Issue Certificate

cURL

curl --request POST \
  --url https://us.infisical.com/api/v1/cert-manager/certificates \
  --header 'Content-Type: application/json' \
  --data '
{
  "profileId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "csr": "<string>",
  "attributes": {
    "ttl": "<string>",
    "commonName": "<string>",
    "keyUsages": [
      "digital_signature"
    ],
    "extendedKeyUsages": [
      "client_auth"
    ],
    "altNames": [
      {
        "type": "dns_name",
        "value": "<string>"
      }
    ],
    "signatureAlgorithm": "RSA-SHA256",
    "keyAlgorithm": "RSA_2048",
    "notBefore": "<string>",
    "notAfter": "<string>"
  },
  "removeRootsFromChain": false
}
'

{
  "certificate": {
    "certificate": "<string>",
    "issuingCaCertificate": "<string>",
    "certificateChain": "<string>",
    "serialNumber": "<string>",
    "certificateId": "<string>",
    "privateKey": "<string>"
  },
  "certificateRequestId": "<string>"
}

POST

api

cert-manager

certificates

cURL

curl --request POST \
  --url https://us.infisical.com/api/v1/cert-manager/certificates \
  --header 'Content-Type: application/json' \
  --data '
{
  "profileId": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "csr": "<string>",
  "attributes": {
    "ttl": "<string>",
    "commonName": "<string>",
    "keyUsages": [
      "digital_signature"
    ],
    "extendedKeyUsages": [
      "client_auth"
    ],
    "altNames": [
      {
        "type": "dns_name",
        "value": "<string>"
      }
    ],
    "signatureAlgorithm": "RSA-SHA256",
    "keyAlgorithm": "RSA_2048",
    "notBefore": "<string>",
    "notAfter": "<string>"
  },
  "removeRootsFromChain": false
}
'

{
  "certificate": {
    "certificate": "<string>",
    "issuingCaCertificate": "<string>",
    "certificateChain": "<string>",
    "serialNumber": "<string>",
    "certificateId": "<string>",
    "privateKey": "<string>"
  },
  "certificateRequestId": "<string>"
}

Body

application/json

profileId

string<uuid>

required

csr

string

Required string length: 1 - 4096

attributes

object

Show child attributes

attributes.ttl

string

required

Minimum string length: 1

attributes.commonName

string

Required string length: 1 - 100

attributes.keyUsages

enum<string>[]

Available options:

digital_signature,

key_encipherment,

non_repudiation,

data_encipherment,

key_agreement,

key_cert_sign,

crl_sign,

encipher_only,

decipher_only

attributes.extendedKeyUsages

enum<string>[]

Available options:

client_auth,

server_auth,

code_signing,

email_protection,

ocsp_signing,

time_stamping

attributes.altNames

object[]

Show child attributes

attributes.altNames.type

enum<string>

required

Available options:

dns_name,

ip_address,

email,

uri

attributes.altNames.value

string

required

Minimum string length: 1

attributes.signatureAlgorithm

enum<string>

Available options:

RSA-SHA256,

RSA-SHA384,

RSA-SHA512,

ECDSA-SHA256,

ECDSA-SHA384,

ECDSA-SHA512

attributes.keyAlgorithm

enum<string>

Available options:

RSA_2048,

RSA_3072,

RSA_4096,

EC_prime256v1,

EC_secp384r1,

EC_secp521r1

attributes.notBefore

string

attributes.notAfter

string

removeRootsFromChain

default:false

Response

Default Response

certificate

object

required

Show child attributes

certificate.certificate

string

required

certificate.issuingCaCertificate

string

required

certificate.certificateChain

string

required

certificate.serialNumber

string

required

certificate.certificateId

string

required

certificate.privateKey

string

certificateRequestId

string

required

Get Certificate Request Renew Certificate

Overview

Organization

Project

Shared

Identity Auth

Secrets Management

Certificate Management

Secret Scanning

Infisical SSH

Infisical KMS

Other

Body

Response