Package software.amazon.awssdk.services.networkfirewall.model

Class CheckCertificateRevocationStatusActions

java.lang.Object
software.amazon.awssdk.services.networkfirewall.model.CheckCertificateRevocationStatusActions
All Implemented Interfaces:
Serializable, SdkPojo, ToCopyableBuilder<CheckCertificateRevocationStatusActions.Builder,CheckCertificateRevocationStatusActions>
@Generated("software.amazon.awssdk:codegen") public final class CheckCertificateRevocationStatusActions extends Object implements SdkPojo, Serializable, ToCopyableBuilder<CheckCertificateRevocationStatusActions.Builder,CheckCertificateRevocationStatusActions>

Defines the actions to take on the SSL/TLS connection if the certificate presented by the server in the connection has a revoked or unknown status.

See Also:

  • Method Details

    • revokedStatusAction

      public final RevocationCheckAction revokedStatusAction()

      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      If the service returns an enum value that is not available in the current SDK version, revokedStatusAction will return RevocationCheckAction.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from revokedStatusActionAsString().

      Returns:
      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      See Also:

    • revokedStatusActionAsString

      public final String revokedStatusActionAsString()

      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      If the service returns an enum value that is not available in the current SDK version, revokedStatusAction will return RevocationCheckAction.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from revokedStatusActionAsString().

      Returns:
      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has a revoked status.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      See Also:

    • unknownStatusAction

      public final RevocationCheckAction unknownStatusAction()

      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      If the service returns an enum value that is not available in the current SDK version, unknownStatusAction will return RevocationCheckAction.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from unknownStatusActionAsString().

      Returns:
      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      See Also:

    • unknownStatusActionAsString

      public final String unknownStatusActionAsString()

      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      If the service returns an enum value that is not available in the current SDK version, unknownStatusAction will return RevocationCheckAction.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available from unknownStatusActionAsString().

      Returns:
      Configures how Network Firewall processes traffic when it determines that the certificate presented by the server in the SSL/TLS connection has an unknown status, or a status that cannot be determined for any other reason, including when the service is unable to connect to the OCSP and CRL endpoints for the certificate.

      • PASS - Allow the connection to continue, and pass subsequent packets to the stateful engine for inspection.

      • DROP - Network Firewall closes the connection and drops subsequent packets for that connection.

      • REJECT - Network Firewall sends a TCP reject packet back to your client. The service closes the connection and drops subsequent packets for that connection. REJECT is available only for TCP traffic.

      See Also:

    • toBuilder

      public CheckCertificateRevocationStatusActions.Builder toBuilder()
      Description copied from interface: ToCopyableBuilder
      Take this object and create a builder that contains all of the current property values of this object.
      Specified by:
      toBuilder in interface ToCopyableBuilder<CheckCertificateRevocationStatusActions.Builder,CheckCertificateRevocationStatusActions>
      Returns:
      a builder for type T

    • builder

      public static CheckCertificateRevocationStatusActions.Builder builder()

    • serializableBuilderClass

      public static Class<? extends CheckCertificateRevocationStatusActions.Builder> serializableBuilderClass()

    • hashCode

      public final int hashCode()
      Overrides:
      hashCode in class Object

    • equals

      public final boolean equals(Object obj)
      Overrides:
      equals in class Object

    • equalsBySdkFields

      public final boolean equalsBySdkFields(Object obj)
      Description copied from interface: SdkPojo
      Indicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in an SdkPojo class, and is generated based on a service model.

      If an SdkPojo class does not have any inherited fields, equalsBySdkFields and equals are essentially the same.

      Specified by:
      equalsBySdkFields in interface SdkPojo
      Parameters:
      obj - the object to be compared with
      Returns:
      true if the other object equals to this object by sdk fields, false otherwise.

    • toString

      public final String toString()
      Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.
      Overrides:
      toString in class Object

    • getValueForField

      public final <T> Optional<T> getValueForField(String fieldName, Class<T> clazz)

    • sdkFields

      public final List<SdkField<?>> sdkFields()
      Specified by:
      sdkFields in interface SdkPojo
      Returns:
      List of SdkField in this POJO. May be empty list but should never be null.