Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
Barbican orders API blueprint discussion
This schema would replace the current order schema below.
Schema for generating an 'asymmetric' type, which includes RSA key-pair generation.
POST v1/{tenant_id}/orders
{
"type": "asymmetric",
"meta": {
"name": "container-name",
"algorithm": "RSA",
"bit_length": 4096,
"passphrase": "optional"
}
}
{
"type": "asymmetric",
"meta": {
"name": "container-name",
"algorithm": "EC",
"curve_name": "secp384r1",
"passphrase": "optional"
}
}
This would replace the current order schema above.
Schema for generating an 'cert' type, which includes SSL certification request processing.
POST v1/{tenant_id}/orders
{
"type": "cert",
"meta": {
TBD...could include items such as:
bit-length and passphrase for RSA key, what cert type, duration, etc...
...OR...could provide the CSR PEM-encoded.
}
}
POST v1/{tenant_id}/orders
{
"secret": {
"name": "secretname",
"algorithm": "AES",
"bit_length": 256,
"mode": "cbc",
"payload_content_type": "application/octet-stream"
}
}
This would replace the current order schema above.
Schema for generating a 'Key' type, which includes AES key generation.
POST v1/{tenant_id}/orders
{
"type": "key",
"meta": {
"name": "secretname",
"algorithm": "AES",
"bit_length": 256,
"mode": "cbc"
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.