56 lines
2.8 KiB
Go
56 lines
2.8 KiB
Go
|
// Code generated by private/model/cli/gen-api/main.go. DO NOT EDIT.
|
||
|
|
||
|
// Package acmpca provides the client and types for making API
|
||
|
// requests to AWS Certificate Manager Private Certificate Authority.
|
||
|
//
|
||
|
// You can use the ACM PCA API to create a private certificate authority (CA).
|
||
|
// You must first call the CreateCertificateAuthority operation. If successful,
|
||
|
// the operation returns an Amazon Resource Name (ARN) for your private CA.
|
||
|
// Use this ARN as input to the GetCertificateAuthorityCsr operation to retrieve
|
||
|
// the certificate signing request (CSR) for your private CA certificate. Sign
|
||
|
// the CSR using the root or an intermediate CA in your on-premises PKI hierarchy,
|
||
|
// and call the ImportCertificateAuthorityCertificate to import your signed
|
||
|
// private CA certificate into ACM PCA.
|
||
|
//
|
||
|
// Use your private CA to issue and revoke certificates. These are private certificates
|
||
|
// that identify and secure client computers, servers, applications, services,
|
||
|
// devices, and users over SSLS/TLS connections within your organization. Call
|
||
|
// the IssueCertificate operation to issue a certificate. Call the RevokeCertificate
|
||
|
// operation to revoke a certificate.
|
||
|
//
|
||
|
// Certificates issued by your private CA can be trusted only within your organization,
|
||
|
// not publicly.
|
||
|
//
|
||
|
// Your private CA can optionally create a certificate revocation list (CRL)
|
||
|
// to track the certificates you revoke. To create a CRL, you must specify a
|
||
|
// RevocationConfiguration object when you call the CreateCertificateAuthority
|
||
|
// operation. ACM PCA writes the CRL to an S3 bucket that you specify. You must
|
||
|
// specify a bucket policy that grants ACM PCA write permission.
|
||
|
//
|
||
|
// You can also call the CreateCertificateAuthorityAuditReport to create an
|
||
|
// optional audit report that lists every time the CA private key is used. The
|
||
|
// private key is used for signing when the IssueCertificate or RevokeCertificate
|
||
|
// operation is called.
|
||
|
//
|
||
|
// See https://docs.aws.amazon.com/goto/WebAPI/acm-pca-2017-08-22 for more information on this service.
|
||
|
//
|
||
|
// See acmpca package documentation for more information.
|
||
|
// https://docs.aws.amazon.com/sdk-for-go/api/service/acmpca/
|
||
|
//
|
||
|
// Using the Client
|
||
|
//
|
||
|
// To contact AWS Certificate Manager Private Certificate Authority with the SDK use the New function to create
|
||
|
// a new service client. With that client you can make API requests to the service.
|
||
|
// These clients are safe to use concurrently.
|
||
|
//
|
||
|
// See the SDK's documentation for more information on how to use the SDK.
|
||
|
// https://docs.aws.amazon.com/sdk-for-go/api/
|
||
|
//
|
||
|
// See aws.Config documentation for more information on configuring SDK clients.
|
||
|
// https://docs.aws.amazon.com/sdk-for-go/api/aws/#Config
|
||
|
//
|
||
|
// See the AWS Certificate Manager Private Certificate Authority client ACMPCA for more
|
||
|
// information on creating client for this service.
|
||
|
// https://docs.aws.amazon.com/sdk-for-go/api/service/acmpca/#New
|
||
|
package acmpca
|