API enhancement #41

0xdiba · 2015-07-16T18:23:29Z

Provide an API that can be queried and provide direct results to the caller.

jvehent · 2015-08-03T03:08:46Z

A few endpoints to start with. All endpoints must follow CRUD methodology and return intelligible HTTP error codes.

POST /api/v1/scan?target=example.net
perform a full scan of target https://example.net
GET /api/v1/results?target=example.net
retrieve a JSON document from the database with the results for example.net. If nothing is found, return a 404.
GET /api/v1/certificate?target=example.net&raw=false
returns a JSON of the interpreted certificate of example.net (or a 404). If &raw=true is set, return the raw base64 as plain text (no json).
GET /api/v1/search?sha1=abcdef&show=child&limit=100&offset=300
This would be a more complex search API that would be extended in the future. In the example above, we're listing the children of a root or intermediate cert that has sha1 abcdef, only returning 100 results, and skipping the first 300, for pagination. That type of query would be used by the platform security team to list the certificates impacted by revoking a given intermediate cert, for example via OneCRL. (cc @mozmark).

jvehent · 2015-08-03T03:09:40Z

On the authentication side: all API calls should require an oauth2 token for now. We can decide to open some endpoints publicly in the future.

jvehent · 2015-12-03T21:51:34Z

Let's close this for now and create separate issues for specific API endpoints and improvements.

0xdiba added bug enhancement labels Jul 16, 2015

0xdiba added this to the Minion Integration milestone Jul 16, 2015

jvehent closed this as completed Dec 3, 2015

Provide feedback