Certificate Manager Private CA API, REST: PrivateCa.SendSignedCertificateOfCertificateAuthority
Sends a signed certificate chain after a CSR has been generated.
This finalizes the creation process after a signed certificate has been obtained.
HTTP request
POST https://private-ca.certificate-manager.api.yandexcloud.kz/privateca/v1/certificateAuthorities/{certificateAuthorityId}:sendSignedCertificate
Path parameters
Request for sending a signed certificate for an existing Certificate Authority.
This is used to send back the signed certificate that will finalize the creation of the CA.
|
Field |
Description |
|
certificateAuthorityId |
string Required field. The ID of the created but not activated Certificate Authority. |
Body parameters
{
"pemContent": "string"
}
Request for sending a signed certificate for an existing Certificate Authority.
This is used to send back the signed certificate that will finalize the creation of the CA.
|
Field |
Description |
|
pemContent |
string Required field. The PEM-encoded content of the signed certificate. |
Response
HTTP Code: 200 - OK
{
"id": "string",
"description": "string",
"createdAt": "string",
"createdBy": "string",
"modifiedAt": "string",
"done": "boolean",
"metadata": {
"certificateAuthorityId": "string"
},
// Includes only one of the fields `error`, `response`
"error": {
"code": "integer",
"message": "string",
"details": [
"object"
]
},
"response": {
"id": "string",
"folderId": "string",
"name": "string",
"description": "string",
"parentCertificateAuthorityId": "string",
"status": "string",
"issuedAt": "string",
"notAfter": "string",
"notBefore": "string",
"crlEndpoint": "string",
"endEntitiesTtlLimitDays": "string",
"deletionProtection": "boolean",
"createdAt": "string",
"updatedAt": "string"
}
// end of the list of possible fields
}
An Operation resource. For more information, see Operation.
|
Field |
Description |
|
id |
string ID of the operation. |
|
description |
string Description of the operation. 0-256 characters long. |
|
createdAt |
string (date-time) Creation timestamp. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the |
|
createdBy |
string ID of the user or service account who initiated the operation. |
|
modifiedAt |
string (date-time) The time when the Operation resource was last modified. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the |
|
done |
boolean If the value is |
|
metadata |
SendSignedCertificateOfCertificateAuthorityMetadata Service-specific metadata associated with the operation. |
|
error |
The error result of the operation in case of failure or cancellation. Includes only one of the fields The operation result. |
|
response |
The normal response of the operation in case of success. Includes only one of the fields The operation result. |
SendSignedCertificateOfCertificateAuthorityMetadata
Metadata returned from the SendSignedCertificateOfCertificateAuthority operation.
Contains basic data about the completed process.
|
Field |
Description |
|
certificateAuthorityId |
string The ID of the Certificate Authority for which the signed certificate was submitted. |
Status
The error result of the operation in case of failure or cancellation.
|
Field |
Description |
|
code |
integer (int32) Error code. An enum value of google.rpc.Code. |
|
message |
string An error message. |
|
details[] |
object A list of messages that carry the error details. |
CertificateAuthority
A certificate authority (CA) used to sign certificates.
|
Field |
Description |
|
id |
string ID of the certificate authority. |
|
folderId |
string ID of the folder that the certificate authority belongs to. |
|
name |
string Name of the certificate authority. |
|
description |
string Description of the certificate authority. |
|
parentCertificateAuthorityId |
string ID of the parent certificate authority that signed this certificate authority if any. |
|
status |
enum (Status) Status of the certificate authority.
|
|
issuedAt |
string (date-time) Time when the certificate authority was issued. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the |
|
notAfter |
string (date-time) Time after which the certificate authority is not valid. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the |
|
notBefore |
string (date-time) Time before which the certificate authority is not valid. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the |
|
crlEndpoint |
string Endpoint of the certificate revocation list (CRL) for the certificate authority. |
|
endEntitiesTtlLimitDays |
string (int64) Maximum allowed TTL (in days) for end-entity certificates issued by this CA. |
|
deletionProtection |
boolean Flag that protects deletion of the certificate authority. |
|
createdAt |
string (date-time) Time when the certificate authority was created. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the |
|
updatedAt |
string (date-time) Time when the certificate authority was last updated. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the |