Attributes |
Name | Required | Request-time | Type | Description |
certrequest | false | true | java.lang.String | Optional attribute, the certificate request. The body of the tag will be taken if omitted. |
requesttype | false | true | java.lang.String | The request type. 'PKCS10' for PKCS#10 type request, 'NS' for Netscape type requests. Default is 'PKCS10' |
signaturealgorithm | false | true | java.lang.String | Signature algorithm. Default is 'MD5WithRSAEncryption' |
subjectdn | true | true | java.lang.String | The subject DN string. e.g. 'C=BE, O=NET, OU=Sourceforge, CN=CertAuthority, E=info@certauthority.org' Important: if you want to use the certificate for SSL server purposes you must specify the full server & domain name as the 'CN' entry (e.g. '... CN=www.oracle.com ...') |
validity | false | true | java.lang.Long | The validity of the certificate in days. Default is 365 |
isca | false | true | java.lang.Boolean | Defines this certificate as a CA (Certificate Authority). Default is false. If you want to use this certificate as intermediate certificate, you have to set this parameter to true |
crldisturi | false | true | java.lang.String | CRL (Certificate Revocation List) distribution URI extension. Default is none |
netscapeextensions | false | true | java.lang.String | Adds Netscape certificate extensions to the certificate. If this certificate must work with Netscape products (or Mozilla), you have to specify one of the following parameters:

 'CA': this certificate can be used as SSL Certificate Authority, Email Signer and Object Signer
 'SERVER': this certificate can be used as SSL Server.
 'CLIENT': this certificate can be used as SSL Client, Email Recipient and Object Signer
 'ALL': this certificate can be used for all above purposes. |
signfile | true | true | java.lang.String | The PKCS#12 (P12) keystore where the CA signing certificate is stored |
signentry | true | true | java.lang.String | The PKCS#12 (P12) keystore entry name for the CA signing certificate |
signpassword | true | true | java.lang.StringBuffer | The PKCS#12 (P12) keystore signing password |
scope | false | false | java.lang.String | Scope of the return variables. Can be 'page', 'session', 'request' or 'application'. Default is 'page' |
serialnumber | true | true | java.lang.String | Variable to store the certificate serial number |
fingerprint | true | true | java.lang.String | Variable to store the certificate fingerprint (SHA-1) |
certificate | true | true | java.lang.String | Variable to store the certificate as a PEM formatted string |