Class: Aws::ACM::Client
- Inherits:
-
Seahorse::Client::Base
- Object
- Seahorse::Client::Base
- Aws::ACM::Client
- Includes:
- ClientStubs
- Defined in:
- gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb
Overview
An API client for ACM. To construct a client, you need to configure a :region and :credentials.
client = Aws::ACM::Client.new(
region: region_name,
credentials: credentials,
# ...
)
For details on configuring region and credentials see the developer guide.
See #initialize for a full list of supported configuration options.
Instance Attribute Summary
Attributes inherited from Seahorse::Client::Base
API Operations collapse
-
#add_tags_to_certificate(params = {}) ⇒ Struct
Adds one or more tags to an ACM certificate.
-
#create_acme_domain_validation(params = {}) ⇒ Types::CreateAcmeDomainValidationResponse
Creates a domain validation for an ACME endpoint.
-
#create_acme_endpoint(params = {}) ⇒ Types::CreateAcmeEndpointResponse
Creates an ACME endpoint, which is a managed ACME server with a unique endpoint URL.
-
#create_acme_external_account_binding(params = {}) ⇒ Types::CreateAcmeExternalAccountBindingResponse
Creates an external account binding (EAB) for an ACME endpoint.
-
#delete_acme_domain_validation(params = {}) ⇒ Struct
Deletes a domain validation.
-
#delete_acme_endpoint(params = {}) ⇒ Struct
Deletes an ACME endpoint.
-
#delete_acme_external_account_binding(params = {}) ⇒ Struct
Deletes an external account binding.
-
#delete_certificate(params = {}) ⇒ Struct
Deletes a certificate and its associated private key.
-
#describe_acme_account(params = {}) ⇒ Types::DescribeAcmeAccountResponse
Returns detailed metadata about the specified ACME account, including its status, public key thumbprint, and associated external account binding.
-
#describe_acme_domain_validation(params = {}) ⇒ Types::DescribeAcmeDomainValidationResponse
Returns detailed metadata about the specified domain validation, including its status, domain scope, and DNS resource records required for validation.
-
#describe_acme_endpoint(params = {}) ⇒ Types::DescribeAcmeEndpointResponse
Returns detailed metadata about the specified ACME endpoint, including its status, URL, authorization behavior, and certificate authority configuration.
-
#describe_acme_external_account_binding(params = {}) ⇒ Types::DescribeAcmeExternalAccountBindingResponse
Returns detailed metadata about the specified external account binding, including the associated IAM role, expiration time, and usage history.
-
#describe_certificate(params = {}) ⇒ Types::DescribeCertificateResponse
Returns detailed metadata about the specified ACM certificate.
-
#export_certificate(params = {}) ⇒ Types::ExportCertificateResponse
Exports a private certificate issued by a private certificate authority (CA) or a public certificate for use anywhere.
-
#get_account_configuration(params = {}) ⇒ Types::GetAccountConfigurationResponse
Returns the account configuration options associated with an Amazon Web Services account.
-
#get_acme_external_account_binding_credentials(params = {}) ⇒ Types::GetAcmeExternalAccountBindingCredentialsResponse
Retrieves the key ID and MAC key credentials for an external account binding.
-
#get_certificate(params = {}) ⇒ Types::GetCertificateResponse
Retrieves a certificate and its certificate chain.
-
#import_certificate(params = {}) ⇒ Types::ImportCertificateResponse
Imports a certificate into Certificate Manager (ACM) to use with services that are integrated with ACM.
-
#list_acme_accounts(params = {}) ⇒ Types::ListAcmeAccountsResponse
Retrieves a list of ACME accounts registered with the specified ACME endpoint.
-
#list_acme_domain_validations(params = {}) ⇒ Types::ListAcmeDomainValidationsResponse
Retrieves a list of domain validations for the specified ACME endpoint.
-
#list_acme_endpoints(params = {}) ⇒ Types::ListAcmeEndpointsResponse
Retrieves a list of ACME endpoints in your account.
-
#list_acme_external_account_bindings(params = {}) ⇒ Types::ListAcmeExternalAccountBindingsResponse
Retrieves a list of external account bindings for the specified ACME endpoint.
-
#list_certificates(params = {}) ⇒ Types::ListCertificatesResponse
Retrieves a list of certificate ARNs and domain names.
-
#list_tags_for_certificate(params = {}) ⇒ Types::ListTagsForCertificateResponse
Lists the tags that have been applied to the ACM certificate.
-
#list_tags_for_resource(params = {}) ⇒ Types::ListTagsForResourceResponse
Lists the tags associated with an ACM resource.
-
#put_account_configuration(params = {}) ⇒ Struct
Adds or modifies account-level configurations in ACM.
-
#remove_tags_from_certificate(params = {}) ⇒ Struct
Remove one or more tags from an ACM certificate.
-
#renew_certificate(params = {}) ⇒ Struct
Renews an [eligible ACM certificate][1].
-
#request_certificate(params = {}) ⇒ Types::RequestCertificateResponse
Requests an ACM certificate for use with other Amazon Web Services services.
-
#resend_validation_email(params = {}) ⇒ Struct
Resends the email that requests domain ownership validation.
-
#revoke_acme_account(params = {}) ⇒ Struct
Revokes an ACME account, preventing it from requesting or revoking certificates.
-
#revoke_acme_external_account_binding(params = {}) ⇒ Struct
Revokes an external account binding, preventing new ACME accounts from being registered using this binding.
-
#revoke_certificate(params = {}) ⇒ Types::RevokeCertificateResponse
Revokes a public ACM certificate.
-
#search_certificates(params = {}) ⇒ Types::SearchCertificatesResponse
Retrieves a list of certificates matching search criteria.
-
#tag_resource(params = {}) ⇒ Struct
Adds one or more tags to an ACM resource.
-
#untag_resource(params = {}) ⇒ Struct
Removes one or more tags from an ACM resource.
-
#update_acme_domain_validation(params = {}) ⇒ Struct
Updates the prevalidation configuration of an existing domain validation.
-
#update_acme_endpoint(params = {}) ⇒ Struct
Updates the configuration of an existing ACME endpoint.
-
#update_certificate_options(params = {}) ⇒ Struct
Updates a certificate.
Instance Method Summary collapse
-
#initialize(options) ⇒ Client
constructor
A new instance of Client.
-
#wait_until(waiter_name, params = {}, options = {}) {|w.waiter| ... } ⇒ Boolean
Polls an API operation until a resource enters a desired state.
Methods included from ClientStubs
#api_requests, #stub_data, #stub_responses
Methods inherited from Seahorse::Client::Base
add_plugin, api, clear_plugins, define, new, #operation_names, plugins, remove_plugin, set_api, set_plugins
Methods included from Seahorse::Client::HandlerBuilder
#handle, #handle_request, #handle_response
Constructor Details
#initialize(options) ⇒ Client
Returns a new instance of Client.
481 482 483 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 481 def initialize(*args) super end |
Instance Method Details
#add_tags_to_certificate(params = {}) ⇒ Struct
Adds one or more tags to an ACM certificate. Tags are labels that you
can use to identify and organize your Amazon Web Services resources.
Each tag consists of a key and an optional value. You specify the
certificate on input by its Amazon Resource Name (ARN). You specify
the tag by using a key-value pair.
certificate resource type. For all
other ACM resource types, use TagResource instead.
You can apply a tag to just one certificate if you want to identify a specific characteristic of that certificate, or you can apply the same tag to multiple certificates if you want to filter for a common relationship among those certificates. Similarly, you can apply the same tag to multiple resources if you want to specify a relationship among those resources. For example, you can add the same tag to an ACM certificate and an Elastic Load Balancing load balancer to indicate that they are both used by the same website. For more information, see Tagging ACM certificates.
To remove one or more tags, use the RemoveTagsFromCertificate action. To view all of the tags that have been applied to the certificate, use the ListTagsForCertificate action.
550 551 552 553 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 550 def (params = {}, = {}) req = build_request(:add_tags_to_certificate, params) req.send_request() end |
#create_acme_domain_validation(params = {}) ⇒ Types::CreateAcmeDomainValidationResponse
Creates a domain validation for an ACME endpoint. Domain validations authorize the endpoint to issue certificates for specified domain names. You configure prevalidation to prove domain ownership.
614 615 616 617 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 614 def create_acme_domain_validation(params = {}, = {}) req = build_request(:create_acme_domain_validation, params) req.send_request() end |
#create_acme_endpoint(params = {}) ⇒ Types::CreateAcmeEndpointResponse
Creates an ACME endpoint, which is a managed ACME server with a unique endpoint URL. After creation, ACME clients can use the endpoint URL to automate certificate issuance using the ACME protocol.
684 685 686 687 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 684 def create_acme_endpoint(params = {}, = {}) req = build_request(:create_acme_endpoint, params) req.send_request() end |
#create_acme_external_account_binding(params = {}) ⇒ Types::CreateAcmeExternalAccountBindingResponse
Creates an external account binding (EAB) for an ACME endpoint. An EAB provides credentials that authorize an ACME client to register an account with the endpoint. Each EAB is associated with an IAM role that controls what certificate operations the ACME client can perform.
751 752 753 754 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 751 def create_acme_external_account_binding(params = {}, = {}) req = build_request(:create_acme_external_account_binding, params) req.send_request() end |
#delete_acme_domain_validation(params = {}) ⇒ Struct
Deletes a domain validation. After deletion, the ACME endpoint can no longer issue certificates for the associated domain.
775 776 777 778 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 775 def delete_acme_domain_validation(params = {}, = {}) req = build_request(:delete_acme_domain_validation, params) req.send_request() end |
#delete_acme_endpoint(params = {}) ⇒ Struct
Deletes an ACME endpoint. After deletion, the endpoint URL is no longer accessible and ACME clients cannot issue certificates through it. Any existing external account bindings and domain validations associated with the endpoint are also deleted.
800 801 802 803 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 800 def delete_acme_endpoint(params = {}, = {}) req = build_request(:delete_acme_endpoint, params) req.send_request() end |
#delete_acme_external_account_binding(params = {}) ⇒ Struct
Deletes an external account binding. Previously fetched credentials for this binding will no longer be usable for account registration. A deleted binding cannot be recovered.
825 826 827 828 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 825 def delete_acme_external_account_binding(params = {}, = {}) req = build_request(:delete_acme_external_account_binding, params) req.send_request() end |
#delete_certificate(params = {}) ⇒ Struct
Deletes a certificate and its associated private key. If this action succeeds, the certificate is not available for use by Amazon Web Services services integrated with ACM. Deleting a certificate is eventually consistent. The may be a short delay before the certificate no longer appears in the list that can be displayed by calling the ListCertificates action or be retrieved by calling the GetCertificate action.
Deleting a certificate issued by a private certificate authority (CA) has no effect on the CA. You will continue to be charged for the CA until it is deleted. For more information, see Deleting Your Private CA in the Private Certificate Authority User Guide.
You cannot delete a certificate with a CertificateKeyPairOrigin of
ACME. ACM automatically deletes these certificates 1 year after they
expire.
Deleting a certificate issued by a private certificate authority (CA) has no effect on the CA. You will continue to be charged for the CA until it is deleted. For more information, see Deleting your private CA in the Amazon Web Services Private Certificate Authority User Guide.
889 890 891 892 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 889 def delete_certificate(params = {}, = {}) req = build_request(:delete_certificate, params) req.send_request() end |
#describe_acme_account(params = {}) ⇒ Types::DescribeAcmeAccountResponse
Returns detailed metadata about the specified ACME account, including its status, public key thumbprint, and associated external account binding.
929 930 931 932 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 929 def describe_acme_account(params = {}, = {}) req = build_request(:describe_acme_account, params) req.send_request() end |
#describe_acme_domain_validation(params = {}) ⇒ Types::DescribeAcmeDomainValidationResponse
Returns detailed metadata about the specified domain validation, including its status, domain scope, and DNS resource records required for validation.
The following waiters are defined for this operation (see #wait_until for detailed usage):
- acme_domain_validation_deleted
- acme_domain_validation_validated
980 981 982 983 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 980 def describe_acme_domain_validation(params = {}, = {}) req = build_request(:describe_acme_domain_validation, params) req.send_request() end |
#describe_acme_endpoint(params = {}) ⇒ Types::DescribeAcmeEndpointResponse
Returns detailed metadata about the specified ACME endpoint, including its status, URL, authorization behavior, and certificate authority configuration.
The following waiters are defined for this operation (see #wait_until for detailed usage):
- acme_endpoint_active
- acme_endpoint_deleted
1028 1029 1030 1031 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1028 def describe_acme_endpoint(params = {}, = {}) req = build_request(:describe_acme_endpoint, params) req.send_request() end |
#describe_acme_external_account_binding(params = {}) ⇒ Types::DescribeAcmeExternalAccountBindingResponse
Returns detailed metadata about the specified external account binding, including the associated IAM role, expiration time, and usage history.
1065 1066 1067 1068 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1065 def describe_acme_external_account_binding(params = {}, = {}) req = build_request(:describe_acme_external_account_binding, params) req.send_request() end |
#describe_certificate(params = {}) ⇒ Types::DescribeCertificateResponse
Returns detailed metadata about the specified ACM certificate.
If you have just created a certificate using the RequestCertificate
action, there is a delay of several seconds before you can retrieve
information about it.
The following waiters are defined for this operation (see #wait_until for detailed usage):
- certificate_validated
1172 1173 1174 1175 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1172 def describe_certificate(params = {}, = {}) req = build_request(:describe_certificate, params) req.send_request() end |
#export_certificate(params = {}) ⇒ Types::ExportCertificateResponse
Exports a private certificate issued by a private certificate authority (CA) or a public certificate for use anywhere. The exported file contains the certificate, the certificate chain, and the encrypted private key associated with the public key that is embedded in the certificate. For security, you must assign a passphrase for the private key when exporting it.
For information about exporting and formatting a certificate using the ACM console or CLI, see Export a private certificate and Export a public certificate.
1242 1243 1244 1245 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1242 def export_certificate(params = {}, = {}) req = build_request(:export_certificate, params) req.send_request() end |
#get_account_configuration(params = {}) ⇒ Types::GetAccountConfigurationResponse
Returns the account configuration options associated with an Amazon Web Services account.
1262 1263 1264 1265 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1262 def get_account_configuration(params = {}, = {}) req = build_request(:get_account_configuration, params) req.send_request() end |
#get_acme_external_account_binding_credentials(params = {}) ⇒ Types::GetAcmeExternalAccountBindingCredentialsResponse
Retrieves the key ID and MAC key credentials for an external account binding. These credentials are used by ACME clients during account registration to bind to the endpoint.
1294 1295 1296 1297 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1294 def get_acme_external_account_binding_credentials(params = {}, = {}) req = build_request(:get_acme_external_account_binding_credentials, params) req.send_request() end |
#get_certificate(params = {}) ⇒ Types::GetCertificateResponse
Retrieves a certificate and its certificate chain. The certificate may
be either a public or private certificate issued using the ACM
RequestCertificate action, or a certificate imported into ACM using
the ImportCertificate action. The chain consists of the certificate
of the issuing CA and the intermediate certificates of any other
subordinate CAs. All of the certificates are base64 encoded. You can
use OpenSSL to decode the certificates and inspect individual
fields.
1344 1345 1346 1347 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1344 def get_certificate(params = {}, = {}) req = build_request(:get_certificate, params) req.send_request() end |
#import_certificate(params = {}) ⇒ Types::ImportCertificateResponse
Imports a certificate into Certificate Manager (ACM) to use with services that are integrated with ACM. Note that integrated services allow only certificate types and keys they support to be associated with their resources. Further, their support differs depending on whether the certificate is imported into IAM or into ACM. For more information, see the documentation for each service. For more information about importing certificates into ACM, see Importing Certificates in the Certificate Manager User Guide.
Note the following guidelines when importing third party certificates:
You must enter the private key that matches the certificate you are importing.
The private key must be unencrypted. You cannot import a private key that is protected by a password or a passphrase.
The private key must be no larger than 5 KB (5,120 bytes).
The certificate, private key, and certificate chain must be PEM-encoded.
The current time must be between the
Not BeforeandNot Aftercertificate fields.The
Issuerfield must not be empty.The OCSP authority URL, if present, must not exceed 1000 characters.
To import a new certificate, omit the
CertificateArnargument. Include this argument only when you want to replace a previously imported certificate.When you import a certificate by using the CLI, you must specify the certificate, the certificate chain, and the private key by their file names preceded by
fileb://. For example, you can specify a certificate saved in theC:\tempfolder asfileb://C:\temp\certificate_to_import.pem. If you are making an HTTP or HTTPS Query request, include these arguments as BLOBs.When you import a certificate by using an SDK, you must specify the certificate, the certificate chain, and the private key files in the manner required by the programming language you're using.
The cryptographic algorithm of an imported certificate must match the algorithm of the signing CA. For example, if the signing CA key type is RSA, then the certificate key type must also be RSA.
This operation returns the Amazon Resource Name (ARN) of the imported certificate.
1461 1462 1463 1464 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1461 def import_certificate(params = {}, = {}) req = build_request(:import_certificate, params) req.send_request() end |
#list_acme_accounts(params = {}) ⇒ Types::ListAcmeAccountsResponse
Retrieves a list of ACME accounts registered with the specified ACME endpoint. ACME accounts are created when clients use external account binding credentials to register.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
1510 1511 1512 1513 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1510 def list_acme_accounts(params = {}, = {}) req = build_request(:list_acme_accounts, params) req.send_request() end |
#list_acme_domain_validations(params = {}) ⇒ Types::ListAcmeDomainValidationsResponse
Retrieves a list of domain validations for the specified ACME endpoint.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
1567 1568 1569 1570 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1567 def list_acme_domain_validations(params = {}, = {}) req = build_request(:list_acme_domain_validations, params) req.send_request() end |
#list_acme_endpoints(params = {}) ⇒ Types::ListAcmeEndpointsResponse
Retrieves a list of ACME endpoints in your account. Use this operation to view all configured ACME endpoints and their current status.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
1617 1618 1619 1620 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1617 def list_acme_endpoints(params = {}, = {}) req = build_request(:list_acme_endpoints, params) req.send_request() end |
#list_acme_external_account_bindings(params = {}) ⇒ Types::ListAcmeExternalAccountBindingsResponse
Retrieves a list of external account bindings for the specified ACME endpoint.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
1666 1667 1668 1669 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1666 def list_acme_external_account_bindings(params = {}, = {}) req = build_request(:list_acme_external_account_bindings, params) req.send_request() end |
#list_certificates(params = {}) ⇒ Types::ListCertificatesResponse
Retrieves a list of certificate ARNs and domain names. You can request
that only certificates that match a specific status be listed. You can
also filter by specific attributes of the certificate. Default
filtering returns only RSA_2048 certificates. For more information,
see Filters.
CertificateKeyPairOrigin of ACME. To include ACME certificates,
specify ACME in the CertificateKeyPairOrigins filter.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
1775 1776 1777 1778 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1775 def list_certificates(params = {}, = {}) req = build_request(:list_certificates, params) req.send_request() end |
#list_tags_for_certificate(params = {}) ⇒ Types::ListTagsForCertificateResponse
Lists the tags that have been applied to the ACM certificate. Use the certificate's Amazon Resource Name (ARN) to specify the certificate. To add a tag to an ACM certificate, use the AddTagsToCertificate action. To delete a tag, use the RemoveTagsFromCertificate action.
certificate resource type. For all
other ACM resource types, use ListTagsForResource instead.
1823 1824 1825 1826 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1823 def (params = {}, = {}) req = build_request(:list_tags_for_certificate, params) req.send_request() end |
#list_tags_for_resource(params = {}) ⇒ Types::ListTagsForResourceResponse
Lists the tags associated with an ACM resource.
certificate
resource type. For certificate resources, use ListTagsForCertificate
instead.
To add one or more tags, use the TagResource action. To remove one or more tags, use the UntagResource action.
1862 1863 1864 1865 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1862 def (params = {}, = {}) req = build_request(:list_tags_for_resource, params) req.send_request() end |
#put_account_configuration(params = {}) ⇒ Struct
Adds or modifies account-level configurations in ACM.
The supported configuration option is DaysBeforeExpiry. This option
specifies the number of days prior to certificate expiration when ACM
starts generating EventBridge events. ACM sends one event per day
per certificate until the certificate expires. By default, accounts
receive events starting 45 days before certificate expiration.
1901 1902 1903 1904 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1901 def put_account_configuration(params = {}, = {}) req = build_request(:put_account_configuration, params) req.send_request() end |
#remove_tags_from_certificate(params = {}) ⇒ Struct
Remove one or more tags from an ACM certificate. A tag consists of a key-value pair. If you do not specify the value portion of the tag when calling this function, the tag will be removed regardless of value. If you specify a value, the tag is removed only if it is associated with the specified value.
certificate resource type. For all
other ACM resource types, use UntagResource instead.
To add tags to a certificate, use the AddTagsToCertificate action. To view all of the tags that have been applied to a specific ACM certificate, use the ListTagsForCertificate action.
1955 1956 1957 1958 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1955 def (params = {}, = {}) req = build_request(:remove_tags_from_certificate, params) req.send_request() end |
#renew_certificate(params = {}) ⇒ Struct
Renews an eligible ACM certificate. In order to renew your Amazon Web Services Private CA certificates with ACM, you must first grant the ACM service principal permission to do so. For more information, see Testing Managed Renewal in the ACM User Guide.
1995 1996 1997 1998 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 1995 def renew_certificate(params = {}, = {}) req = build_request(:renew_certificate, params) req.send_request() end |
#request_certificate(params = {}) ⇒ Types::RequestCertificateResponse
Requests an ACM certificate for use with other Amazon Web Services
services. To request an ACM certificate, you must specify a fully
qualified domain name (FQDN) in the DomainName parameter. You can
also specify additional FQDNs in the SubjectAlternativeNames
parameter.
If you are requesting a private certificate, domain validation is not required. If you are requesting a public certificate, each domain name that you specify must be validated to verify that you own or control the domain. You can use DNS validation or email validation. We recommend that you use DNS validation.
After successful completion of the RequestCertificate action, there
is a delay of several seconds before you can retrieve information
about the new certificate.
2215 2216 2217 2218 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2215 def request_certificate(params = {}, = {}) req = build_request(:request_certificate, params) req.send_request() end |
#resend_validation_email(params = {}) ⇒ Struct
Resends the email that requests domain ownership validation. The domain owner or an authorized representative must approve the ACM certificate before it can be issued. The certificate can be approved by clicking a link in the mail to navigate to the Amazon certificate approval website and then clicking I Approve. However, the validation email can be blocked by spam filters. Therefore, if you do not receive the original mail, you can request that the mail be resent within 72 hours of requesting the ACM certificate. If more than 72 hours have elapsed since your original request or since your last attempt to resend validation mail, you must request a new certificate. For more information about setting up your contact email addresses, see Configure Email for your Domain.
2283 2284 2285 2286 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2283 def resend_validation_email(params = {}, = {}) req = build_request(:resend_validation_email, params) req.send_request() end |
#revoke_acme_account(params = {}) ⇒ Struct
Revokes an ACME account, preventing it from requesting or revoking certificates. This operation is irreversible.
2310 2311 2312 2313 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2310 def revoke_acme_account(params = {}, = {}) req = build_request(:revoke_acme_account, params) req.send_request() end |
#revoke_acme_external_account_binding(params = {}) ⇒ Struct
Revokes an external account binding, preventing new ACME accounts from being registered using this binding. Existing ACME accounts that were previously registered using the binding are not affected and must be revoked separately.
2336 2337 2338 2339 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2336 def revoke_acme_external_account_binding(params = {}, = {}) req = build_request(:revoke_acme_external_account_binding, params) req.send_request() end |
#revoke_certificate(params = {}) ⇒ Types::RevokeCertificateResponse
Revokes a public ACM certificate. You can only revoke certificates that have been previously exported.
Once a certificate is revoked, you cannot reuse the certificate. Revoking a certificate is permanent.
2375 2376 2377 2378 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2375 def revoke_certificate(params = {}, = {}) req = build_request(:revoke_certificate, params) req.send_request() end |
#search_certificates(params = {}) ⇒ Types::SearchCertificatesResponse
Retrieves a list of certificates matching search criteria. You can filter certificates by X.509 attributes and ACM specific properties like certificate status, type and renewal eligibility. This operation provides more flexible filtering than ListCertificates by supporting complex filter statements.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
2584 2585 2586 2587 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2584 def search_certificates(params = {}, = {}) req = build_request(:search_certificates, params) req.send_request() end |
#tag_resource(params = {}) ⇒ Struct
Adds one or more tags to an ACM resource. Tags are labels that you can
use to identify and organize your Amazon Web Services resources. Each
tag consists of a key and an optional value.
certificate
resource type. For certificate resources, use AddTagsToCertificate
instead.
To remove one or more tags, use the UntagResource action. To view all of the tags that have been applied to a resource, use the ListTagsForResource action.
2627 2628 2629 2630 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2627 def tag_resource(params = {}, = {}) req = build_request(:tag_resource, params) req.send_request() end |
#untag_resource(params = {}) ⇒ Struct
Removes one or more tags from an ACM resource.
certificate
resource type. For certificate resources, use
RemoveTagsFromCertificate instead.
To add one or more tags, use the TagResource action. To view all of the tags that have been applied to a resource, use the ListTagsForResource action.
2663 2664 2665 2666 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2663 def untag_resource(params = {}, = {}) req = build_request(:untag_resource, params) req.send_request() end |
#update_acme_domain_validation(params = {}) ⇒ Struct
Updates the prevalidation configuration of an existing domain validation.
2700 2701 2702 2703 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2700 def update_acme_domain_validation(params = {}, = {}) req = build_request(:update_acme_domain_validation, params) req.send_request() end |
#update_acme_endpoint(params = {}) ⇒ Struct
Updates the configuration of an existing ACME endpoint. You can change the authorization behavior, contact requirement, or certificate authority settings.
2740 2741 2742 2743 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2740 def update_acme_endpoint(params = {}, = {}) req = build_request(:update_acme_endpoint, params) req.send_request() end |
#update_certificate_options(params = {}) ⇒ Struct
Updates a certificate. You can use this function to specify whether to export your certificate. Certificate transparency logging opt-out is no longer available. For more information, see Certificate Transparency Logging and Certificate Manager Exportable Managed Certificates.
2789 2790 2791 2792 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2789 def (params = {}, = {}) req = build_request(:update_certificate_options, params) req.send_request() end |
#wait_until(waiter_name, params = {}, options = {}) {|w.waiter| ... } ⇒ Boolean
Polls an API operation until a resource enters a desired state.
Basic Usage
A waiter will call an API operation until:
- It is successful
- It enters a terminal state
- It makes the maximum number of attempts
In between attempts, the waiter will sleep.
# polls in a loop, sleeping between attempts
client.wait_until(waiter_name, params)
Configuration
You can configure the maximum number of polling attempts, and the delay (in seconds) between each polling attempt. You can pass configuration as the final arguments hash.
# poll for ~25 seconds
client.wait_until(waiter_name, params, {
max_attempts: 5,
delay: 5,
})
Callbacks
You can be notified before each polling attempt and before each
delay. If you throw :success or :failure from these callbacks,
it will terminate the waiter.
started_at = Time.now
client.wait_until(waiter_name, params, {
# disable max attempts
max_attempts: nil,
# poll for 1 hour, instead of a number of attempts
before_wait: -> (attempts, response) do
throw :failure if Time.now - started_at > 3600
end
})
Handling Errors
When a waiter is unsuccessful, it will raise an error. All of the failure errors extend from Waiters::Errors::WaiterFailed.
begin
client.wait_until(...)
rescue Aws::Waiters::Errors::WaiterFailed
# resource did not enter the desired state in time
end
Valid Waiters
The following table lists the valid waiter names, the operations they call,
and the default :delay and :max_attempts values.
| waiter_name | params | :delay | :max_attempts |
|---|---|---|---|
| acme_domain_validation_deleted | #describe_acme_domain_validation | 5 | 60 |
| acme_domain_validation_validated | #describe_acme_domain_validation | 5 | 60 |
| acme_endpoint_active | #describe_acme_endpoint | 5 | 60 |
| acme_endpoint_deleted | #describe_acme_endpoint | 5 | 60 |
| certificate_validated | #describe_certificate | 60 | 5 |
2908 2909 2910 2911 2912 |
# File 'gems/aws-sdk-acm/lib/aws-sdk-acm/client.rb', line 2908 def wait_until(waiter_name, params = {}, = {}) w = waiter(waiter_name, ) yield(w.waiter) if block_given? # deprecated w.wait(params) end |