ViewerCertificate (AWS SDK for Java

java.lang.Object
- com.amazonaws.services.cloudfront.model.ViewerCertificate

All Implemented Interfaces:

Serializable, Cloneable
```
@Generated(value="com.amazonaws:aws-java-sdk-code-generator")
public class ViewerCertificate
extends Object
implements Serializable, Cloneable
```
A complex type that specifies the following:
- Whether you want viewers to use HTTP or HTTPS to request your objects.
- If you want viewers to use HTTPS, whether you're using an alternate domain name such as example.com or the CloudFront domain name for your distribution, such as d111111abcdef8.cloudfront.net.
- If you're using an alternate domain name, whether AWS Certificate Manager (ACM) provided the certificate, or you purchased a certificate from a third-party certificate authority and imported it into ACM or uploaded it to the IAM certificate store.
You must specify only one of the following values:
Don't specify false for CloudFrontDefaultCertificate.

If you want viewers to use HTTP instead of HTTPS to request your objects: Specify the following value:

<CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>

In addition, specify allow-all for ViewerProtocolPolicy for all of your cache behaviors.

If you want viewers to use HTTPS to request your objects: Choose the type of certificate that you want to use based on whether you're using an alternate domain name for your objects or the CloudFront domain name:
- If you're using an alternate domain name, such as example.com: Specify one of the following values, depending on whether ACM provided your certificate or you purchased your certificate from third-party certificate authority:
  - <ACMCertificateArn>ARN for ACM SSL/TLS certificate<ACMCertificateArn> where ARN for ACM SSL/TLS certificate is the ARN for the ACM SSL/TLS certificate that you want to use for this distribution.
  - <IAMCertificateId>IAM certificate ID<IAMCertificateId> where IAM certificate ID is the ID that IAM returned when you added the certificate to the IAM certificate store.
  If you specify ACMCertificateArn or IAMCertificateId, you must also specify a value for SSLSupportMethod.
  
  If you choose to use an ACM certificate or a certificate in the IAM certificate store, we recommend that you use only an alternate domain name in your object URLs (https://example.com/logo.jpg). If you use the domain name that is associated with your CloudFront distribution (such as https://d111111abcdef8.cloudfront.net/logo.jpg) and the viewer supports SNI, then CloudFront behaves normally. However, if the browser does not support SNI, the user's experience depends on the value that you choose for SSLSupportMethod:
  - vip: The viewer displays a warning because there is a mismatch between the CloudFront domain name and the domain name in your SSL/TLS certificate.
  - sni-only: CloudFront drops the connection with the browser without returning the object.
- If you're using the CloudFront domain name for your distribution, such as d111111abcdef8.cloudfront.net : Specify the following value:
  
  <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>
If you want viewers to use HTTPS, you must also specify one of the following values in your cache behaviors:
- <ViewerProtocolPolicy>https-only<ViewerProtocolPolicy>
- <ViewerProtocolPolicy>redirect-to-https<ViewerProtocolPolicy>
You can also optionally require that CloudFront use HTTPS to communicate with your origin by specifying one of the following values for the applicable origins:
- <OriginProtocolPolicy>https-only<OriginProtocolPolicy>
- <OriginProtocolPolicy>match-viewer<OriginProtocolPolicy>
For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
See Also:

AWS API Documentation, Serialized Form

Constructor Summary

Constructors
Constructor and Description

ViewerCertificate()

Constructors
Constructor and Description
`ViewerCertificate()`

Method Summary

All Methods Instance Methods Concrete Methods Deprecated Methods
Modifier and Type	Method and Description
`ViewerCertificate`	`clone()`
`boolean`	`equals(Object obj)`
`String`	`getACMCertificateArn()` For information about how and when to use `ACMCertificateArn`, see ViewerCertificate.
`String`	`getCertificate()` Deprecated.
`String`	`getCertificateSource()` Deprecated.
`Boolean`	`getCloudFrontDefaultCertificate()` For information about how and when to use `CloudFrontDefaultCertificate`, see ViewerCertificate.
`String`	`getIAMCertificateId()` For information about how and when to use `IAMCertificateId`, see ViewerCertificate.
`String`	`getMinimumProtocolVersion()` Specify the security policy that you want CloudFront to use for HTTPS connections.
`String`	`getSSLSupportMethod()` If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
`int`	`hashCode()`
`Boolean`	`isCloudFrontDefaultCertificate()` For information about how and when to use `CloudFrontDefaultCertificate`, see ViewerCertificate.
`void`	`setACMCertificateArn(String aCMCertificateArn)` For information about how and when to use `ACMCertificateArn`, see ViewerCertificate.
`void`	`setCertificate(String certificate)` Deprecated.
`void`	`setCertificateSource(CertificateSource certificateSource)` Deprecated.
`void`	`setCertificateSource(String certificateSource)` Deprecated.
`void`	`setCloudFrontDefaultCertificate(Boolean cloudFrontDefaultCertificate)` For information about how and when to use `CloudFrontDefaultCertificate`, see ViewerCertificate.
`void`	`setIAMCertificateId(String iAMCertificateId)` For information about how and when to use `IAMCertificateId`, see ViewerCertificate.
`void`	`setMinimumProtocolVersion(MinimumProtocolVersion minimumProtocolVersion)` Specify the security policy that you want CloudFront to use for HTTPS connections.
`void`	`setMinimumProtocolVersion(String minimumProtocolVersion)` Specify the security policy that you want CloudFront to use for HTTPS connections.
`void`	`setSSLSupportMethod(SSLSupportMethod sSLSupportMethod)` If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
`void`	`setSSLSupportMethod(String sSLSupportMethod)` If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
`String`	`toString()` Returns a string representation of this object; useful for testing and debugging.
`ViewerCertificate`	`withACMCertificateArn(String aCMCertificateArn)` For information about how and when to use `ACMCertificateArn`, see ViewerCertificate.
`ViewerCertificate`	`withCertificate(String certificate)` Deprecated.
`ViewerCertificate`	`withCertificateSource(CertificateSource certificateSource)` Deprecated.
`ViewerCertificate`	`withCertificateSource(String certificateSource)` Deprecated.
`ViewerCertificate`	`withCloudFrontDefaultCertificate(Boolean cloudFrontDefaultCertificate)` For information about how and when to use `CloudFrontDefaultCertificate`, see ViewerCertificate.
`ViewerCertificate`	`withIAMCertificateId(String iAMCertificateId)` For information about how and when to use `IAMCertificateId`, see ViewerCertificate.
`ViewerCertificate`	`withMinimumProtocolVersion(MinimumProtocolVersion minimumProtocolVersion)` Specify the security policy that you want CloudFront to use for HTTPS connections.
`ViewerCertificate`	`withMinimumProtocolVersion(String minimumProtocolVersion)` Specify the security policy that you want CloudFront to use for HTTPS connections.
`ViewerCertificate`	`withSSLSupportMethod(SSLSupportMethod sSLSupportMethod)` If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
`ViewerCertificate`	`withSSLSupportMethod(String sSLSupportMethod)` If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:

Methods inherited from class java.lang.Object
getClass, notify, notifyAll, wait, wait, wait

- Constructor Detail
  - ViewerCertificate
```
public ViewerCertificate()
```
- Method Detail
  - setCloudFrontDefaultCertificate
```
public void setCloudFrontDefaultCertificate(Boolean cloudFrontDefaultCertificate)
```
    For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
    
    Parameters:
    
    cloudFrontDefaultCertificate - For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
  - getCloudFrontDefaultCertificate
```
public Boolean getCloudFrontDefaultCertificate()
```
    For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
    
    Returns:
    
    For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
  - withCloudFrontDefaultCertificate
```
public ViewerCertificate withCloudFrontDefaultCertificate(Boolean cloudFrontDefaultCertificate)
```
    For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
    
    Parameters:
    
    cloudFrontDefaultCertificate - For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
    
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
  - isCloudFrontDefaultCertificate
```
public Boolean isCloudFrontDefaultCertificate()
```
    For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
    
    Returns:
    
    For information about how and when to use CloudFrontDefaultCertificate, see ViewerCertificate.
  - setIAMCertificateId
```
public void setIAMCertificateId(String iAMCertificateId)
```
    For information about how and when to use IAMCertificateId, see ViewerCertificate.
    
    Parameters:
    
    iAMCertificateId - For information about how and when to use IAMCertificateId, see ViewerCertificate.
  - getIAMCertificateId
```
public String getIAMCertificateId()
```
    For information about how and when to use IAMCertificateId, see ViewerCertificate.
    
    Returns:
    
    For information about how and when to use IAMCertificateId, see ViewerCertificate.
  - withIAMCertificateId
```
public ViewerCertificate withIAMCertificateId(String iAMCertificateId)
```
    For information about how and when to use IAMCertificateId, see ViewerCertificate.
    
    Parameters:
    
    iAMCertificateId - For information about how and when to use IAMCertificateId, see ViewerCertificate.
    
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
  - setACMCertificateArn
```
public void setACMCertificateArn(String aCMCertificateArn)
```
    For information about how and when to use ACMCertificateArn, see ViewerCertificate.
    
    Parameters:
    
    aCMCertificateArn - For information about how and when to use ACMCertificateArn, see ViewerCertificate.
  - getACMCertificateArn
```
public String getACMCertificateArn()
```
    For information about how and when to use ACMCertificateArn, see ViewerCertificate.
    
    Returns:
    
    For information about how and when to use ACMCertificateArn, see ViewerCertificate.
  - withACMCertificateArn
```
public ViewerCertificate withACMCertificateArn(String aCMCertificateArn)
```
    For information about how and when to use ACMCertificateArn, see ViewerCertificate.
    
    Parameters:
    
    aCMCertificateArn - For information about how and when to use ACMCertificateArn, see ViewerCertificate.
    
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
  - setSSLSupportMethod
```
public void setSSLSupportMethod(String sSLSupportMethod)
```
    If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    - vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    - sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
      
      Use the vip option (dedicated IP addresses) instead of sni-only.
      
      Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
      
      If you can control which browser your users use, upgrade the browser to one that supports SNI.
      
      Use HTTP instead of HTTPS.
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    Parameters:
    sSLSupportMethod - If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    
    vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    
    sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
    
    Use the vip option (dedicated IP addresses) instead of sni-only.
    
    Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
    
    If you can control which browser your users use, upgrade the browser to one that supports SNI.
    
    Use HTTP instead of HTTPS.
    
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    See Also:
    
    SSLSupportMethod
  - getSSLSupportMethod
```
public String getSSLSupportMethod()
```
    If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    - vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    - sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
      
      Use the vip option (dedicated IP addresses) instead of sni-only.
      
      Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
      
      If you can control which browser your users use, upgrade the browser to one that supports SNI.
      
      Use HTTP instead of HTTPS.
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    Returns:
    If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    
    vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    
    sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
    
    Use the vip option (dedicated IP addresses) instead of sni-only.
    
    Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
    
    If you can control which browser your users use, upgrade the browser to one that supports SNI.
    
    Use HTTP instead of HTTPS.
    
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    See Also:
    
    SSLSupportMethod
  - withSSLSupportMethod
```
public ViewerCertificate withSSLSupportMethod(String sSLSupportMethod)
```
    If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    - vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    - sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
      
      Use the vip option (dedicated IP addresses) instead of sni-only.
      
      Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
      
      If you can control which browser your users use, upgrade the browser to one that supports SNI.
      
      Use HTTP instead of HTTPS.
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    Parameters:
    sSLSupportMethod - If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    
    vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    
    sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
    
    Use the vip option (dedicated IP addresses) instead of sni-only.
    
    Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
    
    If you can control which browser your users use, upgrade the browser to one that supports SNI.
    
    Use HTTP instead of HTTPS.
    
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
    
    See Also:
    
    SSLSupportMethod
  - setSSLSupportMethod
```
public void setSSLSupportMethod(SSLSupportMethod sSLSupportMethod)
```
    If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    - vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    - sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
      
      Use the vip option (dedicated IP addresses) instead of sni-only.
      
      Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
      
      If you can control which browser your users use, upgrade the browser to one that supports SNI.
      
      Use HTTP instead of HTTPS.
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    Parameters:
    sSLSupportMethod - If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    
    vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    
    sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
    
    Use the vip option (dedicated IP addresses) instead of sni-only.
    
    Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
    
    If you can control which browser your users use, upgrade the browser to one that supports SNI.
    
    Use HTTP instead of HTTPS.
    
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    See Also:
    
    SSLSupportMethod
  - withSSLSupportMethod
```
public ViewerCertificate withSSLSupportMethod(SSLSupportMethod sSLSupportMethod)
```
    If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    - vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    - sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
      
      Use the vip option (dedicated IP addresses) instead of sni-only.
      
      Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
      
      If you can control which browser your users use, upgrade the browser to one that supports SNI.
      
      Use HTTP instead of HTTPS.
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    Parameters:
    sSLSupportMethod - If you specify a value for ViewerCertificate$ACMCertificateArn or for ViewerCertificate$IAMCertificateId, you must also specify how you want CloudFront to serve HTTPS requests: using a method that works for all clients or one that works for most clients:
    
    vip: CloudFront uses dedicated IP addresses for your content and can respond to HTTPS requests from any viewer. However, you will incur additional monthly charges.
    
    sni-only: CloudFront can respond to HTTPS requests from viewers that support Server Name Indication (SNI). All modern browsers support SNI, but some browsers still in use don't support SNI. If some of your users' browsers don't support SNI, we recommend that you do one of the following:
    
    Use the vip option (dedicated IP addresses) instead of sni-only.
    
    Use the CloudFront SSL/TLS certificate instead of a custom certificate. This requires that you use the CloudFront domain name of your distribution in the URLs for your objects, for example, https://d111111abcdef8.cloudfront.net/logo.png.
    
    If you can control which browser your users use, upgrade the browser to one that supports SNI.
    
    Use HTTP instead of HTTPS.
    
    Don't specify a value for SSLSupportMethod if you specified <CloudFrontDefaultCertificate>true<CloudFrontDefaultCertificate>.
    
    For more information, see Using Alternate Domain Names and HTTPS in the Amazon CloudFront Developer Guide.
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
    
    See Also:
    
    SSLSupportMethod
  - setMinimumProtocolVersion
```
public void setMinimumProtocolVersion(String minimumProtocolVersion)
```
    Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    - The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    - The cipher that CloudFront uses to encrypt the content that it returns to viewers
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    - You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    - You're using SNI: you specified sni-only for SSLSupportMethod
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    Parameters:
    minimumProtocolVersion - Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    
    The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    
    The cipher that CloudFront uses to encrypt the content that it returns to viewers
    
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    
    You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    
    You're using SNI: you specified sni-only for SSLSupportMethod
    
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    See Also:
    
    MinimumProtocolVersion
  - getMinimumProtocolVersion
```
public String getMinimumProtocolVersion()
```
    Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    - The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    - The cipher that CloudFront uses to encrypt the content that it returns to viewers
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    - You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    - You're using SNI: you specified sni-only for SSLSupportMethod
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    Returns:
    Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    
    The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    
    The cipher that CloudFront uses to encrypt the content that it returns to viewers
    
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    
    You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    
    You're using SNI: you specified sni-only for SSLSupportMethod
    
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    See Also:
    
    MinimumProtocolVersion
  - withMinimumProtocolVersion
```
public ViewerCertificate withMinimumProtocolVersion(String minimumProtocolVersion)
```
    Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    - The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    - The cipher that CloudFront uses to encrypt the content that it returns to viewers
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    - You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    - You're using SNI: you specified sni-only for SSLSupportMethod
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    Parameters:
    minimumProtocolVersion - Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    
    The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    
    The cipher that CloudFront uses to encrypt the content that it returns to viewers
    
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    
    You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    
    You're using SNI: you specified sni-only for SSLSupportMethod
    
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
    
    See Also:
    
    MinimumProtocolVersion
  - setMinimumProtocolVersion
```
public void setMinimumProtocolVersion(MinimumProtocolVersion minimumProtocolVersion)
```
    Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    - The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    - The cipher that CloudFront uses to encrypt the content that it returns to viewers
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    - You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    - You're using SNI: you specified sni-only for SSLSupportMethod
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    Parameters:
    minimumProtocolVersion - Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    
    The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    
    The cipher that CloudFront uses to encrypt the content that it returns to viewers
    
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    
    You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    
    You're using SNI: you specified sni-only for SSLSupportMethod
    
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    See Also:
    
    MinimumProtocolVersion
  - withMinimumProtocolVersion
```
public ViewerCertificate withMinimumProtocolVersion(MinimumProtocolVersion minimumProtocolVersion)
```
    Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    - The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    - The cipher that CloudFront uses to encrypt the content that it returns to viewers
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    - You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    - You're using SNI: you specified sni-only for SSLSupportMethod
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    Parameters:
    minimumProtocolVersion - Specify the security policy that you want CloudFront to use for HTTPS connections. A security policy determines two settings:
    
    The minimum SSL/TLS protocol that CloudFront uses to communicate with viewers
    
    The cipher that CloudFront uses to encrypt the content that it returns to viewers
    
    On the CloudFront console, this setting is called Security policy.
    
    We recommend that you specify TLSv1.1_2016 unless your users are using browsers or devices that do not support TLSv1.1 or later.
    
    When both of the following are true, you must specify TLSv1 or later for the security policy:
    
    You're using a custom certificate: you specified a value for ACMCertificateArn or for IAMCertificateId
    
    You're using SNI: you specified sni-only for SSLSupportMethod
    
    If you specify true for CloudFrontDefaultCertificate, CloudFront automatically sets the security policy to TLSv1 regardless of the value that you specify for MinimumProtocolVersion.
    
    For information about the relationship between the security policy that you choose and the protocols and ciphers that CloudFront uses to communicate with viewers, see Supported SSL/TLS Protocols and Ciphers for Communication Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
    
    See Also:
    
    MinimumProtocolVersion
  - setCertificate
```
@Deprecated
public void setCertificate(String certificate)
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Parameters:
    certificate - This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
  - getCertificate
```
@Deprecated
public String getCertificate()
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Returns:
    This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
  - withCertificate
```
@Deprecated
public ViewerCertificate withCertificate(String certificate)
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Parameters:
    certificate - This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
  - setCertificateSource
```
@Deprecated
public void setCertificateSource(String certificateSource)
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Parameters:
    certificateSource - This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
    See Also:
    
    CertificateSource
  - getCertificateSource
```
@Deprecated
public String getCertificateSource()
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Returns:
    This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
    See Also:
    
    CertificateSource
  - withCertificateSource
```
@Deprecated
public ViewerCertificate withCertificateSource(String certificateSource)
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Parameters:
    certificateSource - This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
    
    See Also:
    
    CertificateSource
  - setCertificateSource
```
@Deprecated
public void setCertificateSource(CertificateSource certificateSource)
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Parameters:
    certificateSource - This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
    See Also:
    
    CertificateSource
  - withCertificateSource
```
@Deprecated
public ViewerCertificate withCertificateSource(CertificateSource certificateSource)
```
    Deprecated.
    This field has been deprecated. Use one of the following fields instead:
    Parameters:
    certificateSource - This field has been deprecated. Use one of the following fields instead:
    
    ViewerCertificate$ACMCertificateArn
    
    ViewerCertificate$IAMCertificateId
    
    ViewerCertificate$CloudFrontDefaultCertificate
    Returns:
    
    Returns a reference to this object so that method calls can be chained together.
    
    See Also:
    
    CertificateSource
  - toString
```
public String toString()
```
    Returns a string representation of this object; useful for testing and debugging.
    
    Overrides:
    
    toString in class Object
    
    Returns:
    
    A string representation of this object.
    
    See Also:
    
    Object.toString()
  - equals
```
public boolean equals(Object obj)
```
    Overrides:
    
    equals in class Object
  - hashCode
```
public int hashCode()
```
    Overrides:
    
    hashCode in class Object
  - clone
```
public ViewerCertificate clone()
```
    Overrides:
    
    clone in class Object

Did this page help you?

Class ViewerCertificate

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

ViewerCertificate

Method Detail

setCloudFrontDefaultCertificate

getCloudFrontDefaultCertificate

withCloudFrontDefaultCertificate

isCloudFrontDefaultCertificate

setIAMCertificateId

getIAMCertificateId

withIAMCertificateId

setACMCertificateArn

getACMCertificateArn

withACMCertificateArn

setSSLSupportMethod

getSSLSupportMethod

withSSLSupportMethod

setSSLSupportMethod

withSSLSupportMethod

setMinimumProtocolVersion

getMinimumProtocolVersion

withMinimumProtocolVersion

setMinimumProtocolVersion

withMinimumProtocolVersion

setCertificate

getCertificate

withCertificate

setCertificateSource

getCertificateSource

withCertificateSource

setCertificateSource

withCertificateSource

toString

equals

hashCode

clone