$schema: "http://json-schema.org/draft-06/schema#"

title: networksecurity v1 ClientTlsPolicy export schema
description: A gcloud export/import command YAML validation schema.
type: object
required:
- name
additionalProperties: false
properties:
  COMMENT:
    type: object
    description: User specified info ignored by gcloud import.
    additionalProperties: false
    properties:
      template-id:
        type: string
      region:
        type: string
      description:
        type: string
      date:
        type: string
      version:
        type: string
  UNKNOWN:
    type: array
    description: Unknown API fields that cannot be imported.
    items:
      type: string
  clientCertificate:
    description: |-
      Defines a mechanism to provision client identity (public and private keys)
      for peer to peer authentication. The presence of this dictates mTLS.
    $ref: GoogleCloudNetworksecurityV1CertificateProvider.yaml
  description:
    description: Free-text description of the resource.
    type: string
  labels:
    description: Set of label tags associated with the resource.
    $ref: LabelsValue.yaml
  name:
    description: |-
      Name of the ClientTlsPolicy resource. It matches the pattern
      `projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}`
    type: string
  serverValidationCa:
    description: |-
      Defines the mechanism to obtain the Certificate Authority certificate to
      validate the server certificate. If empty, client does not validate the
      server certificate.
    type: array
    items:
      $ref: ValidationCA.yaml
  sni:
    description: |-
      Server Name Indication string to present to the server during TLS
      handshake. E.g: "secure.example.com".
    type: string