From 17fc0227add2f1f3cea5b5f56f0d8c320b80ed6d Mon Sep 17 00:00:00 2001 From: Steven Clark Date: Fri, 7 Feb 2025 09:27:51 -0500 Subject: [PATCH] Add missing parameter signature_bits to the generate root PKI API docs (#29522) --- website/content/api-docs/secret/pki/index.mdx | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/website/content/api-docs/secret/pki/index.mdx b/website/content/api-docs/secret/pki/index.mdx index c2d034906e..ad49b763d8 100644 --- a/website/content/api-docs/secret/pki/index.mdx +++ b/website/content/api-docs/secret/pki/index.mdx @@ -2252,6 +2252,12 @@ use the values set via `config/urls`. `alt_names` map using OID 2.5.4.5. Note that this has no impact on the Certificate's serial number field, which Vault randomly generates. +- `signature_bits` `(int: 0)` - Specifies the number of bits to use in + the signature algorithm; accepts 256 for SHA-2-256, 384 for SHA-2-384, + and 512 for SHA-2-512. Defaults to 0 to automatically detect based + on issuer's key length (SHA-2-256 for RSA keys, and matching the curve size + for NIST P-Curves). + - `not_before_duration` `(duration: "30s")` - Specifies the duration by which to backdate the NotBefore property. This value has no impact in the validity period of the requested certificate, specified in the `ttl` field.