AWS Private Certificate Authority (CA)

Implementation details for API acm-pca

Coverage Overview

AWS Private Certificate Authority (CA) is supported by LocalStack only in the pro image.

AvailabilityTesting*
OperationImplementedImageInternal Test SuiteExternal Test SuiteTerraform ValidatedAWS ValidatedSnapshot TestedDetails
CreateCertificateAuthority✔️pro✔️✔️✔️✔️Show Tests
CreateCertificateAuthorityAuditReport
CreatePermission
DeleteCertificateAuthority✔️pro✔️✔️✔️✔️Show Tests
DeletePermission
DeletePolicy
DescribeCertificateAuthority✔️pro✔️✔️✔️✔️Show Tests
DescribeCertificateAuthorityAuditReport
GetCertificate✔️pro✔️✔️
GetCertificateAuthorityCertificate✔️pro✔️✔️
GetCertificateAuthorityCsr✔️pro✔️✔️
GetPolicy
ImportCertificateAuthorityCertificate✔️pro✔️✔️
IssueCertificate✔️pro✔️✔️
ListCertificateAuthorities
ListPermissions
ListTags✔️pro✔️✔️✔️✔️Show Tests
PutPolicy
RestoreCertificateAuthority
RevokeCertificate✔️pro✔️✔️
TagCertificateAuthority✔️pro✔️✔️Show Tests
UntagCertificateAuthority✔️pro
UpdateCertificateAuthority✔️pro✔️✔️

Terminology

  • Internal Test Suite: tested by LocalStack's internal integration test suite
  • External Test Suite: covered by an external integration test suite, that runs against LocalStack
  • Terraform Validated: operation tested with Terraform
  • AWS Validated: the integration test that includes this operation call was validated against AWS
  • Snapshot Tested: the operation is part of a snapshot parity test, which verifies the responses by LocalStack and AWS are the same

Testing Details

This section gives an overview about the internal integration test suite and the specific test cases that recorded the API call.

How to read the test details?

For each operation we put up a list of the related integration test cases.
Those operation calls have been recorded during the exeuction of the outlined test cases. Some calls might be internal, i.e., they are not explicitly called in the test, but are triggered implicitly by the LocalStack framework.

  • Parameters: The tests are ordered by the parameters used, which are highlighted in bold.
  • Test Details: LocalStack Community or LocalStack Pro indicates where the test originates. For each test you see:
    • test name
    • status code returned (which is the expected one for the test case)
    • information about validation:
      • AWS validated the test is validated against AWS, meaning it run successfully against real AWS as well
      • Snapshot Tested this is a snapshot parity test, meaning the responses are validated against AWS


CreateCertificateAuthority

Parameters: CertificateAuthorityConfiguration, CertificateAuthorityType, RevocationConfiguration, Tags
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated

DeleteCertificateAuthority

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated

DescribeCertificateAuthority

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated

ListTags

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated

TagCertificateAuthority

Parameters: CertificateAuthorityArn, Tags
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated


Last modified March 25, 2024: update generated parity coverage docs (#1140) (5ca385bc1)