Copyright	(c) 2013-2021 Brendan Hay
License	Mozilla Public License, v. 2.0.
Maintainer	Brendan Hay <brendan.g.hay+amazonka@gmail.com>
Stability	auto-generated
Portability	non-portable (GHC extensions)
Safe Haskell	None

Amazonka.IoT.CreateCertificateFromCsr

Contents

Creating a Request
Request Lenses
Destructuring the Response
Response Lenses

Description

Creates an X.509 certificate using the specified certificate signing request.

Note: The CSR must include a public key that is either an RSA key with a length of at least 2048 bits or an ECC key from NIST P-256 or NIST P-384 curves.

Note: Reusing the same certificate signing request (CSR) results in a distinct certificate.

Requires permission to access the CreateCertificateFromCsr action.

You can create multiple certificates in a batch by creating a directory, copying multiple .csr files into that directory, and then specifying that directory on the command line. The following commands show how to create a batch of certificates given a batch of CSRs.

Assuming a set of CSRs are located inside of the directory my-csr-directory:

On Linux and OS X, the command is:

$ ls my-csr-directory/ | xargs -I {} aws iot create-certificate-from-csr --certificate-signing-request file://my-csr-directory/{}

This command lists all of the CSRs in my-csr-directory and pipes each CSR file name to the aws iot create-certificate-from-csr Amazon Web Services CLI command to create a certificate for the corresponding CSR.

The aws iot create-certificate-from-csr part of the command can also be run in parallel to speed up the certificate creation process:

$ ls my-csr-directory/ | xargs -P 10 -I {} aws iot create-certificate-from-csr --certificate-signing-request file://my-csr-directory/{}

On Windows PowerShell, the command to create certificates for all CSRs in my-csr-directory is:

ls -Name my-csr-directory | %{aws iot create-certificate-from-csr

-certificate-signing-request file://my-csr-directory/$_}

On a Windows command prompt, the command to create certificates for all CSRs in my-csr-directory is:

forfiles \/p my-csr-directory \/c \"cmd \/c aws iot

create-certificate-from-csr --certificate-signing-request file://@path"

Synopsis

Creating a Request

data CreateCertificateFromCsr Source #

The input for the CreateCertificateFromCsr operation.

See: newCreateCertificateFromCsr smart constructor.

Constructors

CreateCertificateFromCsr'
Fields setAsActive :: Maybe Bool Specifies whether the certificate is active. certificateSigningRequest :: Text The certificate signing request (CSR).

Instances

Instances details

Eq CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods (==) :: CreateCertificateFromCsr -> CreateCertificateFromCsr -> Bool # (/=) :: CreateCertificateFromCsr -> CreateCertificateFromCsr -> Bool #
Read CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods readsPrec :: Int -> ReadS CreateCertificateFromCsr # readList :: ReadS [CreateCertificateFromCsr] # readPrec :: ReadPrec CreateCertificateFromCsr # readListPrec :: ReadPrec [CreateCertificateFromCsr] #
Show CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods showsPrec :: Int -> CreateCertificateFromCsr -> ShowS # show :: CreateCertificateFromCsr -> String # showList :: [CreateCertificateFromCsr] -> ShowS #
Generic CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Associated Types type Rep CreateCertificateFromCsr :: Type -> Type # Methods from :: CreateCertificateFromCsr -> Rep CreateCertificateFromCsr x # to :: Rep CreateCertificateFromCsr x -> CreateCertificateFromCsr #
NFData CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods rnf :: CreateCertificateFromCsr -> () #
Hashable CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods hashWithSalt :: Int -> CreateCertificateFromCsr -> Int # hash :: CreateCertificateFromCsr -> Int #
ToJSON CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods toJSON :: CreateCertificateFromCsr -> Value # toEncoding :: CreateCertificateFromCsr -> Encoding # toJSONList :: [CreateCertificateFromCsr] -> Value # toEncodingList :: [CreateCertificateFromCsr] -> Encoding #
AWSRequest CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Associated Types type AWSResponse CreateCertificateFromCsr # Methods request :: CreateCertificateFromCsr -> Request CreateCertificateFromCsr # response :: MonadResource m => Logger -> Service -> Proxy CreateCertificateFromCsr -> ClientResponse ClientBody -> m (Either Error (ClientResponse (AWSResponse CreateCertificateFromCsr))) #
ToHeaders CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods toHeaders :: CreateCertificateFromCsr -> [Header] #
ToPath CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods toPath :: CreateCertificateFromCsr -> ByteString #
ToQuery CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods toQuery :: CreateCertificateFromCsr -> QueryString #
type Rep CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr type Rep CreateCertificateFromCsr = D1 ('MetaData "CreateCertificateFromCsr" "Amazonka.IoT.CreateCertificateFromCsr" "libZSservicesZSamazonka-iotZSamazonka-iot" 'False) (C1 ('MetaCons "CreateCertificateFromCsr'" 'PrefixI 'True) (S1 ('MetaSel ('Just "setAsActive") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool)) :*: S1 ('MetaSel ('Just "certificateSigningRequest") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Text)))
type AWSResponse CreateCertificateFromCsr Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr type AWSResponse CreateCertificateFromCsr = CreateCertificateFromCsrResponse

newCreateCertificateFromCsr Source #

Arguments

:: Text	`$sel:certificateSigningRequest:CreateCertificateFromCsr'`
-> CreateCertificateFromCsr

Create a value of CreateCertificateFromCsr with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:setAsActive:CreateCertificateFromCsr', createCertificateFromCsr_setAsActive - Specifies whether the certificate is active.

$sel:certificateSigningRequest:CreateCertificateFromCsr', createCertificateFromCsr_certificateSigningRequest - The certificate signing request (CSR).

Request Lenses

createCertificateFromCsr_setAsActive :: Lens' CreateCertificateFromCsr (Maybe Bool) Source #

Specifies whether the certificate is active.

createCertificateFromCsr_certificateSigningRequest :: Lens' CreateCertificateFromCsr Text Source #

The certificate signing request (CSR).

Destructuring the Response

data CreateCertificateFromCsrResponse Source #

The output from the CreateCertificateFromCsr operation.

See: newCreateCertificateFromCsrResponse smart constructor.

Constructors

CreateCertificateFromCsrResponse'
Fields certificatePem :: Maybe Text The certificate data, in PEM format. certificateArn :: Maybe Text The Amazon Resource Name (ARN) of the certificate. You can use the ARN as a principal for policy operations. certificateId :: Maybe Text The ID of the certificate. Certificate management operations only take a certificateId. httpStatus :: Int The response's http status code.

Instances

Instances details

Eq CreateCertificateFromCsrResponse Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods (==) :: CreateCertificateFromCsrResponse -> CreateCertificateFromCsrResponse -> Bool # (/=) :: CreateCertificateFromCsrResponse -> CreateCertificateFromCsrResponse -> Bool #
Read CreateCertificateFromCsrResponse Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods readsPrec :: Int -> ReadS CreateCertificateFromCsrResponse # readList :: ReadS [CreateCertificateFromCsrResponse] # readPrec :: ReadPrec CreateCertificateFromCsrResponse # readListPrec :: ReadPrec [CreateCertificateFromCsrResponse] #
Show CreateCertificateFromCsrResponse Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods showsPrec :: Int -> CreateCertificateFromCsrResponse -> ShowS # show :: CreateCertificateFromCsrResponse -> String # showList :: [CreateCertificateFromCsrResponse] -> ShowS #
Generic CreateCertificateFromCsrResponse Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Associated Types type Rep CreateCertificateFromCsrResponse :: Type -> Type # Methods from :: CreateCertificateFromCsrResponse -> Rep CreateCertificateFromCsrResponse x # to :: Rep CreateCertificateFromCsrResponse x -> CreateCertificateFromCsrResponse #
NFData CreateCertificateFromCsrResponse Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr Methods rnf :: CreateCertificateFromCsrResponse -> () #
type Rep CreateCertificateFromCsrResponse Source #
Instance details Defined in Amazonka.IoT.CreateCertificateFromCsr type Rep CreateCertificateFromCsrResponse = D1 ('MetaData "CreateCertificateFromCsrResponse" "Amazonka.IoT.CreateCertificateFromCsr" "libZSservicesZSamazonka-iotZSamazonka-iot" 'False) (C1 ('MetaCons "CreateCertificateFromCsrResponse'" 'PrefixI 'True) ((S1 ('MetaSel ('Just "certificatePem") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :: S1 ('MetaSel ('Just "certificateArn") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text))) :: (S1 ('MetaSel ('Just "certificateId") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Text)) :*: S1 ('MetaSel ('Just "httpStatus") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 Int))))

newCreateCertificateFromCsrResponse Source #

Arguments

:: Int	`$sel:httpStatus:CreateCertificateFromCsrResponse'`
-> CreateCertificateFromCsrResponse

Create a value of CreateCertificateFromCsrResponse with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:certificatePem:CreateCertificateFromCsrResponse', createCertificateFromCsrResponse_certificatePem - The certificate data, in PEM format.

$sel:certificateArn:CreateCertificateFromCsrResponse', createCertificateFromCsrResponse_certificateArn - The Amazon Resource Name (ARN) of the certificate. You can use the ARN as a principal for policy operations.

$sel:certificateId:CreateCertificateFromCsrResponse', createCertificateFromCsrResponse_certificateId - The ID of the certificate. Certificate management operations only take a certificateId.

$sel:httpStatus:CreateCertificateFromCsrResponse', createCertificateFromCsrResponse_httpStatus - The response's http status code.

Response Lenses

createCertificateFromCsrResponse_certificatePem :: Lens' CreateCertificateFromCsrResponse (Maybe Text) Source #

The certificate data, in PEM format.

createCertificateFromCsrResponse_certificateArn :: Lens' CreateCertificateFromCsrResponse (Maybe Text) Source #

The Amazon Resource Name (ARN) of the certificate. You can use the ARN as a principal for policy operations.

createCertificateFromCsrResponse_certificateId :: Lens' CreateCertificateFromCsrResponse (Maybe Text) Source #

The ID of the certificate. Certificate management operations only take a certificateId.

createCertificateFromCsrResponse_httpStatus :: Lens' CreateCertificateFromCsrResponse Int Source #

The response's http status code.