Skip to content

/AWS1/CL_SEBTRUSTSTORE

The trust store used for mutual TLS authentication. It contains the certificate authority (CA) certificates and optional certificate revocation list (CRL).

CONSTRUCTOR

IMPORTING

Required arguments:

iv_cacontent TYPE /AWS1/SEBCACONTENT /AWS1/SEBCACONTENT

The PEM-encoded certificate authority (CA) certificates bundle for the trust store.

Optional arguments:

iv_crlcontent TYPE /AWS1/SEBCRLCONTENT /AWS1/SEBCRLCONTENT

The PEM-encoded certificate revocation lists (CRLs) for the trust store. There can be one CRL per certificate authority (CA) in the trust store.

iv_kmskeyarn TYPE /AWS1/SEBKMSKEYARN /AWS1/SEBKMSKEYARN

The Amazon Resource Name (ARN) of the KMS key used to encrypt the trust store contents.

Queryable Attributes

CAContent

The PEM-encoded certificate authority (CA) certificates bundle for the trust store.

Accessible with the following methods

Method Description
GET_CACONTENT() Getter for CACONTENT, with configurable default
ASK_CACONTENT() Getter for CACONTENT w/ exceptions if field has no value
HAS_CACONTENT() Determine if CACONTENT has a value

CrlContent

The PEM-encoded certificate revocation lists (CRLs) for the trust store. There can be one CRL per certificate authority (CA) in the trust store.

Accessible with the following methods

Method Description
GET_CRLCONTENT() Getter for CRLCONTENT, with configurable default
ASK_CRLCONTENT() Getter for CRLCONTENT w/ exceptions if field has no value
HAS_CRLCONTENT() Determine if CRLCONTENT has a value

KmsKeyArn

The Amazon Resource Name (ARN) of the KMS key used to encrypt the trust store contents.

Accessible with the following methods

Method Description
GET_KMSKEYARN() Getter for KMSKEYARN, with configurable default
ASK_KMSKEYARN() Getter for KMSKEYARN w/ exceptions if field has no value
HAS_KMSKEYARN() Determine if KMSKEYARN has a value