Attestations
Was this helpful?
Was this helpful?
Retrieves a list of all attestation records
Must be set to 'true' to retrieve the list
GET /v1/auth/ratls/attestations/ HTTP/1.1
Host: localhost:8200
Accept: */*
Attestation list retrieved successfully
{
"auth": {},
"data": {
"keys": [
{}
]
}
}
Retrieves detailed information about a specific attestation
Unique workload identifier (must be valid UUID format)
GET /v1/auth/ratls/attestations/{uuid} HTTP/1.1
Host: localhost:8200
Accept: */*
{
"request_id": "text",
"lease_id": "text",
"renewable": true,
"lease_duration": 1,
"data": {
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"updated": 1,
"uuid": "123e4567-e89b-12d3-a456-426614174000"
},
"wrap_info": null,
"warnings": null,
"auth": null
}
Removes a specific attestation record
Unique workload identifier (must be valid UUID format)
DELETE /v1/auth/ratls/attestations/{uuid} HTTP/1.1
Host: localhost:8200
Accept: */*
{
"request_id": "text",
"lease_id": "text",
"renewable": true,
"lease_duration": 1,
"data": {
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"updated": 1,
"uuid": "123e4567-e89b-12d3-a456-426614174000"
},
"wrap_info": null,
"warnings": null,
"auth": null
}
Updates an existing attestation record
Creation timestamp, set by the plugin
Description for this workload
A URL to a webhook that is called with the attestation result
Name for this workload
The target namespace for the auth token after verification
Nonce for the report
Policy for this workload
Request only. The report to verify, encoded as base64
Request only. The update totp for the policy of the workload
Update timestamp, set by the plugin whenever a change is made to the workload
Workload Identifier, generated by the plugin
POST /v1/auth/ratls/attestations HTTP/1.1
Host: localhost:8200
Content-Type: application/json
Accept: */*
Content-Length: 170
{
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"report": "text",
"totp": "text",
"updated": 1,
"uuid": "text"
}
{
"auth": {},
"data": {
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"report": "text",
"totp": "text",
"updated": 1,
"uuid": "text"
}
}
Creates a new attestation record for a workload
Description for this workload
A URL to a webhook that is called with the attestation result
Name for this workload
The target namespace for the auth token after verification
Policy for this workload
PUT /v1/auth/ratls/attestations HTTP/1.1
Host: localhost:8200
Content-Type: application/json
Accept: */*
Content-Length: 87
{
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"policy": "text"
}
{
"request_id": "text",
"lease_id": "text",
"renewable": true,
"lease_duration": 1,
"data": {
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"updated": 1,
"uuid": "123e4567-e89b-12d3-a456-426614174000"
},
"wrap_info": null,
"warnings": null,
"auth": null
}
Updates the nonce value for a specific attestation
Unique workload identifier
Creation timestamp, set by the plugin
Description for this workload
A URL to a webhook that is called with the attestation result
Name for this workload
The target namespace for the auth token after verification
Nonce for the report
Policy for this workload
Request only. The report to verify, encoded as base64
Request only. The update totp for the policy of the workload
Update timestamp, set by the plugin whenever a change is made to the workload
POST /v1/auth/ratls/attestations/{uuid}/nonce HTTP/1.1
Host: localhost:8200
Content-Type: application/json
Accept: */*
Content-Length: 156
{
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"report": "text",
"totp": "text",
"updated": 1
}
{
"request_id": "text",
"lease_id": "text",
"renewable": true,
"lease_duration": 1,
"data": {
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"updated": 1,
"uuid": "123e4567-e89b-12d3-a456-426614174000"
},
"wrap_info": null,
"warnings": null,
"auth": null
}
Submits a new attestation report or verifies an existing one
Unique workload identifier (must be valid UUID format)
Base64 encoded report data
POST /v1/auth/ratls/attestations/{uuid}/report HTTP/1.1
Host: localhost:8200
Content-Type: application/json
Accept: */*
Content-Length: 17
{
"report": "text"
}
{
"auth": {},
"data": {
"created": 1,
"description": "text",
"events": "text",
"name": "text",
"namespace": "text",
"nonce": "text",
"policy": "text",
"report": "text",
"totp": "text",
"updated": 1,
"uuid": "text"
}
}