# Certificates

## List Certificates

> Get a list of the planet's certificates for a configuration

```json
{"openapi":"3.0.2","info":{"title":"Link11 WAAP","version":"v4.3"},"paths":{"/api/v4.3/conf/{config}/certificates":{"get":{"operationId":"get_api_v3_reblaze_configs__config__d_certificates__get_1339581305765730668","summary":"List Certificates","description":"Get a list of the planet's certificates for a configuration","parameters":[{"in":"path","name":"config","required":true,"schema":{"title":"Config","type":"string"}}],"responses":{"200":{"description":"Certificates were retrieved successfully","content":{"application/json":{"schema":{"title":"Response Get Api V4 Reblaze Configs Certificates","properties":{"total":{"type":"integer"},"items":{"type":"array","items":{"$ref":"#/components/schemas/CertificateResponse"}}}}}}},"500":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Error"}}},"description":"Internal Server Error"}},"tags":["Certificates"]}}},"components":{"schemas":{"CertificateResponse":{"title":"Certificate response","allOf":[{"$ref":"#/components/schemas/CertificateBase"}],"properties":{"links":{"default":[],"items":{"$ref":"#/components/schemas/ProviderLink"},"title":"Provider Links","type":"array"}}},"CertificateBase":{"properties":{"cert_body":{"title":"Cert Body","type":"string"},"expires":{"format":"date","title":"Expires","type":"string"},"id":{"description":"Unique id","pattern":"^[A-Za-z0-9\\-\\_]*$","title":"Id","type":"string"},"issuer":{"title":"Issuer","type":"string"},"le_auto_renew":{"default":true,"title":"Le Auto Renew","type":"boolean"},"le_auto_replace":{"default":true,"title":"Le Auto Replace","type":"boolean"},"le_hash":{"default":"","title":"Le Hash","type":"string"},"name":{"title":"Name","description":"Display name for the certificate. Can only contain letters, numbers, dashes, and underscores. If omitted, defaults to the certificate ID.","type":"string","pattern":"^[A-Za-z0-9\\-\\_]*$"},"private_key":{"title":"Private Key","type":"string"},"san":{"items":{"type":"string"},"title":"San","type":"array"},"subject":{"title":"Subject","type":"string"},"uploaded":{"format":"date-time","title":"Uploaded","type":"string"},"revoked":{"title":"Revoked","type":"boolean","default":false},"crl":{"title":"CRL","type":"array","default":[],"items":{"type":"string"},"description":"Certificate Revocation List"},"cdp":{"title":"CDP","type":"array","items":{"type":"string"},"default":[],"description":"Certificate Distribution Point"},"side":{"title":"Certificate Side","enum":["clientCA","server","serverToBackendMTLS","backendCA"],"type":"string","default":"server"}},"required":["id"],"title":"Base Certificate","type":"object"},"ProviderLink":{"properties":{"link":{"title":"Link","type":"string"},"provider":{"title":"Provider","type":"string"},"region":{"title":"Region","type":"string"}},"required":["provider","link","region"],"title":"ProviderLink","type":"object"},"Error":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"Error","type":"object"}}}}
```

## Get Certificate

> Get a specific Certificate for a configuration

```json
{"openapi":"3.0.2","info":{"title":"Link11 WAAP","version":"v4.3"},"paths":{"/api/v4.3/conf/{config}/certificates/{entry_id}":{"get":{"operationId":"get_one_api_v3_reblaze_configs__config__d_certificates_e__id___get_385040395977565767","summary":"Get Certificate","description":"Get a specific Certificate for a configuration","parameters":[{"in":"path","name":"config","required":true,"schema":{"title":"Config","type":"string"}},{"in":"path","name":"entry_id","required":true,"schema":{"title":"Id","type":"string"}}],"responses":{"200":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/CertificateResponse"}}},"description":"Certificate was retrieved successfully"},"422":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/HTTPValidationError"}}},"description":"Validation Error"},"500":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Error"}}},"description":"Internal Server Error"}},"tags":["Certificates"]}}},"components":{"schemas":{"CertificateResponse":{"title":"Certificate response","allOf":[{"$ref":"#/components/schemas/CertificateBase"}],"properties":{"links":{"default":[],"items":{"$ref":"#/components/schemas/ProviderLink"},"title":"Provider Links","type":"array"}}},"CertificateBase":{"properties":{"cert_body":{"title":"Cert Body","type":"string"},"expires":{"format":"date","title":"Expires","type":"string"},"id":{"description":"Unique id","pattern":"^[A-Za-z0-9\\-\\_]*$","title":"Id","type":"string"},"issuer":{"title":"Issuer","type":"string"},"le_auto_renew":{"default":true,"title":"Le Auto Renew","type":"boolean"},"le_auto_replace":{"default":true,"title":"Le Auto Replace","type":"boolean"},"le_hash":{"default":"","title":"Le Hash","type":"string"},"name":{"title":"Name","description":"Display name for the certificate. Can only contain letters, numbers, dashes, and underscores. If omitted, defaults to the certificate ID.","type":"string","pattern":"^[A-Za-z0-9\\-\\_]*$"},"private_key":{"title":"Private Key","type":"string"},"san":{"items":{"type":"string"},"title":"San","type":"array"},"subject":{"title":"Subject","type":"string"},"uploaded":{"format":"date-time","title":"Uploaded","type":"string"},"revoked":{"title":"Revoked","type":"boolean","default":false},"crl":{"title":"CRL","type":"array","default":[],"items":{"type":"string"},"description":"Certificate Revocation List"},"cdp":{"title":"CDP","type":"array","items":{"type":"string"},"default":[],"description":"Certificate Distribution Point"},"side":{"title":"Certificate Side","enum":["clientCA","server","serverToBackendMTLS","backendCA"],"type":"string","default":"server"}},"required":["id"],"title":"Base Certificate","type":"object"},"ProviderLink":{"properties":{"link":{"title":"Link","type":"string"},"provider":{"title":"Provider","type":"string"},"region":{"title":"Region","type":"string"}},"required":["provider","link","region"],"title":"ProviderLink","type":"object"},"HTTPValidationError":{"properties":{"detail":{"items":{"$ref":"#/components/schemas/ValidationError"},"title":"Detail","type":"array"}},"title":"HTTPValidationError","type":"object"},"ValidationError":{"properties":{"loc":{"items":{"anyOf":[{"type":"string"},{"type":"integer"}]},"title":"Location","type":"array"},"msg":{"title":"Message","type":"string"},"type":{"title":"Error Type","type":"string"}},"required":["loc","msg","type"],"title":"ValidationError","type":"object"},"Error":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"Error","type":"object"}}}}
```

## Modify Certificate

> Change settings for a specific certificate. ("le\_" parameters refer to Let's Encrypt.)

```json
{"openapi":"3.0.2","info":{"title":"Link11 WAAP","version":"v4.3"},"paths":{"/api/v4.3/conf/{config}/certificates/{entry_id}":{"put":{"operationId":"update_api_v3_reblaze_configs__config__d_certificates_e__id___put_385040395977565767","summary":"Modify Certificate","description":"Change settings for a specific certificate. (\"le_\" parameters refer to Let's Encrypt.)","parameters":[{"in":"path","name":"config","required":true,"schema":{"title":"Config","type":"string"}},{"in":"path","name":"entry_id","required":true,"schema":{"title":"Id","type":"string"}},{"in":"query","name":"le_auto_renew","required":false,"schema":{"default":true,"title":"Le Auto Renew","type":"boolean"}},{"in":"query","name":"le_auto_replace","required":false,"schema":{"default":true,"title":"Le Auto Replace","type":"boolean"}},{"in":"query","name":"replace_cert_id","required":false,"schema":{"title":"Replace Cert Id","type":"string"}},{"in":"query","name":"name","required":false,"description":"Display name for the certificate. Can only contain letters, numbers, dashes, and underscores.","schema":{"title":"Name","type":"string","pattern":"^[A-Za-z0-9\\-\\_]*$"}}],"responses":{"200":{"description":"Certificate modified successfully"},"422":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/HTTPValidationError"}}},"description":"Validation Error"}},"tags":["Certificates"]}}},"components":{"schemas":{"HTTPValidationError":{"properties":{"detail":{"items":{"$ref":"#/components/schemas/ValidationError"},"title":"Detail","type":"array"}},"title":"HTTPValidationError","type":"object"},"ValidationError":{"properties":{"loc":{"items":{"anyOf":[{"type":"string"},{"type":"integer"}]},"title":"Location","type":"array"},"msg":{"title":"Message","type":"string"},"type":{"title":"Error Type","type":"string"}},"required":["loc","msg","type"],"title":"ValidationError","type":"object"}}}}
```

## Add Certificate

> Create new certificate for a specific list of domains. Generate new certificate or upload existing one based on input parameters. "le\_" parameters refer to Let's Encrypt.

```json
{"openapi":"3.0.2","info":{"title":"Link11 WAAP","version":"v4.3"},"paths":{"/api/v4.3/conf/{config}/certificates/{entry_id}":{"post":{"description":"Create new certificate for a specific list of domains. Generate new certificate or upload existing one based on input parameters. \"le_\" parameters refer to Let's Encrypt.","operationId":"add_api_v3_reblaze_configs__config__d_certificates_e__id___post_385040395977565767","parameters":[{"in":"path","name":"config","required":true,"schema":{"title":"Config","type":"string"}},{"in":"path","name":"entry_id","required":true,"schema":{"pattern":"(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?)","title":"Id","type":"string"}},{"in":"query","name":"domains","required":false,"schema":{"default":[],"items":{"type":"string"},"title":"Domains","type":"array"}}],"requestBody":{"content":{"application/json":{"schema":{"allOf":[{"$ref":"#/components/schemas/Certificate"}],"default":{"id":"","name":"","le_auto_renew":true,"le_auto_replace":true,"le_hash":"","provider_links":[]},"title":"Body"}}}},"responses":{"201":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResponseCreate"}}},"description":"Certificate created"},"422":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/HTTPValidationError"}}},"description":"Validation Error"}},"summary":"Add Certificate","tags":["Certificates"]}}},"components":{"schemas":{"Certificate":{"title":"Certificate","allOf":[{"$ref":"#/components/schemas/CertificateBase"}],"properties":{"provider_links":{"default":[],"items":{"$ref":"#/components/schemas/ProviderLink"},"title":"Provider Links","type":"array"}}},"CertificateBase":{"properties":{"cert_body":{"title":"Cert Body","type":"string"},"expires":{"format":"date","title":"Expires","type":"string"},"id":{"description":"Unique id","pattern":"^[A-Za-z0-9\\-\\_]*$","title":"Id","type":"string"},"issuer":{"title":"Issuer","type":"string"},"le_auto_renew":{"default":true,"title":"Le Auto Renew","type":"boolean"},"le_auto_replace":{"default":true,"title":"Le Auto Replace","type":"boolean"},"le_hash":{"default":"","title":"Le Hash","type":"string"},"name":{"title":"Name","description":"Display name for the certificate. Can only contain letters, numbers, dashes, and underscores. If omitted, defaults to the certificate ID.","type":"string","pattern":"^[A-Za-z0-9\\-\\_]*$"},"private_key":{"title":"Private Key","type":"string"},"san":{"items":{"type":"string"},"title":"San","type":"array"},"subject":{"title":"Subject","type":"string"},"uploaded":{"format":"date-time","title":"Uploaded","type":"string"},"revoked":{"title":"Revoked","type":"boolean","default":false},"crl":{"title":"CRL","type":"array","default":[],"items":{"type":"string"},"description":"Certificate Revocation List"},"cdp":{"title":"CDP","type":"array","items":{"type":"string"},"default":[],"description":"Certificate Distribution Point"},"side":{"title":"Certificate Side","enum":["clientCA","server","serverToBackendMTLS","backendCA"],"type":"string","default":"server"}},"required":["id"],"title":"Base Certificate","type":"object"},"ProviderLink":{"properties":{"link":{"title":"Link","type":"string"},"provider":{"title":"Provider","type":"string"},"region":{"title":"Region","type":"string"}},"required":["provider","link","region"],"title":"ProviderLink","type":"object"},"ResponseCreate":{"title":"ResponseCreate","type":"object","properties":{"message":{"title":"Message","description":"Information about successful create operation","type":"string"}},"required":["message"]},"HTTPValidationError":{"properties":{"detail":{"items":{"$ref":"#/components/schemas/ValidationError"},"title":"Detail","type":"array"}},"title":"HTTPValidationError","type":"object"},"ValidationError":{"properties":{"loc":{"items":{"anyOf":[{"type":"string"},{"type":"integer"}]},"title":"Location","type":"array"},"msg":{"title":"Message","type":"string"},"type":{"title":"Error Type","type":"string"}},"required":["loc","msg","type"],"title":"ValidationError","type":"object"}}}}
```

## Delete Certificate

> Delete an individual Certificate from the specified configuration

```json
{"openapi":"3.0.2","info":{"title":"Link11 WAAP","version":"v4.3"},"paths":{"/api/v4.3/conf/{config}/certificates/{entry_id}":{"delete":{"operationId":"delete_api_v3_reblaze_configs__config__d_certificates_e__id___delete_385040395977565767","summary":"Delete Certificate","description":"Delete an individual Certificate from the specified configuration","parameters":[{"in":"path","name":"config","required":true,"schema":{"title":"Config","type":"string"}},{"in":"path","name":"entry_id","required":true,"schema":{"title":"Id","type":"string"}}],"responses":{"200":{"description":"Certificate deleted successfully"},"400":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/InputError"}}},"description":"Input Error"},"422":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/HTTPValidationError"}}},"description":"Validation Error"},"500":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Error"}}},"description":"Internal Server Error"}},"tags":["Certificates"]}}},"components":{"schemas":{"InputError":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"InputError","type":"object"},"HTTPValidationError":{"properties":{"detail":{"items":{"$ref":"#/components/schemas/ValidationError"},"title":"Detail","type":"array"}},"title":"HTTPValidationError","type":"object"},"ValidationError":{"properties":{"loc":{"items":{"anyOf":[{"type":"string"},{"type":"integer"}]},"title":"Location","type":"array"},"msg":{"title":"Message","type":"string"},"type":{"title":"Error Type","type":"string"}},"required":["loc","msg","type"],"title":"ValidationError","type":"object"},"Error":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"Error","type":"object"}}}}
```

## GET /api/v4.3/conf/{config}/certificates/{entry\_id}/pfx

> Get Certificate PFX

```json
{"openapi":"3.0.2","info":{"title":"Link11 WAAP","version":"v4.3"},"paths":{"/api/v4.3/conf/{config}/certificates/{entry_id}/pfx":{"get":{"operationId":"export_api_v3_reblaze_configs__config__d_certificates_e__id__pfx__get_775020538878279514","summary":"Get Certificate PFX","parameters":[{"in":"path","name":"config","required":true,"schema":{"title":"Config","type":"string"}},{"in":"path","name":"entry_id","required":true,"schema":{"title":"Id","type":"string"}}],"responses":{"200":{"content":{"application/json":{"schema":{"format":"binary","title":"Response Export Api Certificates PFX","type":"string"}}},"description":"Certificate's PFX retrieved successfully"},"400":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/InputError"}}},"description":"Input Error"},"422":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/HTTPValidationError"}}},"description":"Validation Error"},"500":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Error"}}},"description":"Internal Server Error"}},"tags":["Certificates"]}}},"components":{"schemas":{"InputError":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"InputError","type":"object"},"HTTPValidationError":{"properties":{"detail":{"items":{"$ref":"#/components/schemas/ValidationError"},"title":"Detail","type":"array"}},"title":"HTTPValidationError","type":"object"},"ValidationError":{"properties":{"loc":{"items":{"anyOf":[{"type":"string"},{"type":"integer"}]},"title":"Location","type":"array"},"msg":{"title":"Message","type":"string"},"type":{"title":"Error Type","type":"string"}},"required":["loc","msg","type"],"title":"ValidationError","type":"object"},"Error":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"Error","type":"object"}}}}
```

## GET /api/v4.3/conf/{config}/certificates/{entry\_id}/pem

> Get Certificate PEM

```json
{"openapi":"3.0.2","info":{"title":"Link11 WAAP","version":"v4.3"},"paths":{"/api/v4.3/conf/{config}/certificates/{entry_id}/pem":{"get":{"operationId":"certificates_pem_get_775020538878279514","summary":"Get Certificate PEM","parameters":[{"in":"path","name":"config","required":true,"schema":{"title":"Config","type":"string"}},{"in":"path","name":"entry_id","required":true,"schema":{"title":"Id","type":"string"}}],"responses":{"200":{"content":{"application/x-pem-file":{"schema":{"format":"binary","title":"Response Certificates PEM","type":"string"}}},"description":"Certificate's PEM retrieved successfully"},"400":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/InputError"}}},"description":"Input Error"},"422":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/HTTPValidationError"}}},"description":"Validation Error"},"500":{"content":{"application/json":{"schema":{"$ref":"#/components/schemas/Error"}}},"description":"Internal Server Error"}},"tags":["Certificates"]}}},"components":{"schemas":{"InputError":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"InputError","type":"object"},"HTTPValidationError":{"properties":{"detail":{"items":{"$ref":"#/components/schemas/ValidationError"},"title":"Detail","type":"array"}},"title":"HTTPValidationError","type":"object"},"ValidationError":{"properties":{"loc":{"items":{"anyOf":[{"type":"string"},{"type":"integer"}]},"title":"Location","type":"array"},"msg":{"title":"Message","type":"string"},"type":{"title":"Error Type","type":"string"}},"required":["loc","msg","type"],"title":"ValidationError","type":"object"},"Error":{"properties":{"code":{"title":"Code","type":"integer"},"message":{"title":"Message","type":"string"}},"required":["code","message"],"title":"Error","type":"object"}}}}
```


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://waap.docs.link11.com/reference-information/api/namespace-reference/certificates.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.