Skip to main content

certificates

Creates, updates, deletes, gets or lists a certificates resource.

Overview

Namecertificates
TypeResource
Idgodaddy.certificates.certificates

Fields

The following fields are returned by SELECT queries:

Certificate details retrieved

NameDatatypeDescription
certificateIdstringThe unique identifier of the certificate request. Only present if no errors returned
commonNamestringCommon name of certificate
contactobjectRequestor contact information
createdAtstring (iso-datetime)The date the certificate was ordered.
deniedReasonstringOnly present if certificate order has been denied
organizationobjectOrganization Name in certificate
periodintegerValidity period of order. Specified in years
productTypestringCertificate product type
progressintegerPercentage of completion for certificate vetting
revokedAtstring (iso-datetime)The revocation date of certificate (if revoked).
rootTypestringRoot Type
serialNumberstringSerial number of certificate (if issued or revoked)
serialNumberHexstringHexadecmial format for Serial number of certificate(if issued or revoked)
slotSizestringNumber of subject alternative names(SAN) to be included in certificate
statusstringStatus of certificate
subjectAlternativeNamesarrayContains subject alternative names set
validEndstring (iso-datetime)The end date of the certificate's validity (if issued or revoked).
validStartstring (iso-datetime)The start date of the certificate's validity (if issued or revoked).

Methods

The following methods are available for this resource:

NameAccessible byRequired ParamsOptional ParamsDescription
certificate_getselectcertificate_idOnce the certificate order has been created, this method can be used to check the status of the certificate. This method can also be used to retrieve details of the certificate.
certificate_createinsertdata__csr, data__productType, data__period, data__contactX-Market-IdCreating a certificate order can be a long running asynchronous operation in the PKI workflow. The PKI API supports 2 options for getting the completion stateful actions for this asynchronous operations: 1) by polling operations -- see /v1/certificates/{certificateId}/actions 2) via WebHook style callback -- see '/v1/certificates/{certificateId}/callback'.
certificate_validateexeccsr, productType, period, contactX-Market-IdValidate a pending order for certificate
certificate_cancelexeccertificate_idUse the cancel call to cancel a pending certificate order.
certificate_downloadexeccertificate_idDownload certificate
certificate_reissueexeccertificate_idRekeying is the process by which the private and public key is changed for a certificate. It is a simplified reissue,where only the CSR is changed. Reissuing is the process by which domain names are added or removed from a certificate.Once a request is validated and approved, the certificate will be reissued with the new common name and sans specified. Unlimited reissues are available during the lifetime of the certificate.New names added to a certificate that do not share the base domain of the common name may take additional time to validate. If this API call is made before a previous pending reissue has been validated and issued, the previous reissue request is automatically rejected and replaced with the current request.'
certificate_renewexeccertificate_idRenewal is the process by which the validity of a certificate is extended. Renewal is only available 60 days prior to expiration of the previous certificate and 30 days after the expiration of the previous certificate. The renewal supports modifying a set of the original certificate order information. Once a request is validated and approved, the certificate will be issued with extended validity. Since subject alternative names can be removed during a renewal, we require that you provide the subject alternative names you expect in the renewed certificate. New names added to a certificate that do not share the base domain of the common name may take additional time to validate.
certificate_revokeexeccertificate_id, reasonUse revoke call to revoke an active certificate, if the certificate has not been issued a 404 response will be returned.
certificate_verifydomaincontrolexeccertificate_idDomain control is a means for verifying the domain included in the certificate order. This resource is useful for resellers that control the domains for their customers, and can expedite the verification process. See https://www.godaddy.com/help/verifying-your-domain-ownership-for-ssl-certificate-requests-html-or-dns-7452

Parameters

Parameters can be passed in the WHERE clause of a query. Check the Methods section to see which parameters are required or optional for each operation.

NameDatatypeDescription
certificate_idstringCertificate id to lookup
X-Market-IdstringSetting locale for communications such as emails and error messages

SELECT examples

Once the certificate order has been created, this method can be used to check the status of the certificate. This method can also be used to retrieve details of the certificate.

SELECT
certificateId,
commonName,
contact,
createdAt,
deniedReason,
organization,
period,
productType,
progress,
revokedAt,
rootType,
serialNumber,
serialNumberHex,
slotSize,
status,
subjectAlternativeNames,
validEnd,
validStart
FROM godaddy.certificates.certificates
WHERE certificate_id = '{{ certificate_id }}' -- required
;

INSERT examples

Creating a certificate order can be a long running asynchronous operation in the PKI workflow. The PKI API supports 2 options for getting the completion stateful actions for this asynchronous operations: 1) by polling operations -- see /v1/certificates/{certificateId}/actions 2) via WebHook style callback -- see '/v1/certificates/{certificateId}/callback'.

INSERT INTO godaddy.certificates.certificates (
data__callbackUrl,
data__commonName,
data__contact,
data__csr,
data__intelVPro,
data__organization,
data__period,
data__productType,
data__rootType,
data__slotSize,
data__subjectAlternativeNames,
X-Market-Id
)
SELECT 
'{{ callbackUrl }}',
'{{ commonName }}',
'{{ contact }}' /* required */,
'{{ csr }}' /* required */,
{{ intelVPro }},
'{{ organization }}',
{{ period }} /* required */,
'{{ productType }}' /* required */,
'{{ rootType }}',
'{{ slotSize }}',
'{{ subjectAlternativeNames }}',
'{{ X-Market-Id }}'
;

Lifecycle Methods

Validate a pending order for certificate

EXEC godaddy.certificates.certificates.certificate_validate 
@X-Market-Id='{{ X-Market-Id }}' 
@@json=
'{
"callbackUrl": "{{ callbackUrl }}", 
"commonName": "{{ commonName }}", 
"contact": "{{ contact }}", 
"csr": "{{ csr }}", 
"intelVPro": {{ intelVPro }}, 
"organization": "{{ organization }}", 
"period": {{ period }}, 
"productType": "{{ productType }}", 
"rootType": "{{ rootType }}", 
"slotSize": "{{ slotSize }}", 
"subjectAlternativeNames": "{{ subjectAlternativeNames }}"
}'
;