Stay organized with collections Save and categorize content based on your preferences.
Retrieves the list of all SslCertificate resources, regional and global, available to the specified project.
To prevent failure, Google recommends that you set the returnPartialSuccess parameter to true.
GET https://compute.googleapis.com/compute/v1/projects/{project}/aggregated/sslCertificates
The URL uses gRPC Transcoding syntax.
Path parameters Parametersproject
string
Name of the project scoping this request.
Query parameters ParametersmaxResults
integer (uint32 format)
The maximum number of results per page that should be returned. If the number of available results is larger than maxResults, Compute Engine returns a nextPageToken that can be used to get the next page of results in subsequent list requests. Acceptable values are 0 to 500, inclusive. (Default: 500)
pageToken
string
Specifies a page token to use. Set pageToken to the nextPageToken returned by a previous list request to get the next page of results.
filter
string
A filter expression that filters resources listed in the response. Most Compute resources support two types of filter expressions: expressions that support regular expressions and expressions that follow API improvement proposal AIP-160. These two types of filter expressions cannot be mixed in one request.
If you want to use AIP-160, your expression must specify the field name, an operator, and the value that you want to use for filtering. The value must be a string, a number, or a boolean. The operator must be either =, !=, >, <, <=, >= or :.
For example, if you are filtering Compute Engine instances, you can exclude instances named example-instance by specifying name != example-instance.
The :* comparison can be used to test whether a key has been defined. For example, to find all objects with owner label use:
labels.owner:*
You can also filter nested fields. For example, you could specify scheduling.automaticRestart = false to include instances only if they are not scheduled for automatic restarts. You can use filtering on nested fields to filter based on resource labels.
To filter on multiple expressions, provide each separate expression within parentheses. For example:
(scheduling.automaticRestart = true)
(cpuPlatform = "Intel Skylake")
By default, each expression is an AND expression. However, you can include AND and OR expressions explicitly. For example:
(cpuPlatform = "Intel Skylake") OR
(cpuPlatform = "Intel Broadwell") AND
(scheduling.automaticRestart = true)
If you want to use a regular expression, use the eq (equal) or ne (not equal) operator against a single un-parenthesized expression with or without quotes or against multiple parenthesized expressions. Examples:
fieldname eq unquoted literal fieldname eq 'single quoted literal' fieldname eq "double quoted literal" (fieldname1 eq literal) (fieldname2 ne "literal")
The literal value is interpreted as a regular expression using Google RE2 library syntax. The literal value must match the entire field.
For example, to filter for instances that do not end with name "instance", you would use name ne .*instance.
You cannot combine constraints on multiple fields using regular expressions.
orderBy
string
Sorts list results by a certain order. By default, results are returned in alphanumerical order based on the resource name.
You can also sort results in descending order based on the creation timestamp using orderBy="creationTimestamp desc". This sorts results based on the creationTimestamp field in reverse chronological order (newest result first). Use this to sort resources like operations so that the newest operation is returned first.
Currently, only sorting by name or creationTimestamp desc is supported.
returnPartialSuccess
boolean
Opt-in for partial success behavior which provides partial results in case of failure. The default value is false.
For example, when partial success behavior is enabled, aggregatedList for a single zone scope either returns all resources in the zone or no resources, with an error code.
includeAllScopes
boolean
Indicates whether every visible scope for each scope type (zone, region, global) should be included in the response. For new resource types added after this field, the flag has no effect as new resource types will always include every visible scope for each scope type in response. For resource types which predate this field, if this flag is omitted or false, only scopes of the scope types where the resource type is expected to be found will be included.
serviceProjectNumber
string (int64 format)
The Shared VPC service project id or service project number for which aggregated list request is invoked for subnetworks list-usable api.
Request bodyThe request body must be empty.
Response bodyIf successful, the response body contains data with the following structure:
JSON representation{
"kind": string,
"id": string,
"items": {
string: {
"sslCertificates": [
{
"kind": string,
"id": string,
"creationTimestamp": string,
"name": string,
"description": string,
"selfLink": string,
"certificate": string,
"privateKey": string,
"managed": {
"domains": [
string
],
"status": enum,
"domainStatus": {
string: enum,
...
}
},
"selfManaged": {
"certificate": string,
"privateKey": string
},
"type": enum,
"subjectAlternativeNames": [
string
],
"expireTime": string,
"region": string
}
],
"warning": {
"code": enum,
"message": string,
"data": [
{
"key": string,
"value": string
}
]
}
},
...
},
"nextPageToken": string,
"selfLink": string,
"warning": {
"code": enum,
"message": string,
"data": [
{
"key": string,
"value": string
}
]
},
"unreachables": [
string
]
} Fields kind
string
[Output Only] Type of resource. Always compute#sslCertificateAggregatedList for lists of SSL Certificates.
id
string
[Output Only] Unique identifier for the resource; defined by the server.
items
map (key: string, value: object)
A list of SslCertificatesScopedList resources.
Key: Name of the scope containing this set of SslCertificates.
items.sslCertificates[]
object
sslCertificates.list of SslCertificates contained in this scope.
items.sslCertificates[].kind
string
[Output Only] Type of the resource. Always compute#sslCertificate for SSL certificates.
items.sslCertificates[].id
string (uint64 format)
[Output Only] The unique identifier for the resource. This identifier is defined by the server.
items.sslCertificates[].creationTimestamp
string
[Output Only] Creation timestamp in RFC3339 text format.
items.sslCertificates[].name
string
Name of the resource. Provided by the client when the resource is created. The name must be 1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])? which means the first character must be a lowercase letter, and all following characters must be a dash, lowercase letter, or digit, except the last character, which cannot be a dash.
items.sslCertificates[].description
string
An optional description of this resource. Provide this property when you create the resource.
items.sslCertificates[].selfLink
string
[Output only] Server-defined URL for the resource.
items.sslCertificates[].certificate
string
A value read into memory from a certificate file. The certificate file must be in PEM format. The certificate chain must be no greater than 5 certs long. The chain must include at least one intermediate cert.
items.sslCertificates[].privateKey
string
A value read into memory from a write-only private key file. The private key file must be in PEM format. For security, only insert requests include this field.
items.sslCertificates[].managed
object
Configuration and status of a managed SSL certificate.
items.sslCertificates[].managed.domains[]
string
The domains for which a managed SSL certificate will be generated. Each Google-managed SSL certificate supports up to the maximum number of domains per Google-managed SSL certificate.
items.sslCertificates[].managed.status
enum
[Output only] Status of the managed certificate resource.
items.sslCertificates[].managed.domainStatus
map (key: string, value: enum)
[Output only] Detailed statuses of the domains specified for managed certificate resource.
items.sslCertificates[].selfManaged
object
Configuration and status of a self-managed SSL certificate.
items.sslCertificates[].selfManaged.certificate
string
A local certificate file. The certificate must be in PEM format. The certificate chain must be no greater than 5 certs long. The chain must include at least one intermediate cert.
items.sslCertificates[].selfManaged.privateKey
string
A write-only private key in PEM format. Only insert requests will include this field.
items.sslCertificates[].type
enum
(Optional) Specifies the type of SSL certificate, either "SELF_MANAGED" or "MANAGED". If not specified, the certificate is self-managed and the fields certificate and privateKey are used.
items.sslCertificates[].subjectAlternativeNames[]
string
[Output Only] Domains associated with the certificate via Subject Alternative Name.
items.sslCertificates[].expireTime
string
[Output Only] Expire time of the certificate. RFC3339
items.sslCertificates[].region
string
[Output Only] URL of the region where the regional SSL Certificate resides. This field is not applicable to global SSL Certificate.
items.warning
object
Informational warning which replaces the list of backend services when the list is empty.
items.warning.code
enum
[Output Only] A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
items.warning.message
string
[Output Only] A human-readable description of the warning code.
items.warning.data[]
object
[Output Only] Metadata about this warning in key: value format. For example:
"data": [ { "key": "scope", "value": "zones/us-east1-d" }items.warning.data[].key
string
[Output Only] A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
items.warning.data[].value
string
[Output Only] A warning data value corresponding to the key.
nextPageToken
string
[Output Only] This token allows you to get the next page of results for list requests. If the number of results is larger than maxResults, use the nextPageToken as a value for the query parameter pageToken in the next list request. Subsequent list requests will have their own nextPageToken to continue paging through the results.
selfLink
string
[Output Only] Server-defined URL for this resource.
warning
object
[Output Only] Informational warning message.
warning.code
enum
[Output Only] A warning code, if applicable. For example, Compute Engine returns NO_RESULTS_ON_PAGE if there are no results in the response.
warning.message
string
[Output Only] A human-readable description of the warning code.
warning.data[]
object
[Output Only] Metadata about this warning in key: value format. For example:
"data": [ { "key": "scope", "value": "zones/us-east1-d" }warning.data[].key
string
[Output Only] A key that provides more detail on the warning being returned. For example, for warnings where there are no results in a list request for a particular zone, this key might be scope and the key value might be the zone name. Other examples might be a key indicating a deprecated resource and a suggested replacement, or a warning about invalid network settings (for example, if an instance attempts to perform IP forwarding but is not enabled for IP forwarding).
warning.data[].value
string
[Output Only] A warning data value corresponding to the key.
unreachables[]
string
[Output Only] Unreachable resources.
Requires one of the following OAuth scopes:
https://www.googleapis.com/auth/compute.readonly https://www.googleapis.com/auth/compute https://www.googleapis.com/auth/cloud-platformFor more information, see the Authentication Overview.
IAM PermissionsIn addition to any permissions specified on the fields above, authorization requires one or more of the following IAM permissions:
compute.sslCertificates.listTo find predefined roles that contain those permissions, see Compute Engine IAM Roles.
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2025-07-28 UTC.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-07-28 UTC."],[[["This page details how to retrieve a list of all SSL Certificate resources, both regional and global, available to a specified project using the Compute Engine API."],["The primary HTTP request to retrieve the list is a `GET` request to a specific URL, which includes the project name as a path parameter."],["Several query parameters can be used to refine the results, including `maxResults`, `pageToken`, `filter`, `orderBy`, `returnPartialSuccess`, `includeAllScopes`, and `serviceProjectNumber`."],["The response body contains a detailed structure, including fields like `kind`, `id`, `items`, `nextPageToken`, `selfLink`, `warning`, and `unreachables`, with nested structures for SSL certificate details and warning information."],["Authorization to use this API requires specific OAuth scopes or IAM permissions, such as `compute.sslCertificates.list`, `https://www.googleapis.com/auth/compute.readonly`, `https://www.googleapis.com/auth/compute`, or `https://www.googleapis.com/auth/cloud-platform`."]]],[]]
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4