{ "additionalProperties": false, "extends": { "$ref": "ManagedResource }, "id": "Certificate", "module_id": "CertificateManager", "properties": { "_create_time": { "$ref": "EpochMsTimestamp, "can_sort": true, "description": "Timestamp of resource creation", "readonly": true }, "_create_user": { "description": "ID of the user who created this resource", "readonly": true, "type": "string" }, "_last_modified_time": { "$ref": "EpochMsTimestamp, "can_sort": true, "description": "Timestamp of last modification", "readonly": true }, "_last_modified_user": { "description": "ID of the user who last modified this resource", "readonly": true, "type": "string" }, "_links": { "description": "The server will populate this field when returing the resource. Ignored on PUT and POST.", "items": { "$ref": "ResourceLink }, "readonly": true, "title": "References related to this resource", "type": "array" }, "_protection": { "description": "Protection status is one of the following: PROTECTED - the client who retrieved the entity is not allowed to modify it. NOT_PROTECTED - the client who retrieved the entity is allowed to modify it REQUIRE_OVERRIDE - the client who retrieved the entity is a super user and can modify it, but only when providing the request header X-Allow-Overwrite=true. UNKNOWN - the _protection field could not be determined for this entity.", "readonly": true, "title": "Indicates protection status of this resource", "type": "string" }, "_revision": { "description": "The _revision property describes the current revision of the resource. To prevent clients from overwriting each other's changes, PUT operations must include the current _revision of the resource, which clients should obtain by issuing a GET operation. If the _revision provided in a PUT request is missing or stale, the operation will be rejected.", "title": "Generation of this resource config", "type": "int" }, "_schema": { "readonly": true, "title": "Schema for this resource", "type": "string" }, "_self": { "$ref": "SelfResourceLink, "readonly": true, "title": "Link to this resource" }, "_system_owned": { "description": "Indicates system owned resource", "readonly": true, "type": "boolean" }, "description": { "can_sort": true, "maxLength": 1024, "title": "Description of this resource", "type": "string" }, "details": { "description": "List of X509Certificates.", "items": { "$ref": "X509Certificate }, "readonly": true, "required": false, "type": "array" }, "display_name": { "can_sort": true, "description": "Defaults to ID if not set", "maxLength": 255, "title": "Identifier to use when displaying entity in logs or GUI", "type": "string" }, "has_private_key": { "default": false, "description": "Whether we have the private key for this certificate.", "readonly": true, "required": true, "type": "boolean" }, "id": { "can_sort": true, "title": "Unique identifier of this resource", "type": "string" }, "leaf_certificate_sha_256_thumbprint": { "description": "Unique SHA-256 thumbprint of the leaf node certificate.", "readonly": true, "required": false, "title": "Certificate thumbprint", "type": "string" }, "pem_encoded": { "description": "PEM encoded certificate data.", "readonly": false, "required": true, "type": "string" }, "purpose": { "description": "Purpose of this certificate. Can be empty or set to \"signing-ca\".", "enum": [ "signing-ca" ], "readonly": false, "required": false, "type": "string" }, "resource_type": { "description": "The type of this resource.", "readonly": false, "type": "string" }, "tags": { "items": { "$ref": "Tag }, "maxItems": 30, "title": "Opaque identifiers meaningful to the API user", "type": "array" }, "used_by": { "description": "List of node IDs with services, that are using this certificate.", "items": { "$ref": "NodeIdServicesMap }, "readonly": true, "required": false, "type": "array" } }, "type": "object" }