AWS SDK for C++  1.9.108
AWS SDK for C++
Public Member Functions | List of all members
Aws::CloudFront::Model::ViewerCertificate Class Reference

#include <ViewerCertificate.h>

Public Member Functions

 ViewerCertificate ()
 
 ViewerCertificate (const Aws::Utils::Xml::XmlNode &xmlNode)
 
ViewerCertificateoperator= (const Aws::Utils::Xml::XmlNode &xmlNode)
 
void AddToNode (Aws::Utils::Xml::XmlNode &parentNode) const
 
bool GetCloudFrontDefaultCertificate () const
 
bool CloudFrontDefaultCertificateHasBeenSet () const
 
void SetCloudFrontDefaultCertificate (bool value)
 
ViewerCertificateWithCloudFrontDefaultCertificate (bool value)
 
const Aws::StringGetIAMCertificateId () const
 
bool IAMCertificateIdHasBeenSet () const
 
void SetIAMCertificateId (const Aws::String &value)
 
void SetIAMCertificateId (Aws::String &&value)
 
void SetIAMCertificateId (const char *value)
 
ViewerCertificateWithIAMCertificateId (const Aws::String &value)
 
ViewerCertificateWithIAMCertificateId (Aws::String &&value)
 
ViewerCertificateWithIAMCertificateId (const char *value)
 
const Aws::StringGetACMCertificateArn () const
 
bool ACMCertificateArnHasBeenSet () const
 
void SetACMCertificateArn (const Aws::String &value)
 
void SetACMCertificateArn (Aws::String &&value)
 
void SetACMCertificateArn (const char *value)
 
ViewerCertificateWithACMCertificateArn (const Aws::String &value)
 
ViewerCertificateWithACMCertificateArn (Aws::String &&value)
 
ViewerCertificateWithACMCertificateArn (const char *value)
 
const SSLSupportMethodGetSSLSupportMethod () const
 
bool SSLSupportMethodHasBeenSet () const
 
void SetSSLSupportMethod (const SSLSupportMethod &value)
 
void SetSSLSupportMethod (SSLSupportMethod &&value)
 
ViewerCertificateWithSSLSupportMethod (const SSLSupportMethod &value)
 
ViewerCertificateWithSSLSupportMethod (SSLSupportMethod &&value)
 
const MinimumProtocolVersionGetMinimumProtocolVersion () const
 
bool MinimumProtocolVersionHasBeenSet () const
 
void SetMinimumProtocolVersion (const MinimumProtocolVersion &value)
 
void SetMinimumProtocolVersion (MinimumProtocolVersion &&value)
 
ViewerCertificateWithMinimumProtocolVersion (const MinimumProtocolVersion &value)
 
ViewerCertificateWithMinimumProtocolVersion (MinimumProtocolVersion &&value)
 

Detailed Description

A complex type that determines the distribution’s SSL/TLS configuration for communicating with viewers.

If the distribution doesn’t use Aliases (also known as alternate domain names or CNAMEs)—that is, if the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net—set CloudFrontDefaultCertificate to true and leave all other fields empty.

If the distribution uses Aliases (alternate domain names or CNAMEs), use the fields in this type to specify the following settings:

All distributions support HTTPS connections from viewers. To require viewers to use HTTPS only, or to redirect them from HTTP to HTTPS, use ViewerProtocolPolicy in the CacheBehavior or DefaultCacheBehavior. To specify how CloudFront should use SSL/TLS to communicate with your custom origin, use CustomOriginConfig.

For more information, see Using HTTPS with CloudFront and Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.

See Also:

AWS API Reference

Definition at line 72 of file ViewerCertificate.h.

Constructor & Destructor Documentation

◆ ViewerCertificate() [1/2]

Aws::CloudFront::Model::ViewerCertificate::ViewerCertificate ( )

◆ ViewerCertificate() [2/2]

Aws::CloudFront::Model::ViewerCertificate::ViewerCertificate ( const Aws::Utils::Xml::XmlNode xmlNode)

Member Function Documentation

◆ ACMCertificateArnHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::ACMCertificateArnHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 234 of file ViewerCertificate.h.

◆ AddToNode()

void Aws::CloudFront::Model::ViewerCertificate::AddToNode ( Aws::Utils::Xml::XmlNode parentNode) const

◆ CloudFrontDefaultCertificateHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::CloudFrontDefaultCertificateHasBeenSet ( ) const
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 104 of file ViewerCertificate.h.

◆ GetACMCertificateArn()

const Aws::String& Aws::CloudFront::Model::ViewerCertificate::GetACMCertificateArn ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 222 of file ViewerCertificate.h.

◆ GetCloudFrontDefaultCertificate()

bool Aws::CloudFront::Model::ViewerCertificate::GetCloudFrontDefaultCertificate ( ) const
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 92 of file ViewerCertificate.h.

◆ GetIAMCertificateId()

const Aws::String& Aws::CloudFront::Model::ViewerCertificate::GetIAMCertificateId ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 139 of file ViewerCertificate.h.

◆ GetMinimumProtocolVersion()

const MinimumProtocolVersion& Aws::CloudFront::Model::ViewerCertificate::GetMinimumProtocolVersion ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 457 of file ViewerCertificate.h.

◆ GetSSLSupportMethod()

const SSLSupportMethod& Aws::CloudFront::Model::ViewerCertificate::GetSSLSupportMethod ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the Amazon Web Services Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 328 of file ViewerCertificate.h.

◆ IAMCertificateIdHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::IAMCertificateIdHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 149 of file ViewerCertificate.h.

◆ MinimumProtocolVersionHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::MinimumProtocolVersionHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 480 of file ViewerCertificate.h.

◆ operator=()

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::operator= ( const Aws::Utils::Xml::XmlNode xmlNode)

◆ SetACMCertificateArn() [1/3]

void Aws::CloudFront::Model::ViewerCertificate::SetACMCertificateArn ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 258 of file ViewerCertificate.h.

◆ SetACMCertificateArn() [2/3]

void Aws::CloudFront::Model::ViewerCertificate::SetACMCertificateArn ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 246 of file ViewerCertificate.h.

◆ SetACMCertificateArn() [3/3]

void Aws::CloudFront::Model::ViewerCertificate::SetACMCertificateArn ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 270 of file ViewerCertificate.h.

◆ SetCloudFrontDefaultCertificate()

void Aws::CloudFront::Model::ViewerCertificate::SetCloudFrontDefaultCertificate ( bool  value)
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 116 of file ViewerCertificate.h.

◆ SetIAMCertificateId() [1/3]

void Aws::CloudFront::Model::ViewerCertificate::SetIAMCertificateId ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 169 of file ViewerCertificate.h.

◆ SetIAMCertificateId() [2/3]

void Aws::CloudFront::Model::ViewerCertificate::SetIAMCertificateId ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 159 of file ViewerCertificate.h.

◆ SetIAMCertificateId() [3/3]

void Aws::CloudFront::Model::ViewerCertificate::SetIAMCertificateId ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 179 of file ViewerCertificate.h.

◆ SetMinimumProtocolVersion() [1/2]

void Aws::CloudFront::Model::ViewerCertificate::SetMinimumProtocolVersion ( const MinimumProtocolVersion value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 503 of file ViewerCertificate.h.

◆ SetMinimumProtocolVersion() [2/2]

void Aws::CloudFront::Model::ViewerCertificate::SetMinimumProtocolVersion ( MinimumProtocolVersion &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 526 of file ViewerCertificate.h.

◆ SetSSLSupportMethod() [1/2]

void Aws::CloudFront::Model::ViewerCertificate::SetSSLSupportMethod ( const SSLSupportMethod value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the Amazon Web Services Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 370 of file ViewerCertificate.h.

◆ SetSSLSupportMethod() [2/2]

void Aws::CloudFront::Model::ViewerCertificate::SetSSLSupportMethod ( SSLSupportMethod &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the Amazon Web Services Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 391 of file ViewerCertificate.h.

◆ SSLSupportMethodHasBeenSet()

bool Aws::CloudFront::Model::ViewerCertificate::SSLSupportMethodHasBeenSet ( ) const
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the Amazon Web Services Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 349 of file ViewerCertificate.h.

◆ WithACMCertificateArn() [1/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithACMCertificateArn ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 294 of file ViewerCertificate.h.

◆ WithACMCertificateArn() [2/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithACMCertificateArn ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 282 of file ViewerCertificate.h.

◆ WithACMCertificateArn() [3/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithACMCertificateArn ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Certificate Manager (ACM), provide the Amazon Resource Name (ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East (N. Virginia) Region (us-east-1).

If you specify an ACM certificate ARN, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 306 of file ViewerCertificate.h.

◆ WithCloudFrontDefaultCertificate()

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithCloudFrontDefaultCertificate ( bool  value)
inline

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, set this field to true.

If the distribution uses Aliases (alternate domain names or CNAMEs), set this field to false and specify values for the following fields:

  • ACMCertificateArn or IAMCertificateId (specify a value for one, not both)

  • MinimumProtocolVersion

  • SSLSupportMethod

Definition at line 128 of file ViewerCertificate.h.

◆ WithIAMCertificateId() [1/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithIAMCertificateId ( Aws::String &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 199 of file ViewerCertificate.h.

◆ WithIAMCertificateId() [2/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithIAMCertificateId ( const Aws::String value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 189 of file ViewerCertificate.h.

◆ WithIAMCertificateId() [3/3]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithIAMCertificateId ( const char *  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in Identity and Access Management (IAM), provide the ID of the IAM certificate.

If you specify an IAM certificate ID, you must also specify values for MinimumProtocolVersion and SSLSupportMethod.

Definition at line 209 of file ViewerCertificate.h.

◆ WithMinimumProtocolVersion() [1/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithMinimumProtocolVersion ( const MinimumProtocolVersion value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 549 of file ViewerCertificate.h.

◆ WithMinimumProtocolVersion() [2/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithMinimumProtocolVersion ( MinimumProtocolVersion &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify the security policy that you want CloudFront to use for HTTPS connections with viewers. The security policy determines two settings:

  • The minimum SSL/TLS protocol that CloudFront can use to communicate with viewers.

  • The ciphers that CloudFront can use to encrypt the content that it returns to viewers.

For more information, see Security Policy and Supported Protocols and Ciphers Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

On the CloudFront console, this setting is called Security Policy.

When you’re using SNI only (you set SSLSupportMethod to sni-only), you must specify TLSv1 or higher.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net (you set CloudFrontDefaultCertificate to true), CloudFront automatically sets the security policy to TLSv1 regardless of the value that you set here.

Definition at line 572 of file ViewerCertificate.h.

◆ WithSSLSupportMethod() [1/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithSSLSupportMethod ( const SSLSupportMethod value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the Amazon Web Services Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 412 of file ViewerCertificate.h.

◆ WithSSLSupportMethod() [2/2]

ViewerCertificate& Aws::CloudFront::Model::ViewerCertificate::WithSSLSupportMethod ( SSLSupportMethod &&  value)
inline

If the distribution uses Aliases (alternate domain names or CNAMEs), specify which viewers the distribution accepts HTTPS connections from.

  • sni-only – The distribution accepts HTTPS connections from only viewers that support server name indication (SNI). This is recommended. Most browsers and clients support SNI.

  • vip – The distribution accepts HTTPS connections from all viewers including those that don’t support SNI. This is not recommended, and results in additional monthly charges from CloudFront.

  • static-ip - Do not specify this value unless your distribution has been enabled for this feature by the CloudFront team. If you have a use case that requires static IP addresses for a distribution, contact CloudFront through the Amazon Web Services Support Center.

If the distribution uses the CloudFront domain name such as d111111abcdef8.cloudfront.net, don’t set a value for this field.

Definition at line 433 of file ViewerCertificate.h.


The documentation for this class was generated from the following file: