public static final class CertificatePrivateKeySignRequest.Builder extends Object
| 限定符和类型 | 方法和说明 |
|---|---|
CertificatePrivateKeySignRequest.Builder |
algorithm(String algorithm)
The signature algorithm.
|
CertificatePrivateKeySignRequest |
build() |
CertificatePrivateKeySignRequest.Builder |
certificateId(String certificateId)
The ID of the certificate.
|
CertificatePrivateKeySignRequest.Builder |
message(String message)
The data to be signed.
|
CertificatePrivateKeySignRequest.Builder |
messageType(String messageType)
The type of the message.
|
public CertificatePrivateKeySignRequest.Builder algorithm(String algorithm)
* RSA_PKCS1\_SHA\_256 * RSA_PSS_SHA\_256 * ECDSA_SHA\_256 * SM2DSA >* The SM2DSA signature algorithm is supported only in regions where managed hardware security modules (HSMs) are used in mainland China. For more information, see [Managed HSM overview](~~125803~~).
public CertificatePrivateKeySignRequest.Builder certificateId(String certificateId)
public CertificatePrivateKeySignRequest.Builder message(String message)
The value is encoded in Base64. For example, if the hexadecimal data that you want to sign is `[0x31, 0x32, 0x33, 0x34]`, the Base64-encoded data is `MTIzNA==`. If the MessageType parameter is set to RAW, the size of the data must be less than or equal to 4 KB. If the size of the data is greater than 4 KB, you can set the MessageType parameter to DIGEST and set the Message parameter to the digest of the data. The digest is also called hash value. You can compute the digest of the data on an on-premises machine. Certificates Manager uses the digest that you compute in your own certificate application system. The message digest algorithm that you use must match the specified signature algorithm. Comply with the following mapping between signature algorithms and message digest algorithms: * If the signature algorithm is RSA_PKCS1\_SHA\_256, RSA_PSS_SHA\_256, or ECDSA_SHA\_256, the message digest algorithm must be SHA-256. * If the signature algorithm is SM2DSA, the message digest algorithm must be SM3. > If the key type of the certificate is EC_SM2 and the MessageType parameter is set to DIGEST, the value of the Message parameter is `e` that is described in GB/T 32918.2-2016 6.1.
public CertificatePrivateKeySignRequest.Builder messageType(String messageType)
* RAW: the raw data. This is the default value. * DIGEST: the message digest (hash value) of the raw data.
public CertificatePrivateKeySignRequest build()
Copyright © 2023. All rights reserved.