API Method - reinstate

PreviousAPI Method - createPKCS12ById NextAPI Method - suspend

Last updated 1 year ago

API Method - reinstate

reinstate

Purpose

Use the “reinstate” method for reinstating the suspended x509, p7b, pfx certificates based on the certificate serial number

Type of Method

POST

Request URL

Request Input Parameters

JSON Object Contains below parameters

Parameter

Presence

Data Type

Description

signature

String

Certificate serial number has to be signed with PFX shared by us.

Pass Signed certificate serial number i.e., PKCS#7 data.

userName

String

You need to pass username that is registered with emCA for API process.

password

String

You need to pass the password that is registered with emCA for API process.

remarks

String

Pass your reason to reinstate certificate

Sample JSON Object

Parameter

Presence

Data Type

Description

requestData

String

All the request input parameters mentioned above should be converted to JSON object and encrypted with AES 256 key shared with you by the emCA team.

Pass Encrypted JSON Object.

userName

String

You need to pass username that is registered with emCA for API process.

Header Details

Key

Presence

Value

Description

Application / JSON

Content-Type

Type of request should be in JSON Format.

Authentication Key

emKey

emKey is an encoded key (Refer section 4 for generating Authentication Key using command prompt).

Sample Request Data

Content-Type: application/json
emKey                    : 47b54594063957de22fce0aeddd51a6adf4a80aa
Request Body:

{
"requestData" :
"Q/5rvKIZvoMfuZQnysxcGawX4wC1xRttkCHEExreOwUCltgPG0FmsAbEmNHgHvdM2A7Vadyks2IDACy dZDRG9rS/uq93IO3KMAyazof7IJXz31c3LiXorwiRksUFOrH2IqYbqI1q88Sf3rnxoTdq8oaOzYB2LoN Ph8dZihJyDIR33BccF1Dg/sS/UAwxJ3fjbPzRJpFcqhi2FX1IS8TxyW2PZtPyLtSddyDFxliryGv8RMm Vem6NdJYeNHcYo82qHtszdepvIWCi/DLCqs1alR9TcOsKQ8skBTUQY5xfiuONm68zytXBlF+MIAB40Ws w/12zywoCe2z14wqA/mvzF6Jd/Cw3059NfW8FtmBS502ty4l+kSDallVUCSFP9b9Drsh4q/giwT+zHa/ SQ3LWCFkjDLaB/OMzMaZfAFwm27/mDB4mSWVMPzMo8CDBvNNNekeV6lSeKSJ7rEbR2JJYIeLzQFp++Dv np0KZHZu5r+muXAPFCnsDj3MbLrpvbdl3VYKjtDCu0MXi/LX787pStPvr9coMmHTCwja5p7RwI7Ji/nb OnVpT8f2ylx/Rq7vTFRGAqnFmEK5HAkN6Owdf/dKaKUtifXzJqgjYft0NS7uoXbEJWbb4I86AqLhsPbq qN2zlOXZIaYLvkoleo//gAcevv6ZS3jk5rkhueR44ablyv5nhgQ25Fhg5cqu4hxUBOi1MRXk5RpA6RZk az+DPGSsJJ4+yKzTEnxhUZvnqzeFEf1cvIU3Fx9PLmvrQ50cE28AdNu749WOUyjq/eZCFC1rmY6KyThU 4ng49S+iqCrUiIIF+McgjbuVPRvy0M9eYi9HpVOduV7XEI2zrRLpID0ueVwo/j6XePsofLvk/5J/xT9S 8Ge6wgVNQzkO47eLi2VEPf5OXRopBaSLFZ1SPIgBVumlSnPgLfdNVOirJjhqMyADZrXgoAw3c+YTqRhs RDAhtPKx90Qtw643eLEi/1ujz9ZxB6yzTvFYnh05eaM+N08QVlEJcS+z84vqnY6/+8746T6Ct/tDrLdF CNVvveSEPVCujbE6LI6pzAnNuHWZoFYoDjANRTDuS8m3LY3mcC24cTJnNTt7a/hF6IsUj0ygfVctkpAT XvW9p1m4p6BpYmXFSP6w0nMvKnHd+Uy2R3qykk/1R6YoZbaG9dM3LrAqqAILkYNucL32xZCbSSKX6HIQ tZ0WMAfTubYXLsDnAZCLeph1P+fjnkbgrpizkQg==",
"userName" : "username"
}

Process

When request is received by the emCA service, we will decrypt the request JSON Object with the same AES key that is shared with the client. After successful decryption, request JSON object (Signed serial number + Username + Password + remarks) is retrieved.
First the emCA service will validate username and password and check if the IP Address used for request and registered with the user are same.
If it is same then signed data (signature) is validated by checking whether serial number is signed by pfx which is registered for the specific user.
If validation fails at any point in processing the request, the emCA service will throw error /failure message.

Response Parameters

Parameter

Data Type

Description

response

String

Returns JSON Object

JSON Object Contains below parameters

Parameter

Data Type

Description

status

String

Returns Status of the request as success if certificate revocation is successful.

Returns status of the request as failure if authentication fails or unregistered user tries to call the API.

result

String

Returns

In case of success: “Certificate reinstated successfully” message will be displayed.

In case of failure: error message will be displayed.

subscriberId

String

Returns Subscriber Id.

requestId

String

Returns Request ID null.

Response JSON Format

Sample:
      Success:
      Response Body(Is Manual Authorization Enabled is “not“ checked from emCA)
     {
     "status":"success",
     "result":"Reinstated Successfully"
      “subscriberId”:”XXX”
     "requestId": null,
     “aliasname”:null
     }							
      Failure: 
    {
    "status":"failure",
    "result":"<Error message>"
    “subscriberId”:null
    "requestId": null,
    “aliasname”:null
     }

Error Messages

Error Message

Description

Invalid Request

If the user certificate has already been reinstated or if there is no certificate available for the requested certificate serial number.

Signature verification failed

If signature parameter (certificate serial number) contains invalid certificate serial number.

PreviousAPI Method - createPKCS12ById NextAPI Method - suspend

Last updated 1 year ago

reinstate

Purpose

Use the “reinstate” method for reinstating the suspended x509, p7b, pfx certificates based on the certificate serial number

Type of Method

POST

Request URL

Request Input Parameters

JSON Object Contains below parameters

Parameter

Presence

Data Type

Description

signature

String

Certificate serial number has to be signed with PFX shared by us.

Pass Signed certificate serial number i.e., PKCS#7 data.

userName

String

You need to pass username that is registered with emCA for API process.

password

String

You need to pass the password that is registered with emCA for API process.

remarks

String

Pass your reason to reinstate certificate

Sample JSON Object

Parameter

Presence

Data Type

Description

requestData

String

All the request input parameters mentioned above should be converted to JSON object and encrypted with AES 256 key shared with you by the emCA team.

Pass Encrypted JSON Object.

userName

String

You need to pass username that is registered with emCA for API process.

Header Details

Key

Presence

Value

Description

Application / JSON

Content-Type

Type of request should be in JSON Format.

Authentication Key

emKey

emKey is an encoded key (Refer section 4 for generating Authentication Key using command prompt).

Sample Request Data

Content-Type: application/json
emKey                    : 47b54594063957de22fce0aeddd51a6adf4a80aa
Request Body:

{
"requestData" :
"Q/5rvKIZvoMfuZQnysxcGawX4wC1xRttkCHEExreOwUCltgPG0FmsAbEmNHgHvdM2A7Vadyks2IDACy dZDRG9rS/uq93IO3KMAyazof7IJXz31c3LiXorwiRksUFOrH2IqYbqI1q88Sf3rnxoTdq8oaOzYB2LoN Ph8dZihJyDIR33BccF1Dg/sS/UAwxJ3fjbPzRJpFcqhi2FX1IS8TxyW2PZtPyLtSddyDFxliryGv8RMm Vem6NdJYeNHcYo82qHtszdepvIWCi/DLCqs1alR9TcOsKQ8skBTUQY5xfiuONm68zytXBlF+MIAB40Ws w/12zywoCe2z14wqA/mvzF6Jd/Cw3059NfW8FtmBS502ty4l+kSDallVUCSFP9b9Drsh4q/giwT+zHa/ SQ3LWCFkjDLaB/OMzMaZfAFwm27/mDB4mSWVMPzMo8CDBvNNNekeV6lSeKSJ7rEbR2JJYIeLzQFp++Dv np0KZHZu5r+muXAPFCnsDj3MbLrpvbdl3VYKjtDCu0MXi/LX787pStPvr9coMmHTCwja5p7RwI7Ji/nb OnVpT8f2ylx/Rq7vTFRGAqnFmEK5HAkN6Owdf/dKaKUtifXzJqgjYft0NS7uoXbEJWbb4I86AqLhsPbq qN2zlOXZIaYLvkoleo//gAcevv6ZS3jk5rkhueR44ablyv5nhgQ25Fhg5cqu4hxUBOi1MRXk5RpA6RZk az+DPGSsJJ4+yKzTEnxhUZvnqzeFEf1cvIU3Fx9PLmvrQ50cE28AdNu749WOUyjq/eZCFC1rmY6KyThU 4ng49S+iqCrUiIIF+McgjbuVPRvy0M9eYi9HpVOduV7XEI2zrRLpID0ueVwo/j6XePsofLvk/5J/xT9S 8Ge6wgVNQzkO47eLi2VEPf5OXRopBaSLFZ1SPIgBVumlSnPgLfdNVOirJjhqMyADZrXgoAw3c+YTqRhs RDAhtPKx90Qtw643eLEi/1ujz9ZxB6yzTvFYnh05eaM+N08QVlEJcS+z84vqnY6/+8746T6Ct/tDrLdF CNVvveSEPVCujbE6LI6pzAnNuHWZoFYoDjANRTDuS8m3LY3mcC24cTJnNTt7a/hF6IsUj0ygfVctkpAT XvW9p1m4p6BpYmXFSP6w0nMvKnHd+Uy2R3qykk/1R6YoZbaG9dM3LrAqqAILkYNucL32xZCbSSKX6HIQ tZ0WMAfTubYXLsDnAZCLeph1P+fjnkbgrpizkQg==",
"userName" : "username"
}

Process

When request is received by the emCA service, we will decrypt the request JSON Object with the same AES key that is shared with the client. After successful decryption, request JSON object (Signed serial number + Username + Password + remarks) is retrieved.
First the emCA service will validate username and password and check if the IP Address used for request and registered with the user are same.
If it is same then signed data (signature) is validated by checking whether serial number is signed by pfx which is registered for the specific user.
If validation fails at any point in processing the request, the emCA service will throw error /failure message.

Response Parameters

Parameter

Data Type

Description

response

String

Returns JSON Object

JSON Object Contains below parameters

Parameter

Data Type

Description

status

String

Returns Status of the request as success if certificate revocation is successful.

Returns status of the request as failure if authentication fails or unregistered user tries to call the API.

result

String

Returns

In case of success: “Certificate reinstated successfully” message will be displayed.

In case of failure: error message will be displayed.

subscriberId

String

Returns Subscriber Id.

requestId

String

Returns Request ID null.

Response JSON Format

Sample:
      Success:
      Response Body(Is Manual Authorization Enabled is “not“ checked from emCA)
     {
     "status":"success",
     "result":"Reinstated Successfully"
      “subscriberId”:”XXX”
     "requestId": null,
     “aliasname”:null
     }							
      Failure: 
    {
    "status":"failure",
    "result":"<Error message>"
    “subscriberId”:null
    "requestId": null,
    “aliasname”:null
     }

Error Messages

Error Message

Description

Invalid Request

If the user certificate has already been reinstated or if there is no certificate available for the requested certificate serial number.

Signature verification failed

If signature parameter (certificate serial number) contains invalid certificate serial number.