Package com.hashicorp.cdktf.providers.google.network_security_tls_inspection_policy

Class NetworkSecurityTlsInspectionPolicy.Builder

    • Method Detail

      • connection

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicy.Builder connection​(com.hashicorp.cdktf.SSHProvisionerConnection connection)
        Parameters:
        connection - This parameter is required.
        Returns:
        this

      • connection

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicy.Builder connection​(com.hashicorp.cdktf.WinrmProvisionerConnection connection)
        Parameters:
        connection - This parameter is required.
        Returns:
        this

      • dependsOn

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicy.Builder dependsOn​(List<? extends com.hashicorp.cdktf.ITerraformDependable> dependsOn)
        Parameters:
        dependsOn - This parameter is required.
        Returns:
        this

      • forEach

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicy.Builder forEach​(com.hashicorp.cdktf.ITerraformIterator forEach)
        Parameters:
        forEach - This parameter is required.
        Returns:
        this

      • lifecycle

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicy.Builder lifecycle​(com.hashicorp.cdktf.TerraformResourceLifecycle lifecycle)
        Parameters:
        lifecycle - This parameter is required.
        Returns:
        this

      • provider

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicy.Builder provider​(com.hashicorp.cdktf.TerraformProvider provider)
        Parameters:
        provider - This parameter is required.
        Returns:
        this

      • caPool

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder caPool​(String caPool)
        A CA pool resource used to issue interception certificates.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#ca_pool NetworkSecurityTlsInspectionPolicy#ca_pool}

        Parameters:
        caPool - A CA pool resource used to issue interception certificates. This parameter is required.
        Returns:
        this

      • name

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder name​(String name)
        Short name of the TlsInspectionPolicy resource to be created.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#name NetworkSecurityTlsInspectionPolicy#name}

        Parameters:
        name - Short name of the TlsInspectionPolicy resource to be created. This parameter is required.
        Returns:
        this

      • customTlsFeatures

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder customTlsFeatures​(List<String> customTlsFeatures)
        List of custom TLS cipher suites selected.

        This field is valid only if the selected tls_feature_profile is CUSTOM. The compute.SslPoliciesService.ListAvailableFeatures method returns the set of features that can be specified in this list. Note that Secure Web Proxy does not yet honor this field. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#custom_tls_features NetworkSecurityTlsInspectionPolicy#custom_tls_features}

        Parameters:
        customTlsFeatures - List of custom TLS cipher suites selected. This parameter is required.
        Returns:
        this

      • description

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder description​(String description)
        Free-text description of the resource.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#description NetworkSecurityTlsInspectionPolicy#description}

        Parameters:
        description - Free-text description of the resource. This parameter is required.
        Returns:
        this

      • excludePublicCaSet

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder excludePublicCaSet​(Boolean excludePublicCaSet)
        If FALSE (the default), use our default set of public CAs in addition to any CAs specified in trustConfig.

        These public CAs are currently based on the Mozilla Root Program and are subject to change over time. If TRUE, do not accept our default set of public CAs. Only CAs specified in trustConfig will be accepted. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#exclude_public_ca_set NetworkSecurityTlsInspectionPolicy#exclude_public_ca_set}

        Parameters:
        excludePublicCaSet - If FALSE (the default), use our default set of public CAs in addition to any CAs specified in trustConfig. This parameter is required.
        Returns:
        this

      • excludePublicCaSet

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder excludePublicCaSet​(com.hashicorp.cdktf.IResolvable excludePublicCaSet)
        If FALSE (the default), use our default set of public CAs in addition to any CAs specified in trustConfig.

        These public CAs are currently based on the Mozilla Root Program and are subject to change over time. If TRUE, do not accept our default set of public CAs. Only CAs specified in trustConfig will be accepted. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#exclude_public_ca_set NetworkSecurityTlsInspectionPolicy#exclude_public_ca_set}

        Parameters:
        excludePublicCaSet - If FALSE (the default), use our default set of public CAs in addition to any CAs specified in trustConfig. This parameter is required.
        Returns:
        this

      • id

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder id​(String id)
        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#id NetworkSecurityTlsInspectionPolicy#id}.

        Please be aware that the id field is automatically added to all resources in Terraform providers using a Terraform provider SDK version below 2. If you experience problems setting this value it might not be settable. Please take a look at the provider documentation to ensure it should be settable.

        Parameters:
        id - Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#id NetworkSecurityTlsInspectionPolicy#id}. This parameter is required.
        Returns:
        this

      • location

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder location​(String location)
        The location of the tls inspection policy.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#location NetworkSecurityTlsInspectionPolicy#location}

        Parameters:
        location - The location of the tls inspection policy. This parameter is required.
        Returns:
        this

      • minTlsVersion

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder minTlsVersion​(String minTlsVersion)
        Minimum TLS version that the firewall should use when negotiating connections with both clients and servers.

        If this is not set, then the default value is to allow the broadest set of clients and servers (TLS 1.0 or higher). Setting this to more restrictive values may improve security, but may also prevent the firewall from connecting to some clients or servers. Note that Secure Web Proxy does not yet honor this field. Possible values: ["TLS_VERSION_UNSPECIFIED", "TLS_1_0", "TLS_1_1", "TLS_1_2", "TLS_1_3"] Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#min_tls_version NetworkSecurityTlsInspectionPolicy#min_tls_version}

        Parameters:
        minTlsVersion - Minimum TLS version that the firewall should use when negotiating connections with both clients and servers. This parameter is required.
        Returns:
        this

      • project

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder project​(String project)
        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#project NetworkSecurityTlsInspectionPolicy#project}.

        Parameters:
        project - Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#project NetworkSecurityTlsInspectionPolicy#project}. This parameter is required.
        Returns:
        this

      • timeouts

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder timeouts​(NetworkSecurityTlsInspectionPolicyTimeouts timeouts)
        timeouts block.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#timeouts NetworkSecurityTlsInspectionPolicy#timeouts}

        Parameters:
        timeouts - timeouts block. This parameter is required.
        Returns:
        this

      • tlsFeatureProfile

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder tlsFeatureProfile​(String tlsFeatureProfile)
        The selected Profile.

        If this is not set, then the default value is to allow the broadest set of clients and servers ("PROFILE_COMPATIBLE"). Setting this to more restrictive values may improve security, but may also prevent the TLS inspection proxy from connecting to some clients or servers. Note that Secure Web Proxy does not yet honor this field. Possible values: ["PROFILE_UNSPECIFIED", "PROFILE_COMPATIBLE", "PROFILE_MODERN", "PROFILE_RESTRICTED", "PROFILE_CUSTOM"] Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#tls_feature_profile NetworkSecurityTlsInspectionPolicy#tls_feature_profile}

        Parameters:
        tlsFeatureProfile - The selected Profile. This parameter is required.
        Returns:
        this

      • trustConfig

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicy.Builder trustConfig​(String trustConfig)
        A TrustConfig resource used when making a connection to the TLS server.

        This is a relative resource path following the form "projects/{project}/locations/{location}/trustConfigs/{trust_config}". This is necessary to intercept TLS connections to servers with certificates signed by a private CA or self-signed certificates. Trust config and the TLS inspection policy must be in the same region. Note that Secure Web Proxy does not yet honor this field. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#trust_config NetworkSecurityTlsInspectionPolicy#trust_config}

        Parameters:
        trustConfig - A TrustConfig resource used when making a connection to the TLS server. This parameter is required.
        Returns:
        this