contrib/libs/yandex-cloud-api-protos/yandex/cloud/certificatemanager/v1/certificate.proto


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196

syntax = "proto3";

package yandex.cloud.certificatemanager.v1;

import "google/protobuf/timestamp.proto";

option go_package = "github.com/yandex-cloud/go-genproto/yandex/cloud/certificatemanager/v1;certificatemanager";
option java_package = "yandex.cloud.api.certificatemanager.v1";

// A certificate. For details about the concept, see [documentation](/docs/certificate-manager/concepts/).
message Certificate {

  enum Status {
    STATUS_UNSPECIFIED = 0;

    // The certificate domains validation are required. Used only for managed certificates.
    VALIDATING = 1;

    // The certificate issuance is failed. Used only for managed certificates.
    INVALID = 2;

    // The certificate is issued.
    ISSUED = 3;

    // The certificate is revoked.
    REVOKED = 4;

    // The certificate renewal is started. Used only for managed certificates.
    RENEWING = 5;

    // The certificate renewal is failed. Used only for managed certificates.
    RENEWAL_FAILED = 6;
  }

  // ID of the certificate. Generated at creation time.
  string id = 1;

  // ID of the folder that the certificate belongs to.
  string folder_id = 2;

  // Creation timestamp.
  google.protobuf.Timestamp created_at = 3;

  // Name of the certificate.
  // The name is unique within the folder.
  string name = 4;

  // Description of the certificate.
  string description = 5;

  // Certificate labels as `key:value` pairs.
  map<string, string> labels = 6;

  // Type of the certificate.
  CertificateType type = 7;

  // Fully qualified domain names of the certificate.
  repeated string domains = 8;

  // Status of the certificate.
  Status status = 9;

  // [Distinguished Name](https://tools.ietf.org/html/rfc1779) of the certificate authority that issued the certificate.
  string issuer = 10;

  // [Distinguished Name](https://tools.ietf.org/html/rfc1779) of the entity that is associated with the public key contained in the certificate.
  string subject = 11;

  // Serial number of the certificate.
  string serial = 12;

  // Time when the certificate is updated.
  google.protobuf.Timestamp updated_at = 13;

  // Time when the certificate is issued.
  google.protobuf.Timestamp issued_at = 14;

  // Time after which the certificate is not valid.
  google.protobuf.Timestamp not_after = 15;

  // Time before which the certificate is not valid.
  google.protobuf.Timestamp not_before = 16;

  // Domains validation challenges of the certificate. Used only for managed certificates.
  repeated Challenge challenges = 17;

  // Flag that protects deletion of the certificate
  bool deletion_protection = 18;

  // Mark imported certificates without uploaded chain or with chain which not lead to root certificate
  bool incomplete_chain = 19;
}

// Supported certificate types.
enum CertificateType {
  CERTIFICATE_TYPE_UNSPECIFIED = 0;

  // The certificate is imported by user.
  IMPORTED = 1;

  // The certificate is created by service.
  MANAGED = 2;
}

// Domain validation challenge.
message Challenge {
  enum Status {
    STATUS_UNSPECIFIED = 0;

    // The challenge is waiting to be completed.
    PENDING = 1;

    // The challenge is awaiting approval from Let's Encrypt.
    PROCESSING = 2;

    // The challenge is complete.
    VALID = 3;

    // The rights check for a specific domain failed or the one-week period allocated for the check expired.
    INVALID = 4;
  }

  // Domain of the challenge.
  string domain = 1;

  // Type of the challenge.
  ChallengeType type = 2;

  // Time when the challenge is created.
  google.protobuf.Timestamp created_at = 3;

  // Time when the challenge is updated.
  google.protobuf.Timestamp updated_at = 4;

  // Status of the challenge.
  Status status = 5;

  // Description of the challenge.
  string message = 6;

  // Error of the challenge.
  string error = 7;

  // Data of the challenge.
  oneof challenge {
    // DNS-record.
    DnsRecord dns_challenge = 8;

    // HTTP-file.
    HttpFile http_challenge = 9;
  }

  message DnsRecord {

    // Name of the DNS record.
    string name = 1;

    // Type of the DNS-record.
    string type = 2;

    // Value of the DNS-record.
    string value = 3;
  }

  message HttpFile {

    // Location of the HTTP file.
    string url = 1;

    // Content of the HTTP file.
    string content = 2;
  }
}

// Supported domain validation types.
enum ChallengeType {
  CHALLENGE_TYPE_UNSPECIFIED = 0;

  // Domain validation type that using DNS-records.
  DNS = 1;

  // Domain validation type that using HTTP-files.
  HTTP = 2;
}

// A certificate version
message Version {
  // ID of the version.
  string id = 1;

  // ID of the certificate that the version belongs to.
  string certificate_id = 2;

  // Time when the version was created.
  google.protobuf.Timestamp created_at = 3;
}