Class: Google::Cloud::Datastream::V1::PostgresqlSslConfig

Inherits:

Object

• Object
• Google::Cloud::Datastream::V1::PostgresqlSslConfig

Extended by:

Protobuf::MessageExts::ClassMethods

Includes:

Protobuf::MessageExts

Defined in:

proto_docs/google/cloud/datastream/v1/datastream_resources.rb

Overview

PostgreSQL SSL configuration information.

Defined Under Namespace

Classes: ServerAndClientVerification, ServerVerification

Instance Attribute Summary

• #server_and_client_verification ⇒ ::Google::Cloud::Datastream::V1::PostgresqlSslConfig::ServerAndClientVerification

  If this field is set, the communication will be encrypted with TLS encryption and both the server identity and the client identity will be authenticated.

• #server_verification ⇒ ::Google::Cloud::Datastream::V1::PostgresqlSslConfig::ServerVerification

   If this field is set, the communication will be encrypted with TLS encryption and the server identity will be authenticated.

Instance Attribute Details

#server_and_client_verification ⇒ ::Google::Cloud::Datastream::V1::PostgresqlSslConfig::ServerAndClientVerification

Returns If this field is set, the communication will be encrypted with TLS encryption and both the server identity and the client identity will be authenticated.

Note: The following fields are mutually exclusive: server_and_client_verification, server_verification. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns:

• (::Google::Cloud::Datastream::V1::PostgresqlSslConfig::ServerAndClientVerification) —

  If this field is set, the communication will be encrypted with TLS encryption and both the server identity and the client identity will be authenticated.

  Note: The following fields are mutually exclusive: server_and_client_verification, server_verification. If a field in that set is populated, all other fields in the set will automatically be cleared.

# File 'proto_docs/google/cloud/datastream/v1/datastream_resources.rb', line 626

class PostgresqlSslConfig
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Message represents the option where Datastream will enforce the encryption
  # and authenticate the server identity. ca_certificate must be set if user
  # selects this option.
  # @!attribute [rw] ca_certificate
  #   @return [::String]
  #     Required. Input only. PEM-encoded server root CA certificate.
  # @!attribute [rw] server_certificate_hostname
  #   @return [::String]
  #     Optional. The hostname mentioned in the Subject or SAN extension of the
  #     server certificate. If this field is not provided, the hostname in the
  #     server certificate is not validated.
  class ServerVerification
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # Message represents the option where Datastream will enforce the encryption
  # and authenticate the server identity as well as the client identity.
  # ca_certificate, client_certificate and client_key must be set if user
  # selects this option.
  # @!attribute [rw] client_certificate
  #   @return [::String]
  #     Required. Input only. PEM-encoded certificate used by the source database
  #     to authenticate the client identity (i.e., the Datastream's identity).
  #     This certificate is signed by either a root certificate trusted by the
  #     server or one or more intermediate certificates (which is stored with the
  #     leaf certificate) to link the this certificate to the trusted root
  #     certificate.
  # @!attribute [rw] client_key
  #   @return [::String]
  #     Optional. Input only. PEM-encoded private key associated with the client
  #     certificate. This value will be used during the SSL/TLS handshake,
  #     allowing the PostgreSQL server to authenticate the client's identity,
  #     i.e. identity of the Datastream.
  # @!attribute [rw] ca_certificate
  #   @return [::String]
  #     Required. Input only. PEM-encoded server root CA certificate.
  # @!attribute [rw] server_certificate_hostname
  #   @return [::String]
  #     Optional. The hostname mentioned in the Subject or SAN extension of the
  #     server certificate. If this field is not provided, the hostname in the
  #     server certificate is not validated.
  class ServerAndClientVerification
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end

#server_verification ⇒ ::Google::Cloud::Datastream::V1::PostgresqlSslConfig::ServerVerification

Returns  If this field is set, the communication will be encrypted with TLS encryption and the server identity will be authenticated.

Note: The following fields are mutually exclusive: server_verification, server_and_client_verification. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns:

• (::Google::Cloud::Datastream::V1::PostgresqlSslConfig::ServerVerification) —

   If this field is set, the communication will be encrypted with TLS encryption and the server identity will be authenticated.

  Note: The following fields are mutually exclusive: server_verification, server_and_client_verification. If a field in that set is populated, all other fields in the set will automatically be cleared.

# File 'proto_docs/google/cloud/datastream/v1/datastream_resources.rb', line 626

class PostgresqlSslConfig
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Message represents the option where Datastream will enforce the encryption
  # and authenticate the server identity. ca_certificate must be set if user
  # selects this option.
  # @!attribute [rw] ca_certificate
  #   @return [::String]
  #     Required. Input only. PEM-encoded server root CA certificate.
  # @!attribute [rw] server_certificate_hostname
  #   @return [::String]
  #     Optional. The hostname mentioned in the Subject or SAN extension of the
  #     server certificate. If this field is not provided, the hostname in the
  #     server certificate is not validated.
  class ServerVerification
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # Message represents the option where Datastream will enforce the encryption
  # and authenticate the server identity as well as the client identity.
  # ca_certificate, client_certificate and client_key must be set if user
  # selects this option.
  # @!attribute [rw] client_certificate
  #   @return [::String]
  #     Required. Input only. PEM-encoded certificate used by the source database
  #     to authenticate the client identity (i.e., the Datastream's identity).
  #     This certificate is signed by either a root certificate trusted by the
  #     server or one or more intermediate certificates (which is stored with the
  #     leaf certificate) to link the this certificate to the trusted root
  #     certificate.
  # @!attribute [rw] client_key
  #   @return [::String]
  #     Optional. Input only. PEM-encoded private key associated with the client
  #     certificate. This value will be used during the SSL/TLS handshake,
  #     allowing the PostgreSQL server to authenticate the client's identity,
  #     i.e. identity of the Datastream.
  # @!attribute [rw] ca_certificate
  #   @return [::String]
  #     Required. Input only. PEM-encoded server root CA certificate.
  # @!attribute [rw] server_certificate_hostname
  #   @return [::String]
  #     Optional. The hostname mentioned in the Subject or SAN extension of the
  #     server certificate. If this field is not provided, the hostname in the
  #     server certificate is not validated.
  class ServerAndClientVerification
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end