AWS Transfer Family

2024/04/12 - AWS Transfer Family - 3 updated api methods

Changes  This change releases support for importing self signed certificates to the Transfer Family for sending outbound file transfers over TLS/HTTPS.

DescribeCertificate (updated) Link ¶
Changes (response) 
{'Certificate': {'Usage': {'TLS'}}}

Describes the certificate that's identified by the CertificateId.

See also: AWS API Documentation

Request Syntax

client.describe_certificate(
    CertificateId='string'
)
type CertificateId:

string

param CertificateId:

[REQUIRED]

An array of identifiers for the imported certificates. You use this identifier for working with profiles and partner profiles.

rtype:

dict

returns:

Response Syntax

{
    'Certificate': {
        'Arn': 'string',
        'CertificateId': 'string',
        'Usage': 'SIGNING'|'ENCRYPTION'|'TLS',
        'Status': 'ACTIVE'|'PENDING_ROTATION'|'INACTIVE',
        'Certificate': 'string',
        'CertificateChain': 'string',
        'ActiveDate': datetime(2015, 1, 1),
        'InactiveDate': datetime(2015, 1, 1),
        'Serial': 'string',
        'NotBeforeDate': datetime(2015, 1, 1),
        'NotAfterDate': datetime(2015, 1, 1),
        'Type': 'CERTIFICATE'|'CERTIFICATE_WITH_PRIVATE_KEY',
        'Description': 'string',
        'Tags': [
            {
                'Key': 'string',
                'Value': 'string'
            },
        ]
    }
}

Response Structure

  • (dict) --

    • Certificate (dict) --

      The details for the specified certificate, returned as an object.

      • Arn (string) --

        The unique Amazon Resource Name (ARN) for the certificate.

      • CertificateId (string) --

        An array of identifiers for the imported certificates. You use this identifier for working with profiles and partner profiles.

      • Usage (string) --

        Specifies how this certificate is used. It can be used in the following ways:

        • SIGNING: For signing AS2 messages

        • ENCRYPTION: For encrypting AS2 messages

        • TLS: For securing AS2 communications sent over HTTPS

      • Status (string) --

        The certificate can be either ACTIVE, PENDING_ROTATION, or INACTIVE. PENDING_ROTATION means that this certificate will replace the current certificate when it expires.

      • Certificate (string) --

        The file name for the certificate.

      • CertificateChain (string) --

        The list of certificates that make up the chain for the certificate.

      • ActiveDate (datetime) --

        An optional date that specifies when the certificate becomes active.

      • InactiveDate (datetime) --

        An optional date that specifies when the certificate becomes inactive.

      • Serial (string) --

        The serial number for the certificate.

      • NotBeforeDate (datetime) --

        The earliest date that the certificate is valid.

      • NotAfterDate (datetime) --

        The final date that the certificate is valid.

      • Type (string) --

        If a private key has been specified for the certificate, its type is CERTIFICATE_WITH_PRIVATE_KEY. If there is no private key, the type is CERTIFICATE.

      • Description (string) --

        The name or description that's used to identity the certificate.

      • Tags (list) --

        Key-value pairs that can be used to group and search for certificates.

        • (dict) --

          Creates a key-value pair for a specific resource. Tags are metadata that you can use to search for and group a resource for various purposes. You can apply tags to servers, users, and roles. A tag key can take more than one value. For example, to group servers for accounting purposes, you might create a tag called Group and assign the values Research and Accounting to that group.

          • Key (string) --

            The name assigned to the tag that you create.

          • Value (string) --

            Contains one or more values that you assigned to the key name you create.

ImportCertificate (updated) Link ¶
Changes (request) 
{'Usage': {'TLS'}}

Imports the signing and encryption certificates that you need to create local (AS2) profiles and partner profiles.

See also: AWS API Documentation

Request Syntax

client.import_certificate(
    Usage='SIGNING'|'ENCRYPTION'|'TLS',
    Certificate='string',
    CertificateChain='string',
    PrivateKey='string',
    ActiveDate=datetime(2015, 1, 1),
    InactiveDate=datetime(2015, 1, 1),
    Description='string',
    Tags=[
        {
            'Key': 'string',
            'Value': 'string'
        },
    ]
)
type Usage:

string

param Usage:

[REQUIRED]

Specifies how this certificate is used. It can be used in the following ways:

  • SIGNING: For signing AS2 messages

  • ENCRYPTION: For encrypting AS2 messages

  • TLS: For securing AS2 communications sent over HTTPS

type Certificate:

string

param Certificate:

[REQUIRED]

  • For the CLI, provide a file path for a certificate in URI format. For example, --certificate file://encryption-cert.pem. Alternatively, you can provide the raw content.

  • For the SDK, specify the raw content of a certificate file. For example, --certificate "`cat encryption-cert.pem`".

type CertificateChain:

string

param CertificateChain:

An optional list of certificates that make up the chain for the certificate that's being imported.

type PrivateKey:

string

param PrivateKey:

  • For the CLI, provide a file path for a private key in URI format.For example, --private-key file://encryption-key.pem. Alternatively, you can provide the raw content of the private key file.

  • For the SDK, specify the raw content of a private key file. For example, --private-key "`cat encryption-key.pem`"

type ActiveDate:

datetime

param ActiveDate:

An optional date that specifies when the certificate becomes active.

type InactiveDate:

datetime

param InactiveDate:

An optional date that specifies when the certificate becomes inactive.

type Description:

string

param Description:

A short description that helps identify the certificate.

type Tags:

list

param Tags:

Key-value pairs that can be used to group and search for certificates.

  • (dict) --

    Creates a key-value pair for a specific resource. Tags are metadata that you can use to search for and group a resource for various purposes. You can apply tags to servers, users, and roles. A tag key can take more than one value. For example, to group servers for accounting purposes, you might create a tag called Group and assign the values Research and Accounting to that group.

    • Key (string) -- [REQUIRED]

      The name assigned to the tag that you create.

    • Value (string) -- [REQUIRED]

      Contains one or more values that you assigned to the key name you create.

rtype:

dict

returns:

Response Syntax

{
    'CertificateId': 'string'
}

Response Structure

  • (dict) --

    • CertificateId (string) --

      An array of identifiers for the imported certificates. You use this identifier for working with profiles and partner profiles.

ListCertificates (updated) Link ¶
Changes (response) 
{'Certificates': {'Usage': {'TLS'}}}

Returns a list of the current certificates that have been imported into Transfer Family. If you want to limit the results to a certain number, supply a value for the MaxResults parameter. If you ran the command previously and received a value for the NextToken parameter, you can supply that value to continue listing certificates from where you left off.

See also: AWS API Documentation

Request Syntax

client.list_certificates(
    MaxResults=123,
    NextToken='string'
)
type MaxResults:

integer

param MaxResults:

The maximum number of certificates to return.

type NextToken:

string

param NextToken:

When you can get additional results from the ListCertificates call, a NextToken parameter is returned in the output. You can then pass in a subsequent command to the NextToken parameter to continue listing additional certificates.

rtype:

dict

returns:

Response Syntax

{
    'NextToken': 'string',
    'Certificates': [
        {
            'Arn': 'string',
            'CertificateId': 'string',
            'Usage': 'SIGNING'|'ENCRYPTION'|'TLS',
            'Status': 'ACTIVE'|'PENDING_ROTATION'|'INACTIVE',
            'ActiveDate': datetime(2015, 1, 1),
            'InactiveDate': datetime(2015, 1, 1),
            'Type': 'CERTIFICATE'|'CERTIFICATE_WITH_PRIVATE_KEY',
            'Description': 'string'
        },
    ]
}

Response Structure

  • (dict) --

    • NextToken (string) --

      Returns the next token, which you can use to list the next certificate.

    • Certificates (list) --

      Returns an array of the certificates that are specified in the ListCertificates call.

      • (dict) --

        Describes the properties of a certificate.

        • Arn (string) --

          The Amazon Resource Name (ARN) of the specified certificate.

        • CertificateId (string) --

          An array of identifiers for the imported certificates. You use this identifier for working with profiles and partner profiles.

        • Usage (string) --

          Specifies how this certificate is used. It can be used in the following ways:

          • SIGNING: For signing AS2 messages

          • ENCRYPTION: For encrypting AS2 messages

          • TLS: For securing AS2 communications sent over HTTPS

        • Status (string) --

          The certificate can be either ACTIVE, PENDING_ROTATION, or INACTIVE. PENDING_ROTATION means that this certificate will replace the current certificate when it expires.

        • ActiveDate (datetime) --

          An optional date that specifies when the certificate becomes active.

        • InactiveDate (datetime) --

          An optional date that specifies when the certificate becomes inactive.

        • Type (string) --

          The type for the certificate. If a private key has been specified for the certificate, its type is CERTIFICATE_WITH_PRIVATE_KEY. If there is no private key, the type is CERTIFICATE.

        • Description (string) --

          The name or short description that's used to identify the certificate.