Difference between revisions of "REST"

From Dogtag
Jump to: navigation, search
 
Line 10: Line 10:
 
! scope="col"| "Mapped Servlets (TKS)"
 
! scope="col"| "Mapped Servlets (TKS)"
 
|-
 
|-
|-
 
| Objects
 
| Operation
 
| REST Path
 
| Description
 
| Mapped Servlets (CA)
 
| Mapped Servlets (KRA)
 
| Mapped Servlets(OCSP)
 
| Mapped Servlets (TKS)
 
  
 
|-
 
|-
|  
+
| Top Level
|
 
|
 
|
 
|
 
|
 
|
 
 
 
|-Top Level
 
 
| GET
 
| GET
 
| /pki
 
| /pki
Line 39: Line 22:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 47: Line 31:
 
|  
 
|  
  
|-Controller Objects
+
|-
 +
| Controller Objects
 
| GET
 
| GET
 
| /pki/token/sessionKey
 
| /pki/token/sessionKey
Line 57: Line 42:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/token/diversifiedKey
 
| /pki/token/diversifiedKey
Line 66: Line 52:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/token/encryptedData
 
| /pki/token/encryptedData
Line 75: Line 62:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/token/randomData
 
| /pki/token/randomData
Line 84: Line 72:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 92: Line 81:
 
|  
 
|  
  
|-Certificates
+
|-
 +
| Certificates
 
| GET
 
| GET
 
| /pki/certificates
 
| /pki/certificates
Line 102: Line 92:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
| /pki/certifcate/$id/details
 
| /pki/certifcate/$id/details
Line 111: Line 102:
  
 
|-
 
|-
 +
|
 
| POST-b
 
| POST-b
 
| /pki/certificate/ocsp
 
| /pki/certificate/ocsp
Line 120: Line 112:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/certificate/$id
 
| /pki/certificate/$id
Line 128: Line 121:
 
|  
 
|  
  
|-Certificate Status
+
|-
 +
| Certificate Status
 
| PUT
 
| PUT
 
| /pki/certificate/$id/status
 
| /pki/certificate/$id/status
Line 138: Line 132:
  
 
|-
 
|-
 +
|
 
| GET  
 
| GET  
 
| /pki/certificate/$id/status
 
| /pki/certificate/$id/status
Line 147: Line 142:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 155: Line 151:
 
|  
 
|  
  
|-Cert Requests
+
|-
 +
| Cert Requests
 
| GET
 
| GET
 
| /pki/requests
 
| /pki/requests
Line 165: Line 162:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/request/$id
 
| /pki/request/$id
Line 174: Line 172:
  
 
|-
 
|-
 +
|
 
| POST-a
 
| POST-a
 
| /pki/request
 
| /pki/request
Line 183: Line 182:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/request/$id
 
| /pki/request/$id
Line 191: Line 191:
 
|  
 
|  
  
|-Cert Request Status
+
|-
 +
| Cert Request Status
 
| PUT
 
| PUT
 
| /pki/request/$id/status
 
| /pki/request/$id/status
Line 201: Line 202:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/request/$id/status
 
| /pki/request/$id/status
Line 210: Line 212:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 218: Line 221:
 
|  
 
|  
  
|-Cert profiles
+
|-
 +
| Cert profiles
 
| GET
 
| GET
 
| /pki/profiles
 
| /pki/profiles
Line 228: Line 232:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/profile/$id
 
| /pki/profile/$id
Line 237: Line 242:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/profile/$id
 
| /pki/profile/$id
Line 246: Line 252:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/profile/$id
 
| /pki/profile/$id
Line 255: Line 262:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 263: Line 271:
 
|  
 
|  
  
|-Cert CRLs
+
|-
 +
| Cert CRLs
 
| GET
 
| GET
 
| /pki/crls
 
| /pki/crls
Line 273: Line 282:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/crl/details
 
| /pki/crl/details
Line 282: Line 292:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/crl
 
| /pki/crl
Line 291: Line 302:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/crl
 
| /pki/crl
Line 300: Line 312:
  
 
|-
 
|-
 +
|
 
| POST-b
 
| POST-b
 
| /pki/crl
 
| /pki/crl
Line 309: Line 322:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/crl
 
| /pki/crl
Line 318: Line 332:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 326: Line 341:
 
|  
 
|  
  
|-CAs (for OCSP)
+
|-
 +
| CAs (for OCSP)
 
| GET
 
| GET
 
| /pki/ocsp/cas
 
| /pki/ocsp/cas
Line 336: Line 352:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/ocsp/ca/$id
 
| /pki/ocsp/ca/$id
Line 345: Line 362:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/ocsp/ca/$id
 
| /pki/ocsp/ca/$id
Line 354: Line 372:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/ocsp/ca/$id
 
| /pki/ocsp/ca/$id
Line 363: Line 382:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 371: Line 391:
 
|  
 
|  
  
|-keys
+
|-
 +
| keys
 
| GET
 
| GET
 
| /pki/keys
 
| /pki/keys
Line 381: Line 402:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/key/$id
 
| /pki/key/$id
Line 390: Line 412:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/key/$id/details
 
| /pki/key/$id/details
Line 399: Line 422:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/key/$id
 
| /pki/key/$id
Line 408: Line 432:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 416: Line 441:
 
|  
 
|  
  
|-key requests (archival; recovery)
+
|-
 +
| key requests (archival; recovery)
 
| GET
 
| GET
 
| /pki/keyrequests
 
| /pki/keyrequests
Line 426: Line 452:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/keyrequest/$id
 
| /pki/keyrequest/$id
Line 435: Line 462:
  
 
|-
 
|-
 +
|
 
| POST-a
 
| POST-a
 
| /pki/keyrequest
 
| /pki/keyrequest
Line 443: Line 471:
 
|  
 
|  
  
|-Key request Status
+
|-
 +
| Key request Status
 
| PUT
 
| PUT
 
| /pki/keyrequest/$id/status
 
| /pki/keyrequest/$id/status
Line 453: Line 482:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/keyrequest/$id/status
 
| /pki/keyrequest/$id/status
Line 462: Line 492:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/keyrequest/$id
 
| /pki/keyrequest/$id
Line 471: Line 502:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 480: Line 512:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 488: Line 521:
 
|  
 
|  
  
|-users
+
|-
 +
| users
 
| GET
 
| GET
 
| /pki/users
 
| /pki/users
Line 498: Line 532:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/user/$id
 
| /pki/user/$id
Line 507: Line 542:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/user/$id
 
| /pki/user/$id
Line 516: Line 552:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/user/$id
 
| /pki/user/$id
Line 525: Line 562:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 533: Line 571:
 
|  
 
|  
  
|-System
+
|-
 +
| System
 
| GET
 
| GET
 
| /pki/X/status
 
| /pki/X/status
Line 542: Line 581:
 
|  
 
|  
  
|-  
+
|-
 +
 
| GET
 
| GET
 
| /pki/X/stats
 
| /pki/X/stats
Line 552: Line 592:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/X/monitor
 
| /pki/X/monitor
Line 561: Line 602:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/X/logs
 
| /pki/X/logs
Line 570: Line 612:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/X/log/$id
 
| /pki/X/log/$id
Line 579: Line 622:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 587: Line 631:
 
|  
 
|  
  
|-Config
+
|-
 +
| Config
 
|  
 
|  
 
|  
 
|  
Line 597: Line 642:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/acls
 
| /pki/config/X/acls
Line 606: Line 652:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/acl/$id
 
| /pki/config/X/acl/$id
Line 615: Line 662:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/acl/$id
 
| /pki/config/X/acl/$id
Line 624: Line 672:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/config/X/acl/$id
 
| /pki/config/X/acl/$id
Line 633: Line 682:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 642: Line 692:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/logs
 
| /pki/config/X/logs
Line 651: Line 702:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/log/$id
 
| /pki/config/X/log/$id
Line 660: Line 712:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/log/$id
 
| /pki/config/X/log/$id
Line 669: Line 722:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/config/X/log/$id
 
| /pki/config/X/log/$id
Line 678: Line 732:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 687: Line 742:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/ca/systems
 
| /pki/config/ca/systems
Line 696: Line 752:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/ca/system/$id
 
| /pki/config/ca/system/$id
Line 705: Line 762:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/ca/system/$id
 
| /pki/config/ca/system/$id
Line 714: Line 772:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/config/ca/system/$id
 
| /pki/config/ca/system/$id
Line 723: Line 782:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 732: Line 792:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/ca/publishers
 
| /pki/config/ca/publishers
Line 741: Line 802:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/ca/publisher/$id
 
| /pki/config/ca/publisher/$id
Line 750: Line 812:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/ca/publisher/$id
 
| /pki/config/ca/publisher/$id
Line 759: Line 822:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/config/ca/publisher/$id
 
| /pki/config/ca/publisher/$id
Line 768: Line 832:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 777: Line 842:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/jobs
 
| /pki/config/X/jobs
Line 786: Line 852:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/job/$id
 
| /pki/config/X/job/$id
Line 795: Line 862:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/job/$id
 
| /pki/config/X/job/$id
Line 804: Line 872:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/config/X/job/$id
 
| /pki/config/X/job/$id
Line 813: Line 882:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 822: Line 892:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/auths
 
| /pki/config/X/auths
Line 831: Line 902:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/auth/$id
 
| /pki/config/X/auth/$id
Line 840: Line 912:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/auth/$id
 
| /pki/config/X/auth/$id
Line 849: Line 922:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/config/X/auth/$id
 
| /pki/config/X/auth/$id
Line 858: Line 932:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 867: Line 942:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/certs
 
| /pki/config/X/certs
Line 876: Line 952:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/cert/$id
 
| /pki/config/X/cert/$id
Line 885: Line 962:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/cert/Y/details
 
| /pki/config/X/cert/Y/details
Line 894: Line 972:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/cert/$id
 
| /pki/config/X/cert/$id
Line 903: Line 982:
  
 
|-
 
|-
 +
|
 
| DEL
 
| DEL
 
| /pki/config/X/cert/$id
 
| /pki/config/X/cert/$id
Line 912: Line 992:
  
 
|-
 
|-
 +
|
 
|   
 
|   
 
|   
 
|   
Line 921: Line 1,002:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/serialnos/$id
 
| /pki/config/X/serialnos/$id
Line 930: Line 1,012:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/serialnos/$id
 
| /pki/config/X/serialnos/$id
Line 939: Line 1,022:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 948: Line 1,032:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/connector/$id
 
| /pki/config/X/connector/$id
Line 957: Line 1,042:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/connector/$id
 
| /pki/config/X/connector/$id
Line 966: Line 1,052:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 975: Line 1,062:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/ocsp
 
| /pki/config/X/ocsp
Line 984: Line 1,072:
  
 
|-
 
|-
 +
|
 
| PUT
 
| PUT
 
| /pki/config/X/ocsp
 
| /pki/config/X/ocsp
Line 993: Line 1,082:
  
 
|-
 
|-
 +
|
 
|  
 
|  
 
|  
 
|  
Line 1,002: Line 1,092:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/cloning
 
| /pki/config/X/cloning
Line 1,011: Line 1,102:
  
 
|-
 
|-
 +
|
 
| GET
 
| GET
 
| /pki/config/X/tokeninfo
 
| /pki/config/X/tokeninfo
Line 1,018: Line 1,110:
 
| ocspGetTokenInfo
 
| ocspGetTokenInfo
 
| tksGetTokenInfo
 
| tksGetTokenInfo
 +
  
 
|-
 
|-

Revision as of 17:21, 26 October 2011

  • Here is a proposed new RESTful design for a programmatic interface to dogtag
"Objects" "Operation" "REST Path" "Description" "Mapped Servlets (CA)" "Mapped Servlets (KRA)" "Mapped Servlets(OCSP)" "Mapped Servlets (TKS)"
Top Level GET /pki top level services; caindex kraindex; services service; ocspindex services
Controller Objects GET /pki/token/sessionKey
GET /pki/token/diversifiedKey
GET /pki/token/encryptedData
GET /pki/token/randomData
Certificates GET /pki/certificates Get list of certificates caSrchCerts-agent; caListCerts-agent;caSrchCert; caSrchRevokeCert; caSrchCerts; caListCerts
/pki/certifcate/$id/details Get certifcate details caDisplayCertFromRequest-agent; caDisplayBySerial-agent; caDisplayCertFromRequest; caDisplayBySerial
POST-b /pki/certificate/ocsp Get OCSP response caOCSP ocspCheckCert; ocspReadCheckCertPage
GET /pki/certificate/$id Get certifcate caGetAdminCertBySerial; caGetCertChain; caGetCertChainAdmin; caGetCertFromRequest-agent;caGetBySerial-agent; caQueryBySerial; caGetBySerial; caGetAdminBySerial; caGetCAChain; caGetCertFromRequest
Certificate Status PUT /pki/certificate/$id/status Modify certificate status - revoke; unrevoke caDoUnrevoke; caDoRevoke-agent; caDoRevoke1; caDoRevoke1; caCMCRevReq; caDoUnrevoke1; caRevocation; caDoRevoke; caProxyDoRevoke
GET /pki/certificate/$id/status Get certificate status
Cert Requests GET /pki/requests Get list of requests caListRequests; caSearchReqs
GET /pki/request/$id Get request details caqueryReq; caCheckRequest
POST-a /pki/request Add a request caProfileSubmit; caenrollment;cacertbasedenrollment; caProfileSubmitCMCSimple; profileSubmitCMCFull; caProfileSubmitSSLClient; caProxyProfileSubmit; cabulkissuance; caProxyBulkIssuance; caRenewal; caSCEP; caRASCEP
PUT /pki/request/$id Modify a request - if a request is not approved an agent can modify it before approving. caProfileProcess; caProcessCertReq; caProcessReq
Cert Request Status PUT /pki/request/$id/status Modify request status - approve; deny etc; caProfileProcess; caProcessCertReq; caProcessReq
GET /pki/request/$id/status Get request status caCheckRequest
Cert profiles GET /pki/profiles Get list of profiles caProfileList-agent; caProfileList
GET /pki/profile/$id Get profile details caProfileReview; caProfileSelect-agent; caProfileSelect; caSCEP; caRASCEP
PUT /pki/profile/$id Add or modify profile caprofile; caProfileApprove
DEL /pki/profile/$id Delete a profile caprofile
Cert CRLs GET /pki/crls Get list of CRLs None
GET /pki/crl/details Get CRL details camasterCADisplayCRL ocspReadAddCRLPage
GET /pki/crl Get CRL caGetCRL
PUT /pki/crl Add a CRL ocspAddCRL
POST-b /pki/crl Modify a CRL camasterCAUpdateCRL
DEL /pki/crl Delete a CRL
CAs (for OCSP) GET /pki/ocsp/cas Get list of CAs ocspListCAs
GET /pki/ocsp/ca/$id Get CA details ocspReadAddCAPage
PUT /pki/ocsp/ca/$id Add or modify a CA ocspAddCA
DEL /pki/ocsp/ca/$id Delete a CA ocspRemoveCA
keys GET /pki/keys Get list of keys kraSrchKey; kraKRASrchKey; kraKRASrchKeyForRecovery; kraSrchRecoverKey
GET /pki/key/$id Get key kraKRAGetPk12; kraKRAGetAsyncPk12
GET /pki/key/$id/details Get key details kraKRADisplayBySerialForRecovery; kraKRADisplayBySerial
PUT /pki/key/$id Add a key
key requests (archival; recovery) GET /pki/keyrequests Get list of key requests kraListRequests; krakraqueryReq
GET /pki/keyrequest/$id Get key request details kraKRAGetApprovalStatus; kraKRAExamineRecovery;
POST-a /pki/keyrequest Add a key request kraKRARecoverBySerial;
Key request Status PUT /pki/keyrequest/$id/status Modify a key request status (approve async recovery) kraKRAGrantRecovery; kraKRAGrantAsyncRecovery; kraKRAProcessReq; kraGrantRecovery;
GET /pki/keyrequest/$id/status Get key request status
DEL /pki/keyrequest/$id Delete a key request None
users GET /pki/users Get list of users caug kraug ocspug tksug
GET /pki/user/$id Get user details caug kraug ocspug tksug
PUT /pki/user/$id Add or modify a user caug; caRegisterUser; caRegisterRaUser; caAdminEnroll kraRegisterUser; kraug ocspug tksug; tksRegisterUser
DEL /pki/user/$id Delete a user caug kraug ocspug tksug
System GET /pki/X/status Get subsystem status caGetStatus
GET /pki/X/stats Get subsystem stats caStats
GET /pki/X/monitor Get subsystem monitor stats caMonitor
GET /pki/X/logs Get list of logs for subsystem calog kralog ocsplog tkslog
GET /pki/X/log/$id Get log contents calog kralog ocsplog tkslog
Config
GET /pki/config/X/acls Get list of acls caacl kraacl ocspacl tksacl
GET /pki/config/X/acl/$id Get acl details caacl kraacl ocspacl tksacl
PUT /pki/config/X/acl/$id Add or modify an acl caacl kraacl ocspacl tksacl
DEL /pki/config/X/acl/$id Delete an acl caacl kraacl ocspacl tksacl
GET /pki/config/X/logs Get list of logs calog kralog ocsplog tkslog
GET /pki/config/X/log/$id Get log details calog kralog ocsplog tkslog
PUT /pki/config/X/log/$id Add or modify a log configuration calog kralog ocsplog tkslog
DEL /pki/config/X/log/$id Delete an log configuration calog kralog ocsplog tkslog
GET /pki/config/ca/systems Get list of systems from security domain caGetDomainXML
GET /pki/config/ca/system/$id Get system details from sec domain None as yet
PUT /pki/config/ca/system/$id Add or modify a system in security domain caUpdateDomainXML
DEL /pki/config/ca/system/$id Delete an system from security domain caUpdateDomainXML
GET /pki/config/ca/publishers Get list of publishers capublisher
GET /pki/config/ca/publisher/$id Get publisher details capublisher
PUT /pki/config/ca/publisher/$id Add or modify a publisher capublisher
DEL /pki/config/ca/publisher/$id Delete a publisher capublisher
GET /pki/config/X/jobs Get list of jobs cajobsScheduler krajobsScheduler ocspjobsScheduler tksjobsScheduler
GET /pki/config/X/job/$id Get job details cajobsScheduler krajobsScheduler ocspjobsScheduler tksjobsScheduler
PUT /pki/config/X/job/$id Add an job cajobsScheduler krajobsScheduler ocspjobsScheduler tksjobsScheduler
DEL /pki/config/X/job/$id Delete an job cajobsScheduler krajobsScheduler ocspjobsScheduler tksjobsScheduler
GET /pki/config/X/auths Get list of authentication plugins caauths kraauths ocspauths tksauths
GET /pki/config/X/auth/$id Get authentication plugin details caauths kraauths ocspauths tksauths
PUT /pki/config/X/auth/$id Add or modify an authentication plugin caauths kraauths ocspauths tksauths
DEL /pki/config/X/auth/$id Delete an authentication plugin caauths kraauths ocspauths tksauths
GET /pki/config/X/certs Get list of system_certs caserver kraserver ocspserver tksserver
GET /pki/config/X/cert/$id Get system_cert caGetSubsystemCert kraGetTransportCert
GET /pki/config/X/cert/Y/details Get system_cert details caserver kraKRADisplayTransport; kraserver ocspserver tksserver
PUT /pki/config/X/cert/$id Add an system_cert caserver kraserver ocspserver tksserver; tksImportTransportCert
DEL /pki/config/X/cert/$id Delete an system_cert caserver kraserver ocspserver tksserver
GET /pki/config/X/serialnos/$id Get serial number range None as yet None as yet
PUT /pki/config/X/serialnos/$id Update serial number range caUpdateNumberRange kraUpdateNumberRange
GET /pki/config/X/connector/$id Get connector config kraConnector
PUT /pki/config/X/connector/$id Add or modify connector config caUpdateConnector
GET /pki/config/X/ocsp Get ocsp config caGetOCSPInfo ocspGetOCSPInfo
PUT /pki/config/X/ocsp Modify ocsp config caUpdateOCSPConfig
GET /pki/config/X/cloning Get cloning config caGetConfigEntries kraGetConfigEntries ocspGetConfigEntries tksGetConfigEntries
GET /pki/config/X/tokeninfo Get token info (for cloning) caGetTokenInfo kraGetTokenInfo ocspGetTokenInfo tksGetTokenInfo


Notes:

  1. There is still misc admin that has not yet been characterized. This is in in caca; caregistry; krakra; ocspocsp; tkstks servlets -which map to the admin servlet.
  2. Wizard and installation servlets are not covered (for the most part).
  3. I have not included token/ token key operations (which is why the main TKS operations are not there yet)
  4. We need to figure out how to handle client-auth vs. non-clientauth - which maps to ee/agent/admin. Currently we do this by filtering urls.
  5. This is just a first cut - and hopefully a useful starting point for discussions
  6. We need to revisit POST-b in CRLs