Platform Encrova Docs

Issue Certificate

curl --request POST \
  --url https://encryption.platform.dev.ai71services.ai/encrova-service/api/v1/ca/{ca_id}/issue-certificate \
  --header 'Content-Type: application/json' \
  --header 'x-api-key: <x-api-key>' \
  --data '
{
  "commonName": "<string>",
  "ttl": "<string>",
  "pkiCollectionId": "<string>",
  "altNames": "<string>",
  "friendlyName": "<string>",
  "notBefore": "<string>",
  "notAfter": "<string>",
  "keyUsages": [
    "digitalSignature"
  ],
  "extendedKeyUsages": [
    "clientAuth"
  ]
}
'

{
  "certificate": "<string>",
  "issuingCaCertificate": "<string>",
  "certificateChain": "<string>",
  "privateKey": "<string>",
  "serialNumber": "<string>"
}

POST

encrova-service

api

{ca_id}

issue-certificate

Issue Certificate

curl --request POST \
  --url https://encryption.platform.dev.ai71services.ai/encrova-service/api/v1/ca/{ca_id}/issue-certificate \
  --header 'Content-Type: application/json' \
  --header 'x-api-key: <x-api-key>' \
  --data '
{
  "commonName": "<string>",
  "ttl": "<string>",
  "pkiCollectionId": "<string>",
  "altNames": "<string>",
  "friendlyName": "<string>",
  "notBefore": "<string>",
  "notAfter": "<string>",
  "keyUsages": [
    "digitalSignature"
  ],
  "extendedKeyUsages": [
    "clientAuth"
  ]
}
'

{
  "certificate": "<string>",
  "issuingCaCertificate": "<string>",
  "certificateChain": "<string>",
  "privateKey": "<string>",
  "serialNumber": "<string>"
}

Headers

x-api-key

string

required

Path Parameters

ca_id

string

required

Body

application/json

commonName

string

required

The common name (CN) for the certificate.

Minimum length: 1

ttl

string

required

The time to live for the certificate such as 1m, 1h, 1d, 1y, ...

pkiCollectionId

string | null

The ID of the PKI collection to add the certificate to.

altNames

string | null

A comma-delimited list of Subject Alternative Names (SANs) for the certificate; these can be host names or email addresses.

friendlyName

string | null

A friendly name for the certificate.

notBefore

string | null

The date and time when the certificate becomes valid in YYYY-MM-DDTHH:mm:ss.sssZ format.

notAfter

string | null

The date and time when the certificate expires in YYYY-MM-DDTHH:mm:ss.sssZ format.

keyUsages

enum<string>[] | null

List of key usage flags

Show child attributes

extendedKeyUsages

enum<string>[] | null

List of extended key usage flags

Show child attributes

Response

Certificate issued successfully

certificate

string

required

The issued certificate in PEM format

issuingCaCertificate

string

required

The issuing CA's certificate in PEM format

certificateChain

string

required

The complete certificate chain in PEM format

privateKey

string

required

The private key in PEM format

serialNumber

string

required

Serial number of the issued certificate

Import certificate Sign certificate

⌘I

Overview

Onboarding

Secrets

Encrova PKI

Encryption Service

Issue certificate

Headers

Path Parameters

Body

Response