Skip to main content

Get a smart credential

GET 
/api/web/v1/smartcredentials/:id

Get the specified smart credential. Caller requires the SMARTCREDENTIALS:VIEW permission.

Request

Path Parameters

    id stringrequired

    The UUID of the smart credential to be retrieved.

Query Parameters

    revocationInfo boolean

    Optional flag indicating if revocation inforamtion should be returned. Defaults to false if not specified.

Responses

Successful

Schema

    allowedActions string[]

    Possible values: [ACTIVATE, REACTIVATE, UPDATE, UNASSIGN, UNBLOCK, ENABLE, DISABLE, DELETE, VIEW_CERTIFICATES]

    A list of administration actions currently allowed for this smart credential.

    cardDigitalConfig

    object

    Information that defines how digital ids are created in the CA.

    allCAGroups boolean

    If true, digital ids using this config will be set to have all CA groups.

    caGroups string[]

    If allCAGroups is set to false then digital ids using this config will use this specified list of CA groups.

    caId string

    The UUID of the CA for this digital id config.

    caName string

    The name of the CA for this digital id config.

    caType string

    Possible values: [EDC, MS, PKIAAS]

    The CA type of this Digital Id Config.

    certTemplates

    object[]

    A list of cert templates associated with this digital id config.

  • Array [

    • digitalIdConfigId string

    The UUID of the Digital Id Config that owns this Digital Id Config Cert Template.

    id string

    The UUID of the Digital Id Config Cert Template.

    keyType string

    Possible values: [RSA_2048, EC_P_256]

    The key type of the Digital Id Config Cert Template.

    name string

    The name of the Digital Id Config Cert Template.

    pivContainer string

    Possible values: [PivAuth, CardAuth, DigSig, KeyMgmt, None]

    The PIV container of the Digital Id Config Cert Template.

  • ]

    • certificateType string

    The CA certificate type which digital ids using this config will use.

    digitalIdConfigTemplateId string

    When creating a digital id config, default values can be provided from this specified digital id config template.

    directoryEntry boolean

    A flag indicating if digital ids using this config will create directory entries in the CA.

    dnFormat string

    The format which digital ids using this config will use for their DN.

    dnFormatSearchbaseIncluded boolean

    Whether digital ids using this config should include the searchbase in their DN.

    id string

    The UUID of this Digital Id Config.

    name string

    The name of this Digital Id Config.

    role string

    The CA role which digital ids using this config will use.

    searchbase string

    The searchbase within the CA in which digital ids using this config will be created.

    subjectAltNames

    object[]

    A list of subjectAltNames associated with this digital id config.

  • Array [

    • digitalIdConfigId string

    The UUID of the digital id config that owns this subjectAltName.

    id string

    The UUID of this Digital Id Config SubjectAltName.

    type string

    Possible values: [EMAIL, UPN, IP, DNS, OTHER, X400, DN, EDI, URI, REGISTERED_ID]

    The type of subjectAltName.

    value string

    The value for the subjectAltName.

  • ]

    • type string

    Possible values: [PIV_CARDHOLDER, PIV_CARD]

    The type of digital id.

    userType string

    The CA user type which digital ids using this config will use.

    variables

    object[]

    A list of variables associated with this digital id config.

  • Array [

    • digitalIdConfigId string

    The UUID of the Digital Id Config that owns this Digital Id Config Variable.

    id string

    The UUID of the Digital Id Config Variable.

    includedInDN boolean

    A flag indicating if values for this variable are included in the Digital Id's DN when it is generated by the CA.

    name string

    The name of the Digital Id Config Variable.

    type string

    Possible values: [CERTIFICATE, USER, VARIABLE, CUSTOM]

    The type of the Digital Id Config Variable.

    value string

    The value of the Digital Id Config Variable.

  • ]

    • cardDigitalConfigId string

    The UUID of the Card Digital Id config of this smart credential. If not set, the smart credential will not have a Card Digital Id.

    cardDigitalConfigRequired boolean

    Indicates if the card digitalid config is required or not.

    cardHolderDigitalConfig

    object

    Information that defines how digital ids are created in the CA.

    allCAGroups boolean

    If true, digital ids using this config will be set to have all CA groups.

    caGroups string[]

    If allCAGroups is set to false then digital ids using this config will use this specified list of CA groups.

    caId string

    The UUID of the CA for this digital id config.

    caName string

    The name of the CA for this digital id config.

    caType string

    Possible values: [EDC, MS, PKIAAS]

    The CA type of this Digital Id Config.

    certTemplates

    object[]

    A list of cert templates associated with this digital id config.

  • Array [

    • digitalIdConfigId string

    The UUID of the Digital Id Config that owns this Digital Id Config Cert Template.

    id string

    The UUID of the Digital Id Config Cert Template.

    keyType string

    Possible values: [RSA_2048, EC_P_256]

    The key type of the Digital Id Config Cert Template.

    name string

    The name of the Digital Id Config Cert Template.

    pivContainer string

    Possible values: [PivAuth, CardAuth, DigSig, KeyMgmt, None]

    The PIV container of the Digital Id Config Cert Template.

  • ]

    • certificateType string

    The CA certificate type which digital ids using this config will use.

    digitalIdConfigTemplateId string

    When creating a digital id config, default values can be provided from this specified digital id config template.

    directoryEntry boolean

    A flag indicating if digital ids using this config will create directory entries in the CA.

    dnFormat string

    The format which digital ids using this config will use for their DN.

    dnFormatSearchbaseIncluded boolean

    Whether digital ids using this config should include the searchbase in their DN.

    id string

    The UUID of this Digital Id Config.

    name string

    The name of this Digital Id Config.

    role string

    The CA role which digital ids using this config will use.

    searchbase string

    The searchbase within the CA in which digital ids using this config will be created.

    subjectAltNames

    object[]

    A list of subjectAltNames associated with this digital id config.

  • Array [

    • digitalIdConfigId string

    The UUID of the digital id config that owns this subjectAltName.

    id string

    The UUID of this Digital Id Config SubjectAltName.

    type string

    Possible values: [EMAIL, UPN, IP, DNS, OTHER, X400, DN, EDI, URI, REGISTERED_ID]

    The type of subjectAltName.

    value string

    The value for the subjectAltName.

  • ]

    • type string

    Possible values: [PIV_CARDHOLDER, PIV_CARD]

    The type of digital id.

    userType string

    The CA user type which digital ids using this config will use.

    variables

    object[]

    A list of variables associated with this digital id config.

  • Array [

    • digitalIdConfigId string

    The UUID of the Digital Id Config that owns this Digital Id Config Variable.

    id string

    The UUID of the Digital Id Config Variable.

    includedInDN boolean

    A flag indicating if values for this variable are included in the Digital Id's DN when it is generated by the CA.

    name string

    The name of the Digital Id Config Variable.

    type string

    Possible values: [CERTIFICATE, USER, VARIABLE, CUSTOM]

    The type of the Digital Id Config Variable.

    value string

    The value of the Digital Id Config Variable.

  • ]

    • cardHolderDigitalConfigId string

    The UUID of the Card Holder Digital Id config of this smart credential. If not set, the smart credential will not have a Card Holder Digital Id.

    cardHolderDigitalConfigRequired boolean

    Indicates if the card holder digitalid config is required or not.

    certificates

    object[]

    A list of certificates associated with this smart credential.

  • Array [

    • description string

    The description providing the purpose of this certificate.

    digitalIdId string

    The UUID of the digital id to which this certificate belongs

    digitalIdType string

    Possible values: [PIV_CARDHOLDER, PIV_CARD]

    The type of the digital Id to which this certificate belongs.

    id string

    The UUID of this Digital Id Certificate.

    issuerDN string

    The issuer DN of this certificate.

    notAfter date-time

    The expiry date of this certificate.

    notBefore date-time

    The issue date of this certificate.

    pivContainer string

    The name of the PIV container that stores this certificate on the smart card.

    serialNumber string

    The serial number of this certificate.

    status string

    Possible values: [ACTIVE, REVOKED, HOLD, EXPIRED, NOT_AVAILABLE]

    The status of this certificate. If not set, the revocation status has not been retrieved from the CA.

    subjectDN string

    The subject DN of this certificate.

  • ]

    • chipId string

    The chip id of the smart card set when the smart credential is encoded.

    digitalIds

    object[]

    A list of digital ids associated with this smart credential.

  • Array [

    • certificates

    object[]

    The certificates associated with this digital id.

  • Array [

    • description string

    The description providing the purpose of this certificate.

    digitalIdId string

    The UUID of the digital id to which this certificate belongs

    digitalIdType string

    Possible values: [PIV_CARDHOLDER, PIV_CARD]

    The type of the digital Id to which this certificate belongs.

    id string

    The UUID of this Digital Id Certificate.

    issuerDN string

    The issuer DN of this certificate.

    notAfter date-time

    The expiry date of this certificate.

    notBefore date-time

    The issue date of this certificate.

    pivContainer string

    The name of the PIV container that stores this certificate on the smart card.

    serialNumber string

    The serial number of this certificate.

    status string

    Possible values: [ACTIVE, REVOKED, HOLD, EXPIRED, NOT_AVAILABLE]

    The status of this certificate. If not set, the revocation status has not been retrieved from the CA.

    subjectDN string

    The subject DN of this certificate.

  • ]

    • digitalIdConfigId string

    The UUID of the digital Id config that defines this digital Id.

    digitalIdConfigName string

    The name of the digital id Config that defines this digital Id.

    digitalIdConfigType string

    Possible values: [PIV_CARDHOLDER, PIV_CARD]

    The type of this digital Id.

    dn string

    The current DN of the digital id.

    id string

    The UUID of this DigitalId.

  • ]

    • encodeMsg string

    For smart credentials that have failed to encode, the encode message stores a message providing information about the failure.

    encodeState string

    Possible values: [ENCODE_START, ENCODE_DONE, ENCODE_ERROR]

    The encode state of a smart credential indicates if encoding has started, completed successfully or failed.

    enrollState string

    Possible values: [ENROLLING, ENROLLED]

    The enrollment state of a smart credential indicates if all of the necessary enrollment values have been collected. Only smart credentials in the ENROLLED state can be activated.

    expiryDate date-time

    For issued smart credentials, the expiry date is the date on which the smart credential will expire.

    id string

    The unique UUID assigned to the smart credential when it is created.

    issueDate date-time

    The date on which the smart credential was issued.

    notifyEnabled boolean

    A flag indicating if notification is enabled for this smart credential.

    platform string

    The platform of the Mobile SC application on which this smart credential was encoded.

    scDefnId string

    The UUID of the Smart Credential Definition that defines this smart credential.

    scDefnName string

    The name of the smart credential definition of this smart credential.

    serialNumber string

    The unique serial number of the smart credential generated when it is created.

    state string

    Possible values: [ACTIVE, INACTIVE]

    The state of the smart credential. Only smart credentials in the ACTIVE state can be used for authentication.

    userId string

    The UUID of the user that owns this smart credential.

    userUserId string

    The user Id of the user that owns this smart credential.

    variableValues

    object[]

    Variable values for this smart credential

  • Array [

    • scDefnVariable

    object

    SC Defn Variables define the details about variables defined in the SC Defn.

    defaultValue string

    The default value of this variable.

    displayable boolean

    A flag indicating if values for this variable should be displayed.

    generate boolean

    A flag indicating if the initial value for this variable should be generated.

    generateLength int32

    A length value used when generating values for this variable.

    id string

    The UUID of this SC Defn Variable.

    modifiable boolean

    A flag indicating if values for this variable can be modified.

    name string

    The name of this SC Defn Variable.

    order int32

    A value that specifies the order of this variable with respect to the other variables in the SC Defn.

    prompt string

    Optional prompt to be used when prompting for a value for this variable.

    required boolean

    A flag indicating if a value is required for this variable.

    restrictionDigits string

    Possible values: [ALLOWED, REQUIRED, NOT_ALLOWED, NOT_SET]

    A value specifying restrictions on digits appearing in values of this variable.

    restrictionLower string

    Possible values: [ALLOWED, REQUIRED, NOT_ALLOWED, NOT_SET]

    A value specifying restrictions on lowercase characters appearing in values of this variable.

    restrictionMax int32

    A value indicating a maximum for values of this variable. How this is enforced depends on the variable type.

    restrictionMin int32

    A value indicating a minimum for values of this variable. How this is enforced depends on the variable type.

    restrictionRegex string

    A value specifying a regex that values of this variable must match.

    restrictionSpecial string

    Possible values: [ALLOWED, REQUIRED, NOT_ALLOWED, NOT_SET]

    A value specifying restrictions on special characters appearing in values of this variable.

    restrictionUpper string

    Possible values: [ALLOWED, REQUIRED, NOT_ALLOWED, NOT_SET]

    A value specifying restrictions on uppercase characters appearing in values of this variable.

    scDefnId string

    The UUID of the SC Defn that owns this variable definition.

    type string

    Possible values: [STRING, BOOLEAN, INTEGER, UUID]

    The type of this variable.

    uniqueness string

    Possible values: [GLOBAL, USER, NONE]

    A flag indicating if values of this variable must be unique and if so within what scope.

    uniquenessScopeId string

    A value that allows a variable to be defined unique in the scope of another variable.

    scDefnVariableId string

    The UUID of the SC Defn Variable that defines the variable.

    value string

    The variable value.

  • ]

    • version string

    The version of the Mobile SC application on which this smart credential was encoded.

Loading...