Почетна Преглед Помоћ
Пријавите се
cloudflare
/
cfssl
огледало од https://github.com/cloudflare/cfssl
Прати 1
Волим 0
Креирај огранак 0
Датотеке Дискусије
Дрво: 91b63b5bb6
Гране Ознаке
cfssl
/
doc
/
api
/
endpoint_newcert.txt

endpoint_newcert.txt 4.4 KB
Историја Датотека

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. THE CERTIFICATE GENERATING ENDPOINT
    2. 

  2. 

  3. Endpoint: /api/v1/cfssl/newcert
    4. 

  4. Method:   POST
    5. 

  5. 

  6. Required parameters:
    7. 

  7. 

  8.     * request: a json object specifying the certificate request,
    9. 

  9.     exactly the one which can be sent to /api/v1/cfssl/newkey
    10. 

  10.     to generate a certificate signing request
    11. 

  11.     (referring to endpoint_newkey for how to write such object)
    12. 

  12. 

  13. Optional parameters:
    14. 

  14. 

  15.     * label: a string specifying which signer to be appointed to sign
    16. 

  16.     the CSR, useful when interacting with cfssl server that stands
    17. 

  17.     in front of a remote multi-root CA signer
    18. 

  18.     * profile: a string specifying the signing profile for the signer
    19. 

  19.     * bundle: a boolean specifying whether to include an "optimal"
    20. 

  20.     certificate bundle along with the certificate
    21. 

  21. 

  22. Result:
    23. 

  23. 

  24.     The returned result is a JSON object with four keys:
    25. 

  25. 

  26.     * private key: a PEM-encoded private key
    27. 

  27.     * certificate_request: a PEM-encoded certificate request
    28. 

  28.     * certificate: a PEM-encoded certificate, signed by the server
    29. 

  29.     * sums: a JSON object holding both MD5 and SHA1 digests for the certificate
    30. 

  30.     request and the certificate; note that this is the digest of the DER
    31. 

  31.     contents of the certificate, not the PEM contents
    32. 

  32.     * bundle: See the result of endpoint_bundle.txt (only included if the bundle parameter was set)
    33. 

  33. 

  34. Example:
    35. 

  35. 

  36.     $ curl -d '{ "request": {"hosts":["www.example.com"], "names":[{"C":"US", "ST":"California", "L":"San Francisco", "O":"example.com"}], "CN": "www.example.com"} }' \
    37. 

  37.           ${CFSSL_HOST}/api/v1/cfssl/newcert  \
    38. 

  38.           | python -m json.tool
    39. 

  39. 

  40.   % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
    41. 

  41.                                  Dload  Upload   Total   Spent    Left  Speed
    42. 

  42. 100  2487    0  2338  100   149  56536   3603 --:--:-- --:--:-- --:--:-- 57024
    43. 

  43. {
    44. 

  44.     "errors": [],
    45. 

  45.     "messages": [],
    46. 

  46.     "result": {
    47. 

  47.         "certificate": "-----BEGIN CERTIFICATE-----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\nRx0/qPDPpqZ+Fr9v/13/OvQ+jAY5qe/6l1d6\n-----END CERTIFICATE-----\n",
    48. 

  48.         "certificate_request": "-----BEGIN CERTIFICATE REQUEST-----\nMIIBUjCB+QIBADBqMQswCQYDVQQGEwJVUzEUMBIGA1UEChMLZXhhbXBsZS5jb20x\nFjAUBgNVBAcTDVNhbiBGcmFuY2lzY28xEzARBgNVBAgTCkNhbGlmb3JuaWExGDAW\nBgNVBAMTD3d3dy5leGFtcGxlLmNvbTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IA\nBK/CtZaQ4VliKE+DLIVGLwtSxJgtUKRzGvN1EwI3HRgKDQ3l3urBIzHtUcdMq6HZ\nb8jX0O9fXYUOf4XWggrLk1agLTArBgkqhkiG9w0BCQ4xHjAcMBoGA1UdEQQTMBGC\nD3d3dy5leGFtcGxlLmNvbTAKBggqhkjOPQQDAgNIADBFAiAcvfhXnsLtzep2sKSa\n36W7G9PRbHh8zVGlw3Hph8jR1QIhAKfrgplKwXcUctU5grjQ8KXkJV8RxQUo5KKs\ngFnXYtkb\n-----END CERTIFICATE REQUEST-----\n",
    49. 

  49.         "private_key": "-----BEGIN EC PRIVATE KEY-----\nMHcCAQEEIJfVVIvXclN1jCWefEwhYYq7y1ya2RjxO5o8QjehD3YdoAoGCCqGSM49\nAwEHoUQDQgAEr8K1lpDhWWIoT4MshUYvC1LEmC1QpHMa83UTAjcdGAoNDeXe6sEj\nMe1Rx0yrodlvyNfQ719dhQ5/hdaCCsuTVg==\n-----END EC PRIVATE KEY-----\n",
    50. 

  50.         "sums": {
    51. 

  51.             "certificate": {
    52. 

  52.                 "md5": "E9308D1892F1B77E6721EA2F79C026BE",
    53. 

  53.                 "sha-1": "4640E6DEC2C40B74F46C409C1D31928EE0073D25",
    54. 

  54.                 "sha-256": "8812010B59EB8C00CDD9292078717216B131A710703F18A4DFB94AC166F507DF"
    55. 

  55.             },
    56. 

  56.             "certificate_request": {
    57. 

  57.                 "md5": "AA924136405006E36CEE39FED9CBA5D7",
    58. 

  58.                 "sha-1": "DF955A43DF669D38E07BF0479789D13881DC9024",
    59. 

  59.                 "sha-256": "C7600A68BDB689346E2E4438A374606DFC3FFD3B6B9722E0A8CB32AA88FBA686"
    60. 

  60.             }
    61. 

  61.         }
    62. 

  62.     },
    63. 

  63.     "success": true
    64. 

  64. }
    65. 

  65.