50 functions, invoked through the cpanel_uapi tool.
scope cpanel:uapi
Call any function with cpanel_uapi(service_id, module="SSL", function, params). Live availability depends on the cPanel features JetHost has enabled on your account — call list_cpanel_operations to see what is active.
When you call this function, you must include the id or the friendly_name
parameter.
This function only deletes certificates from SSL storage. To end SSL
coverage for a domain, use the UAPI SSL::delete_ssl function instead.
Important:
When you disable the Calendars and Contacts, Receive Mail, Web Disk, Webmail, and Web Server roles, the system disables this function.
friendly_namestringOptional
The certificate's friendly name.
idstringOptional
The certificate's ID.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
createdinteger
The date the certificate was created.
domainsarray<string>
A list of the domains that the certificate covers.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
friendly_namestring
The certificate's friendly name.
idstring
The certificate's ID.
is_self_signedinteger
Whether the certificate is self-signed. 1 — Self-signed. 0 — Not self-signed.
One of: 10
issuer.commonNamestring
The certificate's Common Name.
issuer.organizationNamestring
The certificate's Organization Name.
issuer_textstring
The certificate's issuer information.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The certificate's key's modulus, in hexadecimal format. * null — The certificate's key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
not_afterinteger
The date the certificate expired.
not_beforeinteger
The date the certificate started.
serialstring
The certificate's serial number.
signature_algorithmstring
The certificate's OID signature hash algorithm.
subject.commonNamestring
The certificate's Common Name.
subject_textstring
The certificate's subject text information.
validation_typestring
The certificate's validation type. ev — Extended Validation. ov — Organization Validation. dv — Domain Validation. null — The system could not parse and determine the certificate's validation type.
This function removes domains from the current certificate to end SSL coverage for those domains. To delete certificates from SSL storage, use the UAPI function SSL::delete_cert instead.
Important:
When you disable the Calendars and Contacts, Receive Mail, Web Disk, Webmail, and Web Server roles, the system disables this function.
domainstringRequired
The domain name.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
This function retrieves the best-available certificate for the domain. The function also retrieves the certificate's associated private key and CA bundle, if available.
This function retrieves the certificate information for all fully qualified domain names (FQDNs) that the account owns.
domainsstringRequired
A domain or comma-delimited list of domains for which to retrieve information.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
cabstring
The CA bundle's contents.
createdinteger
When the certificate was created.
crtstring
The certificate's contents in Base64 PEM format.
domain_is_configuredinteger
Whether the certificate is installed on the account. 1 — Installed. 0 — Not installed.
One of: 01
domainsarray<string>
The domains that the CSR covers.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
friendly_namestring
The certificate's friendly name.
idstring
The certificate's identification.
is_self_signedinteger
Whether the certificate is self-signed. - 1 — Self-signed. - 0 — Not self-signed.
One of: 01
issuer.commonNamestring
The name that issued the certificate.
issuer.organizationNamestring
The certificate's organization.
issuer_textstring
The certificate's issuer information.
keystring
The private key in Base64 PEM format.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
not_afterinteger
When the certificate expired.
not_beforeinteger
When the certificate started.
serialstring
The certificate's serial number.
signature_algorithmstring
The OID of the hash algorithm used to sign the certificate request.
subject.commonNamestring
The certificate's common name.
subject_textstring
The certificate's subject text information.
validation_typestring
The certificate's validation type. ev — Extended Validation. ov — Organization Validated. dv — Domain Validated. null — The system could not parse and determine the certificate's validation type.
verify_errorstring
A message that explains the reason for a verification error.
This function extracts the private key and CA bundle information from a certificate.
Note:
Due to the limited field length of HTTP GET method calls, you must use the HTTP POST method. For this reason, you cannot use a cPanel or Webmail session URL to call this function.
certificatestringOptional
The certificate file.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
cabstring
The CA bundle's contents (if applicable).
crtstring
The certificate's contents.
crt_originstring
The username that generated the certificate.
domainstring
The domain that generated the private key.
ipstring
The IP address.
keystring
The private key.
key_originstring
The username that generated the private key.
searched_usersarray<string>
The users that the system searched for certificate information.
statusinteger
Whether the certificate is active. 1 - Active. 0 - Inactive.
This function retrieves SSL certificates for a private key.
Note:
When you call this function, you must include either the idor the friendly_name parameter.
friendly_namestringOptional
The key's friendly name.
idstringOptional
The key's ID.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
createdinteger
The date the certificate was created.
domainsarray<string>
A list of the domains that the certificate covers.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
friendly_namestring
The certificate's friendly name.
idstring
The certificate's ID.
is_self_signedinteger
Whether the certificate is self-signed. 1 — Self-signed. 0 — Not self-signed.
One of: 10
issuer.commonNamestring
The name that issued the certificate.
issuer.organizationNamestring
The certificate's organization name.
issuer_textstring
The certificate's issuer information.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The certificate's key's modulus, in hexadecimal format. * null — The certificate's key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
not_afterinteger
The date the certificate expired.
not_beforeinteger
The date the certificate started.
signature_algorithmstring
The certificate's signature OID hash algorithm.
subject.commonNamestring
The certificate's Common Name.
subject_textstring
The certificate's subject text information.
validation_typestring
The certificate's validation type. ev — Extended Validation. ov — Organization Validation. dv — Domain Validation. null — The system could not parse and determine the certificate's validation type.
You cannot call both the keytype and keysize parameters in a single call.
When you disable the Calendars and Contacts, Receive Mail, Web Disk, Webmail, and
Web Server roles, the system disables this function.
friendly_namestringOptional
A friendly name for the new key. This parameter defaults to the key's type, creation date, and creation time.
keysizeintegerOptional
The key's modulus size. Note: Use the keytype parameter.
keytypestringOptional
The key's type. system — The system's default value. rsa-2048 — 2,408-bit RSA. rsa-4096 — 4,096-bit RSA. ecdsa-prime256v1 — ECDSA prime256v1 ("P-256"). * ecdsa-secp384r1 — ECDSA secp384r1 ("P-384"). This parameter defaults to the user's default SSL/TLS key type. Note: If you do not use this parameter, the system defaults to the keysize parameter's default value.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
createdinteger
The key's creation date.
ecdsa_curve_namestring
The ECDSA curve that the key uses. prime256v1secp384r1 * null — The key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The key's ECDSA compressed public point, in hexadecimal format. * null — The key is not an ECDSA key.
friendly_namestring
The key's friendly name.
idstring
The key's ID.
key_algorithmstring
The key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The key's modulus, in hexadecimal format. * null — The key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the key's modulus. * null — The key is not an RSA key.
This function returns the AutoSSL renewal status for a domain. It indicates whether AutoSSL is active, the domain is excluded, the domain has DCV problems, and whether the certificate will auto-renew.
domainstringRequired
The fully qualified domain name to check.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
has_problemsinteger
Whether AutoSSL has DCV failures recorded for this domain. Defaults to 1 if the problems database is unreachable.
One of: 01
is_activeinteger
Whether an AutoSSL provider is configured on the server.
One of: 01
is_excludedinteger
Whether the domain is on the user's AutoSSL exclusion list.
One of: 01
will_renewinteger
Whether AutoSSL will auto-renew the certificate for this domain. Only true when the server has an active AutoSSL provider, the current certificate was issued by that provider, the domain is not excluded, and there are no recorded DCV problems.
This function retrieves the most secure domain for a service.
domainmixedRequired
A domain name, cPanel username, or email address.
servicestringRequired
The service's name. cpanelimappop3smtp
add_mail_subdomainintegerOptional
Whether to append mail to the domain value to find the best match. For example, if you specify the domain example.com and call this parameter, the function only searches the mail.example.com service domains. 1 — Append mail to the domain value during the search. 0 — Match on the specified domain value only.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
cert_match_methodstring
The method that the system used to match the certificate with the mail service. none — No domain matches the certificate. exact — The domain exactly matches the certificate. exact-wildcard — The domain exactly matches the certificate. mail-wildcard — The mail subdomain of the domain matches the domain of the wildcard certificate. www-wildcard — The www subdomain of the domain matches the domain of the wildcard certificate. hostname-wildcard — The hostname's domain matches the domain of the wildcard certificate. hostname — The hostname matches the domain of the certificate. localdomain_on_cert-mail-wildcard — A mail subdomain of a domain on the server that matches the certificate. localdomain_on_cert-www-wildcard — A www subdomain of a domain on the server matches the certificate. localdomain_on_cert — A domain on the server matches the certificate.
One of: noneexactexact-wildcardmail-wildcardwww-wildcardhostname-wildcardhostnamelocaldomain_on_cert-mail-wildcardlocaldomain_on_cert-www-wildcardlocaldomain_on_cert
cert_valid_not_afterinteger
The certificate's expiration date.
is_currently_validinteger
Whether the certificate is currently valid. 1 — Valid. 0 — Invalid. Note: If the certificate is valid, the following statements are true: The certificate is not self-signed (the ssldomain_matches_cert value is 1). The certificate matches the SSL domain (the ssldomain_matches_cert value is 1). * The certificate is within its validity period (the cert_valid_not_after value is less than the current time and date).
One of: 10
is_self_signedinteger
Whether the certificate is self-signed. 1 — Self-signed. 0 — Not self-signed. Note: If the cert_match_method value is none, you should ignore this return's value.
One of: 10
is_wild_cardinteger
Whether the certificate is a wildcard certificate. 1 — Wildcard. 0 — Not a wildcard.
One of: 10
ssldomainstring
The best domain to use to access the service.
ssldomain_matches_certinteger
Whether an SSL-protected domain matches the certificate. 1 — Matches. 0 — Does not match.
Due to their inherent complexities, SSL-related functions often present problems for third-party developers. For the additional steps required to successfully call this function, read our Call UAPI's SSL::install_ssl Function in Custom Code documentation.
Important:
When you disable the Calendars and Contacts, Receive Mail, Web Disk, Webmail, and Web Serverroles, the system disables this function.
certstringRequired
The certificate to install. Note: You must URI-encode this value. You can use a Perl command to URI-encode your SSL certificate for this parameter. For example, you can use the following string, where CERT.FILE is the SSL certificate file: ``$(perl -MURI::Escape -ne 'print uri_escape($_);' CERT.FILE)``
domainstringRequired
The domain name.
keystringRequired
The certificate's key. Note: You must URI-encode this value. You can use a Perl command to URI-encode your SSL certificate for this parameter. For example, you can use the following string, where KEY.FILE is the SSL certificate file: ``$(perl -MURI::Escape -ne 'print uri_escape($_);' KEY.FILE)``
cabundlestringOptional
The Certificate Authority (CA) bundle data, if the certificate requires it. Note: You must URI-encode this value. You can use a Perl command to URI-encode your SSL certificate for this parameter. For example, you can use the following string, where CABUNDLE.FILE is the SSL certificate file: ``$(perl -MURI::Escape -ne 'print uri_escape($_);' CABUNDLE.FILE)``
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
actionstring
The action that the function used to install the certificate.
cert_idstring
The certificate ID.
domainstring
The domain that the certificate covers.
extra_certificate_domainsarray<string>
The domains that require extra certificates for mail and other services.
This function retrieves information about a certificate that is installed on a domain's dedicated IP address.
Important:
If you do not possess a dedicated IP address, this function will fail. For non-dedicated IP addresses, use the SSL::installed_hosts function.
When you disable the _Calendars and Contacts_, _Receive Mail_, _Web Disk_ , _Webmail_ , and _Web Server_ roles, the system disables this function.
domainstringOptional
The domain name. Note: The parameter defaults to the account's main domain.
verify_certificateintegerOptional
Verify the certificate. 1 — Verify the certificate. 0 — Do not verify the certificate.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
certificateobject
An object containing the certificate information.
domainsarray<string>
The domains that the certificate covers.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
idstring
The certificate's ID.
is_self_signedinteger
Whether the certificate is self-signed. 1 — Self-signed. 0 — Not self-signed.
One of: 01
issuer.commonNamestring
The issuer's Common Name, typically a domain name.
issuer.organizationNamestring
The certificate's organization.
issuer_textstring
The X.509 information about the issuer that contains CSR information.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The certificate's key's modulus, in hexadecimal format. * null — The certificate's key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
not_afterinteger
The certificate's expiration time.
not_beforeinteger
The certificate's start time.
signature_algorithmstring
The signature algorithm of the certificate.
subject.commonNamestring
The certificate's Common Name.
subject_textstring
The X.509 information about the certificate's subject that contains CSR information.
validation_typestring
The certificate's validation type. ev — Extended Validation. ov — Organization Validation. dv — Domain Validation. null — The system could not parse and determine the certificate's validation type.
One of: evovdv
verify_errorstring
Any errors that exist during the certificate verification process. If there are no errors, this will return an empty string. Note: You must set the verify_certificate parameter to 1 for this return to appear.
This function retrieves a list of the account's websites, their domains, and certificate information.
Important:
For a dedicated IP address, use the UAPI SSL::installed_host function.
Important:
When you disable the CalendarContact , MailReceive , WebDisk , Webmail , and WebServerroles, the system disables this function.
No parameters.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
certificateobject
An object that contains information about each certificate.
auto_ssl_providerstring
The AutoSSL provider's name.
auto_ssl_provider_display_namestring
The AutoSSL provider's display name.
domainsarray<string>
The domains that the certificate covers.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
idstring
The certificate's ID.
is_autosslinteger
Whether the AutoSSL service provided the certificate. 1 - Provided by the AutoSSL service. 0 - Not provided by the AutoSSL service.
One of: 01
is_self_signedinteger
Whether the certificate is self-signed. 1 - Self-signed. 0 - Not self-signed.
One of: 01
issuer.commonNamestring
The name that issued the certificate.
issuer.organizationNamestring
The certificate's organization name.
issuer_textstring
The issuer's X.509 information.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The certificate's key's modulus, in hexadecimal format. * null — The certificate's key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
not_afterinteger
When the certificate expired.
not_beforeinteger
When the certificate started.
signature_algorithmstring
The signature algorithm of the certificate.
subject.commonNamestring
The certificate's common name.
subject_textstring
The subject's X.509 information.
validation_typestring
The certificate's validation type. Note:ev - Extended Validation. ov - Organization Validation. dv - Domain Validation. null - The system could not parse and determine the certificate's validation type.
One of: evovdv
certificate_textstring
The certificate's text.
docrootstring
The document root of the domain that the certificate covers.
domainsarray<string>
The domains that the certificate covers.
fqdnsarray<string>
An array of every valid fully qualified domain name (FQDN) on the virtual host, which includes service subdomains (proxy subdomains).
ipany
The host's IP address.
is_primary_on_ipinteger
Whether the website is primary on the IP address. 1 - Primary. 0 - Not primary.
One of: 01
mail_sni_statusinteger
Whether SNI is active on the domain. 1 - Active. 0 - Inactive.
One of: 01
needs_sniinteger
Whether the website requires SNI to function. 1 - Requires SNI. 0 - Does not require SNI.
When you disable the Calendars and Contacts, Receive Mail, Web Disk, Webmail, and Web Server roles, the system disables this function.
No parameters.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
createdinteger
The date the certificate was created.
domain_is_configuredinteger
Whether the certificate is installed on the account. 1 — Installed. 0 — Not installed.
One of: 10
domainsarray<string>
A list of domains that the certificate covers.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
friendly_namestring
The certificate's friendly name.
idstring
The certificate's ID.
is_self_signedinteger
Whether the certificate is self-signed. 1 — Self-signed. 0 — Not self-signed.
One of: 10
issuer.commonNamestring
The issuer's name.
issuer.organizationNamestring
The certificate's organization.
issuer_textstring
The certificate's issuer information.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The certificate's key's modulus, in hexadecimal format. * null — The certificate's key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
not_afterinteger
The certificate's expiration date.
not_beforeinteger
The certificate's start date.
serialstring
The certificate's serial number.
signature_algorithmstring
The OID hash algorithm signature of the certificate.
subject.commonNamestring
The certificate's Common Name (CN).
subject_textstring
The certificate's subject text information.
validation_typestring
The certificate's validation type. ev — Extended Validation. ov — Organization Validation. dv — Domain Validation. null — The system could not parse and determine the certificate's validation type.
This function disables AutoSSL for every domain that you specify.
Warning:
This function replaces the list of any domains that you previously excluded. To add domains to the list of excluded domains, use the UAPI function SSL::add_autossl_excluded_domains.
A comma-separated list of domains for which to disable AutoSSL. Note: If you do not include this parameter, the function will enable AutoSSL for every domain on the account.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
When you call this parameter, you must include either the id or the friendly_name parameter.
Important:
When you disable the Calendars and Contacts, Receive Mail, Web Disk, Webmail, and Web Server roles, the system disables this function.
friendly_namestringOptional
The certificate's friendly name.
idstringOptional
The certificate's ID.
Response — normalized as { ok, data, errors[], warnings[] }; data contains:
certstring
The contents of the certificate.
detailsobject
An object containing the certificate's details.
domainsarray<string>
A list of the certificate's domains.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
friendly_namestring
The certificate's friendly name.
idstring
The certificate's ID.
is_self_signedinteger
Whether the certificate is self-signed. 1 — Self-signed. 0 — Not self-signed.
One of: 10
issuerobject
A object that contains the issuer's details.
commonNamestring
The issuer's Common Name or Distinguished Name.
countryNamestring
The certificate's two-letter country code.
emailAddressstring
The issuer's email address.
localityNamestring
The issuer's locality or city.
organizationNamestring
The issuer's organization name.
stateOrProvinceNamestring
The issuer's state or province name.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The certificate's key's modulus, in hexadecimal format. * null — The certificate's key is not an RSA key.
not_afterinteger
The certificate's expiration date.
not_beforeinteger
The certificate's start time.
signature_algorithmstring
The certificate's OID hash algorithm signature.
subjectobject
An object containing the certificate's ownership details.
commonNamestring
The certificate's Common Name or Distinguished Name.
countryNamestring
The certificate's two-letter country code.
emailAddressstring
The certificate's email address.
localityNamestring
The certificate's locality or city.
organizationNamestring
The certificate's organization name.
stateOrProvinceNamestring
The certificate's state or province name.
validation_typestring
The certificate's validation type. ev — Extended Validation. ov — Organization Validation. dv — Domain Validation. null — The system could not parse and determine the certificate's validation type.
One of: evovdv
textstring
The parsed information from the OpenSSL command-line tool.
This function enables or disables secure redirects (HTTPS) for the cPanel account's domains that you specify.
Important:
To call this function, one of the following conditions must exist:
AutoSSL must exist on the domains for which you enable secure redirects.
A valid SSL certificate must exist for each domain for which you wish to enable secure redirects.
You must own the domains for which you wish to enable secure redirects.
domainsstringRequired
A comma-separated list of the cPanel account's domains for which to enable or disable secure redirects. Important: To enable or disable redirects for addon domains, you must pass the addon domain and its subdomain.
stateintegerRequired
Whether to enable or disable redirects for the specified domains. 1 — Enable. 0 — Disable.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
The domains for which the function enabled or disabled secure redirects.
Due to the limited field length of HTTP GET method calls, you must use the HTTP
POST method. For this reason, you cannot use a cPanel or Webmail session URL to call this function.
When you disable the Calendar and Contacts, Receive Mail, Web Disk, Webmail, and
Web Server roles, the system disables this function.
crtstringOptional
The certificate file.
friendly_namestringOptional
The certificate's friendly name.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
createdinteger
The certificate's creation date.
domainsarray<string>
A list of the certificate's domains.
ecdsa_curve_namestring
The ECDSA curve that the certificate's key uses. prime256v1secp384r1 * null — The certificate's key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The certificate's key's ECDSA compressed public point, in hexadecimal format. * null — The certificate's key is not an ECDSA key.
friendly_namestring
The certificate's friendly name.
idstring
The certificate's ID.
is_self_signedinteger
Whether the certificate is self-signed. 1 — Self-signed. 0 — Not self-signed.
One of: 10
issuer.commonNamestring
The issuer's Common Name or Distinguished Name.
issuer.organizationNamestring
The issuer's Organization Name.
key_algorithmstring
The certificate's key's algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The certificate's key's modulus, in hexadecimal format. * null — The certificate's key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the certificate's key's modulus. * null — The certificate's key is not an RSA key.
not_afterinteger
The certificate's expiration date.
not_beforeinteger
The certificate's start date.
signature_algorithmstring
The certificiate's OID hash algorithm signature.
subject.commonNamestring
The issuer's Common Name or Distinguished Name.
validation_typestring
The certificate's validation type. ev — Extended Validation. ov — Organization Validation. dv — Domain Validation. null — The system could not parse and determine the certificate's validation type.
Due to the limited field length of HTTP GET method calls, you must use the HTTP POST method. For this reason, you cannot use a cPanel or Webmail session URL to call this function.
Important:
When you disable the Calendars and Contacts, Receive Mail, Web Disk, Webmail, and Web Server roles, the system disables this function.
crtstringOptional
The key's contents.
friendly_namestringOptional
The key's friendly name.
Response — normalized as { ok, data, errors[], warnings[] }; data is an array of:
createdinteger
The key's creation date.
ecdsa_curve_namestring
The ECDSA curve that the key uses. prime256v1secp384r1 * null — The key is not an ECDSA key.
One of: prime256v1secp384r1
ecdsa_publicstring
The key’s ECDSA compressed public point, in hexadecimal format. * null — The key is not an ECDSA key.
friendly_namestring
The key's friendly name.
idstring
The key's ID.
key_algorithmstring
The key’s algorithm. rsaEncryption — RSA. id-ecPublicKey — ECDSA.
One of: rsaEncryptionid-ecPublicKey
modulusstring
The key's modulus, in hexadecimal format. * null — The key is not an RSA key.
modulus_lengthinteger
The length, in bits, of the key's modulus. * null — The key is not an RSA key.