Get
/api/v1/discovery/scans/{id}/scan_inventory_objects
List Scan Inventory objects.
Security
OAuth
OAuth 2.0 client credential flow, see https://datatracker.ietf.org/doc/html/rfc6749#section-4.4.
FlowClient Credentials
Token URLhttps://api.armor.fortanix.com/api/v1/iam/session/oauth2/token
Path parameters
id
string (uuid) Required
Query parameters
DiscoveryScanInventoryObjectsParams
object
filter
string
limit
integer
previous_id
string (uuid)
previous_sort_value
string
sort_by
string
Responses
2XX
Success result
object
items
Array of object (DiscoveryScanInventoryObject)
object
acct_id
string (uuid)
details
OneOf
object
object
$type
string
Valid values[
"aws"
]
account
object
details
object
name
string | null
id
string
arn
string
details
OneOf
object
object
$type
string
Valid values[
"acm"
]
analysis
object
is_expired
boolean
is_shared
boolean
key_algo_crypto_policy_compliance
object
is_compliant
boolean
violation_reason
string | null
overly_permissive_usage_violation
boolean
signature_crypto_policy_compliance
object
is_compliant
boolean
violation_reason
string | null
certificate_arn
string
created_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
domain_name
string
extended_key_usages
Array of object (DiscoveryAcmCertificateExtendedKeyUsage) | null
object
name
string
Valid values[
"any",
"code_signing",
"custom",
"email_protection",
"ipsec_end_system",
"ipsec_tunnel",
"ipsec_user",
"none",
"ocsp_signing",
"time_stamping",
"tls_web_server_authentication",
"tls_web_client_authentication",
"unknown"
]
object_identifier
string | null
issuer
string
key_algorithm
string
Valid values[
"rsa2048",
"rsa3072",
"rsa4096",
"unknown"
]
not_valid_after
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
not_valid_before
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
renewal_eligibility
string
Valid values[
"ineligible",
"eligible",
"unknown"
]
serial
string
signature_algorithm
string
Valid values[
"sha256_with_rsa",
"sha512_with_rsa",
"unknown"
]
status
string
Valid values[
"expired",
"pending",
"issued",
"failed",
"inactive",
"revoked",
"validation_timed_out",
"unknown"
]
subject_alternative_names
Array of string | null
string
used_by_services
Array of string
string
object
object
$type
string
Valid values[
"ebs"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
encryption_status
string
Valid values[
"unencrypted",
"encrypted_with_csp_generated_key",
"encrypted_with_platform_managed_key",
"encrypted_with_customer_managed_key"
]
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
availability_zone
string
The region this volume will be available
kms_key_id
string | null
The arn of the key in KMS that encrypts this drive
volume_id
string | null
The ARN of the volume
volume_size
integer (int32) | null
The storage limit (in GB) of the volume
volume_state
string
Enumeration of the states that a volume may occupy.
This enum will default to the Other variant when a new variant is
found as the SDK from AWS marks their enum as "non-exhaustive"
Valid values[
"available",
"creating",
"deleted",
"deleting",
"error",
"in_use",
"other"
]
volume_type
string
Enumeration of the various types of volumes supported.
This enum will default to the Other variant when a new variant is
found as the SDK from AWS marks their enum as "non-exhaustive"
Valid values[
"gp2",
"gp3",
"io1",
"io2",
"sc1",
"st1",
"standard",
"other"
]
object
object
$type
string
Valid values[
"kms"
]
analysis
object
crypto_policy_compliance
object
is_compliant
boolean
violation_reason
string | null
is_cross_account_key
boolean | null
is_shared
boolean
overly_permissive_violations
object
management_violations
Array of object (DiscoveryKeyPolicyId)
OneOf
object
object
$type
string
Valid values[
"aws_key_policy_sid"
]
sid
string
object
object
$type
string
Valid values[
"aws_grant_id"
]
id
string
usage_violations
Array of object (DiscoveryKeyPolicyId)
OneOf
object
object
$type
string
Valid values[
"aws_key_policy_sid"
]
sid
string
object
object
$type
string
Valid values[
"aws_grant_id"
]
id
string
usage_details
object
encrypt
object
service_count
integer
usages
Array of string (DiscoveryKeyUsage) | null
string
Valid values[
"encrypt",
"unused"
]
external_key_stores
Array of object (DiscoveryAwsKmsExternalKeyStore) | null
object
id
string
name
string
key_aliases
Array of string
string
key_creation_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
key_id
string | null
key_manager
string
Valid values[
"aws",
"customer",
"other"
]
key_origin
string
Valid values[
"kms",
"imported",
"cloud_hsm",
"xks",
"fortanix",
"other"
]
key_rotation_status
OneOf
object
object
$type
string
Valid values[
"unknown"
]
object
object
$type
string
Valid values[
"enabled"
]
next_rotation_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
rotation_period
integer
Minimum0
Maximum4294967295
object
object
$type
string
Valid values[
"disabled"
]
key_spec
string
Valid values[
"rsa2048",
"rsa3072",
"rsa4096",
"ecc_nist_p256",
"ecc_nist_p384",
"ecc_nist_p521",
"ecc_secg_p256k1",
"symmetric_default",
"hmac224",
"hmac256",
"hmac384",
"hmac512",
"sm2",
"other"
]
key_state
string
Valid values[
"creating",
"enabled",
"disabled",
"pending_deletion",
"pending_import",
"pending_replica_deletion",
"unavailable",
"updating",
"other"
]
key_tags
object | null
property*
string additionalProperties
key_usage
string
Valid values[
"sign_verify",
"encrypt_decrypt",
"generate_verify_mac",
"other"
]
key_valid_to
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
last_rotated_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
source_scan_inventory_object
object
id
string (uuid)
scan_id
string (uuid)
object
object
$type
string
Valid values[
"s3"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
encryption_status
string
Valid values[
"unencrypted",
"encrypted_with_csp_generated_key",
"encrypted_with_platform_managed_key",
"encrypted_with_customer_managed_key"
]
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
name
string
server_side_encryption_rules
Array of object (DiscoveryAwsServerSideEncryptionRule)
object
bucket_key_enabled
boolean
default_sse
object
kms_master_key
string | null
sse_algorithm
string
Valid values[
"aes256",
"kms",
"aws:kms_dsse",
"other"
]
object
object
$type
string
Valid values[
"rds"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
encryption_status
string
Valid values[
"unencrypted",
"encrypted_with_csp_generated_key",
"encrypted_with_platform_managed_key",
"encrypted_with_customer_managed_key"
]
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
engine
string | null
engine_version
string | null
identifier
string | null
kms_key_id
string | null
object
object
$type
string
Valid values[
"dynamo_db"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
encryption_status
string
Valid values[
"unencrypted",
"encrypted_with_csp_generated_key",
"encrypted_with_platform_managed_key",
"encrypted_with_customer_managed_key"
]
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
identifier
string | null
kms_key_id
string | null
object
object
$type
string
Valid values[
"eks"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
encryption_status
string
Valid values[
"unencrypted",
"encrypted_with_csp_generated_key",
"encrypted_with_platform_managed_key",
"encrypted_with_customer_managed_key"
]
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
encryption_status
string
Valid values[
"encrypted",
"unencrypted"
]
kms_key_id
string | null
name
string
status
string
Valid values[
"active",
"creating",
"deleting",
"failed",
"pending",
"updating",
"unknown"
]
object
object
$type
string
Valid values[
"efs"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
encryption_status
string
Valid values[
"unencrypted",
"encrypted_with_csp_generated_key",
"encrypted_with_platform_managed_key",
"encrypted_with_customer_managed_key"
]
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
file_system_id
string
kms_key_id
string | null
life_cycle_state
string
Valid values[
"available",
"creating",
"deleted",
"deleting",
"error",
"updating",
"unknown"
]
size
integer (int64) | null
object
object
$type
string
Valid values[
"redshift"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean
encrypted_with_overly_permissive_usage_key
boolean
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean
encryption_status
string
Valid values[
"unencrypted",
"encrypted_with_csp_generated_key",
"encrypted_with_platform_managed_key",
"encrypted_with_customer_managed_key"
]
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
encryption_status
string
Valid values[
"encrypted",
"unencrypted"
]
kms_key_id
string | null
name
string
status
string
Valid values[
"available",
"available_prep_for_resize",
"available_resize_cleanup",
"canceling_resize",
"creating",
"deleting",
"final_snapshot",
"hardware_failure",
"incompatible_hsm",
"incompatible_network",
"incompatible_parameters",
"incompatible_restore",
"modifying",
"paused",
"rebooting",
"renaming",
"resizing",
"rotating_keys",
"storage_full",
"updating_hsm",
"pausing",
"resuming",
"restoring",
"unknown"
]
region
string
Valid values[
"us-east-2",
"us-east-1",
"us-west-1",
"us-west-2",
"af-south-1",
"ap-east-1",
"ap-south-2",
"ap-southeast-3",
"ap-southeast-4",
"ap-south-1",
"ap-northeast-3",
"ap-northeast-2",
"ap-southeast-1",
"ap-southeast-2",
"ap-northeast-1",
"ca-central-1",
"ca-west-1",
"eu-central-1",
"eu-west-1",
"eu-west-2",
"eu-south-1",
"eu-west-3",
"eu-south-2",
"eu-north-1",
"eu-central-2",
"il-central-1",
"me-south-1",
"me-central-1",
"sa-east-1",
"us-gov-east-1",
"us-gov-west-1"
]
object
object
$type
string
Valid values[
"azure"
]
details
OneOf
object
$type
string
Valid values[
"database"
]
OneOf
object
object
$db_variant
string
Valid values[
"sql_single_server"
]
properties
object
deployment_name
string
encryption_details
object
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
key_source
Specifier for optional CMK Keys.
OneOf
object
object
$type
string
Valid values[
"deployment_level_customer_managed_key"
]
key_id
string
object
object
$type
string
Valid values[
"deployment_level_microsoft_managed_key"
]
object
object
$type
string
Valid values[
"database_level_customer_managed_key"
]
key_id
string
inner_databases_properties
Array of object (DiscoveryAzureDatabaseProperties)
object
database_name
string
is_tde_enabled
boolean
If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key).
tier
string
The service tiers for SQL Single Server.
Valid values[
"server",
"serverless"
]
object
object
$db_variant
string
Valid values[
"sql_managed_instance"
]
properties
object
deployment_name
string
encryption_details
object
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
key_source
Specifier for optional CMK Keys.
OneOf
object
object
$type
string
Valid values[
"deployment_level_customer_managed_key"
]
key_id
string
object
object
$type
string
Valid values[
"deployment_level_microsoft_managed_key"
]
object
object
$type
string
Valid values[
"database_level_customer_managed_key"
]
key_id
string
inner_databases_properties
Array of object (DiscoveryAzureDatabaseProperties)
object
database_name
string
is_tde_enabled
boolean
If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key).
object
object
$db_variant
string
Valid values[
"sql_managed_instance_pool"
]
properties
object
deployment_name
string
encryption_details
object
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
key_source
Specifier for optional CMK Keys.
OneOf
object
object
$type
string
Valid values[
"deployment_level_customer_managed_key"
]
key_id
string
object
object
$type
string
Valid values[
"deployment_level_microsoft_managed_key"
]
object
object
$type
string
Valid values[
"database_level_customer_managed_key"
]
key_id
string
inner_databases_properties
Array of object (DiscoveryAzureDatabaseProperties)
object
database_name
string
is_tde_enabled
boolean
If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key).
object
object
$db_variant
string
Valid values[
"cosmos_db"
]
api
string
The API a Cosmos databases exposes to applications. Some possible values currently available in Azure are "Sql", "MongoDB", "Cassandra", ... This may be directly exposed in the frontend.
properties
object
deployment_name
string
encryption_details
object
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
key_source
Specifier for optional CMK Keys.
OneOf
object
object
$type
string
Valid values[
"deployment_level_customer_managed_key"
]
key_id
string
object
object
$type
string
Valid values[
"deployment_level_microsoft_managed_key"
]
object
object
$type
string
Valid values[
"database_level_customer_managed_key"
]
key_id
string
inner_databases_properties
Array of object (DiscoveryAzureDatabaseProperties)
object
database_name
string
is_tde_enabled
boolean
If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key).
object
object
$type
string
Valid values[
"kv_key_version"
]
analysis
object
crypto_policy_compliance
object
is_compliant
boolean
Represents if the crypto policy is compliant for the key.
violation_reason
string | null
Represents the violation reason if the non-compliant against the
crypto policy, otherwise None.
is_shared
boolean
Defaults to false. Will be true only if underlying key is used
to encrypt multiple services.
overly_permissive_key_violations
object
management_violations
Array of object (DiscoveryAzureKvKeyPolicyInfo)
object
principal_id
string
role_assignment_id
string
role_definition_id
string
usage_violations
Array of object (DiscoveryAzureKvKeyPolicyInfo)
object
principal_id
string
role_assignment_id
string
role_definition_id
string
usage_details
object
encrypt
object
service_count
integer
usages
Array of string (DiscoveryKeyUsage) | null
string
Valid values[
"encrypt",
"unused"
]
is_current_version
boolean
True if this is the latest key version, False otherwise.
is_key_managed
boolean
True if the key version's lifetime is managed by key vault, False otherwise.
key_attributes
object
activation_date
string
The timestamp when the key will be activated. None, if the activation date is not set for the key.
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
created_at
string
The timestamp of creation of the key.
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
expiry_date
string
The timestamp when the key will expire. None, if the expiry date is not scheduled for the key.
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
is_enabled
boolean
Represents true if the key is enabled, false otherwise.
is_exportable
boolean
Represents true if the key is exportable, false otherwise.
key_availability
OneOf
object
object
$type
string
Valid values[
"available"
]
object
object
$type
string
Valid values[
"soft_deleted"
]
deleted_on
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
scheduled_purge_on
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
recoverable_days
integer
Soft Delete data retention days. Value should be >=7 and <=90 when soft delete is enabled, otherwise 0.
Minimum0
Maximum4294967295
recovery_level
string
Valid values[
"customized_recoverable",
"customized_recoverable_and_protected_subscription",
"customized_recoverable_and_purgeable",
"purgeable",
"recoverable",
"recoverable_and_protected_subscription",
"recoverable_and_purgeable",
"unknown"
]
updated_at
string
The timestamp when the key was last updated. By default, it will always have the key creation timestamp as the last updated time.
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
key_name
string
The name associated with the key version.
key_ops
Array of string (DiscoveryAzureKvKeyOperation)
Allowed key operations on the key version.
string
Valid values[
"encrypt",
"decrypt",
"sign",
"verify",
"wrap_key",
"unwrap_key",
"import"
]
key_rotation_date
string
Returns the date when the key will be rotated. None, when the auto key rotation is not enabled for the key.
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
key_source
string
Valid values[
"kv",
"fortanix",
"other"
]
key_type
string
Valid values[
"rsa2048",
"rsa3072",
"rsa4096",
"rsa_hsm2048",
"rsa_hsm3072",
"rsa_hsm4096",
"ecc_nist_p256",
"ecc_nist_p384",
"ecc_nist_p521",
"ecc_secg_p256k1",
"ecc_nist_hsm_p256",
"ecc_nist_hsm_p384",
"ecc_nist_hsm_p521",
"ecc_secg_hsm_p256k1",
"oct",
"oct_hsm",
"unknown"
]
key_vault_access_tier
string
Valid values[
"standard",
"premium"
]
key_vault_name
string
Represents the Azure Key Vault Name.
key_vault_uri
string
Represents the Azure key vault URI.
key_version
string
The key version of the scanned key.
source_scan_inventory_object
object
id
string (uuid)
scan_id
string (uuid)
tags
object
The tags associated with the key version.
property*
string additionalProperties
object
object
$type
string
Valid values[
"storage_account"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
blob_anonymous_access_enabled
boolean
encryption_settings
object
key_source
The encryption key source (provider).
OneOf
object
object
$type
string
Valid values[
"key_vault"
]
key_id
string
object
object
$type
string
Valid values[
"storage"
]
kind
string
Valid values[
"blob_storage",
"block_blob_storage",
"file_storage",
"storage",
"storage_v2",
"unknown"
]
name
string
object
object
$type
string
Valid values[
"container_group"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean
encrypted_with_overly_permissive_usage_key
boolean
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
encryption_source
OneOf
object
object
$type
string
Valid values[
"microsoft_managed_key"
]
object
object
$type
string
Valid values[
"customer_managed_key"
]
key_id
string
name
string
object
object
$type
string
Valid values[
"managed_disk"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean | null
encrypted_with_overly_permissive_usage_key
boolean | null
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean | null
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
disk_size_gb
integer (int32)
disk_state
string
Used to represent state of [AzureManagedDisk]. for reference: Documentation
Valid values[
"active_sas",
"active_sas_frozen",
"active_upload",
"attached",
"frozen",
"ready_to_upload",
"reserved",
"unattached",
"other"
]
disk_type
string
Used to represent SKU of [AzureManagedDisk]. For reference: Documentation
Valid values[
"premium_v2_lrs",
"premium_lrs",
"premium_zrs",
"standard_ssd_lrs",
"standard_ssd_zrs",
"standard_lrs",
"ultra_ssd_lrs"
]
encryption_settings
Used to describe Server-side encryption configuration of [AzureManagedDisks]
- This does not cover Azure Disk Encryption which is handled on a volume level on VM
OneOf
object
object
$type
string
Valid values[
"encryption_at_rest_with_azure_managed_key"
]
object
object
$type
string
Valid values[
"confidential_vm_encrypted_with_azure_managed_key"
]
object
object
$type
string
Valid values[
"confidential_vm_encrypted_with_customer_key"
]
key_id
string
key_rotation_enabled
boolean
object
object
$type
string
Valid values[
"encryption_at_rest_with_customer_key"
]
key_id
string
key_rotation_enabled
boolean
object
object
$type
string
Valid values[
"encryption_at_rest_with_azure_and_customer_keys"
]
key_id
string
key_rotation_enabled
boolean
name
string
object
object
$type
string
Valid values[
"managed_cluster"
]
analysis
object
encrypted_with_expired_key
boolean | null
encrypted_with_exportable_key
boolean | null
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean
encrypted_with_overly_permissive_usage_key
boolean
encrypted_with_quantum_vulnerable_key
boolean | null
encrypted_with_shared_key
boolean
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
disk_encryption_details
OneOf
object
object
$type
string
Valid values[
"encryption_at_rest_with_customer_key"
]
key_id
string
key_rotation_enabled
boolean
object
object
$type
string
Valid values[
"encryption_at_rest_with_platform_key"
]
name
string
object
object
$type
string
Valid values[
"storage_account_blob"
]
analysis
object
encrypted_with_expired_key
boolean
encrypted_with_exportable_key
boolean
encrypted_with_noncompliant_key
boolean
encrypted_with_overly_permissive_management_key
boolean
encrypted_with_overly_permissive_usage_key
boolean
encrypted_with_quantum_vulnerable_key
boolean
encrypted_with_shared_key
boolean
key_availability
string
This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown
Valid values[
"available",
"soft_deleted",
"purged",
"cross_account",
"unknown"
]
container_name
string
encryption_settings
object
key_source
The encryption key source (provider).
OneOf
object
object
$type
string
Valid values[
"key_vault"
]
key_id
string
object
object
$type
string
Valid values[
"storage"
]
name
string
storage_account_name
string
region
string
Valid values[
"asia",
"asia_pacific",
"australia",
"australia_central",
"australia_central2",
"australia_east",
"australia_south_east",
"brazil",
"brazil_south",
"brazil_south_east",
"brazil_us",
"canada",
"canada_central",
"canada_east",
"central_india",
"central_us",
"central_us_euap",
"central_us_stage",
"east_asia",
"east_asia_stage",
"east_us",
"east_us_stage",
"east_us_stg",
"east_us2",
"east_us2_stage",
"east_us2_euap",
"europe",
"france",
"france_central",
"france_south",
"germany",
"germany_north",
"germany_west_central",
"global",
"india",
"israel",
"israel_central",
"italy",
"italy_north",
"japan",
"japan_east",
"japan_west",
"jio_india_central",
"jio_india_west",
"korea",
"korea_central",
"korea_south",
"new_zealand",
"north_central_us",
"north_central_us_stage",
"north_europe",
"norway",
"norway_east",
"norway_west",
"poland",
"poland_central",
"qatar",
"qatar_central",
"singapore",
"south_africa",
"south_africa_north",
"south_africa_west",
"south_central_us",
"south_central_us_stage",
"south_east_asia",
"south_east_asia_stage",
"south_india",
"sweden",
"sweden_central",
"switzerland",
"switzerland_north",
"switzerland_west",
"uae",
"uae_central",
"uae_north",
"uk",
"uk_south",
"uk_west",
"united_states",
"united_states_euap",
"west_central_us",
"west_europe",
"west_india",
"west_us",
"west_us_stage",
"west_us2",
"west_us2_stage",
"west_us3",
"other"
]
resource_group
object
name
string
resource_id
string
subscription
object
id
string (uuid)
name
string
tenant_id
string (uuid)
object
object
$type
string
Valid values[
"on_prem"
]
details
OneOf
object
object
$type
string
Valid values[
"on_prem_key"
]
analysis
object
crypto_policy_compliance
object
is_compliant
boolean
violation_reason
string | null
key_expiration_compliance
object
key_expiry_greater_than_compliance_period
boolean
key_rotation_compliance
string
Valid values[
"compliant",
"not_rotated_in_compliance_period",
"rotation_status_not_known"
]
usage_details
object
encrypt
object
service_count
integer
created_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
encryption_algorithm
string
Valid values[
"aes",
"dsa",
"ecdh",
"ecmqv",
"ed_dsa",
"fpe",
"hmac_sha",
"rc2",
"rc4",
"rsa",
"rsa_oaep",
"sike",
"des",
"des3",
"aes128",
"aes192",
"aes256",
"cha_cha20_poly1305",
"x_cha_cha20_poly1305",
"camellia128",
"camellia192",
"camellia256",
"aria128",
"aria192",
"aria256",
"twofish128",
"twofish192",
"twofish256",
"blowfish128",
"blowfish256",
"sm4_128",
"des56",
"tdes2_key112",
"tdes3_key168",
"des_x",
"rc2_40",
"rc2_64",
"rc2_128",
"rc4_40",
"rc4_128",
"rc4_256",
"hmac_sha1",
"hmac_sha224",
"hmac_sha256",
"hmac_sha384",
"hmac_sha512",
"rsa512",
"rsa1024",
"rsa2048",
"rsa3072",
"rsa4096",
"ecdsa_p256",
"ecdsa_p384",
"ecdsa_p521",
"ecdsa_secp256k1",
"ecdsa_brainpool_p256r1",
"ecdsa_brainpool_p384r1",
"ecdsa_brainpool_p512r1",
"ecdh_p256",
"ecdh_p384",
"ecdh_p521",
"ecdh_secp256k1",
"ecdh_brainpool_p256r1",
"ecdh_brainpool_p384r1",
"ecdh_brainpool_p512r1",
"ecmqv_p256",
"ecmqv_p384",
"ecmqv_p521",
"ed25519",
"ed448",
"x25519",
"x448",
"ec_generic_p256",
"ec_generic_p384",
"ec_generic_p521",
"ec_generic_secp256k1",
"ec_generic_brainpool_p256r1",
"ec_generic_brainpool_p384r1",
"ec_generic_brainpool_p512r1",
"ec_generic_curve25519",
"ec_generic_curve448",
"dsa1024",
"dsa2048",
"dsa3072",
"sm2_sign",
"sm2_kem",
"aead_aes256_cbc_hmac_sha256",
"ml_kem512",
"ml_kem768",
"ml_kem1024",
"ml_dsa44",
"ml_dsa65",
"ml_dsa87",
"falcon512",
"falcon1024",
"sphincs_plus_shake128s",
"sphincs_plus_shake128f",
"sphincs_plus_shake192s",
"sphincs_plus_shake192f",
"sphincs_plus_shake256s",
"sphincs_plus_shake256f",
"sike_p434",
"sike_p503",
"sike_p610",
"sike_p751",
"hidden",
"unknown"
]
expires_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
key_category
string
Valid values[
"master_key",
"data_encryption_key",
"asymmetric_key"
]
key_rotation_status
OneOf
object
object
$type
string
Valid values[
"unknown"
]
object
object
$type
string
Valid values[
"rotated"
]
last_rotated_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
object
object
$type
string
Valid values[
"not_rotated"
]
key_source
string
Valid values[
"hsm",
"fortanix",
"oracle_key_vault",
"azure_kv",
"file_system_key_store",
"native",
"other"
]
name
string | null
next_rotation_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
source_scan_inventory_object
object
id
string (uuid)
scan_id
string (uuid)
status
string
Valid values[
"valid",
"expired"
]
version
string | null
object
object
$type
string
Valid values[
"on_prem_ms_sql_database"
]
analysis
object
encrypted_with_noncompliant_key
boolean
encrypted_with_quantum_vulnerable_key
boolean | null
database_name
string
encrypted
string
Valid values[
"no_encryption_key",
"unencrypted",
"encryption_in_progress",
"encrypted",
"key_change_in_progress",
"decryption_in_progress",
"protection_change_in_progress"
]
encryption_details
Array of object (DiscoveryOnPremMsSqlDatabaseEncryption)
object
encryption_key_id
string
encryption_key_use
string
Valid values[
"tde",
"column_level"
]
object
object
$type
string
Valid values[
"on_prem_oracle_database"
]
analysis
object
encrypted_with_noncompliant_key
boolean
encrypted_with_quantum_vulnerable_key
boolean | null
database_name
string
encryption_details
object
encryption_key_details
Array of object (DiscoveryOnPremOracleDatabaseEncryptionKeyDetails)
object
encryption_key_id
string
encryption_key_use
string
Valid values[
"tde",
"column_level"
]
wallet_location
string | null
wallet_name
string
wallet_status
string
Valid values[
"valid",
"expired",
"unavailable",
"closed",
"open",
"open_no_master_key",
"open_unknown_master_key_status",
"undefined"
]
object
object
$type
string
Valid values[
"on_prem_source_code_repo"
]
analysis
object
asset_count
integer
violations
object
property*
object additionalProperties
count
integer
branch
string
name
string
repo_url
string (url)
revision
string
subfolder
string | null
object
object
$type
string
Valid values[
"on_prem_source_code_component"
]
analysis
object
crypto_policy_compliance
object
is_compliant
boolean
violation_reason
string | null
is_quantum_vulnerable
boolean | null
details
object
asset_type
string
Valid values[
"algorithm",
"protocol",
"certificate",
"private-key",
"public-key",
"secret-key",
"key",
"ciphertext",
"signature",
"digest",
"initialization-vector",
"nonce",
"seed",
"salt",
"shared-secret",
"tag",
"additional-data",
"password",
"credential",
"token",
"other",
"unknown"
]
bom_ref
string
key_spec
OneOf
string
string
Valid values[
"rsa512"
]
string
string
Valid values[
"rsa1024"
]
string
string
Valid values[
"rsa2048"
]
string
string
Valid values[
"rsa3072"
]
string
string
Valid values[
"rsa4096"
]
string
string
Valid values[
"aes128"
]
string
string
Valid values[
"aes192"
]
string
string
Valid values[
"aes256"
]
string
string
Valid values[
"ecc_nist_p256"
]
string
string
Valid values[
"ecc_nist_p384"
]
string
string
Valid values[
"ecc_nist_p521"
]
string
string
Valid values[
"ecc_ed25519"
]
string
string
Valid values[
"ecc_x25519"
]
string
string
Valid values[
"ecc_secg_p256_k1"
]
string
string
Valid values[
"hmac224"
]
string
string
Valid values[
"hmac256"
]
string
string
Valid values[
"hmac384"
]
string
string
Valid values[
"hmac512"
]
string
string
Valid values[
"sha1"
]
string
string
Valid values[
"sha224"
]
string
string
Valid values[
"sha256"
]
string
string
Valid values[
"sha384"
]
string
string
Valid values[
"sha512"
]
string
string
Valid values[
"sha3_224"
]
string
string
Valid values[
"sha3_256"
]
string
string
Valid values[
"sha3_384"
]
string
string
Valid values[
"sha3_512"
]
string
string
Valid values[
"rsa_oaep"
]
string
string
Valid values[
"des"
]
string
string
Valid values[
"des3"
]
string
string
Valid values[
"des_x"
]
string
string
Valid values[
"sm2"
]
DiscoveryOnPremSourceCodeComponentCryptoSpecVariantOther
object (DiscoveryOnPremSourceCodeComponentCryptoSpecVariantOther)
other
object
value
string
name
string
occurrences
Array of object (DiscoveryOnPremSourceCodeComponentOccurrence)
object
additional_context
string | null
bom_ref
string | null
line
integer | null
location
string
offset
integer | null
symbol
string | null
repo_url
string (url)
revision
string
object
object
$type
string
Valid values[
"filesystem"
]
agent_info
object
first_seen_at_unix_millis
integer
last_seen_at_unix_millis
integer
analysis
object
agent_analysis
object
asset_count_by_type
object
property*
integer additionalProperties
certificate_statuses_count
object
property*
integer additionalProperties
violations_count
object
property*
object additionalProperties
property*
integer additionalProperties
certificate_analysis
object
certificate_issuer
string
Certificate's issuer generated from [DistinguishedNameto_string()]
/ parseable by [DistinguishedNamefrom_str()]
Certificate Distinguished Name (DN) mandated + optional fields,
as defined in RFC 5280 §4.1.2.4 - used for both issuer and subject.
ASN.1 in the same RFC allows zero or more values for each of these fields.
To present it nicely in a UI:
- Primary label: first
common_name(CN). - Fallback: first
organization_name(O). - Optional detail: append
organizational_unit_name(OU),country_name(C), ordomain_component(DC) as needed.
The string is presented as a serialized json from distinguished name map indexed by the short labels (uppercase) for each sub-field.
certificate_status
string
Valid values[
"issued",
"inactive",
"expired",
"failed",
"revoked",
"pending_validation"
]
certificate_subject
string
Certificate's subject generated from [DistinguishedNameto_string()]
/ parseable by [DistinguishedNamefrom_str()]
Certificate Distinguished Name (DN) mandated + optional fields,
as defined in RFC 5280 §4.1.2.4 - used for both issuer and subject.
ASN.1 in the same RFC allows zero or more values for each of these fields.
To present it nicely in a UI:
- Primary label: first
common_name(CN). - Fallback: first
organization_name(O). - Optional detail: append
organizational_unit_name(OU),country_name(C), ordomain_component(DC) as needed.
The string is presented as a serialized json from distinguished name map indexed by the short labels (uppercase) for each sub-field.
crypto_policy_compliance
object
is_compliant
boolean
violation_reason
string | null
key_spec
string
Valid values[
"aes",
"dsa",
"ecdh",
"ecmqv",
"ed_dsa",
"fpe",
"hmac_sha",
"rc2",
"rc4",
"rsa",
"rsa_oaep",
"sike",
"des",
"des3",
"aes128",
"aes192",
"aes256",
"cha_cha20_poly1305",
"x_cha_cha20_poly1305",
"camellia128",
"camellia192",
"camellia256",
"aria128",
"aria192",
"aria256",
"twofish128",
"twofish192",
"twofish256",
"blowfish128",
"blowfish256",
"sm4_128",
"des56",
"tdes2_key112",
"tdes3_key168",
"des_x",
"rc2_40",
"rc2_64",
"rc2_128",
"rc4_40",
"rc4_128",
"rc4_256",
"hmac_sha1",
"hmac_sha224",
"hmac_sha256",
"hmac_sha384",
"hmac_sha512",
"rsa512",
"rsa1024",
"rsa2048",
"rsa3072",
"rsa4096",
"ecdsa_p256",
"ecdsa_p384",
"ecdsa_p521",
"ecdsa_secp256k1",
"ecdsa_brainpool_p256r1",
"ecdsa_brainpool_p384r1",
"ecdsa_brainpool_p512r1",
"ecdh_p256",
"ecdh_p384",
"ecdh_p521",
"ecdh_secp256k1",
"ecdh_brainpool_p256r1",
"ecdh_brainpool_p384r1",
"ecdh_brainpool_p512r1",
"ecmqv_p256",
"ecmqv_p384",
"ecmqv_p521",
"ed25519",
"ed448",
"x25519",
"x448",
"ec_generic_p256",
"ec_generic_p384",
"ec_generic_p521",
"ec_generic_secp256k1",
"ec_generic_brainpool_p256r1",
"ec_generic_brainpool_p384r1",
"ec_generic_brainpool_p512r1",
"ec_generic_curve25519",
"ec_generic_curve448",
"dsa1024",
"dsa2048",
"dsa3072",
"sm2_sign",
"sm2_kem",
"aead_aes256_cbc_hmac_sha256",
"ml_kem512",
"ml_kem768",
"ml_kem1024",
"ml_dsa44",
"ml_dsa65",
"ml_dsa87",
"falcon512",
"falcon1024",
"sphincs_plus_shake128s",
"sphincs_plus_shake128f",
"sphincs_plus_shake192s",
"sphincs_plus_shake192f",
"sphincs_plus_shake256s",
"sphincs_plus_shake256f",
"sike_p434",
"sike_p503",
"sike_p610",
"sike_p751",
"hidden",
"unknown"
]
os_analysis
object
agent_count
integer
asset_count_by_type
object
property*
integer additionalProperties
certificate_statuses_count
object
property*
integer additionalProperties
violations_count
object
property*
object additionalProperties
property*
integer additionalProperties
violations
Array of string (DiscoveryOnPremFsViolation)
string
Valid values[
"expired",
"expiring_soon",
"non_compliant_algorithm",
"non_compliant_signature",
"key_not_rotated_in_compliance_period",
"secret_file_too_readable",
"anyone_can_write",
"expiry_exceeds_threshold",
"overly_permissive_certificate",
"quantum_vulnerable"
]
host_info
object
hostname
string
id
string
ips
Array of string
string
os_string
string
object
object
file_info
object
file_path
string
file_permissions
object
everyone
Array of string (DiscoveryPermissionFlag)
“Other” users on POSIX; on Windows, “Everyone” ACL entry
string
Valid values[
"Read",
"Write",
"Execute"
]
group
object
flags
Array of string (DiscoveryPermissionFlag)
What the owner can do with the file
string
Valid values[
"Read",
"Write",
"Execute"
]
id
string
User or Group id -- String to allow representing both POSIX & Windows IDs
name
string
User or Group name
user
object
flags
Array of string (DiscoveryPermissionFlag)
What the owner can do with the file
string
Valid values[
"Read",
"Write",
"Execute"
]
id
string
User or Group id -- String to allow representing both POSIX & Windows IDs
name
string
User or Group name
file_size
integer | null
modification_unix_millis
integer
metadata
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
object (DiscoveryCryptographicMetadataVariantJwt)
jwt
object
header
OneOf
DiscoveryJwtHeaderVariantJwsHeader
object (DiscoveryJwtHeaderVariantJwsHeader)
jws_header
object
algorithm
string | null
content_type
string | null
critical
Array of string | null
string
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
object (DiscoveryCryptographicMetadataVariantMultiple)
multiple
Array of object (DiscoveryCryptographicMetadata)
This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue.
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
DiscoveryJwtHeaderVariantProtectedJwsHeader
object (DiscoveryJwtHeaderVariantProtectedJwsHeader)
protected_jws_header
object
algorithm
string | null
content_type
string | null
critical
Array of string | null
string
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
object (DiscoveryCryptographicMetadataVariantMultiple)
multiple
Array of object (DiscoveryCryptographicMetadata)
This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue.
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
DiscoveryJwtHeaderVariantJweHeader
object (DiscoveryJwtHeaderVariantJweHeader)
jwe_header
object
agreement_partyuinfo
Array of integer | null
integer
Minimum0
Maximum255
agreement_partyvinfo
Array of integer | null
integer
Minimum0
Maximum255
algorithm
string | null
audience
string | null
compression
string | null
content_encryption
string | null
content_type
string | null
critical
Array of string | null
string
issuer
string | null
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
object (DiscoveryCryptographicMetadataVariantMultiple)
multiple
Array of object (DiscoveryCryptographicMetadata)
This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue.
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
subject
string | null
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
DiscoveryJwtHeaderVariantProtectedJweHeader
object (DiscoveryJwtHeaderVariantProtectedJweHeader)
protected_jwe_header
object
agreement_partyuinfo
Array of integer | null
integer
Minimum0
Maximum255
agreement_partyvinfo
Array of integer | null
integer
Minimum0
Maximum255
algorithm
string | null
audience
string | null
compression
string | null
content_encryption
string | null
content_type
string | null
critical
Array of string | null
string
issuer
string | null
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
object (DiscoveryCryptographicMetadataVariantMultiple)
multiple
Array of object (DiscoveryCryptographicMetadata)
This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue.
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
subject
string | null
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
signature
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
object (DiscoveryCryptographicMetadataVariantMultiple)
multiple
Array of object (DiscoveryCryptographicMetadata)
This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue.
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
object (DiscoveryCryptographicMetadataVariantJwt)
jwt
object
header
OneOf
DiscoveryJwtHeaderVariantJwsHeader
object (DiscoveryJwtHeaderVariantJwsHeader)
jws_header
object
algorithm
string | null
content_type
string | null
critical
Array of string | null
string
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
DiscoveryJwtHeaderVariantProtectedJwsHeader
object (DiscoveryJwtHeaderVariantProtectedJwsHeader)
protected_jws_header
object
algorithm
string | null
content_type
string | null
critical
Array of string | null
string
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
DiscoveryJwtHeaderVariantJweHeader
object (DiscoveryJwtHeaderVariantJweHeader)
jwe_header
object
agreement_partyuinfo
Array of integer | null
integer
Minimum0
Maximum255
agreement_partyvinfo
Array of integer | null
integer
Minimum0
Maximum255
algorithm
string | null
audience
string | null
compression
string | null
content_encryption
string | null
content_type
string | null
critical
Array of string | null
string
issuer
string | null
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
subject
string | null
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
DiscoveryJwtHeaderVariantProtectedJweHeader
object (DiscoveryJwtHeaderVariantProtectedJweHeader)
protected_jwe_header
object
agreement_partyuinfo
Array of integer | null
integer
Minimum0
Maximum255
agreement_partyvinfo
Array of integer | null
integer
Minimum0
Maximum255
algorithm
string | null
audience
string | null
compression
string | null
content_encryption
string | null
content_type
string | null
critical
Array of string | null
string
issuer
string | null
jwk
OneOf
DiscoveryCryptographicMetadataVariantSymmetricKey
object (DiscoveryCryptographicMetadataVariantSymmetricKey)
symmetric_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPublicKey
object (DiscoveryCryptographicMetadataVariantPublicKey)
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantPrivateKey
object (DiscoveryCryptographicMetadataVariantPrivateKey)
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantCertificate
object (DiscoveryCryptographicMetadataVariantCertificate)
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
DiscoveryCryptographicMetadataVariantTrustedCertificate
object (DiscoveryCryptographicMetadataVariantTrustedCertificate)
trusted_certificate
object
certificate
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
extended_usage
object
allowed_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
rejected_usages
Array of object (DiscoveryExtendedKeyUsage) | null
OneOf
string
string
Valid values[
"server_auth"
]
string
string
Valid values[
"client_auth"
]
string
string
Valid values[
"code_signing"
]
string
string
Valid values[
"email_protection"
]
string
string
Valid values[
"time_stamping"
]
string
string
Valid values[
"ocsp_signing"
]
DiscoveryExtendedKeyUsageVariantUnknown
object (DiscoveryExtendedKeyUsageVariantUnknown)
unknown
string
Unknown value, will contain the OID that was found
DiscoveryCryptographicMetadataVariantCertificateSigningRequest
object (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)
certificate_signing_request
object
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
property*
string additionalProperties
DiscoveryCryptographicMetadataVariantCertificateRevocationList
object (DiscoveryCryptographicMetadataVariantCertificateRevocationList)
certificate_revocation_list
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs7
object (DiscoveryCryptographicMetadataVariantPkcs7)
pkcs7
OneOf
DiscoveryPkcs7MetadataVariantData
object (DiscoveryPkcs7MetadataVariantData)
data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedData
object (DiscoveryPkcs7MetadataVariantSignedData)
signed_data
object
certificates
Array of object (DiscoveryCertificateMetadata) | null
object
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
issuer_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
pubkey_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
subject_cn
object | null
Comes from openssl_x509_name_to_map()
property*
string additionalProperties
valid_from_unix_millis
integer
valid_to_unix_millis
integer
crls
Array of object (DiscoveryCertificateRevocationList) | null
object
issuer_cn
object | null
property*
string additionalProperties
last_update
string
next_update
string | null
revoked_certificates
Array of object (DiscoveryRevokedCertificate)
object
revoked_at
string
serial
string
signature_algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest_algorithms
Array of object (DiscoveryCryptographicAlgorithm)
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encapsulated_content_type
string
signer_info
Array of object (DiscoveryPkcs7SignerInfoMetadata)
object
digest_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
sid
OneOf
DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)
issuer_and_serial_number
object
name
Array of string
string
serial_number
Array of integer
integer
Minimum0
Maximum255
DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier
object (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)
subject_key_identifier
object
id
Array of integer
integer
Minimum0
Maximum255
signature
Array of integer
integer
Minimum0
Maximum255
signature_alg
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
signed_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
unsigned_attributes
Array of object (DiscoveryPkcs7Attribute) | null
object
attribute_type
string
values
Array of string
string
version
integer
Minimum0
Maximum4294967295
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEnvelopedData
object (DiscoveryPkcs7MetadataVariantEnvelopedData)
enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData
object (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)
signed_and_enveloped_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDigestedData
object (DiscoveryPkcs7MetadataVariantDigestedData)
digested_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedData
object (DiscoveryPkcs7MetadataVariantEncryptedData)
encrypted_data
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantDataWithAttributes
object (DiscoveryPkcs7MetadataVariantDataWithAttributes)
data_with_attributes
object
version
integer
Minimum0
Maximum4294967295
DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo
object (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)
encrypted_private_key_info
object
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPkcs12
object (DiscoveryCryptographicMetadataVariantPkcs12)
pkcs12
object
encrypted
boolean
mac_data
object
algorith
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
digest
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantParameters
object (DiscoveryCryptographicMetadataVariantParameters)
parameters
OneOf
DiscoveryParametersMetadataVariantEllipticCurve
object (DiscoveryParametersMetadataVariantEllipticCurve)
elliptic_curve
OneOf
DiscoveryEllipticCurveParamsMetadataVariantNamedCurve
object (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)
named_curve
Elliptic curves for selected crypto algorithms
OneOf
string
string
Valid values[
"p256"
]
string
string
Valid values[
"p384"
]
string
string
Valid values[
"p521"
]
string
string
Valid values[
"k256"
]
string
string
Valid values[
"x25519"
]
string
string
Valid values[
"ed25519"
]
string
string
Valid values[
"x448"
]
string
string
Valid values[
"ed448"
]
string
string
Valid values[
"brainpool_p256r1"
]
string
string
Valid values[
"brainpool_p384r1"
]
string
string
Valid values[
"brainpool_p512r1"
]
DiscoveryCurveVariantOther
object (DiscoveryCurveVariantOther)
other
string
A catch-all if you really need to accept arbitrary curve names
string
string
Valid values[
"prime192_v1"
]
string
string
Valid values[
"prime192_v2"
]
string
string
Valid values[
"prime192_v3"
]
string
string
Valid values[
"prime239_v1"
]
string
string
Valid values[
"prime239_v2"
]
string
string
Valid values[
"prime239_v3"
]
string
string
Valid values[
"prime256_v1"
]
string
string
Valid values[
"ansi_t163_k1"
]
string
string
Valid values[
"ansi_t163_r1"
]
string
string
Valid values[
"ansi_t239_k1"
]
string
string
Valid values[
"sec_t113_r1"
]
string
string
Valid values[
"sec_t113_r2"
]
string
string
Valid values[
"sec_p112_r1"
]
string
string
Valid values[
"sec_p112_r2"
]
string
string
Valid values[
"ansi_p160_r1"
]
string
string
Valid values[
"ansi_p160_k1"
]
string
string
Valid values[
"ansi_p256_k1"
]
string
string
Valid values[
"ansi_t163_r2"
]
string
string
Valid values[
"ansi_t283_k1"
]
string
string
Valid values[
"ansi_t283_r1"
]
string
string
Valid values[
"sec_t131_r1"
]
string
string
Valid values[
"sec_t131_r2"
]
string
string
Valid values[
"ansi_t193_r1"
]
string
string
Valid values[
"ansi_t193_r2"
]
string
string
Valid values[
"ansi_t233_k1"
]
string
string
Valid values[
"ansi_t233_r1"
]
string
string
Valid values[
"sec_p128_r1"
]
string
string
Valid values[
"sec_p128_r2"
]
string
string
Valid values[
"ansi_p160_r2"
]
string
string
Valid values[
"ansi_p192_k1"
]
string
string
Valid values[
"ansi_p224_k1"
]
string
string
Valid values[
"ansi_p224_r1"
]
string
string
Valid values[
"ansi_p384_r1"
]
string
string
Valid values[
"ansi_p521_r1"
]
string
string
Valid values[
"ansi_t409_k1"
]
string
string
Valid values[
"ansi_t409_r1"
]
string
string
Valid values[
"ansi_t571_k1"
]
string
string
Valid values[
"ansi_t571_r1"
]
string
string
Valid values[
"c2_pnb163_v1"
]
string
string
Valid values[
"c2_pnb163_v2"
]
string
string
Valid values[
"c2_pnb163_v3"
]
string
string
Valid values[
"c2_pnb176_w1"
]
string
string
Valid values[
"c2_tnb191_v1"
]
string
string
Valid values[
"c2_tnb191_v2"
]
string
string
Valid values[
"c2_tnb191_v3"
]
string
string
Valid values[
"c2_onb191_v4"
]
string
string
Valid values[
"c2_onb191_v5"
]
string
string
Valid values[
"c2_pnb208_w1"
]
string
string
Valid values[
"c2_tnb239_v1"
]
string
string
Valid values[
"c2_tnb239_v2"
]
string
string
Valid values[
"c2_tnb239_v3"
]
string
string
Valid values[
"c2_onb239_v4"
]
string
string
Valid values[
"c2_onb239_v5"
]
string
string
Valid values[
"c2_pnb272_w1"
]
string
string
Valid values[
"c2_pnb304_w1"
]
string
string
Valid values[
"c2_tnb359_v1"
]
string
string
Valid values[
"c2_pnb368_w1"
]
string
string
Valid values[
"c2_tnb431_r1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls1"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls3"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls4"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls5"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls6"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls7"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls8"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls9"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls10"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls11"
]
string
string
Valid values[
"wap_wsg_idm_ecid_wtls12"
]
string
string
Valid values[
"brainpool_p160_r1"
]
string
string
Valid values[
"brainpool_p160_t1"
]
string
string
Valid values[
"brainpool_p192_r1"
]
string
string
Valid values[
"brainpool_p192_t1"
]
string
string
Valid values[
"brainpool_p224_r1"
]
string
string
Valid values[
"brainpool_p224_t1"
]
string
string
Valid values[
"brainpool_p256_r1"
]
string
string
Valid values[
"brainpool_p256_t1"
]
string
string
Valid values[
"brainpool_p320_r1"
]
string
string
Valid values[
"brainpool_p320_t1"
]
string
string
Valid values[
"brainpool_p384_r1"
]
string
string
Valid values[
"brainpool_p384_t1"
]
string
string
Valid values[
"brainpool_p512_r1"
]
string
string
Valid values[
"brainpool_p512_t1"
]
string
string
Valid values[
"implicit_curve"
]
string
string
Valid values[
"specified_curve"
]
DiscoveryParametersMetadataVariantDiffieHellman
object (DiscoveryParametersMetadataVariantDiffieHellman)
diffie_hellman
object
g
Array of integer
integer
Minimum0
Maximum255
p
Array of integer
integer
Minimum0
Maximum255
q
Array of integer | null
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantJwt
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
jwk_set_url
string | null
key_id
string | null
nonce
Array of integer | null
integer
Minimum0
Maximum255
subject
string | null
token_type
string | null
url
string | null
x509_certificate_chain
Array of array | null
Array of integer
integer
Minimum0
Maximum255
x509_certificate_sha1_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_certificate_sha256_thumbprint
Array of integer | null
integer
Minimum0
Maximum255
x509_url
string | null
signature
Array of integer
integer
Minimum0
Maximum255
DiscoveryCryptographicMetadataVariantSsh
object (DiscoveryCryptographicMetadataVariantSsh)
ssh
OneOf
DiscoverySshMetadataVariantOpenSshPublicKey
object (DiscoverySshMetadataVariantOpenSshPublicKey)
open_ssh_public_key
object
comment
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantOpenSshPrivateKey
object (DiscoverySshMetadataVariantOpenSshPrivateKey)
open_ssh_private_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
DiscoverySshMetadataVariantPuttyKey
object (DiscoverySshMetadataVariantPuttyKey)
putty_key
object
comment
string
private_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
encryption
Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase
OneOf
string
string
Valid values[
"unencrypted"
]
DiscoveryEncryptionMetadataVariantEncrypted
object (DiscoveryEncryptionMetadataVariantEncrypted)
encrypted
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
private_mac
string
public_key
object
algorithm
OneOf
object
object
skipped
integer
Minimum0
Maximum4294967295
fingerprint
Array of integer | null
integer
Minimum0
Maximum255
version
integer
Minimum0
Maximum4294967295
DiscoveryCryptographicMetadataVariantPgp
object (DiscoveryCryptographicMetadataVariantPgp)
pgp
OneOf
DiscoveryPgpMetadataVariantPrivateKey
object (DiscoveryPgpMetadataVariantPrivateKey)
PrivateKey
object
DiscoveryPgpMetadataVariantPublicKey
object (DiscoveryPgpMetadataVariantPublicKey)
PublicKey
object
DiscoveryPgpMetadataVariantMessage
object (DiscoveryPgpMetadataVariantMessage)
Message
string
Valid values[
"Literal",
"Compressed",
"Signed",
"SignedOnePass",
"Encrypted"
]
DiscoveryPgpMetadataVariantSignature
object (DiscoveryPgpMetadataVariantSignature)
Signature
object
DiscoveryCryptographicMetadataVariantMultiple
resource_host_details
object
uri
string
resource_id
string
object
object
$type
string
Valid values[
"dsm"
]
details
OneOf
object
object
$type
string
Valid values[
"dsm_sobject"
]
activation_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
analysis
object
crypto_policy_compliance
object
is_compliant
boolean
violation_reason
string | null
is_source_key
boolean | null
compromise_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
creation_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
custom_metadata
object | null
property*
string additionalProperties
deactivation_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
deletion_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
description
string | null
destruction_date
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
dsm_group_id
string (uuid)
dsm_group_name
string | null
elliptic_curve
string
Valid values[
"x25519",
"ed25519",
"x448",
"secp192k1",
"secp224k1",
"secp256k1",
"nistp192",
"nistp224",
"nistp256",
"nistp384",
"nistp521",
"gost256a",
"other"
]
hmg_configs
Array of object (DiscoveryDsmHmgConfig) | null
object
hmg_type
string
Valid values[
"ncipher",
"safenet",
"aws_cloud_hsm",
"aws_kms",
"fortanix",
"fortanix_fips_cluster",
"azure_key_vault",
"gcp_key_ring",
"other"
]
url
string | null
is_enabled
boolean
kcv
string | null
key_links
object
copied_from
string (uuid) | null
copied_to
Array of string | null
string (uuid)
parent
string (uuid) | null
replaced
string (uuid) | null
replacement
string (uuid) | null
subkeys
Array of string | null
string (uuid)
wrapping_key
string (uuid) | null
key_operations
Array of string (DiscoveryDsmSobjectKeyOperations) | null
string
Operations Allowed To Be Performed On A Given Key.
Valid values[
"sign",
"verify",
"encrypt",
"decrypt",
"wrapkey",
"unwrapkey",
"derivekey",
"transform",
"macgenerate",
"macverify",
"export",
"appmanageable",
"highvolume",
"agreekey",
"encapsulate",
"decapsulate",
"other"
]
key_size
integer | null
Minimum0
Maximum4294967295
name
string
object_type
string
Valid values[
"aes",
"aria",
"des",
"des3",
"seed",
"rsa",
"dsa",
"ec",
"kcdsa",
"ec_kcdsa",
"bip32",
"bls",
"opaque",
"hmac",
"leda_beta",
"round5_beta",
"secret",
"lms",
"ml_dsa_beta",
"ml_kem_beta",
"certificate",
"pbe",
"other"
]
origin
string
The origin of a security object - where it was created / generated.
Valid values[
"fortanix_hsm",
"transient",
"external",
"other"
]
rotation_policy
object
deactivate_rotated_key
boolean | null
effective_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z
interval
OneOf
object
object
$type
string
Valid values[
"interval_days"
]
days
integer
Minimum0
Maximum4294967295
object
object
$type
string
Valid values[
"interval_months"
]
months
integer
Minimum0
Maximum4294967295
object
object
$type
string
Valid values[
"other"
]
rotate_copied_keys
OneOf
object
object
$type
string
Valid values[
"all_external"
]
object
object
$type
string
Valid values[
"select"
]
sobject_ids
Array of string
string (uuid)
object
object
$type
string
Valid values[
"other"
]
sobject_id
string (uuid)
state
string
DSM Security object operational state.
Valid values[
"pre_active",
"active",
"deactivated",
"compromised",
"destroyed",
"deleted",
"other",
"not_available"
]
dsm_account_id
string (uuid)
group_id
string (uuid)
id
string (uuid)
inventory_object
object
acct_id
string (uuid)
KI account extension id
connection_id
string (uuid)
KI account's connection id
external_id
an enum that maps to unique identifier provided by Cloud/Onprem
OneOf
object
object
$type
string
Valid values[
"aws"
]
arn
string
fully qualified resource id as defined by AWS
service
string
Valid values[
"acm",
"ebs",
"kms",
"s3",
"rds",
"dynamo_db",
"eks",
"efs",
"redshift"
]
object
object
$type
string
Valid values[
"azure"
]
resource_id
string
fully qualified resource id as defined by Azure
service
string
Valid values[
"key_vaults",
"storage_accounts",
"sql_server",
"cosmos_db",
"container_groups",
"managed_disks",
"managed_clusters",
"storage_account_blobs"
]
object
object
$type
string
Valid values[
"dsm"
]
deployment
OneOf
object
object
$type
string
Valid values[
"saas"
]
region
string
Valid values[
"north_america",
"european_union",
"united_kingdom",
"asia_pacific",
"australia",
"saudi_arabia"
]
object
object
$type
string
Valid values[
"other"
]
url
string (url)
id
string (uuid)
resource_type
string
Useful for specifying [InventoryObjectExternalId]s
Valid values[
"dsm_sobject"
]
object
object
$type
string
Valid values[
"on_prem"
]
resource_id
string
unique id
resource_type
string
Valid values[
"on_prem_key",
"on_prem_ms_sql_database",
"on_prem_oracle_database",
"on_prem_source_code_repo",
"on_prem_source_code_component",
"filesystem"
]
service_uri
string
Db/filesystem uri which yielded this resource
object
object
$type
string
Valid values[
"on_prem_fs"
]
file_path
string
machine_id
string
group_id
string (uuid)
KI group extension id
id
string (uuid)
generated by KI. remains static throughout lifetime of account
last_scan_inventory_object
object
id
string (uuid)
scan_id
string (uuid)
object_info
object
ownership_details
object
description
string | null
primary_owner
object
email
string
name
string
secondary_owner
object
email
string
name
string
scan_id
string (uuid)
scanned_at
string
Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$
Example20170509T070912Z