Reference documentation and code samples for the Certificate Authority v1 API enum SubjectRequestMode.
Describes the way in which a [Certificate][google.cloud.security.privateca.v1.Certificate]'s [Subject][google.cloud.security.privateca.v1.Subject] and/or
[SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] will be resolved.
The default mode used in most cases. Indicates that the certificate's
[Subject][google.cloud.security.privateca.v1.Subject] and/or [SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] are specified in the certificate
request. This mode requires the caller to have the
privateca.certificates.create permission.
ReflectedSpiffe
A mode reserved for special cases. Indicates that the certificate should
have one or more SPIFFE [SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] set by the service based
on the caller's identity. This mode will ignore any explicitly specified
[Subject][google.cloud.security.privateca.v1.Subject] and/or [SubjectAltNames][google.cloud.security.privateca.v1.SubjectAltNames] in the certificate request.
This mode requires the caller to have the
privateca.certificates.createForSelf permission.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe latest version of the \u003ccode\u003eSubjectRequestMode\u003c/code\u003e is 3.9.0, with various other versions available, ranging from 3.8.0 down to 1.0.0.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eSubjectRequestMode\u003c/code\u003e is an enum within the Certificate Authority v1 API that dictates how a certificate's \u003ccode\u003eSubject\u003c/code\u003e and \u003ccode\u003eSubjectAltNames\u003c/code\u003e are handled.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eDefault\u003c/code\u003e mode requires the \u003ccode\u003eprivateca.certificates.create\u003c/code\u003e permission and specifies that the certificate's \u003ccode\u003eSubject\u003c/code\u003e and/or \u003ccode\u003eSubjectAltNames\u003c/code\u003e are defined in the certificate request.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eReflectedSpiffe\u003c/code\u003e mode is for special cases where the service sets SPIFFE \u003ccode\u003eSubjectAltNames\u003c/code\u003e based on the caller's identity, requiring the \u003ccode\u003eprivateca.certificates.createForSelf\u003c/code\u003e permission.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eUnspecified\u003c/code\u003e mode signifies that no specific mode has been selected for handling the \u003ccode\u003eSubject\u003c/code\u003e and/or \u003ccode\u003eSubjectAltNames\u003c/code\u003e.\u003c/p\u003e\n"]]],[],null,[]]
