google::compute-ssl-policy

Creates an SSL policy.

Example

google::compute-ssl-policy ssl-policy-example
    name: "ssl-policy-example"
    profile: "MODERN"
    min-tls-version: "TLS_1_0"
end
google::compute-ssl-policy custom-ssl-policy-example
    name: "custom-ssl-policy-example"
    profile: "CUSTOM"
    min-tls-version: "TLS_1_2"
    custom-features: [ "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA", "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256" ]
end

Attributes

Attribute Description
custom-features list A list of features enabled when the selected profile is CUSTOM.
description An optional description of this SSL policy.
min-tls-version The minimum version of SSL protocol that can be used by the clients to establish a connection with the load balancer. Valid values are TLS_1_0, TLS_1_1, or TLS_1_2. (Required)
name The name of the SSL policy. Must be 1-63 characters long, and the first character must be a lowercase letter. All other characters must be a lowercase letter, digit, or -, except the last character, which cannot be a -. (Required)
profile Specifies the set of SSL features that can be used by the load balancer when negotiating SSL with clients. Valid values are COMPATIBLE, MODERN, RESTRICTED, or CUSTOM. If using CUSTOM, the set of SSL features to enable must be specified in the custom-features field. (Required)

Outputs

Attribute Description
fingerprint Fingerprint of this SSL policy.
enabled-features list The list of features enabled in the SSL policy.
self-link Server-defined URL for the SSL policy.
warning list subresource

If potential misconfigurations are detected for this SSL policy, this field will be populated with warning messages.

code
A warning code, if applicable.
data list subresource

Metadata about this warning in key : value format.

key
A key that provides more detail on the warning being returned.
value
A warning data value corresponding to the key.
message
A human-readable description of the warning code.