Package software.amazon.awssdk.services.networkfirewall.model

Class ServerCertificateConfiguration

    • Method Detail

      • hasServerCertificates

        public final boolean hasServerCertificates()
        For responses, this returns true if the service returned a value for the ServerCertificates property. This DOES NOT check that the value is non-empty (for which, you should check the isEmpty() method on the property). This is useful because the SDK will never return a null collection or map, but you may need to differentiate between the service returning nothing (or null) and the service returning an empty collection or map. For requests, this returns true if a value for the property was specified in the request builder, and false if a value was not specified.

      • serverCertificates

        public final List<ServerCertificate> serverCertificates()

        The list of server certificates to use for inbound SSL/TLS inspection.

        Attempts to modify the collection returned by this method will result in an UnsupportedOperationException.

        This method will never return null. If you would like to know whether the service returned this field (so that you can differentiate between null and empty), you can use the hasServerCertificates() method.

        Returns:
        The list of server certificates to use for inbound SSL/TLS inspection.

      • hasScopes

        public final boolean hasScopes()
        For responses, this returns true if the service returned a value for the Scopes property. This DOES NOT check that the value is non-empty (for which, you should check the isEmpty() method on the property). This is useful because the SDK will never return a null collection or map, but you may need to differentiate between the service returning nothing (or null) and the service returning an empty collection or map. For requests, this returns true if a value for the property was specified in the request builder, and false if a value was not specified.

      • scopes

        public final List<ServerCertificateScope> scopes()

        A list of scopes.

        Attempts to modify the collection returned by this method will result in an UnsupportedOperationException.

        This method will never return null. If you would like to know whether the service returned this field (so that you can differentiate between null and empty), you can use the hasScopes() method.

        Returns:
        A list of scopes.

      • certificateAuthorityArn

        public final String certificateAuthorityArn()

        The Amazon Resource Name (ARN) of the imported certificate authority (CA) certificate within Certificate Manager (ACM) to use for outbound SSL/TLS inspection.

        The following limitations apply:

        • You can use CA certificates that you imported into ACM, but you can't generate CA certificates with ACM.

        • You can't use certificates issued by Private Certificate Authority.

        For more information about configuring certificates for outbound inspection, see Using SSL/TLS certificates with certificates with TLS inspection configurations in the Network Firewall Developer Guide.

        For information about working with certificates in ACM, see Importing certificates in the Certificate Manager User Guide.

        Returns:
        The Amazon Resource Name (ARN) of the imported certificate authority (CA) certificate within Certificate Manager (ACM) to use for outbound SSL/TLS inspection.

        The following limitations apply:

        • You can use CA certificates that you imported into ACM, but you can't generate CA certificates with ACM.

        • You can't use certificates issued by Private Certificate Authority.

        For more information about configuring certificates for outbound inspection, see Using SSL/TLS certificates with certificates with TLS inspection configurations in the Network Firewall Developer Guide.

        For information about working with certificates in ACM, see Importing certificates in the Certificate Manager User Guide.

      • checkCertificateRevocationStatus

        public final CheckCertificateRevocationStatusActions checkCertificateRevocationStatus()

        When enabled, Network Firewall checks if the server certificate presented by the server in the SSL/TLS connection has a revoked or unkown status. If the certificate has an unknown or revoked status, you must specify the actions that Network Firewall takes on outbound traffic. To check the certificate revocation status, you must also specify a CertificateAuthorityArn in ServerCertificateConfiguration.

        Returns:
        When enabled, Network Firewall checks if the server certificate presented by the server in the SSL/TLS connection has a revoked or unkown status. If the certificate has an unknown or revoked status, you must specify the actions that Network Firewall takes on outbound traffic. To check the certificate revocation status, you must also specify a CertificateAuthorityArn in ServerCertificateConfiguration.

      • hashCode

        public final int hashCode()
        Overrides:
        hashCode in class Object

      • equals

        public final boolean equals​(Object obj)
        Overrides:
        equals in class Object

      • toString

        public final String toString()
        Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.
        Overrides:
        toString in class Object

      • getValueForField

        public final <T> Optional<T> getValueForField​(String fieldName,
                                              Class<T> clazz)