cdns/name/{{name}}/dnsseckeys
GET
Gets a list of DNSSEC keys for CDN and all associated Delivery Services. Before returning response to user, this will make sure DNSSEC keys for all Delivery Services exist and are not expired. If they don’t exist or are expired, they will be (re-)generated.
- Auth. Required
Yes
- Roles Required
“admin”
- Response Type
Object
Request Structure
Name |
Description |
---|---|
name |
The name of the CDN for which keys will be fetched |
Response Structure
- name
The name of the CDN or Delivery Service to which the enclosed keys belong
- zsk
The short-term ZSK
- expirationDate
A Unix epoch timestamp (in seconds) representing the date and time whereupon the key will expire
- inceptionDate
A Unix epoch timestamp (in seconds) representing the date and time when the key was created
- name
The name of the domain for which this key will be used
- private
Encoded private key
- public
Encoded public key
- ttl
The time for which the key should be trusted by the client
- ksk
The long-term KSK
- dsRecord
An optionally present object containing information about the algorithm used to generate the key
- algorithm
The name of the algorithm used to generate the key
- digest
A hash of the DNSKEY record
- digestType
The type of hash algorithm used to create the value of
digest
- expirationDate
A Unix epoch timestamp (in seconds) representing the date and time whereupon the key will expire
- inceptionDate
A Unix epoch timestamp (in seconds) representing the date and time when the key was created
- name
The name of the domain for which this key will be used
- private
Encoded private key
- public
Encoded public key
- ttl
The time for which the key should be trusted by the client
{ "response": {
"cdn1": {
"zsk": {
"ttl": "60",
"inceptionDate": "1426196750",
"private": "zsk private key",
"public": "zsk public key",
"expirationDate": "1428788750",
"name": "foo.kabletown.com."
},
"ksk": {
"name": "foo.kabletown.com.",
"expirationDate": "1457732750",
"public": "ksk public key",
"private": "ksk private key",
"inceptionDate": "1426196750",
"ttl": "60",
"dsRecord": {
"algorithm": "5",
"digestType": "2",
"digest": "abc123def456"
}
}
},
"ds-01": {
"zsk": {
"ttl": "60",
"inceptionDate": "1426196750",
"private": "zsk private key",
"public": "zsk public key",
"expirationDate": "1428788750",
"name": "ds-01.foo.kabletown.com."
},
"ksk": {
"name": "ds-01.foo.kabletown.com.",
"expirationDate": "1457732750",
"public": "ksk public key",
"private": "ksk private key",
"inceptionDate": "1426196750"
}
}
}}
DELETE
Delete DNSSEC keys for a CDN and all associated Delivery Services.
- Auth. Required
Yes
- Roles Required
“admin”
- Response Type
Object (string)
Request Structure
Name |
Description |
---|---|
name |
The name of the CDN for which DNSSEC keys will be deleted |
Response Structure
{
"response": "Successfully deleted dnssec keys for test"
}