Product limits

GET
https://www.digicert.com/services/v2/container/{{container_id}}/product-limits

Use this endpoint to get information about the limits and settings for a container's enabled products.

Replace {{container_id}} in the URL with the ID of a container in your account. To get a list of container IDs, use the List containers endpoint.

Example requests and responses

cURL 
curl -X GET 'https://www.digicert.com/services/v2/container/{{container-id}}/product-limits' \
-H 'X-DC-DEVKEY: {{api_key}}' \
-H 'Content-Type: application/json'
Python 
import requests

url = "https://www.digicert.com/services/v2/container/{{container_id}}/product-limits"

payload = {}
headers = {
  'X-DC-DEVKEY': {{api_key}},
  'Content-Type': 'application/json'
}

response = requests.request("GET", url, headers=headers, data = payload)

print(response.text.encode('utf8'))
NodeJS 
var request = require('request');
var options = {
  'method': 'GET',
  'url': 'https://www.digicert.com/services/v2/container/{{container_id}}/product-limits',
  'headers': {
    'X-DC-DEVKEY': {{api_key}},
    'Content-Type': 'application/json'
  }
};
request(options, function (error, response) { 
  if (error) throw new Error(error);
  console.log(response.body);
});
Go 
package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {

  url := "https://www.digicert.com/services/v2/container/{{container_id}}/product-limits"
  method := "GET"

  client := &http.Client {
  }
  req, err := http.NewRequest(method, url, nil)

  if err != nil {
    fmt.Println(err)
  }
  req.Header.Add("X-DC-DEVKEY", {{api_key}})
  req.Header.Add("Content-Type", "application/json")

  res, err := client.Do(req)
  defer res.Body.Close()
  body, err := ioutil.ReadAll(res.Body)

  fmt.Println(string(body))
}
200 OK 
{
    "is_limited": true,
    "product_limits": [
     ...
        {
          "container_id": 406222,
          "role_id": 0,
          "product_name_id": "ssl_basic",
          "allowed_lifetimes": [
            "1"
          ],
          "allowed_order_lifetimes": [
            "2"
          ],
          "allow_auto_renew": true,
          "allow_auto_reissue": true,
          "allowed_wildcards": true
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_flex",
            "allowed_hashes": [
                "sha256",
                "sha384",
                "sha512"
            ],
            "allowed_intermediates": [
                "BFF28BD4075C8D9A",
                "EEFDCC678DFC4638",
                "5FD8CD75D06A7688",
                "01WC0UXVLGJWL1GI"
            ],
            "allow_auto_renew": true,
            "allow_auto_reissue": true,
            "default_intermediate": "5FD8CD75D06A7688",
            "allowed_wildcards": true,
            "ct_log_option": "per_cert"
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_multi_domain",
            "allow_auto_renew": true,
            "allow_auto_reissue": true,
            "ct_log_option": "per_cert"
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_pro",
            "allow_auto_renew": true,
            "allow_auto_reissue": true,
            "default_intermediate": "BFF28BD4075C8D9A",
            "allowed_wildcards": true,
            "ct_log_option": "per_cert"
        },
    ...
    ]
}
200 No limits 
{
    "is_limited": false
}
200 Limits in other containers 
{
    "is_limited": false,
    "limited_container_ids": [
        "94163",
        "97665"
    ]
}

Response parameters

Name Type Description
is_limited boolean Returns true if an administrator has set custom limits for the container's enabled products. Otherwise, false.
limited_container_ids array List of IDs for child containers with product limits.
Only returned if the queried container is the parent of other containers that have product limits.
product_limits array List of objects with information about the limits for the container's enabled products.
Only returned if is_limited is true.
.. container_id integer ID of the container to which the limits apply.
.. role_id integer ID of the access role to which the limits apply.
Possible values: See Glossary - Access roles.
If 0, the limits apply to all users in the account, regardless of their access role.
.. product_name_id string Product identifier for the type of certificate to which the limits apply.
Possible values: See Glossary - Product identifiers.
.. allowed_hashes array List of IDs for each hash type allowed for the product.
Possible values: See Glossary - Hash types.
Only returned if an administrator has customized the allowed hash types for the product.
.. allowed_intermediates array List of IDs for the issuing intermediate certificate authority (ICA) certificates that users with the given container_id and role_id assignment can select when ordering the product. To see which ICA an ID corresponds to, use the Product list endpoint (see allowed_ca_certs).

If the Product limits endpoint does not return a list of allowed_intermediates for a product that supports ICA selection, and if ICA selection is enabled for the account, then certificate requesters can select any ICA from the list of allowed_ca_certs that we return for the product in the Product list response.

Non-flex OV/EV TLS certificates don't support the option to select the issuing ICA certificate. For more information, see ICA certificate chain option.
.. allowed_lifetimes array List of numbers. Each number is a certificate validity period (in years) that users with the corresponding container and user role assignment can request for the product.
This array is only returned if an administrator has customized the allowed validity periods for the product.
.. allowed_order_lifetimes array List of numbers. Each number is an order validity period (in years) that users with the corresponding container and role assignment can request for the product.
This list is only returned if an administrator has customized the order validity periods that users with the corresponding container and role assignment can request for the product. If there are no custom limits, users can request certificates using any order validity period the product supports. To see the full range of order validity years each product supports, see the allowed_order_validity_years array in the Product list response.
.. allow_auto_renew boolean If true, automatic certificate renewal requests (auto-renew) can be enabled for the product. Otherwise, false.
.. allow_auto_reissue boolean If true, automatic certificate reissue requests (auto-reissue) can be enabled for the product. Otherwise, false.
.. default_intermediate string ID of the default issuing ICA for the product.
Not returned for all product types.
.. allowed_wildcards boolean If true, wildcard SANs are allowed for the product.
Not returned for all product types.
.. ct_log_option string The default certificate transparency (CT) logging option for the product. Only returned for public TLS products.
Possible values:
  • per_cert (default) – Allow certificate requesters to select public CT logging preferences.
    Note: To disable CT logging for certificates that you order through the through the API, pass a value of true for the disable_ct parameter when you submit the order request.
  • always – Always log certificates to CT logs.
  • never – Never log certificates to CT logs.
Note: This parameter is only returned if an administrator in your account has customized the CT logging options for a public TLS product.

About

DigiCert is the world's leading provider of scalable TLS/SSL, IoT and PKI solutions for identity and encryption. The most innovative companies, including 89% of the Fortune 500 and 97 of the 100 top global banks, choose DigiCert for its expertise in identity and encryption for web servers and Internet of Things devices. DigiCert supports TLS and other digital certificates for PKI deployments at any scale through its certificate lifecycle management solution, CertCentral®. The company is recognized for its enterprise-grade certificate management platform, fast and knowledgeable customer support, and market-leading security solutions. For the latest DigiCert news and updates, visit digicert.com or follow @digicert.

©2020 DigiCert, Inc. All rights reserved. DigiCert, its logo and CertCentral are registered trademarks of DigiCert, Inc. Norton and the Checkmark Logo are trademarks of NortonLifeLock Inc. used under license. Other names may be trademarks of their respective owners.