Data Source: oci_waas_certificates

This data source provides the list of Certificates in Oracle Cloud Infrastructure Web Application Acceleration and Security service.

Gets a list of SSL certificates that can be used in a WAAS policy.

Example Usage

data "oci_waas_certificates" "test_certificates" {
	#Required
	compartment_id = var.compartment_id

	#Optional
	display_names = var.certificate_display_names
	ids = var.certificate_ids
	states = var.certificate_states
	time_created_greater_than_or_equal_to = var.certificate_time_created_greater_than_or_equal_to
	time_created_less_than = var.certificate_time_created_less_than
}

Argument Reference

The following arguments are supported:

• compartment_id - (Required) The OCID of the compartment. This number is generated when the compartment is created.
• display_names - (Optional) Filter certificates using a list of display names.
• ids - (Optional) Filter certificates using a list of certificates OCIDs.
• states - (Optional) Filter certificates using a list of lifecycle states.
• time_created_greater_than_or_equal_to - (Optional) A filter that matches certificates created on or after the specified date-time.
• time_created_less_than - (Optional) A filter that matches certificates created before the specified date-time.

Attributes Reference

The following attributes are exported:

• certificates - The list of certificates.

Certificate Reference

The following attributes are exported:

• certificate_data - The data of the SSL certificate.
• compartment_id - The OCID of the SSL certificate’s compartment.
• defined_tags - Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
• display_name - The user-friendly name of the SSL certificate.
• extensions - Additional attributes associated with users or public keys for managing relationships between Certificate Authorities.
  • is_critical - The critical flag of the extension. Critical extensions must be processed, non-critical extensions can be ignored.
  • name - The certificate extension name.
  • value - The certificate extension value.
• freeform_tags - Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
• id - The OCID of the SSL certificate.
• is_trust_verification_disabled - This indicates whether trust verification was disabled during the creation of SSL certificate. If true SSL certificate trust verification was disabled and this SSL certificate is most likely self-signed.
• issued_by -
• issuer_name - The issuer of the certificate.
  • common_name - The Certificate Authority (CA) name.
  • country - ISO 3166-1 alpha-2 code of the country where the organization is located. For a list of codes, see ISO’s website.
  • email_address - The email address of the server’s administrator.
  • locality - The city in which the organization is located.
  • organization - The organization name.
  • organizational_unit - The field to differentiate between divisions within an organization.
  • state_province - The province where the organization is located.
• public_key_info - Information about the public key and the algorithm used by the public key.
  • algorithm - The algorithm identifier and parameters for the public key.
  • exponent - The private key exponent.
  • key_size - The number of bits in a key used by a cryptographic algorithm.
• serial_number - A unique, positive integer assigned by the Certificate Authority (CA). The issuer name and serial number identify a unique certificate.
• signature_algorithm - The identifier for the cryptographic algorithm used by the Certificate Authority (CA) to sign this certificate.
• state - The current lifecycle state of the SSL certificate.
• subject_name - The entity to be secured by the certificate.
  • common_name - The fully qualified domain name used for DNS lookups of the server.
  • country - ISO 3166-1 alpha-2 code of the country where the organization is located. For a list of codes, see ISO’s website.
  • email_address - The email address of the server’s administrator.
  • locality - The city in which the organization is located.
  • organization - The organization name.
  • organizational_unit - The field to differentiate between divisions within an organization.
  • state_province - The province where the organization is located.
• time_created - The date and time the certificate was created, expressed in RFC 3339 timestamp format.
• time_not_valid_after - The date and time the certificate will expire, expressed in RFC 3339 timestamp format.
• time_not_valid_before - The date and time the certificate will become valid, expressed in RFC 3339 timestamp format.
• version - The version of the encoded certificate.