Dictionaries

Here is the list of available dictionary keys to use in computation rules and template strings, depending on the usage.

Certificate Authority

This dictionary regroups the information of a Certificate Authority.

Key	Description	Type
ca.name	The technical name of the ca	Single value
ca.type	The type of ca (managed or external)	Single value
ca.<signer_field>	The values from the signer	Signer dictionary

Key

Description

Type

ca.name

The technical name of the ca

Single value

ca.type

The type of ca (managed or external)

Single value

ca.<signer_field>

The values from the signer

Signer dictionary

OCSP Signer

This dictionary regroups the information of an OCSP signer.

Key	Description	Type
ocsp.name	The technical name of the ocsp signer	Single value
ocsp.<signer_field>	The values from the signer	Signer dictionary

Key

Description

Type

ocsp.name

The technical name of the ocsp signer

Single value

ocsp.<signer_field>

The values from the signer

Signer dictionary

Timestamping Authority

This dictionary regroups the information of a Timestamping authority.

Key	Description	Type
tsa.name	The technical name of the timestamping signer	Single value
tsa.<signer_field>	The values from the signer	Signer dictionary

Key

Description

Type

tsa.name

The technical name of the timestamping signer

Single value

tsa.<signer_field>

The values from the signer

Signer dictionary

CRL

This dictionary regroups the information of a CRL.

Key	Description	Type
crl.ca.name	The technical name of the ca that signed the CRL	Single value
crl.ca.type	The type of the ca that signed the CRL	Single value
crl.number	The CRL number	Single value
crl.this_update	The value of this_update	Single value
crl.next_update	The value of next_update	Single value
crl.next_refresh	The value of next_refresh	Single value
crl.size	The number of certificates in the crl	Single value
crl.eidas	"true" if the CRL is eidas compliant, else "false"	Single value
crl.error	The value of the error if the CRL generation failed	Single value

Key

Description

Type

crl.ca.name

The technical name of the ca that signed the CRL

Single value

crl.ca.type

The type of the ca that signed the CRL

Single value

crl.number

The CRL number

Single value

crl.this_update

The value of this_update

Single value

crl.next_update

The value of next_update

Single value

crl.next_refresh

The value of next_refresh

Single value

crl.size

The number of certificates in the crl

Single value

crl.eidas

"true" if the CRL is eidas compliant, else "false"

Single value

crl.error

The value of the error if the CRL generation failed

Single value

Credentials

This dictionary regroups the information of a Credential.

Key	Description	Type
credentials.name	The credentials name	Single value
credentials.description	The credentials description	Single value
credentials.expires	The credentials expiration date	Single value
credentials.type	The credentials type	Single value
credentials.target	The credentials target	Single value

Key

Description

Type

credentials.name

The credentials name

Single value

credentials.description

The credentials description

Single value

credentials.expires

The credentials expiration date

Single value

credentials.type

The credentials type

Single value

credentials.target

The credentials target

Single value

In a rest notification, headers can be enriched using the credentials values:

Key	Description	Type
credentials.login	The credentials login value for Password Credentials	Single value
credentials.password	The credentials password value for Password Credentials	Single value
credentials.secret	The credentials secret value for Raw Credentials	Single value

Key

Description

Type

credentials.login

The credentials login value for Password Credentials

Single value

credentials.password

The credentials password value for Password Credentials

Single value

credentials.secret

The credentials secret value for Raw Credentials

Single value

License

This dictionary regroups the information of the Stream license.

Key	Description	Type
license.expires	The license expiration date	Single value
license.modules	The enabled modules	Single value

Key

Description

Type

license.expires

The license expiration date

Single value

license.modules

The enabled modules

Single value

Trigger

This dictionary regroups the information of the trigger that failed for trigger that run on the trigger event on_trigger_error.

Key	Description	Type
trigger.name	The name of the trigger that failed	Single value
trigger.type	The type of the trigger that failed	Single value
trigger.event	The event the trigger that failed was running one	Single value
trigger.error	The error that occurred on the trigger that failed	Single value

Key

Description

Type

trigger.name

The name of the trigger that failed

Single value

trigger.type

The type of the trigger that failed

Single value

trigger.event

The event the trigger that failed was running one

Single value

trigger.error

The error that occurred on the trigger that failed

Single value

Sub dictionaries

These dictionary cannot be used alone but can be completed with one of the other ones. For example, a valid key is:

ocsp.dn.cn.1

Signer dictionary

Key Description Type

Key	Description	Type
dn	The full dn of the certificate in TYPE=value form	Single valued
dn.<dn field type>	All values of subject field of type `dn field type`	Multi valued
dn.<dn field type>.<index>	Value of subject field of type `dn field type` at index `index`	Single value
sans.<sans field type>	All values of subject field of type `sans field type`	Multi valued
sans.<sans field type>.<index>	Value of subject field of type `sans field type` at index `index`	Single value
issuer	The full dn of the issuer of the certificate in TYPE=value form	Single valued
not_before	Value of the start date of the certificate	Single value
not_after	Value of the expiration date of the certificate	Single value
serial	The certificate serial	Single valued
thumbprint	The certificate thumbprint	Single valued
public_key_thumbprint	The certificate public key thumbprint	Single valued
key_type	The certificate key type	Single valued
signing_algorithm	The certificate signing algorithm	Single valued
pem	The PEM encoded certificate	Single valued

The full dn of the certificate in TYPE=value form

Single valued

dn.<dn field type>

All values of subject field of type dn field type

Multi valued

dn.<dn field type>.<index>

Value of subject field of type dn field type at index index

Single value

sans.<sans field type>

All values of subject field of type sans field type

Multi valued

sans.<sans field type>.<index>

Value of subject field of type sans field type at index index

Single value

issuer

The full dn of the issuer of the certificate in TYPE=value form

Single valued

not_before

Value of the start date of the certificate

Single value

not_after

Value of the expiration date of the certificate

Single value

serial

The certificate serial

Single valued

thumbprint

The certificate thumbprint

Single valued

public_key_thumbprint

The certificate public key thumbprint

Single valued

key_type

The certificate key type

Single valued

signing_algorithm

The certificate signing algorithm

Single valued

pem

The PEM encoded certificate

Single valued

The valid dn field types are: cn, uid, serialnumber, surname, givenname, unstructuredaddress, unstructuredname, e, ou, organizationidentifier, uniqueidentifier, street, st, l, o, c, description, dc.

The valid san field types are: rfc822name, dnsname, uri, ipaddress, othername_upn, othername_guid.

All indexes start at 1