interface ClientPolicyTlsProperty

Language	Type name
.NET	Amazon.CDK.AWS.AppMesh.CfnVirtualNode.ClientPolicyTlsProperty
Java	software.amazon.awscdk.services.appmesh.CfnVirtualNode.ClientPolicyTlsProperty
Python	aws_cdk.aws_appmesh.CfnVirtualNode.ClientPolicyTlsProperty
TypeScript	@aws-cdk/aws-appmesh » CfnVirtualNode » ClientPolicyTlsProperty

A reference to an object that represents a Transport Layer Security (TLS) client policy.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import * as appmesh from '@aws-cdk/aws-appmesh';
const clientPolicyTlsProperty: appmesh.CfnVirtualNode.ClientPolicyTlsProperty = {
  validation: {
    trust: {
      acm: {
        certificateAuthorityArns: ['certificateAuthorityArns'],
      },
      file: {
        certificateChain: 'certificateChain',
      },
      sds: {
        secretName: 'secretName',
      },
    },

    // the properties below are optional
    subjectAlternativeNames: {
      match: {
        exact: ['exact'],
      },
    },
  },

  // the properties below are optional
  certificate: {
    file: {
      certificateChain: 'certificateChain',
      privateKey: 'privateKey',
    },
    sds: {
      secretName: 'secretName',
    },
  },
  enforce: false,
  ports: [123],
};

Properties

Name	Type	Description
validation	IResolvable | TlsValidationContextProperty	A reference to an object that represents a TLS validation context.
certificate?	IResolvable | ClientTlsCertificateProperty	A reference to an object that represents a client's TLS certificate.
enforce?	boolean | IResolvable	Whether the policy is enforced.
ports?	IResolvable | number[]	One or more ports that the policy is enforced for.

---

validation

Type: IResolvable | TlsValidationContextProperty

A reference to an object that represents a TLS validation context.

---

certificate?

Type: IResolvable | ClientTlsCertificateProperty (optional)

A reference to an object that represents a client's TLS certificate.

---

enforce?

Type: boolean | IResolvable (optional)

Whether the policy is enforced.

The default is True , if a value isn't specified.

---

ports?

Type: IResolvable | number[] (optional)

One or more ports that the policy is enforced for.