ALIYUN::ESA::OriginClientCertificate类型用于上传域名粒度回源客户端证书。
语法
{
"Type": "ALIYUN::ESA::OriginClientCertificate",
"Properties": {
"Certificate": String,
"PrivateKey": String,
"SiteId": Integer,
"Hostnames": List,
"OriginClientCertificateName": String,
"ValidityDays": Integer
}
}属性
|
属性名称 |
类型 |
必须 |
允许更新 |
描述 |
约束 |
|
Certificate |
String |
是 |
否 |
证书内容。 |
无 |
|
PrivateKey |
String |
是 |
否 |
证书的私钥。 |
无 |
|
SiteId |
Integer |
是 |
否 |
站点ID. |
无 |
|
Hostnames |
List |
否 |
是 |
要关联的域名。 |
无 |
|
OriginClientCertificateName |
String |
否 |
否 |
证书名称。 |
无 |
|
ValidityDays |
Integer |
否 |
否 |
证书的有效期。 |
单位:天。 |
返回值
Fn::GetAtt
-
SAN:证书的主题备用名称(SAN)。
-
SiteId:站点ID
-
FingerprintSha256:证书的SHA-256指纹。
-
SiteName:站点名称。
-
Issuer:签发证书的证书颁发机构(CA)。
-
PubkeyAlgorithm:证书的公钥算法。
-
CreateTime:证书创建时间。
-
SignatureAlgorithm:证书的签名算法。
-
NotAfter:证书到期时间。
-
OriginClientCertificateName:证书名称。
-
Type:证书类型。
-
SerialNumber:证书的序列号。
-
UpdateTime:证书更新时间。
-
OriginClientCertificateId:证书ID。
-
NotBefore:证书生效时间。
-
Hostnames:要关联的域名。
-
Certificate:The certificate content。
-
CommonName:证书的通用名称。
示例
ROSTemplateFormatVersion: '2015-09-01'
Parameters:
SiteId:
Type: Number
Description:
en: The website ID.
Required: true
PrivateKey:
Type: String
Description:
en: The private key of the certificate.
Required: true
Certificate:
Type: String
Description:
en: The certificate content.
Required: true
Resources:
ExtensionResource:
Type: ALIYUN::ESA::OriginClientCertificate
Properties:
SiteId:
Ref: SiteId
PrivateKey:
Ref: PrivateKey
Certificate:
Ref: Certificate
Outputs:
SAN:
Description: The Subject Alternative Name (SAN) of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- SAN
SiteId:
Description: The website ID
Value:
Fn::GetAtt:
- ExtensionResource
- SiteId
FingerprintSha256:
Description: The SHA-256 fingerprint of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- FingerprintSha256
SiteName:
Description: The website name.
Value:
Fn::GetAtt:
- ExtensionResource
- SiteName
Issuer:
Description: The certificate authority (CA) that issued the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- Issuer
PubkeyAlgorithm:
Description: The public-key algorithm of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- PubkeyAlgorithm
CreateTime:
Description: The time when the certificate was created.
Value:
Fn::GetAtt:
- ExtensionResource
- CreateTime
SignatureAlgorithm:
Description: The signature algorithm of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- SignatureAlgorithm
NotAfter:
Description: The time when the certificate expires.
Value:
Fn::GetAtt:
- ExtensionResource
- NotAfter
OriginClientCertificateName:
Description: The certificate name.
Value:
Fn::GetAtt:
- ExtensionResource
- OriginClientCertificateName
Type:
Description: The certificate type.
Value:
Fn::GetAtt:
- ExtensionResource
- Type
SerialNumber:
Description: The serial number of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- SerialNumber
UpdateTime:
Description: The time when the certificate was updated.
Value:
Fn::GetAtt:
- ExtensionResource
- UpdateTime
OriginClientCertificateId:
Description: The certificate ID.
Value:
Fn::GetAtt:
- ExtensionResource
- OriginClientCertificateId
NotBefore:
Description: The time when the certificate takes effect.
Value:
Fn::GetAtt:
- ExtensionResource
- NotBefore
Hostnames:
Description: The domain names to associate.
Value:
Fn::GetAtt:
- ExtensionResource
- Hostnames
Certificate:
Description: The certificate content.
Value:
Fn::GetAtt:
- ExtensionResource
- Certificate
CommonName:
Description: The Common Name of the certificate.
Value:
Fn::GetAtt:
- ExtensionResource
- CommonName
{
"ROSTemplateFormatVersion": "2015-09-01",
"Parameters": {
"SiteId": {
"Type": "Number",
"Description": {
"en": "The website ID."
},
"Required": true
},
"PrivateKey": {
"Type": "String",
"Description": {
"en": "The private key of the certificate."
},
"Required": true
},
"Certificate": {
"Type": "String",
"Description": {
"en": "The certificate content."
},
"Required": true
}
},
"Resources": {
"ExtensionResource": {
"Type": "ALIYUN::ESA::OriginClientCertificate",
"Properties": {
"SiteId": {
"Ref": "SiteId"
},
"PrivateKey": {
"Ref": "PrivateKey"
},
"Certificate": {
"Ref": "Certificate"
}
}
}
},
"Outputs": {
"SAN": {
"Description": "The Subject Alternative Name (SAN) of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SAN"
]
}
},
"SiteId": {
"Description": "The website ID",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SiteId"
]
}
},
"FingerprintSha256": {
"Description": "The SHA-256 fingerprint of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"FingerprintSha256"
]
}
},
"SiteName": {
"Description": "The website name.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SiteName"
]
}
},
"Issuer": {
"Description": "The certificate authority (CA) that issued the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"Issuer"
]
}
},
"PubkeyAlgorithm": {
"Description": "The public-key algorithm of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"PubkeyAlgorithm"
]
}
},
"CreateTime": {
"Description": "The time when the certificate was created.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"CreateTime"
]
}
},
"SignatureAlgorithm": {
"Description": "The signature algorithm of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SignatureAlgorithm"
]
}
},
"NotAfter": {
"Description": "The time when the certificate expires.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"NotAfter"
]
}
},
"OriginClientCertificateName": {
"Description": "The certificate name.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"OriginClientCertificateName"
]
}
},
"Type": {
"Description": "The certificate type.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"Type"
]
}
},
"SerialNumber": {
"Description": "The serial number of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"SerialNumber"
]
}
},
"UpdateTime": {
"Description": "The time when the certificate was updated.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"UpdateTime"
]
}
},
"OriginClientCertificateId": {
"Description": "The certificate ID.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"OriginClientCertificateId"
]
}
},
"NotBefore": {
"Description": "The time when the certificate takes effect.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"NotBefore"
]
}
},
"Hostnames": {
"Description": "The domain names to associate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"Hostnames"
]
}
},
"Certificate": {
"Description": "The certificate content.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"Certificate"
]
}
},
"CommonName": {
"Description": "The Common Name of the certificate.",
"Value": {
"Fn::GetAtt": [
"ExtensionResource",
"CommonName"
]
}
}
}
}
该文章对您有帮助吗?