Package com.hashicorp.cdktf.providers.google.network_security_tls_inspection_policy

Class NetworkSecurityTlsInspectionPolicyConfig.Builder

    • Constructor Detail

      • Builder

        public Builder()

    • Method Detail

      • customTlsFeatures

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicyConfig.Builder customTlsFeatures​(List<String> customTlsFeatures)
        Sets the value of NetworkSecurityTlsInspectionPolicyConfig.getCustomTlsFeatures()
        Parameters:
        customTlsFeatures - List of custom TLS cipher suites selected. This field is valid only if the selected tls_feature_profile is CUSTOM. The compute.SslPoliciesService.ListAvailableFeatures method returns the set of features that can be specified in this list. Note that Secure Web Proxy does not yet honor this field. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#custom_tls_features NetworkSecurityTlsInspectionPolicy#custom_tls_features}
        Returns:
        this

      • excludePublicCaSet

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicyConfig.Builder excludePublicCaSet​(Boolean excludePublicCaSet)
        Sets the value of NetworkSecurityTlsInspectionPolicyConfig.getExcludePublicCaSet()
        Parameters:
        excludePublicCaSet - If FALSE (the default), use our default set of public CAs in addition to any CAs specified in trustConfig. These public CAs are currently based on the Mozilla Root Program and are subject to change over time. If TRUE, do not accept our default set of public CAs. Only CAs specified in trustConfig will be accepted. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#exclude_public_ca_set NetworkSecurityTlsInspectionPolicy#exclude_public_ca_set}
        Returns:
        this

      • excludePublicCaSet

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicyConfig.Builder excludePublicCaSet​(com.hashicorp.cdktf.IResolvable excludePublicCaSet)
        Sets the value of NetworkSecurityTlsInspectionPolicyConfig.getExcludePublicCaSet()
        Parameters:
        excludePublicCaSet - If FALSE (the default), use our default set of public CAs in addition to any CAs specified in trustConfig. These public CAs are currently based on the Mozilla Root Program and are subject to change over time. If TRUE, do not accept our default set of public CAs. Only CAs specified in trustConfig will be accepted. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#exclude_public_ca_set NetworkSecurityTlsInspectionPolicy#exclude_public_ca_set}
        Returns:
        this

      • id

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicyConfig.Builder id​(String id)
        Sets the value of NetworkSecurityTlsInspectionPolicyConfig.getId()
        Parameters:
        id - Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#id NetworkSecurityTlsInspectionPolicy#id}. Please be aware that the id field is automatically added to all resources in Terraform providers using a Terraform provider SDK version below 2. If you experience problems setting this value it might not be settable. Please take a look at the provider documentation to ensure it should be settable.
        Returns:
        this

      • minTlsVersion

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicyConfig.Builder minTlsVersion​(String minTlsVersion)
        Sets the value of NetworkSecurityTlsInspectionPolicyConfig.getMinTlsVersion()
        Parameters:
        minTlsVersion - Minimum TLS version that the firewall should use when negotiating connections with both clients and servers. If this is not set, then the default value is to allow the broadest set of clients and servers (TLS 1.0 or higher). Setting this to more restrictive values may improve security, but may also prevent the firewall from connecting to some clients or servers. Note that Secure Web Proxy does not yet honor this field. Possible values: ["TLS_VERSION_UNSPECIFIED", "TLS_1_0", "TLS_1_1", "TLS_1_2", "TLS_1_3"] Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#min_tls_version NetworkSecurityTlsInspectionPolicy#min_tls_version}
        Returns:
        this

      • tlsFeatureProfile

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicyConfig.Builder tlsFeatureProfile​(String tlsFeatureProfile)
        Sets the value of NetworkSecurityTlsInspectionPolicyConfig.getTlsFeatureProfile()
        Parameters:
        tlsFeatureProfile - The selected Profile. If this is not set, then the default value is to allow the broadest set of clients and servers ("PROFILE_COMPATIBLE"). Setting this to more restrictive values may improve security, but may also prevent the TLS inspection proxy from connecting to some clients or servers. Note that Secure Web Proxy does not yet honor this field. Possible values: ["PROFILE_UNSPECIFIED", "PROFILE_COMPATIBLE", "PROFILE_MODERN", "PROFILE_RESTRICTED", "PROFILE_CUSTOM"] Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#tls_feature_profile NetworkSecurityTlsInspectionPolicy#tls_feature_profile}
        Returns:
        this

      • trustConfig

        @Stability(Stable)
public NetworkSecurityTlsInspectionPolicyConfig.Builder trustConfig​(String trustConfig)
        Sets the value of NetworkSecurityTlsInspectionPolicyConfig.getTrustConfig()
        Parameters:
        trustConfig - A TrustConfig resource used when making a connection to the TLS server. This is a relative resource path following the form "projects/{project}/locations/{location}/trustConfigs/{trust_config}". This is necessary to intercept TLS connections to servers with certificates signed by a private CA or self-signed certificates. Trust config and the TLS inspection policy must be in the same region. Note that Secure Web Proxy does not yet honor this field. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/network_security_tls_inspection_policy#trust_config NetworkSecurityTlsInspectionPolicy#trust_config}
        Returns:
        this

      • connection

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicyConfig.Builder connection​(com.hashicorp.cdktf.SSHProvisionerConnection connection)
        Sets the value of TerraformMetaArguments.getConnection()
        Parameters:
        connection - the value to be set.
        Returns:
        this

      • connection

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicyConfig.Builder connection​(com.hashicorp.cdktf.WinrmProvisionerConnection connection)
        Sets the value of TerraformMetaArguments.getConnection()
        Parameters:
        connection - the value to be set.
        Returns:
        this

      • count

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicyConfig.Builder count​(com.hashicorp.cdktf.TerraformCount count)
        Sets the value of TerraformMetaArguments.getCount()
        Parameters:
        count - the value to be set.
        Returns:
        this

      • dependsOn

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicyConfig.Builder dependsOn​(List<? extends com.hashicorp.cdktf.ITerraformDependable> dependsOn)
        Sets the value of TerraformMetaArguments.getDependsOn()
        Parameters:
        dependsOn - the value to be set.
        Returns:
        this

      • forEach

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicyConfig.Builder forEach​(com.hashicorp.cdktf.ITerraformIterator forEach)
        Sets the value of TerraformMetaArguments.getForEach()
        Parameters:
        forEach - the value to be set.
        Returns:
        this

      • lifecycle

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicyConfig.Builder lifecycle​(com.hashicorp.cdktf.TerraformResourceLifecycle lifecycle)
        Sets the value of TerraformMetaArguments.getLifecycle()
        Parameters:
        lifecycle - the value to be set.
        Returns:
        this

      • provider

        @Stability(Experimental)
public NetworkSecurityTlsInspectionPolicyConfig.Builder provider​(com.hashicorp.cdktf.TerraformProvider provider)
        Sets the value of TerraformMetaArguments.getProvider()
        Parameters:
        provider - the value to be set.
        Returns:
        this