AWS Private Certificate Authority (CA)

Implementation details for API acm-pca

Coverage Overview

AWS Private Certificate Authority (CA) is supported by LocalStack only in the pro image.

AvailabilityTesting*
OperationImplementedImageInternal Test SuiteExternal Test SuiteTerraform ValidatedAWS ValidatedSnapshot TestedDetails
CreateCertificateAuthority✔️pro✔️✔️✔️✔️Show Tests
CreateCertificateAuthorityAuditReport
CreatePermission
DeleteCertificateAuthority✔️pro✔️✔️✔️✔️Show Tests
DeletePermission
DeletePolicy
DescribeCertificateAuthority✔️pro✔️✔️✔️✔️Show Tests
DescribeCertificateAuthorityAuditReport
GetCertificate✔️pro✔️✔️✔️✔️Show Tests
GetCertificateAuthorityCertificate✔️pro✔️✔️✔️✔️Show Tests
GetCertificateAuthorityCsr✔️pro✔️✔️✔️✔️Show Tests
GetPolicy
ImportCertificateAuthorityCertificate✔️pro✔️✔️✔️✔️Show Tests
IssueCertificate✔️pro✔️✔️✔️✔️Show Tests
ListCertificateAuthorities
ListPermissions
ListTags✔️pro✔️✔️✔️✔️Show Tests
PutPolicy
RestoreCertificateAuthority
RevokeCertificate✔️pro✔️✔️
TagCertificateAuthority✔️pro✔️✔️Show Tests
UntagCertificateAuthority✔️pro
UpdateCertificateAuthority✔️pro✔️✔️

Terminology

  • Internal Test Suite: tested by LocalStack's internal integration test suite
  • External Test Suite: covered by an external integration test suite, that runs against LocalStack
  • Terraform Validated: operation tested with Terraform
  • AWS Validated: the integration test that includes this operation call was validated against AWS
  • Snapshot Tested: the operation is part of a snapshot parity test, which verifies the responses by LocalStack and AWS are the same

Testing Details

This section gives an overview about the internal integration test suite and the specific test cases that recorded the API call.

How to read the test details?

For each operation we put up a list of the related integration test cases.
Those operation calls have been recorded during the execution of the outlined test cases. Some calls might be internal, i.e., they are not explicitly called in the test, but are triggered implicitly by the LocalStack framework.

  • Parameters: The tests are ordered by the parameters used, which are highlighted in bold.
  • Test Details: LocalStack Community or LocalStack Pro indicates where the test originates. For each test you see:
    • test name
    • status code returned (which is the expected one for the test case)
    • information about validation:
      • AWS validated the test is validated against AWS, meaning it run successfully against real AWS as well
      • Snapshot Tested this is a snapshot parity test, meaning the responses are validated against AWS


CreateCertificateAuthority

Parameters: CertificateAuthorityConfiguration, CertificateAuthorityType, RevocationConfiguration, Tags
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated
Parameters: CertificateAuthorityConfiguration, CertificateAuthorityType, UsageMode
  • LocalStack Pro
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated

DeleteCertificateAuthority

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated

DescribeCertificateAuthority

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated

GetCertificate

Parameters: CertificateArn, CertificateAuthorityArn
  • LocalStack Pro
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated

GetCertificateAuthorityCertificate

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated

GetCertificateAuthorityCsr

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated

ImportCertificateAuthorityCertificate

Parameters: Certificate, CertificateAuthorityArn
  • LocalStack Pro
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated

IssueCertificate

Parameters: CertificateAuthorityArn, Csr, SigningAlgorithm, TemplateArn, Validity
  • LocalStack Pro
    • test_curl_from_client LocalStack Pro: tests/aws/scenario/ec2_acm_pca/test_ec2_acm_pca.py::TestEC2ACMPCA::test_curl_from_client HTTP Status Code: 200 AWS validated

ListTags

Parameters: CertificateAuthorityArn
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated

TagCertificateAuthority

Parameters: CertificateAuthorityArn, Tags
  • LocalStack Pro
    • test_create_describe_tag_ca LocalStack Pro: tests/aws/services/acm_pca/test_acmpca.py::TestACMPCA::test_create_describe_tag_ca HTTP Status Code: 200 AWS validated