书有效期截止时间。
Type:证书类型。
UpdateTime:更新时间。
NotBefore:证书有效期开始时间。
Certificate:证书内容。
CommonName:证书通用名称。
示例
ROSTemplateFormatVersion: '2015-09-01'
Parameters:
SiteId:
Type: Number
Description:
en: Site Id.
Required: true
ValidityDays:
Type: Number
Description:
en: Certificate validity period.
Required: true
Resources:
ExtensionResource:
Type: ALIYUN::ESA::ClientCertificate
Properties:
SiteId:
Ref: SiteId
ValidityDays:
Ref: ValidityDays
Outputs:
SAN:
Description: The Subject Alternative Name (SAN) of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- SAN
SiteId:
Description: Site Id.
Value:
Fn::GetAtt:
- ExtensionResource
- SiteId
SiteName:
Description: The website name.
Value:
Fn::GetAtt:
- ExtensionResource
- SiteName
ClientCertificateName:
Description: The certificate name.
Value:
Fn::GetAtt:
- ExtensionResource
- ClientCertificateName
CACertificateId:
Description: The ID of the CA certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- CACertificateId
Issuer:
Description: The certificate authority (CA) that issued the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- Issuer
PubkeyAlgorithm:
Description: The public-key algorithm of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- PubkeyAlgorithm
CreateTime:
Description: The time when the certificate was created.
Value:
Fn::GetAtt:
- ExtensionResource
- CreateTime
SignatureAlgorithm:
Description: The signature algorithm of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- SignatureAlgorithm
ClientCertId:
Description: ClientCertificate Id.
Value:
Fn::GetAtt:
- ExtensionResource
- ClientCertId
NotAfter:
Description: The time when the certificate expires.
Value:
Fn::GetAtt:
- ExtensionResource
- NotAfter
Type:
Description: The certificate type.
Value:
Fn::GetAtt:
- ExtensionResource
- Type
UpdateTime:
Description: The time when the certificate was updated.
Value:
Fn::GetAtt:
- ExtensionResource
- UpdateTime
NotBefore:
Description: The time when the certificate takes effect.
Value:
Fn::GetAtt:
- ExtensionResource
- NotBefore
Certificate:
Description: Certificate content.
Value:
Fn::GetAtt:
- ExtensionResource
- Certificate
CommonName:
Description: The Common Name of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- CommonName
{
"ROSTemplateFormatVersion": "2015-09-01",
"Parameters": {
"SiteId": {
"Type": "Number",
"Description": {
"en": "Site Id."
},
"Required": true
},
"ValidityDays": {
"Type": "Number",
"Description": {
"en": "Certificate validity period."
},
"Required": true
}
},
"Resources": {
"ExtensionResource": {
"Type": "ALIYUN::ESA::ClientCertificate",
"Properties": {
"SiteId": {
"Ref": "SiteId"
},
"ValidityDays": {
"Ref": "ValidityDays"
}
}
}
},
"Outputs": {
"SAN": {
"Description": "The Subject Alternative Name (SAN) of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SAN"
]
}
},
"SiteId": {
"Description": "Site Id.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SiteId"
]
}
},
"SiteName": {
"Description": "The website name.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SiteName"
]
}
},
"ClientCertificateName": {
"Description": "The certificate name.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"ClientCertificateName"
]
}
},
"CACertificateId": {
"Description": "The ID of the CA certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"CACertificateId"
]
}
},
"Issuer": {
"Description": "The certificate authority (CA) that issued the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"Issuer"
]
}
},
"PubkeyAlgorithm": {
"Description": "The public-key algorithm of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"PubkeyAlgorithm"
]
}
},
"CreateTime": {
"Description": "The time when the certificate was created.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"CreateTime"
]
}
},
"SignatureAlgorithm": {
"Description": "The signature algorithm of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SignatureAlgorithm"
]
}
},
"ClientCertId": {
"Description": "ClientCertificate Id.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"ClientCertId"
]
}
},
"NotAfter": {
"Description": "The time when the certificate expires.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"NotAfter"
]
}
},
"Type": {
"Description": "The certificate type.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"Type"
]
}
},
"UpdateTime": {
"Description": "The time when the certificate was updated.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"UpdateTime"
]
}
},
"NotBefore": {
"Description": "The time when the certificate takes effect.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"NotBefore"
]
}
},
"Certificate": {
"Description": "Certificate content.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"Certificate"
]
}
},
"CommonName": {
"Description": "The Common Name of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"CommonName"
]
}
}
}
}
该文章对您有帮助吗?