Returns details of the trusted certificate at the specified alias in the JKS keystore.
If the alias specifies a keyStore.TrustedCertificateEntry
, the details of the trusted certificate are returned. If the alias specifies a KeyStore.PrivateKeyEntry
, the first certificate in the trusted certificate chain is returned.
The following table summarizes the GET request parameters.
Name | Description | Type |
---|---|---|
alias |
Name of alias for which you want to view a trusted certificate. | Path |
Media Types: | application/json |
The response body contains information about the certificate, including:
Attribute | Description |
---|---|
"CONTENT" |
Contents of the Base64-encoded certificate. |
"Extensions" |
Optional extensions that are used to issue a certificate for a specific purpose. Each extension includes the following:
|
"ISSUER_DN" |
List of trusted distinguished names. |
"NOT_AFTER" |
Date the certificate expires. |
"NOT_BEFORE" |
Date the certificate is activated. |
"SERIAL_NO" |
Serial number of the JKS keystore. |
"SIGNATURE" |
Base64-encoded signature key. |
"SIGNING_ALGORITHM" |
Signing algorithm for the alias. |
"SUBJECT_DN" |
Subject distinguished names list. |
The following example shows how to view all certificates for an alias in the JKS keystore by submitting a GET request on the REST resource using cURL. For more information, see "cURL Access".
curl -i -X GET -u username:password http://myhost:7001/idaas/platform/admin/v1/keystore/mytestkey
The following shows an example of the response header. For more about the HTTP status codes, see "Status Codes."
HTTP/1.1 200 OK
The following shows an example of the response body in JSON format.
{ "SUBJECT_DN":"CN=weblogic,OU=Testkey for JKS Mbean test,O=Oracle,L=testcity,ST=teststate,C=us", "ISSUER_DN":"CN=weblogic,OU=Testkey for JKS Mbean test,O=Oracle,L=testcity,ST=teststate,C=us", "NOT_BEFORE":"Tue Jun 25 02:20:38 PDT 2013", "NOT_AFTER":"Wed Nov 27 01:20:38 PST 2052", "SERIAL_NO":"1372152038", "SIGNING_ALGORITHM":"1.2.840.113549.1.1.5", "CONTENT":"-----BEGIN CERTIFICATE----- Base64-encoded certificate -----END CERTIFICATE-----", "SIGNATURE":"Base64-encoded signature key", "Extensions":"{subjectKeyIDExtension {oid = 2.5.29.14 critical = false, value = 329b98f6b6225e92ca52513d3bfc43ee02aa9121}}" }