Skip to main content
POST
/
encrova-service
/
api
/
v1
/
certificates
/
issue-certificate
Issue Certificate
curl --request POST \
  --url https://encryption.platform.dev.ai71services.ai/encrova-service/api/v1/certificates/issue-certificate \
  --header 'Content-Type: application/json' \
  --header 'x-api-key: <x-api-key>' \
  --data '
{
  "caId": "<string>",
  "certificateTemplateId": "<string>",
  "pkiCollectionId": "<string>",
  "friendlyName": "<string>",
  "commonName": "<string>",
  "altNames": "<string>",
  "ttl": "<string>",
  "notBefore": "<string>",
  "notAfter": "<string>",
  "keyUsages": [
    "digitalSignature"
  ],
  "extendedKeyUsages": [
    "clientAuth"
  ]
}
'
{
  "certificate": "<string>",
  "issuingCaCertificate": "<string>",
  "certificateChain": "<string>",
  "secretKey": "<string>"
}

Headers

x-api-key
string
required

API Key for authentication

Body

application/json
caId
string
required

ID of the Certificate Authority to issue the certificate

commonName
string
required

The common name (CN) for the certificate

ttl
string
required

Time to live for the certificate (e.g., '1h', '1d', '1y')

certificateTemplateId
string | null

ID of the certificate template to use

pkiCollectionId
string | null

ID of the PKI collection to add the certificate to

friendlyName
string | null

A friendly name for the certificate

altNames
string | null
default:""

Comma-separated list of Subject Alternative Names

notBefore
string | null

Certificate validity start date in ISO format

notAfter
string | null

Certificate validity end date in ISO format

keyUsages
enum<string>[] | null

List of key usage flags

extendedKeyUsages
enum<string>[] | null

List of extended key usage flags

Response

Successful Response

certificate
string
required

The certificate in PEM format

issuingCaCertificate
string
required

The issuing CA's certificate in PEM format

certificateChain
string
required

The complete certificate chain in PEM format

secretKey
string
required

Serial number of the certificate