Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / bmcweb / 49d1eeaab4085cd0284ee041f4775aaa982074c6 / . / static / redfish / v1 / JsonSchemas / Certificate / Certificate.json
blob: ae808c6a0ccb51de81523728e9020d5af9417a3f [file] [log] [blame]
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]1{
Gunnar Mills60c922d2021-12-01 09:28:53 -0600[diff] [blame]2 "$id": "http://redfish.dmtf.org/schemas/v1/Certificate.v1_5_0.json",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]3 "$ref": "#/definitions/Certificate",
4 "$schema": "http://redfish.dmtf.org/schemas/v1/redfish-schema-v1.json",
Gunnar Mills10f270b2021-05-19 15:34:06 -0500[diff] [blame]5 "copyright": "Copyright 2014-2021 DMTF. For the full DMTF copyright policy, see http://www.dmtf.org/about/policies/copyright",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]6 "definitions": {
7 "Actions": {
8 "additionalProperties": false,
Gunnar Mills844b4152020-06-22 12:44:09 -0500[diff] [blame]9 "description": "The available actions for this resource.",
10 "longDescription": "This type shall contain the available actions for this resource.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]11 "patternProperties": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]12 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]13 "description": "This property shall specify a valid odata or Redfish property.",
14 "type": [
15 "array",
16 "boolean",
17 "integer",
18 "number",
19 "null",
20 "object",
21 "string"
22 ]
23 }
24 },
25 "properties": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]26 "#Certificate.Rekey": {
27 "$ref": "#/definitions/Rekey"
28 },
29 "#Certificate.Renew": {
30 "$ref": "#/definitions/Renew"
31 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]32 "Oem": {
33 "$ref": "#/definitions/OemActions",
Gunnar Mills844b4152020-06-22 12:44:09 -0500[diff] [blame]34 "description": "The available OEM-specific actions for this resource.",
35 "longDescription": "This property shall contain the available OEM-specific actions for this resource."
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]36 }
37 },
38 "type": "object"
39 },
40 "Certificate": {
41 "additionalProperties": false,
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]42 "description": "The Certificate schema describes a certificate that proves the identify of a component, account, or service.",
Gunnar Mills844b4152020-06-22 12:44:09 -0500[diff] [blame]43 "longDescription": "This resource shall represent a certificate for a Redfish implementation.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]44 "patternProperties": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]45 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]46 "description": "This property shall specify a valid odata or Redfish property.",
47 "type": [
48 "array",
49 "boolean",
50 "integer",
51 "number",
52 "null",
53 "object",
54 "string"
55 ]
56 }
57 },
58 "properties": {
59 "@odata.context": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]60 "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/context"
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]61 },
62 "@odata.etag": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]63 "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/etag"
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]64 },
65 "@odata.id": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]66 "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/id"
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]67 },
68 "@odata.type": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]69 "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/type"
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]70 },
71 "Actions": {
72 "$ref": "#/definitions/Actions",
Gunnar Mills844b4152020-06-22 12:44:09 -0500[diff] [blame]73 "description": "The available actions for this resource.",
74 "longDescription": "This property shall contain the available actions for this resource."
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]75 },
76 "CertificateString": {
77 "description": "The string for the certificate.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]78 "longDescription": "This property shall contain the certificate, and the format shall follow the requirements specified by the CertificateType property value. If the certificate contains any private keys, they shall be removed from the string in responses. If the service does not know the private key for the certificate and is needed to use the certificate, the client shall provide the private key as part of the string in the POST request.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]79 "readonly": true,
80 "type": [
81 "string",
82 "null"
83 ]
84 },
85 "CertificateType": {
86 "anyOf": [
87 {
88 "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/CertificateType"
89 },
90 {
91 "type": "null"
92 }
93 ],
94 "description": "The format of the certificate.",
95 "longDescription": "This property shall contain the format type for the certificate.",
96 "readonly": true
97 },
Gunnar Mills9d424662021-09-22 21:56:16 -0500[diff] [blame]98 "CertificateUsageTypes": {
99 "description": "The types or purposes for this certificate.",
100 "items": {
101 "anyOf": [
102 {
103 "$ref": "#/definitions/CertificateUsageType"
104 },
105 {
106 "type": "null"
107 }
108 ]
109 },
110 "longDescription": "The value of this property shall contain an array describing the types or purposes for this certificate.",
111 "readonly": true,
112 "type": "array",
113 "versionAdded": "v1_4_0"
114 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]115 "Description": {
116 "anyOf": [
117 {
118 "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Description"
119 },
120 {
121 "type": "null"
122 }
123 ],
124 "readonly": true
125 },
Gunnar Mills10f270b2021-05-19 15:34:06 -0500[diff] [blame]126 "Fingerprint": {
127 "description": "The fingerprint of the certificate.",
128 "longDescription": "The value of this property shall be a string containing the ASCII representation of the fingerprint of the certificate. The hash algorithm used to generate this fingerprint shall be specified by the FingerprintHashAlgorithm property.",
129 "pattern": "^([0-9A-Fa-f]{2}:){0,}([0-9A-Fa-f]{2})$",
130 "readonly": true,
131 "type": "string",
132 "versionAdded": "v1_3_0"
133 },
134 "FingerprintHashAlgorithm": {
135 "description": "The hash algorithm for the fingerprint of the certificate.",
136 "longDescription": "The value of this property shall be a string containing the hash algorithm used for generating the Fingerprint property. The value shall be one of the strings in the 'Algorithm Name' field of the 'TPM_ALG_ID Constants' table within the 'Trusted Computing Group Algorithm Registry'.",
137 "readonly": true,
138 "type": "string",
139 "versionAdded": "v1_3_0"
140 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]141 "Id": {
142 "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Id",
143 "readonly": true
144 },
145 "Issuer": {
146 "$ref": "#/definitions/Identifier",
147 "description": "The issuer of the certificate.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]148 "longDescription": "This property shall contain an object containing information about the issuer of the certificate."
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]149 },
150 "KeyUsage": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]151 "description": "The key usage extension, which defines the purpose of the public keys in this certificate.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]152 "items": {
153 "anyOf": [
154 {
155 "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/KeyUsage"
156 },
157 {
158 "type": "null"
159 }
160 ]
161 },
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]162 "longDescription": "This property shall contain the key usage extension, which defines the purpose of the public keys in this certificate.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]163 "readonly": true,
164 "type": "array"
165 },
Gunnar Mills9d424662021-09-22 21:56:16 -0500[diff] [blame]166 "Links": {
167 "$ref": "#/definitions/Links",
168 "description": "The links to other resources that are related to this resource.",
169 "longDescription": "This property shall contain links to resources that are related to but are not contained by, or subordinate to, this resource.",
170 "versionAdded": "v1_4_0"
171 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]172 "Name": {
173 "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Name",
174 "readonly": true
175 },
176 "Oem": {
177 "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Oem",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]178 "description": "The OEM extension property.",
179 "longDescription": "This property shall contain the OEM extensions. All values for properties that this object contains shall conform to the Redfish Specification-described requirements."
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]180 },
Gunnar Mills60c922d2021-12-01 09:28:53 -0600[diff] [blame]181 "SPDM": {
182 "anyOf": [
183 {
184 "$ref": "#/definitions/SPDM"
185 },
186 {
187 "type": "null"
188 }
189 ],
190 "description": "SPDM-related information for the certificate.",
191 "longDescription": "The value of this property shall contain SPDM-related information for the certificate. This property shall only be present for SPDM certificates.",
192 "versionAdded": "v1_5_0"
193 },
Gunnar Mills10f270b2021-05-19 15:34:06 -0500[diff] [blame]194 "SerialNumber": {
195 "description": "The serial number of the certificate.",
196 "longDescription": "The value of this property shall be a string containing the ASCII representation of the serial number of the certificate, as defined by the RFC5280 'serialNumber' field.",
197 "pattern": "^([0-9A-Fa-f]{2}:){0,}([0-9A-Fa-f]{2})$",
198 "readonly": true,
199 "type": "string",
200 "versionAdded": "v1_3_0"
201 },
202 "SignatureAlgorithm": {
203 "description": "The algorithm used for creating the signature of the certificate.",
204 "longDescription": "The value of this property shall be a string containing the algorithm used for generating the signature of the certificate, as defined by the RFC5280 'signatureAlgorithm' field. The value shall be a string representing the ASN.1 OID of the signature algorithm as defined in, but not limited to, RFC3279, RFC4055, or RFC4491.",
205 "readonly": true,
206 "type": "string",
207 "versionAdded": "v1_3_0"
208 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]209 "Subject": {
210 "$ref": "#/definitions/Identifier",
211 "description": "The subject of the certificate.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]212 "longDescription": "This property shall contain an object containing information about the subject of the certificate."
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]213 },
Gunnar Millsa778c022020-05-12 12:20:36 -0500[diff] [blame]214 "UefiSignatureOwner": {
215 "description": "The UEFI signature owner for this certificate.",
Gunnar Mills10f270b2021-05-19 15:34:06 -0500[diff] [blame]216 "longDescription": "The value of this property shall contain the GUID of the UEFI signature owner for this certificate as defined by the UEFI Specification. This property shall only be present for certificates managed by UEFI.",
Gunnar Millsa778c022020-05-12 12:20:36 -0500[diff] [blame]217 "pattern": "([0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12})",
218 "readonly": true,
219 "type": [
220 "string",
221 "null"
222 ],
223 "versionAdded": "v1_2_0"
224 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]225 "ValidNotAfter": {
226 "description": "The date when the certificate is no longer valid.",
227 "format": "date-time",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]228 "longDescription": "This property shall contain the date when the certificate validity period ends.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]229 "readonly": true,
230 "type": "string"
231 },
232 "ValidNotBefore": {
233 "description": "The date when the certificate becomes valid.",
234 "format": "date-time",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]235 "longDescription": "This property shall contain the date when the certificate validity period begins.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]236 "readonly": true,
237 "type": "string"
238 }
239 },
240 "required": [
241 "@odata.id",
242 "@odata.type",
243 "Id",
244 "Name"
245 ],
246 "requiredOnCreate": [
247 "CertificateString",
248 "CertificateType"
249 ],
250 "type": "object"
251 },
Gunnar Mills9d424662021-09-22 21:56:16 -0500[diff] [blame]252 "CertificateUsageType": {
253 "enum": [
254 "User",
255 "Web",
256 "SSH",
257 "Device",
258 "Platform",
259 "BIOS"
260 ],
261 "enumDescriptions": {
262 "BIOS": "This certificate is a BIOS certificate like those associated with UEFI.",
263 "Device": "This certificate is a device type certificate like those associated with SPDM and other standards.",
264 "Platform": "This certificate is a platform type certificate like those associated with SPDM and other standards.",
265 "SSH": "This certificate is used for SSH.",
266 "User": "This certificate is a user certificate like those associated with a manager account.",
267 "Web": "This certificate is a web or HTTPS certificate like those used for event destinations."
268 },
269 "type": "string"
270 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]271 "Identifier": {
272 "additionalProperties": false,
273 "description": "The identifier information about a certificate.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]274 "longDescription": "This type shall contain the properties that identifies the issuer or subject of a certificate.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]275 "patternProperties": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]276 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]277 "description": "This property shall specify a valid odata or Redfish property.",
278 "type": [
279 "array",
280 "boolean",
281 "integer",
282 "number",
283 "null",
284 "object",
285 "string"
286 ]
287 }
288 },
289 "properties": {
290 "City": {
291 "description": "The city or locality of the organization of the entity.",
292 "longDescription": "This property shall contain the city or locality of the organization of the entity.",
293 "readonly": true,
294 "type": "string"
295 },
296 "CommonName": {
297 "description": "The fully qualified domain name of the entity.",
298 "longDescription": "This property shall contain the fully qualified domain name of the entity.",
299 "readonly": true,
300 "type": "string"
301 },
302 "Country": {
303 "description": "The country of the organization of the entity.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]304 "longDescription": "This property shall contain the two-letter ISO code for the country of the organization of the entity.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]305 "readonly": true,
306 "type": "string"
307 },
308 "Email": {
309 "description": "The email address of the contact within the organization of the entity.",
310 "longDescription": "This property shall contain the email address of the contact within the organization of the entity.",
311 "readonly": true,
312 "type": [
313 "string",
314 "null"
315 ]
316 },
317 "Organization": {
318 "description": "The name of the organization of the entity.",
319 "longDescription": "This property shall contain the name of the organization of the entity.",
320 "readonly": true,
321 "type": "string"
322 },
323 "OrganizationalUnit": {
324 "description": "The name of the unit or division of the organization of the entity.",
325 "longDescription": "This property shall contain the name of the unit or division of the organization of the entity.",
326 "readonly": true,
327 "type": "string"
328 },
329 "State": {
330 "description": "The state, province, or region of the organization of the entity.",
331 "longDescription": "This property shall contain the state, province, or region of the organization of the entity.",
332 "readonly": true,
333 "type": "string"
334 }
335 },
336 "type": "object"
337 },
Gunnar Mills9d424662021-09-22 21:56:16 -0500[diff] [blame]338 "Links": {
339 "additionalProperties": false,
340 "description": "The links to other resources that are related to this resource.",
341 "longDescription": "This Redfish Specification-described type shall contain links to resources that are related to but are not contained by, or subordinate to, this resource.",
342 "patternProperties": {
343 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
344 "description": "This property shall specify a valid odata or Redfish property.",
345 "type": [
346 "array",
347 "boolean",
348 "integer",
349 "number",
350 "null",
351 "object",
352 "string"
353 ]
354 }
355 },
356 "properties": {
357 "Issuer": {
358 "anyOf": [
359 {
360 "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/Certificate"
361 },
362 {
363 "type": "null"
364 }
365 ],
366 "description": "A link to the certificate of the CA that issued this certificate.",
367 "longDescription": "This property shall contain a link to a resources of type Certificate that represents the certificate of the CA that issued this certificate.",
368 "readonly": false,
369 "versionAdded": "v1_4_0"
370 },
371 "Oem": {
372 "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Oem",
373 "description": "The OEM extension property.",
374 "longDescription": "This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."
375 },
376 "Subjects": {
377 "description": "An array of links to certificates that were issued by the CA that is represented by this certificate.",
378 "items": {
379 "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/Certificate"
380 },
381 "longDescription": "This property shall contain an array of links to resources of type Certificate that were issued by the CA that is represented by this certificate.",
382 "readonly": false,
383 "type": "array",
384 "versionAdded": "v1_4_0"
385 },
386 "Subjects@odata.count": {
387 "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/count"
388 }
389 },
390 "type": "object"
391 },
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]392 "OemActions": {
393 "additionalProperties": true,
Gunnar Mills844b4152020-06-22 12:44:09 -0500[diff] [blame]394 "description": "The available OEM-specific actions for this resource.",
395 "longDescription": "This type shall contain the available OEM-specific actions for this resource.",
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]396 "patternProperties": {
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]397 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]398 "description": "This property shall specify a valid odata or Redfish property.",
399 "type": [
400 "array",
401 "boolean",
402 "integer",
403 "number",
404 "null",
405 "object",
406 "string"
407 ]
408 }
409 },
410 "properties": {},
411 "type": "object"
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]412 },
413 "Rekey": {
414 "actionResponse": {
415 "$ref": "#/definitions/RekeyResponse"
416 },
417 "additionalProperties": false,
418 "description": "This action generates a new key-pair for a certificate and produces a certificate signing request.",
Gunnar Mills262d7d42021-01-20 16:28:41 -0600[diff] [blame]419 "longDescription": "This action shall use the certificate data to generate a new key-pair for a certificate. The response shall contain a signing request that a certificate authority (CA) will sign. The service should retain the private key that generated this request for installation of the certificate. The private key should not be part of the response. The private key should not be part of the response.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]420 "parameters": {
421 "ChallengePassword": {
422 "description": "The challenge password to apply to the certificate for revocation requests.",
423 "longDescription": "This property shall contain the challenge password to apply to the certificate for revocation requests as defined by the RFC2985 'challengePassword' attribute.",
424 "type": "string"
425 },
426 "KeyBitLength": {
427 "description": "The length of the key, in bits, if needed based on the KeyPairAlgorithm parameter value.",
428 "longDescription": "This parameter shall contain the length of the key, in bits, if needed based on the KeyPairAlgorithm parameter value.",
429 "type": "integer"
430 },
431 "KeyCurveId": {
432 "description": "The curve ID to use with the key, if needed based on the KeyPairAlgorithm parameter value.",
433 "longDescription": "This parameter shall contain the curve ID to use with the key, if needed based on the KeyPairAlgorithm parameter value. The allowable values for this parameter shall be the strings in the 'Name' field of the 'TPM_ECC_CURVE Constants' table within the 'Trusted Computing Group Algorithm Registry'.",
434 "type": "string"
435 },
436 "KeyPairAlgorithm": {
437 "description": "The type of key-pair for use with signing algorithms.",
438 "longDescription": "This parameter shall contain the type of key-pair for use with signing algorithms. The allowable values for this parameter shall be the strings in the 'Algorithm Name' field of the 'TPM_ALG_ID Constants' table within the 'Trusted Computing Group Algorithm Registry'.",
439 "type": "string"
440 }
441 },
442 "patternProperties": {
443 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
444 "description": "This property shall specify a valid odata or Redfish property.",
445 "type": [
446 "array",
447 "boolean",
448 "integer",
449 "number",
450 "null",
451 "object",
452 "string"
453 ]
454 }
455 },
456 "properties": {
457 "target": {
458 "description": "Link to invoke action",
459 "format": "uri-reference",
460 "type": "string"
461 },
462 "title": {
463 "description": "Friendly action name",
464 "type": "string"
465 }
466 },
467 "type": "object",
468 "versionAdded": "v1_1_0"
469 },
470 "RekeyResponse": {
471 "additionalProperties": false,
472 "description": "The response body for the Rekey action.",
473 "longDescription": "This type shall contain the properties found in the response body for the Rekey action.",
474 "patternProperties": {
475 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
476 "description": "This property shall specify a valid odata or Redfish property.",
477 "type": [
478 "array",
479 "boolean",
480 "integer",
481 "number",
482 "null",
483 "object",
484 "string"
485 ]
486 }
487 },
488 "properties": {
489 "CSRString": {
490 "description": "The string for the certificate signing request.",
491 "longDescription": "This property shall contain the certificate signing request as a PEM-encoded string, containing structures specified by RFC2986. The private key should not be part of the string.",
492 "readonly": true,
493 "type": "string",
494 "versionAdded": "v1_1_0"
495 },
496 "Certificate": {
497 "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/Certificate",
498 "description": "The link to the certificate being rekeyed.",
Gunnar Mills844b4152020-06-22 12:44:09 -0500[diff] [blame]499 "longDescription": "This property shall contain a link to a resource of type Certificate that is replaced after the certificate authority (CA) signs the certificate.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]500 "readonly": true,
501 "versionAdded": "v1_1_0"
502 }
503 },
504 "required": [
505 "Certificate",
506 "CSRString"
507 ],
508 "type": "object"
509 },
510 "Renew": {
511 "actionResponse": {
512 "$ref": "#/definitions/RenewResponse"
513 },
514 "additionalProperties": false,
515 "description": "This action generates a certificate signing request by using the existing information and key-pair of the certificate.",
Gunnar Mills262d7d42021-01-20 16:28:41 -0600[diff] [blame]516 "longDescription": "This action shall generate a certificate signing request using the existing information and key-pair of the certificate. The response shall contain a signing request that a certificate authority (CA) will sign. The service should retain the private key that this request generates for when the certificate is installed. The private key should not be part of the response.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]517 "parameters": {
518 "ChallengePassword": {
519 "description": "The challenge password to apply to the certificate for revocation requests.",
520 "longDescription": "This property shall contain the challenge password to apply to the certificate for revocation requests as defined by the RFC2985 'challengePassword' attribute.",
521 "type": "string"
522 }
523 },
524 "patternProperties": {
525 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
526 "description": "This property shall specify a valid odata or Redfish property.",
527 "type": [
528 "array",
529 "boolean",
530 "integer",
531 "number",
532 "null",
533 "object",
534 "string"
535 ]
536 }
537 },
538 "properties": {
539 "target": {
540 "description": "Link to invoke action",
541 "format": "uri-reference",
542 "type": "string"
543 },
544 "title": {
545 "description": "Friendly action name",
546 "type": "string"
547 }
548 },
549 "type": "object",
550 "versionAdded": "v1_1_0"
551 },
552 "RenewResponse": {
553 "additionalProperties": false,
554 "description": "The response body for the Renew action.",
555 "longDescription": "This type shall contain the properties found in the response body for the Renew action.",
556 "patternProperties": {
557 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
558 "description": "This property shall specify a valid odata or Redfish property.",
559 "type": [
560 "array",
561 "boolean",
562 "integer",
563 "number",
564 "null",
565 "object",
566 "string"
567 ]
568 }
569 },
570 "properties": {
571 "CSRString": {
572 "description": "The string for the certificate signing request.",
573 "longDescription": "This property shall contain the certificate signing request as a PEM-encoded string, containing structures specified by RFC2986. The private key should not be part of the string.",
574 "readonly": true,
575 "type": "string",
576 "versionAdded": "v1_1_0"
577 },
578 "Certificate": {
579 "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/Certificate",
580 "description": "The link to the certificate being renewed.",
Gunnar Mills844b4152020-06-22 12:44:09 -0500[diff] [blame]581 "longDescription": "This property shall contain a link to a resource of type Certificate that is replaced after the certificate authority (CA) signs the certificate.",
Ed Tanouscb103132019-10-08 11:34:22 -0700[diff] [blame]582 "readonly": true,
583 "versionAdded": "v1_1_0"
584 }
585 },
586 "required": [
587 "Certificate",
588 "CSRString"
589 ],
590 "type": "object"
Gunnar Mills60c922d2021-12-01 09:28:53 -0600[diff] [blame]591 },
592 "SPDM": {
593 "additionalProperties": false,
594 "description": "SPDM-related information for a certificate.",
595 "longDescription": "This type shall contain contain SPDM-related information for a certificate.",
596 "patternProperties": {
597 "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": {
598 "description": "This property shall specify a valid odata or Redfish property.",
599 "type": [
600 "array",
601 "boolean",
602 "integer",
603 "number",
604 "null",
605 "object",
606 "string"
607 ]
608 }
609 },
610 "properties": {
611 "SlotId": {
612 "description": "Slot identifier of the certificate.",
613 "longDescription": "The value of this property shall contain an integer between 0 and 7, inclusive, that represents the slot identifier for an SPDM-provided certificate.",
614 "readonly": true,
615 "type": [
616 "integer",
617 "null"
618 ],
619 "versionAdded": "v1_5_0"
620 }
621 },
622 "type": "object"
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]623 }
624 },
625 "owningEntity": "DMTF",
Gunnar Mills60c922d2021-12-01 09:28:53 -0600[diff] [blame]626 "release": "2021.3",
627 "title": "#Certificate.v1_5_0.Certificate"
Marri Devender Raod45d2d02019-01-21 10:11:34 -0600[diff] [blame]628}