Request a certificate

curl --request POST \ --url https://api.example.com/certs/request \ --header 'Content-Type: application/json' \ --data ' { "commonName": "<string>", "countryName": "US", "organizationName": "<string>" } '

{ "certificate": { "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a", "issuerName": "<string>", "subjectName": "<string>", "valid": { "before": "2023-11-07T05:31:56Z", "after": "2023-11-07T05:31:56Z" }, "content": "<string>", "customerId": "3c90c3cc-0d44-4b50-8888-8dd25736052a", "sha1Fingerprint": "<string>" }, "privateKey": "<string>" }

Body

application/json

commonName

string

required

The Common Name (CN) field for the TLS certificate that we will generate for you

We recommend a useful short name, such as "mTLS certificate for communication with Sutro"; this will help you identify this Certificate's purpose in your secure storage system.

countryName

string

default:US

A two-character country code that follows ISO-3166; this is added to the certificate that we generate for you.

See https://www.ssl.com/country-codes/ for a list of supported values.

Pattern: [A-Z]{2}

organizationName

string

This is an optional field that can be added to the certificate that we generate for you that indicates the name of your organization.

Response

The result of a certificate request

certificate

object

required

Show child attributes

privateKey

string

required

The private key that can be used for signing JWTs and securing requests.

This will only be provided this one time, so it should be stored somewhere securely