SAML Application API, REST: SignatureCertificate.List

Written by

Updated at October 30, 2025

HTTP request
Query parameters
Response
SignatureCertificate

Retrieves the list of signature certificates for the specified SAML application.

HTTP request

GET https://organization-manager.api.cloud.yandex.net/organization-manager/v1/idp/application/saml/signature-certificates

Query parameters

Request to list signature certificates for a SAML application.

Field	Description
applicationId	string Required field. ID of the SAML application to list certificates for.
pageSize	string (int64) The maximum number of results per page to return.
pageToken	string Page token for pagination.
filter	string A filter expression that filters resources listed in the response.

Response

HTTP Code: 200 - OK

{
  "signatureCertificates": [
    {
      "id": "string",
      "applicationId": "string",
      "status": "string",
      "name": "string",
      "description": "string",
      "createdAt": "string",
      "data": "string",
      "fingerprint": "string",
      "notAfter": "string",
      "notBefore": "string"
    }
  ],
  "nextPageToken": "string"
}

Response message for SignatureCertificateService.List.

Field

Description

signatureCertificates[]

SignatureCertificate

List of signature certificates.

nextPageToken

string

Token for getting the next page of the list.

SignatureCertificate

A signature certificate for SAML applications.

Field	Description
id	string Unique identifier of the signature certificate.
applicationId	string ID of the SAML application that the signature certificate belongs to.
status	enum (Status) Current status of the signature certificate. `STATUS_UNSPECIFIED`: The status is not specified. `ACTIVE`: The certificate is active and can be used for signing. `INACTIVE`: The certificate is inactive and cannot be used for signing.
name	string Name of the signature certificate.
description	string Description of the signature certificate.
createdAt	string (date-time) Creation timestamp. String in RFC3339 text format. The range of possible values is from `0001-01-01T00:00:00Z` to `9999-12-31T23:59:59.999999999Z`, i.e. from 0 to 9 digits for fractions of a second. To work with values in this field, use the APIs described in the Protocol Buffers reference. In some languages, built-in datetime utilities do not support nanosecond precision (9 digits).
data	string Certificate data in PEM format.
fingerprint	string SHA256-fingerprint of the signature certificate.
notAfter	string (date-time) Time after which the signature certificate is not valid. String in RFC3339 text format. The range of possible values is from `0001-01-01T00:00:00Z` to `9999-12-31T23:59:59.999999999Z`, i.e. from 0 to 9 digits for fractions of a second. To work with values in this field, use the APIs described in the Protocol Buffers reference. In some languages, built-in datetime utilities do not support nanosecond precision (9 digits).
notBefore	string (date-time) Time before which the signature certificate is not valid. String in RFC3339 text format. The range of possible values is from `0001-01-01T00:00:00Z` to `9999-12-31T23:59:59.999999999Z`, i.e. from 0 to 9 digits for fractions of a second. To work with values in this field, use the APIs described in the Protocol Buffers reference. In some languages, built-in datetime utilities do not support nanosecond precision (9 digits).

SAML Application API, REST: SignatureCertificate.List

HTTP requestHTTP request

Query parametersQuery parameters

ResponseResponse

SignatureCertificateSignatureCertificate

Was the article helpful?

HTTP request

Query parameters

Response

SignatureCertificate