AWS SDK for C++  1.9.2
AWS SDK for C++
Public Member Functions | List of all members
Aws::CloudFront::Model::ViewerCertificate Class Reference

#include <ViewerCertificate.h>

Public Member Functions

 ViewerCertificate ()
 
 ViewerCertificate (const Aws::Utils::Xml::XmlNode &xmlNode)
 
ViewerCertificateoperator= (const Aws::Utils::Xml::XmlNode &xmlNode)
 
void AddToNode (Aws::Utils::Xml::XmlNode &parentNode) const
 
bool GetCloudFrontDefaultCertificate () const
 
bool CloudFrontDefaultCertificateHasBeenSet () const
 
void SetCloudFrontDefaultCertificate (bool value)
 
ViewerCertificateWithCloudFrontDefaultCertificate (bool value)
 
const Aws::StringGetIAMCertificateId () const
 
bool IAMCertificateIdHasBeenSet () const
 
void SetIAMCertificateId (const Aws::String &value)
 
void SetIAMCertificateId (Aws::String &&value)
 
void SetIAMCertificateId (const char *value)
 
ViewerCertificateWithIAMCertificateId (const Aws::String &value)
 
ViewerCertificateWithIAMCertificateId (Aws::String &&value)
 
ViewerCertificateWithIAMCertificateId (const char *value)
 
const Aws::StringGetACMCertificateArn () const
 
bool ACMCertificateArnHasBeenSet () const
 
void SetACMCertificateArn (const Aws::String &value)
 
void SetACMCertificateArn (Aws::String &&value)
 
void SetACMCertificateArn (const char *value)
 
ViewerCertificateWithACMCertificateArn (const Aws::String &value)
 
ViewerCertificateWithACMCertificateArn (Aws::String &&value)
 
ViewerCertificateWithACMCertificateArn (const char *value)
 
const SSLSupportMethodGetSSLSupportMethod () const
 
bool SSLSupportMethodHasBeenSet () const
 
void SetSSLSupportMethod (const SSLSupportMethod &value)
 
void SetSSLSupportMethod (SSLSupportMethod &&value)
 
ViewerCertificateWithSSLSupportMethod (const SSLSupportMethod &value)
 
ViewerCertificateWithSSLSupportMethod (SSLSupportMethod &&value)
 
const MinimumProtocolVersionGetMinimumProtocolVersion () const
 
bool MinimumProtocolVersionHasBeenSet () const
 
void SetMinimumProtocolVersion (const MinimumProtocolVersion &value)
 
void SetMinimumProtocolVersion (MinimumProtocolVersion &&value)
 
ViewerCertificateWithMinimumProtocolVersion (const MinimumProtocolVersion &value)
 
ViewerCertificateWithMinimumProtocolVersion (MinimumProtocolVersion &&value)
 

Detailed Description

A complex type that determines the distribution’s SSL/TLS configuration for communicating with viewers.

If the distribution doesn’t use Aliases (also known as alternate domain names or CNAMEs)—that is, if the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net—set CloudFrontDefaultCertificate to true and leave all other fields empty.

If the distribution uses Aliases (alternate domain names or CNAMEs), use the fields in this type to specify the following settings:

All distributions support HTTPS connections from viewers. To require viewers to use HTTPS only, or to redirect them from HTTP to HTTPS, use ViewerProtocolPolicy in the CacheBehavior or DefaultCacheBehavior. To specify how CloudFront should use SSL/TLS to communicate with your custom origin, use CustomOriginConfig.

For more information, see Using HTTPS with CloudFront and Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.

See Also:

AWS API Reference

Definition at line 72 of file ViewerCertificate.h.

Constructor & Destructor Documentation

◆ ViewerCertificate() [1/2]

Aws::CloudFront::Model::ViewerCertificate::ViewerCertificate ( )

◆ ViewerCertificate() [2/2]

Aws::CloudFront::Model::ViewerCertificate::ViewerCertificate ( const Aws::Utils::Xml::XmlNode xmlNode)

Member Function Documentation

◆ ACMCertificateArnHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::ACMCertificateArnHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 242 of file ViewerCertificate.h.

◆ AddToNode()

void Aws::CloudFront::Model::ViewerCertificate::AddToNode ( Aws::Utils::Xml::XmlNode parentNode) const

◆ CloudFrontDefaultCertificateHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::CloudFrontDefaultCertificateHasBeenSet ( ) const
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 104 of file ViewerCertificate.h.

◆ GetACMCertificateArn()

const Aws::String& Aws::CloudFront::Model::ViewerCertificate::GetACMCertificateArn ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 230 of file ViewerCertificate.h.

◆ GetCloudFrontDefaultCertificate()

bool Aws::CloudFront::Model::ViewerCertificate::GetCloudFrontDefaultCertificate ( ) const
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 92 of file ViewerCertificate.h.

◆ GetIAMCertificateId()

const Aws::String& Aws::CloudFront::Model::ViewerCertificate::GetIAMCertificateId ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 140 of file ViewerCertificate.h.

◆ GetMinimumProtocolVersion()

const MinimumProtocolVersion& Aws::CloudFront::Model::ViewerCertificate::GetMinimumProtocolVersion ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 459 of file ViewerCertificate.h.

◆ GetSSLSupportMethod()

const SSLSupportMethod& Aws::CloudFront::Model::ViewerCertificate::GetSSLSupportMethod ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the AWS Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 335 of file ViewerCertificate.h.

◆ IAMCertificateIdHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::IAMCertificateIdHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 151 of file ViewerCertificate.h.

◆ MinimumProtocolVersionHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::MinimumProtocolVersionHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 482 of file ViewerCertificate.h.

◆ operator=()

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::operator= ( const Aws::Utils::Xml::XmlNode xmlNode)

◆ SetACMCertificateArn() [1/3]

void Aws::CloudFront::Model::ViewerCertificate::SetACMCertificateArn ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 266 of file ViewerCertificate.h.

◆ SetACMCertificateArn() [2/3]

void Aws::CloudFront::Model::ViewerCertificate::SetACMCertificateArn ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 254 of file ViewerCertificate.h.

◆ SetACMCertificateArn() [3/3]

void Aws::CloudFront::Model::ViewerCertificate::SetACMCertificateArn ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 278 of file ViewerCertificate.h.

◆ SetCloudFrontDefaultCertificate()

void Aws::CloudFront::Model::ViewerCertificate::SetCloudFrontDefaultCertificate ( bool  value)
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 116 of file ViewerCertificate.h.

◆ SetIAMCertificateId() [1/3]

void Aws::CloudFront::Model::ViewerCertificate::SetIAMCertificateId ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 173 of file ViewerCertificate.h.

◆ SetIAMCertificateId() [2/3]

void Aws::CloudFront::Model::ViewerCertificate::SetIAMCertificateId ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 162 of file ViewerCertificate.h.

◆ SetIAMCertificateId() [3/3]

void Aws::CloudFront::Model::ViewerCertificate::SetIAMCertificateId ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 184 of file ViewerCertificate.h.

◆ SetMinimumProtocolVersion() [1/2]

void Aws::CloudFront::Model::ViewerCertificate::SetMinimumProtocolVersion ( const MinimumProtocolVersion value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 505 of file ViewerCertificate.h.

◆ SetMinimumProtocolVersion() [2/2]

void Aws::CloudFront::Model::ViewerCertificate::SetMinimumProtocolVersion ( MinimumProtocolVersion &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 528 of file ViewerCertificate.h.

◆ SetSSLSupportMethod() [1/2]

void Aws::CloudFront::Model::ViewerCertificate::SetSSLSupportMethod ( const SSLSupportMethod value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the AWS Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 375 of file ViewerCertificate.h.

◆ SetSSLSupportMethod() [2/2]

void Aws::CloudFront::Model::ViewerCertificate::SetSSLSupportMethod ( SSLSupportMethod &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the AWS Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 395 of file ViewerCertificate.h.

◆ SSLSupportMethodHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::SSLSupportMethodHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the AWS Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 355 of file ViewerCertificate.h.

◆ WithACMCertificateArn() [1/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithACMCertificateArn ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 302 of file ViewerCertificate.h.

◆ WithACMCertificateArn() [2/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithACMCertificateArn ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 290 of file ViewerCertificate.h.

◆ WithACMCertificateArn() [3/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithACMCertificateArn ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 314 of file ViewerCertificate.h.

◆ WithCloudFrontDefaultCertificate()

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithCloudFrontDefaultCertificate ( bool  value)
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 128 of file ViewerCertificate.h.

◆ WithIAMCertificateId() [1/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithIAMCertificateId ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 206 of file ViewerCertificate.h.

◆ WithIAMCertificateId() [2/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithIAMCertificateId ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 195 of file ViewerCertificate.h.

◆ WithIAMCertificateId() [3/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithIAMCertificateId ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in AWS Identity and Access Management (AWS IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 217 of file ViewerCertificate.h.

◆ WithMinimumProtocolVersion() [1/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithMinimumProtocolVersion ( const MinimumProtocolVersion value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 551 of file ViewerCertificate.h.

◆ WithMinimumProtocolVersion() [2/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithMinimumProtocolVersion ( MinimumProtocolVersion &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 574 of file ViewerCertificate.h.

◆ WithSSLSupportMethod() [1/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithSSLSupportMethod ( const SSLSupportMethod value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the AWS Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 415 of file ViewerCertificate.h.

◆ WithSSLSupportMethod() [2/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithSSLSupportMethod ( SSLSupportMethod &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the AWS Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 435 of file ViewerCertificate.h.


The documentation for this class was generated from the following file: