Certificate Manager Private CA API, REST: PrivateCa.SendSignedCertificateOfCertificateAuthority
Sends a signed certificate chain after a CSR has been generated.
This finalizes the creation process after a signed certificate has been obtained.
HTTP request
POST https://private-ca.certificate-manager.api.cloud.yandex.net/privateca/v1/certificateAuthorities/{certificateAuthorityId}:sendSignedCertificate
Path parameters
Request for sending a signed certificate for an existing Certificate Authority.
This is used to send back the signed certificate that will finalize the creation of the CA.
Field |
Description |
certificateAuthorityId |
string Required field. The ID of the created but not activated Certificate Authority. |
Body parameters
{
"pemContent": "string"
}
Request for sending a signed certificate for an existing Certificate Authority.
This is used to send back the signed certificate that will finalize the creation of the CA.
Field |
Description |
pemContent |
string Required field. The PEM-encoded content of the signed certificate. |
Response
HTTP Code: 200 - OK
{
"id": "string",
"description": "string",
"createdAt": "string",
"createdBy": "string",
"modifiedAt": "string",
"done": "boolean",
"metadata": {
"certificateAuthorityId": "string"
},
// Includes only one of the fields `error`, `response`
"error": {
"code": "integer",
"message": "string",
"details": [
"object"
]
},
"response": {
"id": "string",
"folderId": "string",
"name": "string",
"description": "string",
"parentCertificateAuthorityId": "string",
"status": "string",
"issuedAt": "string",
"notAfter": "string",
"notBefore": "string",
"crlEndpoint": "string",
"endEntitiesTtlLimitDays": "string",
"deletionProtection": "boolean",
"createdAt": "string",
"updatedAt": "string"
}
// end of the list of possible fields
}
An Operation resource. For more information, see Operation.
Field |
Description |
id |
string ID of the operation. |
description |
string Description of the operation. 0-256 characters long. |
createdAt |
string (date-time) Creation timestamp. String in RFC3339 To work with values in this field, use the APIs described in the |
createdBy |
string ID of the user or service account who initiated the operation. |
modifiedAt |
string (date-time) The time when the Operation resource was last modified. String in RFC3339 To work with values in this field, use the APIs described in the |
done |
boolean If the value is |
metadata |
SendSignedCertificateOfCertificateAuthorityMetadata Service-specific metadata associated with the operation. |
error |
The error result of the operation in case of failure or cancellation. Includes only one of the fields The operation result. |
response |
The normal response of the operation in case of success. Includes only one of the fields The operation result. |
SendSignedCertificateOfCertificateAuthorityMetadata
Metadata returned from the SendSignedCertificateOfCertificateAuthority operation.
Contains basic data about the completed process.
Field |
Description |
certificateAuthorityId |
string The ID of the Certificate Authority for which the signed certificate was submitted. |
Status
The error result of the operation in case of failure or cancellation.
Field |
Description |
code |
integer (int32) Error code. An enum value of google.rpc.Code |
message |
string An error message. |
details[] |
object A list of messages that carry the error details. |
CertificateAuthority
A certificate authority (CA) used to sign certificates.
Field |
Description |
id |
string ID of the certificate authority. |
folderId |
string ID of the folder that the certificate authority belongs to. |
name |
string Name of the certificate authority. |
description |
string Description of the certificate authority. |
parentCertificateAuthorityId |
string ID of the parent certificate authority that signed this certificate authority if any. |
status |
enum (Status) Status of the certificate authority.
|
issuedAt |
string (date-time) Time when the certificate authority was issued. String in RFC3339 To work with values in this field, use the APIs described in the |
notAfter |
string (date-time) Time after which the certificate authority is not valid. String in RFC3339 To work with values in this field, use the APIs described in the |
notBefore |
string (date-time) Time before which the certificate authority is not valid. String in RFC3339 To work with values in this field, use the APIs described in the |
crlEndpoint |
string Endpoint of the certificate revocation list (CRL) for the certificate authority. |
endEntitiesTtlLimitDays |
string (int64) Maximum allowed TTL (in days) for end-entity certificates issued by this CA. |
deletionProtection |
boolean Flag that protects deletion of the certificate authority. |
createdAt |
string (date-time) Time when the certificate authority was created. String in RFC3339 To work with values in this field, use the APIs described in the |
updatedAt |
string (date-time) Time when the certificate authority was last updated. String in RFC3339 To work with values in this field, use the APIs described in the |