amazonka-certificatemanager-1.6.0: Amazon Certificate Manager SDK.

Copyright(c) 2013-2018 Brendan Hay
LicenseMozilla Public License, v. 2.0.
MaintainerBrendan Hay <brendan.g.hay+amazonka@gmail.com>
Stabilityauto-generated
Portabilitynon-portable (GHC extensions)
Safe HaskellNone
LanguageHaskell2010

Network.AWS.CertificateManager.ExportCertificate

Contents

Description

Exports a private certificate issued by a private certificate authority (CA) for use anywhere. You can export the certificate, the certificate chain, and the encrypted private key associated with the public key embedded in the certificate. You must store the private key securely. The private key is a 2048 bit RSA key. You must provide a passphrase for the private key when exporting it. You can use the following OpenSSL command to decrypt it later. Provide the passphrase when prompted.

openssl rsa -in encrypted_key.pem -out decrypted_key.pem

Synopsis

Creating a Request

exportCertificate Source #

Arguments

:: Text

ecCertificateARN

-> ByteString

ecPassphrase

-> ExportCertificate 

Creates a value of ExportCertificate with the minimum fields required to make a request.

Use one of the following lenses to modify other fields as desired:

  • ecCertificateARN - An Amazon Resource Name (ARN) of the issued certificate. This must be of the form: arn:aws:acm:region:account:certificate/12345678-1234-1234-1234-123456789012
  • ecPassphrase - Passphrase to associate with the encrypted exported private key. If you want to later decrypt the private key, you must have the passphrase. You can use the following OpenSSL command to decrypt a private key: openssl rsa -in encrypted_key.pem -out decrypted_key.pem -- Note: This Lens automatically encodes and decodes Base64 data. The underlying isomorphism will encode to Base64 representation during serialisation, and decode from Base64 representation during deserialisation. This Lens accepts and returns only raw unencoded data.

data ExportCertificate Source #

See: exportCertificate smart constructor.

Instances

Eq ExportCertificate Source # 
Data ExportCertificate Source # 

Methods

gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> ExportCertificate -> c ExportCertificate #

gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c ExportCertificate #

toConstr :: ExportCertificate -> Constr #

dataTypeOf :: ExportCertificate -> DataType #

dataCast1 :: Typeable (* -> *) t => (forall d. Data d => c (t d)) -> Maybe (c ExportCertificate) #

dataCast2 :: Typeable (* -> * -> *) t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c ExportCertificate) #

gmapT :: (forall b. Data b => b -> b) -> ExportCertificate -> ExportCertificate #

gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> ExportCertificate -> r #

gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> ExportCertificate -> r #

gmapQ :: (forall d. Data d => d -> u) -> ExportCertificate -> [u] #

gmapQi :: Int -> (forall d. Data d => d -> u) -> ExportCertificate -> u #

gmapM :: Monad m => (forall d. Data d => d -> m d) -> ExportCertificate -> m ExportCertificate #

gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> ExportCertificate -> m ExportCertificate #

gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> ExportCertificate -> m ExportCertificate #

Show ExportCertificate Source # 
Generic ExportCertificate Source # 
Hashable ExportCertificate Source # 
ToJSON ExportCertificate Source # 
NFData ExportCertificate Source # 

Methods

rnf :: ExportCertificate -> () #

AWSRequest ExportCertificate Source # 
ToHeaders ExportCertificate Source # 
ToPath ExportCertificate Source # 
ToQuery ExportCertificate Source # 
type Rep ExportCertificate Source # 
type Rep ExportCertificate = D1 * (MetaData "ExportCertificate" "Network.AWS.CertificateManager.ExportCertificate" "amazonka-certificatemanager-1.6.0-LNRG7szGK7RAaShN2e3B6s" False) (C1 * (MetaCons "ExportCertificate'" PrefixI True) ((:*:) * (S1 * (MetaSel (Just Symbol "_ecCertificateARN") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 * Text)) (S1 * (MetaSel (Just Symbol "_ecPassphrase") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 * (Sensitive Base64)))))
type Rs ExportCertificate Source # 

Request Lenses

ecCertificateARN :: Lens' ExportCertificate Text Source #

An Amazon Resource Name (ARN) of the issued certificate. This must be of the form: arn:aws:acm:region:account:certificate/12345678-1234-1234-1234-123456789012

ecPassphrase :: Lens' ExportCertificate ByteString Source #

Passphrase to associate with the encrypted exported private key. If you want to later decrypt the private key, you must have the passphrase. You can use the following OpenSSL command to decrypt a private key: openssl rsa -in encrypted_key.pem -out decrypted_key.pem -- Note: This Lens automatically encodes and decodes Base64 data. The underlying isomorphism will encode to Base64 representation during serialisation, and decode from Base64 representation during deserialisation. This Lens accepts and returns only raw unencoded data.

Destructuring the Response

exportCertificateResponse Source #

Arguments

:: Int

ecrsResponseStatus

-> ExportCertificateResponse 

Creates a value of ExportCertificateResponse with the minimum fields required to make a request.

Use one of the following lenses to modify other fields as desired:

data ExportCertificateResponse Source #

See: exportCertificateResponse smart constructor.

Instances

Eq ExportCertificateResponse Source # 
Data ExportCertificateResponse Source # 

Methods

gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> ExportCertificateResponse -> c ExportCertificateResponse #

gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c ExportCertificateResponse #

toConstr :: ExportCertificateResponse -> Constr #

dataTypeOf :: ExportCertificateResponse -> DataType #

dataCast1 :: Typeable (* -> *) t => (forall d. Data d => c (t d)) -> Maybe (c ExportCertificateResponse) #

dataCast2 :: Typeable (* -> * -> *) t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c ExportCertificateResponse) #

gmapT :: (forall b. Data b => b -> b) -> ExportCertificateResponse -> ExportCertificateResponse #

gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> ExportCertificateResponse -> r #

gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> ExportCertificateResponse -> r #

gmapQ :: (forall d. Data d => d -> u) -> ExportCertificateResponse -> [u] #

gmapQi :: Int -> (forall d. Data d => d -> u) -> ExportCertificateResponse -> u #

gmapM :: Monad m => (forall d. Data d => d -> m d) -> ExportCertificateResponse -> m ExportCertificateResponse #

gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> ExportCertificateResponse -> m ExportCertificateResponse #

gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> ExportCertificateResponse -> m ExportCertificateResponse #

Show ExportCertificateResponse Source # 
Generic ExportCertificateResponse Source # 
NFData ExportCertificateResponse Source # 
type Rep ExportCertificateResponse Source # 
type Rep ExportCertificateResponse = D1 * (MetaData "ExportCertificateResponse" "Network.AWS.CertificateManager.ExportCertificate" "amazonka-certificatemanager-1.6.0-LNRG7szGK7RAaShN2e3B6s" False) (C1 * (MetaCons "ExportCertificateResponse'" PrefixI True) ((:*:) * ((:*:) * (S1 * (MetaSel (Just Symbol "_ecrsPrivateKey") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 * (Maybe (Sensitive Text)))) (S1 * (MetaSel (Just Symbol "_ecrsCertificate") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 * (Maybe Text)))) ((:*:) * (S1 * (MetaSel (Just Symbol "_ecrsCertificateChain") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 * (Maybe Text))) (S1 * (MetaSel (Just Symbol "_ecrsResponseStatus") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 * Int)))))

Response Lenses

ecrsPrivateKey :: Lens' ExportCertificateResponse (Maybe Text) Source #

The PEM-encoded private key associated with the public key in the certificate.

ecrsCertificate :: Lens' ExportCertificateResponse (Maybe Text) Source #

The base64 PEM-encoded certificate.

ecrsCertificateChain :: Lens' ExportCertificateResponse (Maybe Text) Source #

The base64 PEM-encoded certificate chain. This does not include the certificate that you are exporting.

ecrsResponseStatus :: Lens' ExportCertificateResponse Int Source #

  • - | The response status code.