Product limits

GET
https://www.digicert.com/services/v2/container/{{container_id}}/product-limits

Use this endpoint to get information about the limits and settings for a container's enabled products.

Replace {{container_id}} in the URL with the ID of a container in your account. To get a list of container IDs, use the List containers endpoint.

Example requests and responses

cURL
curl -X GET 'https://www.digicert.com/services/v2/container/{{container-id}}/product-limits' \
-H 'X-DC-DEVKEY: {{api_key}}' \
-H 'Content-Type: application/json'
Python
import requests

url = "https://www.digicert.com/services/v2/container/{{container_id}}/product-limits"

payload = {}
headers = {
  'X-DC-DEVKEY': {{api_key}},
  'Content-Type': 'application/json'
}

response = requests.request("GET", url, headers=headers, data = payload)

print(response.text.encode('utf8'))
NodeJS
var request = require('request');
var options = {
  'method': 'GET',
  'url': 'https://www.digicert.com/services/v2/container/{{container_id}}/product-limits',
  'headers': {
    'X-DC-DEVKEY': {{api_key}},
    'Content-Type': 'application/json'
  }
};
request(options, function (error, response) { 
  if (error) throw new Error(error);
  console.log(response.body);
});
Go
package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {

  url := "https://www.digicert.com/services/v2/container/{{container_id}}/product-limits"
  method := "GET"

  client := &http.Client {
  }
  req, err := http.NewRequest(method, url, nil)

  if err != nil {
    fmt.Println(err)
  }
  req.Header.Add("X-DC-DEVKEY", {{api_key}})
  req.Header.Add("Content-Type", "application/json")

  res, err := client.Do(req)
  defer res.Body.Close()
  body, err := ioutil.ReadAll(res.Body)

  fmt.Println(string(body))
}
200 OK
{
    "is_limited": true,
    "product_limits": [
     ...
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_flex",
            "allowed_hashes": [
                "sha256",
                "sha384",
                "sha512"
            ],
            "allowed_intermediates": [
                "BFF28BD4075C8D9A",
                "EEFDCC678DFC4638",
                "5FD8CD75D06A7688",
                "01WC0UXVLGJWL1GI"
            ],
            "allow_auto_renew": true,
            "default_intermediate": "5FD8CD75D06A7688",
            "allowed_wildcards": true,
            "ct_log_option": "per_cert"
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_multi_domain",
            "allow_auto_renew": true,
            "ct_log_option": "per_cert"
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_pro",
            "allow_auto_renew": true,
            "default_intermediate": "BFF28BD4075C8D9A",
            "allowed_wildcards": true,
            "ct_log_option": "per_cert"
        },
    ...
    ]
}
200 No limits
{
    "is_limited": false
}
200 Limits in other containers
{
    "is_limited": false,
    "limited_container_ids": [
        "94163",
        "97665"
    ]
}

Response parameters

Name Type Description
is_limited bool Returns true if an administrator has set custom limits for the container's enabled products. Otherwise, false.
limited_container_ids array List of IDs for containers with product limits.
Only returned when is_limited is false and there are other containers in the account that have product limits.
product_limits array List of objects with information about the limits for the container's enabled products.
Only returned if is_limited is true.
.. container_id int ID of the container to which the limits apply.
.. role_id int ID of the access role to which the limits apply.
Possible values: See Glossary - Access roles.
If 0, the limits apply to all users in the account, regardless of their access role.
.. product_name_id string Product identifier for the type of certificate to which the limits apply.
Possible values: See Glossary - Product identifiers.
.. allowed_hashes array List of IDs for each hash type allowed for the product.
Possible values: See Glossary - Hash types.
Only returned if an administrator has customized the allowed hash types for the product.
.. allowed_intermediates array List of IDs for the issuing intermediate certificate authority (ICA) certificates that users can select when ordering the product. To see which ICA an ID is associated with, use the Product list endpoint.

To select the issuing ICA for a public TLS/SSL certificate, ICA selection must be enabled for your account. If the list of allowed_intermediates is not returned for a product that supports ICA selection, certificate requesters can select any ICA from the product's allowed_ca_certs list in the Product list response.

Note: Public DV flex certificates and non-flex TLS certificates don't support the option to select the issuing ICA certificate. For more information, see ICA certificate chain option for public OV and EV flex certificates.

This allowed_intermediates list includes allowed ICA IDs for a given product (meaning, the list of ICAs that an account administrator in CertCentral has placed further limits on). In contrast, the allowed_ca_certs list in the Product list response includes ID and name pairs for all available ICAs for a given product.
.. allowed_lifetimes array List of allowed lifetimes for this type of certificate.
Only returned if an administrator has customized the allowed validity periods for the product.
.. allow_auto_renew bool If true, automatic certificate renewal is allowed for the product. Otherwise, false.
.. default_intermediate string ID of the default issuing ICA for the product.
Not returned for all product types.
.. allowed_wildcards bool If true, wildcard SANs are allowed for the product.
Not returned for all product types.
.. ct_log_option string The default certificate transparency (CT) logging option for the product. Only returned for public TLS products.
Possible values:
  • per_cert (default) – Allow certificate requesters to select public CT logging preferences.
    Note: To disable CT logging for certificates that you order through the through the API, pass a value of true for the disable_ct parameter when you submit the order request.
  • always – Always log certificates to CT logs.
  • never – Never log certificates to CT logs.
Note: This parameter is only returned if an administrator in your account has customized the CT logging options for a public TLS product.