Skip to main content
POST
/
certs
/
request
Request a certificate
curl --request POST \
  --url https://api.example.com/certs/request \
  --header 'Content-Type: application/json' \
  --data '
{
  "commonName": "<string>",
  "countryName": "US",
  "organizationName": "<string>"
}
'
{
  "certificate": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "content": "<string>",
    "issuerName": "<string>",
    "subjectName": "<string>",
    "valid": {
      "before": "2023-11-07T05:31:56Z",
      "after": "2023-11-07T05:31:56Z"
    }
  },
  "privateKey": "<string>"
}

Body

application/json
commonName
string
required

The Common Name (CN) field for the TLS certificate that we will generate for you

We recommend a useful short name, such as "mTLS certificate for communication with Sutro"; this will help you identify this Certificate's purpose in your secure storage system.

countryName
string
default:US

A two-character country code that follows ISO-3166; this is added to the certificate that we generate for you.

See https://www.ssl.com/country-codes/ for a list of supported values.

organizationName
string

This is an optional field that can be added to the certificate that we generate for you that indicates the name of your organization.

Response

The newly created certificate

certificate
object
required
privateKey
string
required

The private key that can be used for signing JWTs and securing requests.

This will only be provided this one time, so it should be stored somewhere securely