Fetch a certificate signing request (CSR) from a CertificateAuthority that is in state AWAITING_USER_ACTIVATION and is of type SUBORDINATE. The CSR must then be signed by the desired parent Certificate Authority, which could be another CertificateAuthority resource, or could be an on-prem certificate authority. See also certificateAuthorities.activate.
HTTP request
GET https://privateca.googleapis.com/v1/{name=projects/*/locations/*/caPools/*/certificateAuthorities/*}:fetch
The URL uses gRPC Transcoding syntax.
Path parameters
| Parameters | |
|---|---|
name |
Required. The resource name for this Authorization requires the following IAM permission on the specified resource
|
Request body
The request body must be empty.
Response body
Response message for CertificateAuthorityService.FetchCertificateAuthorityCsr.
If successful, the response body contains data with the following structure:
| JSON representation |
|---|
{ "pemCsr": string } |
| Fields | |
|---|---|
pemCsr |
Output only. The PEM-encoded signed certificate signing request (CSR). |
Authorization scopes
Requires the following OAuth scope:
https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.