From HEXONET Wiki
New SSL API
What are the features of the new SSL API?
The new SSL API offers:
- SSL certificate orders where no contact data has to be provided - given the domain name, we retrieve the required contact information per WHOIS call
- SSL certificate orders where no CSR has to be provided - we can take care of this
- SSL certificate orders where the contact data can be provided via contact handles - just like in domain commands
- Advanced validation methods - instead of confirming emails, you can prove that you have control over a domain by a simple DNS or web content modification
How to use the new SSL API?
You can do that right away. Just make use of the new command parameters described below.
| SSL certificate |
|---|
| COMODO_ESSENTIALSSL |
| COMODO_INSTANTSSL |
| COMODO_INSTANTSSL_PRO |
| COMODO_PREMIUMSSL |
| COMODO_PREMIUMSSL_WILDCARD |
| COMODO_EVSSL |
| COMODO_UCC |
| GEOTRUST_QUICKSSLPREMIUM |
| GEOTRUST_RAPIDSSL |
| GEOTRUST_RAPIDSSL_WILDCARD |
| SYMANTEC_SECURESITE |
| SYMANTEC_SECURESITEPRO |
| SYMANTEC_SECURESITEEV |
| SYMANTEC_SECURESITEPROEV |
| THAWTE_SSL123 |
| THAWTE_SSLWEBSERVER |
| THAWTE_SSLWEBSERVEREV |
| THAWTE_SSLWEBSERVER_WILDCARD |
All parameters
[COMMAND] command = CreateSSLCert sslcertclass = <CLASS> ownercontact0 = <CONTACT> admincontact0 = <CONTACT> techcontact0 = <CONTACT> billingcontact0 = <CONTACT> csrcontact0 = <CONTACT> domain0 = <DOMAIN> domain1 = <DOMAIN> ... validation0 = EMAIL | DNSZONE | URL validation1 = EMAIL | DNSZONE | URL ... validationemail0 = <EMAIL> validationemail1 = <EMAIL> ... csr0 = -----BEGIN CERTIFICATE REQUEST----- csr1 = ... ... pem0 = -----BEGIN RSA PRIVATE KEY----- pem1 = ... ...
[RESPONSE] CODE=200 DESCRIPTION=Command completed successfully PROPERTY[SSLCERTID][0]=<SSLCERTID>
Order certificate providing the domain name only
Contact data is retrieved from WHOIS. Private key and CSR are created automatically.
[COMMAND] command = CreateSSLCert sslcertclass = <CLASS> domain0 = <DOMAIN>
Order certificate with contact handles
Private key and CSR are created automatically.
[COMMAND] command = CreateSSLCert sslcertclass = <CLASS> domain0 = <DOMAIN> ownercontact0=<CONTACT> admincontact0=<CONTACT> techcontact0=<CONTACT> billingcontact0=<CONTACT>
Order certificate with your own CSR
The domain is retrieved from the provided CSR.
[COMMAND] command = CreateSSLCert sslcertclass = <CLASS> ownercontact0=<CONTACT> admincontact0=<CONTACT> techcontact0=<CONTACT> billingcontact0=<CONTACT> csr0 = -----BEGIN CERTIFICATE REQUEST----- csr1 = ... ...
Order certificate with your own private key
The CSR is created automatically using the provided private key.
[COMMAND] command = CreateSSLCert sslcertclass = <CLASS> domain0 = <DOMAIN> pem0 = -----BEGIN RSA PRIVATE KEY----- pem1 = ... ...
