Product limits

GET https://www.digicert.com/services/v2/container/{{container-id}}/product-limits

Use this endpoint to get information about the limits and settings for a container's enabled products.

Replace {{container_id}} in the URL with the ID of a container in your account. To get a list of container IDs, use the List containers endpoint.

Example requests and responses

Example 1. cURL

curl -X GET 'https://www.digicert.com/services/v2/container/{{container-id}}/product-limits' \
-H 'X-DC-DEVKEY: {{api_key}}' \
-H 'Content-Type: application/json'

Example 2. Python

import requests

url = "https://www.digicert.com/services/v2/container/{{container_id}}/product-limits"

payload = {}
headers = {
  'X-DC-DEVKEY': {{api_key}},
  'Content-Type': 'application/json'
}

response = requests.request("GET", url, headers=headers, data = payload)

print(response.text.encode('utf8'))

Example 3. NodeJS

var request = require('request');
var options = {
  'method': 'GET',
  'url': 'https://www.digicert.com/services/v2/container/{{container_id}}/product-limits',
  'headers': {
    'X-DC-DEVKEY': {{api_key}},
    'Content-Type': 'application/json'
  }
};
request(options, function (error, response) { 
  if (error) throw new Error(error);
  console.log(response.body);
});

Example 4. Go

package main

import (
  "fmt"
  "net/http"
  "io/ioutil"
)

func main() {

  url := "https://www.digicert.com/services/v2/container/{{container_id}}/product-limits"
  method := "GET"

  client := &http.Client {
  }
  req, err := http.NewRequest(method, url, nil)

  if err != nil {
    fmt.Println(err)
  }
  req.Header.Add("X-DC-DEVKEY", {{api_key}})
  req.Header.Add("Content-Type", "application/json")

  res, err := client.Do(req)
  defer res.Body.Close()
  body, err := ioutil.ReadAll(res.Body)

  fmt.Println(string(body))
}

Example 5. 200 OK

{
    "is_limited": true,
    "product_limits": [
     ...
        {
          "container_id": 406222,
          "role_id": 0,
          "product_name_id": "ssl_basic",
          "allowed_lifetimes": [
            "1"
          ],
          "allowed_order_lifetimes": [
            "2"
          ],
          "allow_auto_renew": true,
          "allow_auto_reissue": true,
          "allowed_wildcards": true
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_flex",
            "allowed_hashes": [
                "sha256",
                "sha384",
                "sha512"
            ],
            "allowed_intermediates": [
                "BFF28BD4075C8D9A",
                "EEFDCC678DFC4638",
                "5FD8CD75D06A7688",
                "01WC0UXVLGJWL1GI"
            ],
            "allow_auto_renew": true,
            "allow_auto_reissue": true,
            "default_intermediate": "5FD8CD75D06A7688",
            "allowed_wildcards": true,
            "ct_log_option": "per_cert"
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_multi_domain",
            "allow_auto_renew": true,
            "allow_auto_reissue": true,
            "ct_log_option": "per_cert"
        },
        {
            "container_id": 406222,
            "role_id": 0,
            "product_name_id": "ssl_securesite_pro",
            "allow_auto_renew": true,
            "allow_auto_reissue": true,
            "default_intermediate": "BFF28BD4075C8D9A",
            "allowed_wildcards": true,
            "ct_log_option": "per_cert"
        },
    ...
    ]
}

Example 6. 200 OK (No limits)

{
    "is_limited": false
}

Example 7. 200 OK (Limits in other containers)

{
    "is_limited": false,
    "limited_container_ids": [
        "94163",
        "97665"
    ]
}

Response parameters

Name	Type	Description
is_limited	boolean	Returns `true` if an administrator has set custom limits for the container's enabled products. Otherwise, `false`.
limited_container_ids	array	List of IDs for child containers with product limits. Only returned if the queried container is the parent of other containers that have product limits.
product_limits	array	List of objects with information about the limits for the container's enabled products. Only returned if `is_limited` is `true`.
.. container_id	integer	ID of the container to which the limits apply.
.. role_id	integer	ID of the access role to which the limits apply. Possible values: See Glossary - Access roles. If `0`, the limits apply to all users in the account, regardless of their access role.
.. product_name_id	string	Product identifier for the type of certificate to which the limits apply. Possible values: See Glossary - Product identifiers.
.. allowed_hashes	array	List of IDs for each hash type allowed for the product. Possible values: See Glossary - Hash types. Only returned if an administrator has customized the allowed hash types for the product.
.. allowed_intermediates	array	List of IDs for the issuing intermediate certificate authority (ICA) certificates that users with the given `container_id` and `role_id` assignment can select when ordering the product. To see which ICA an ID corresponds to, use the Product list endpoint (see `allowed_ca_certs`). If the Product limits endpoint does not return a list of `allowed_intermediates` for a product that supports ICA selection, and if ICA selection is enabled for the account, then certificate requesters can select any ICA from the list of `allowed_ca_certs` that we return for the product in the Product list response. Learn more about ICA certificate chain selection feature for public TLS certificates.
.. allowed_lifetimes	array	List of numbers. Each number is a certificate validity period (in years) that users with the corresponding container and user role assignment can request for the product. This array is only returned if an administrator has customized the allowed validity periods for the product.
.. allowed_order_lifetimes	array	List of numbers. Each number is an order validity period (in years) that users with the corresponding container and role assignment can request for the product. This list is only returned if an administrator has customized the order validity periods that users with the corresponding container and role assignment can request for the product. If there are no custom limits, users can request certificates using any order validity period the product supports. To see the full range of order validity years each product supports, see the `allowed_order_validity_years` array in the Product list response.
.. allow_auto_renew	boolean	If `true`, automatic certificate renewal requests (auto-renew) can be enabled for the product. Otherwise, `false`.
.. allow_auto_reissue	boolean	If `true`, automatic certificate reissue requests (auto-reissue) can be enabled for the product. Otherwise, `false`.
.. default_intermediate	string	ID of the default issuing ICA for the product. Not returned for all product types.
.. allowed_wildcards	boolean	If `true`, wildcard SANs are allowed for the product. Not returned for all product types.
.. ct_log_option	string	The default certificate transparency (CT) logging option for the product. Only returned for public TLS products. Possible values: `per_cert` (default) – Allow certificate requesters to select public CT logging preferences.Note: To disable CT logging for certificates that you order through the through the API, pass a value of `true` for the `disable_ct` parameter when you submit the order request. `always` – Always log certificates to CT logs. `never` – Never log certificates to CT logs. Note: This parameter is only returned if an administrator in your account has customized the CT logging options for a public TLS product.

In this section: