new FabricCAClient(connect_opts)
constructor
Parameters:
| Name | Type | Description | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
connect_opts |
object | Connection options for communicating with the Fabric CA server
Properties
|
Throws:
Will throw an error if connection options are missing or invalid
Methods
-
enroll(enrollmentID, enrollmentSecret, csr, profile, attr_reqs)
-
Enroll a registered user in order to receive a signed X509 certificate
Parameters:
Name Type Description enrollmentIDstring The registered ID to use for enrollment enrollmentSecretstring The secret associated with the enrollment ID csrstring PEM-encoded PKCS#10 certificate signing request profilestring The profile name. Specify the 'tls' profile for a TLS certificate; otherwise, an enrollment certificate is issued. attr_reqsArray.<AttributeRequest> An array of AttributeRequest Throws:
-
Will throw an error if all parameters are not provided
-
Will throw an error if calling the enroll API fails for any reason
Returns:
- Type
- Promise
-
-
newAffiliationService()
-
Create a new AffiliationService instance
Returns:
instance- Type
- AffiliationService
-
newCertificateService()
-
Create a new CertificateService instance
Returns:
instance- Type
- CertificateService
-
newIdentityService()
-
Creates a new IdentityService instance
Returns:
instance- Type
- IdentityService
-
reenroll(csr, signingIdentity, attr_reqs)
-
Re-enroll an existing user.
Parameters:
Name Type Description csrstring PEM-encoded PKCS#10 certificate signing request signingIdentitySigningIdentity The instance of a SigningIdentity encapsulating the signing certificate, hash algorithm and signature algorithm attr_reqsArray.<AttributeRequest> An array of AttributeRequest Returns:
- Type
- Promise
-
register(enrollmentID, enrollmentSecret, role, affiliation, maxEnrollments, attrs, signingIdentity)
-
Register a new user and return the enrollment secret
Parameters:
Name Type Description enrollmentIDstring ID which will be used for enrollment enrollmentSecretstring Optional enrollment secret to set for the registered user. If not provided, the server will generate one. When not including, use a null for this parameter. rolestring Optional type of role for this user. When not including, use a null for this parameter. affiliationstring Affiliation with which this user will be associated maxEnrollmentsnumber The maximum number of times the user is permitted to enroll attrsArray.<KeyValueAttribute> Array of key/value attributes to assign to the user signingIdentitySigningIdentity The instance of a SigningIdentity encapsulating the signing certificate, hash algorithm and signature algorithm Returns:
The enrollment secret to use when this user enrolls- Type
- Promise
-
revoke(enrollmentID, aki, serial, reason, signingIdentity)
-
Revoke an existing certificate (enrollment certificate or transaction certificate), or revoke all certificates issued to an enrollment id. If revoking a particular certificate, then both the Authority Key Identifier and serial number are required. If revoking by enrollment id, then all future requests to enroll this id will be rejected.
Parameters:
Name Type Description enrollmentIDstring ID to revoke akistring Authority Key Identifier string, hex encoded, for the specific certificate to revoke serialstring Serial number string, hex encoded, for the specific certificate to revoke reasonstring The reason for revocation. See https://godoc.org/golang.org/x/crypto/ocsp for valid values signingIdentitySigningIdentity The instance of a SigningIdentity encapsulating the signing certificate, hash algorithm and signature algorithm Returns:
The revocation results- Type
- Promise