Filters
This structure can be used in the ListCertificates action to filter the output of the certificate list.
Contents
Note
In the following list, the required parameters are described first.
- extendedKeyUsage
-
Specify one or more ExtendedKeyUsage extension values.
Type: Array of strings
Valid Values:
TLS_WEB_SERVER_AUTHENTICATION | TLS_WEB_CLIENT_AUTHENTICATION | CODE_SIGNING | EMAIL_PROTECTION | TIME_STAMPING | OCSP_SIGNING | IPSEC_END_SYSTEM | IPSEC_TUNNEL | IPSEC_USER | ANY | NONE | CUSTOMRequired: No
- keyTypes
-
Specify one or more algorithms that can be used to generate key pairs.
Default filtering returns only
RSA_1024andRSA_2048certificates that have at least one domain. To return other certificate types, provide the desired type signatures in a comma-separated list. For example,"keyTypes": ["RSA_2048","RSA_4096"]returns bothRSA_2048andRSA_4096certificates.Type: Array of strings
Valid Values:
RSA_1024 | RSA_2048 | RSA_3072 | RSA_4096 | EC_prime256v1 | EC_secp384r1 | EC_secp521r1Required: No
- keyUsage
-
Specify one or more KeyUsage extension values.
Type: Array of strings
Valid Values:
DIGITAL_SIGNATURE | NON_REPUDIATION | KEY_ENCIPHERMENT | DATA_ENCIPHERMENT | KEY_AGREEMENT | CERTIFICATE_SIGNING | CRL_SIGNING | ENCIPHER_ONLY | DECIPHER_ONLY | ANY | CUSTOMRequired: No
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
