POST RecycleBin/GetItem

Returns information about a Recycle Bin item.

Requirements

  • Permissions: The caller must have Master Admin permission
  • Token scope:  Admin:RecycleBin

Headers

  • Content type: Content-Type:application/json.

  • Token: The bearer access token that you received. For example, Authorization:Bearer 4MyGeneratedBearerTknz==. For more information, see Passing a bearer token in your API calls.

Parameters

Input parameters

Name

Description

Guid

The GUID of the Recycle Bin Item to delete. Use the Guid format from POST RecycleBin/GetContents. For example, 3d6b61d-1c71-4603-883f-25b8c2ceecdd.

Returns

Response description

Name

Description
HTTP 200

For valid requests, this call returns a HTTP 200 message and the following data in the message body:

  • Items array: 
    • ChildCount: Appears only when the deleted item is a Config object with subordinate objects.
    • DN: If the Type is a Config Object, the Distinguished Name (DN) of the object before it was deleted. Otherwise, the DN is the owner of the deleted item.
    • DeletedBy: The Deletion Task or identity that deleted the item. For more information, see Identity Entry object.
      • Prefix: If a task deleted the item, Internal. Otherwise, the identity provider prefix that manages the account or group Name. For more information, see Identity Information.
      • PrefixedName: If a task deleted the item, Internal. Otherwise, the concatenated Prefix: and account Name.
      • PrefixedUniversal: If a task deleted the item, Internal:[Task Name]. Otherwise, the concatenated Prefix: and Universal
      • Universal: If a task deleted the item, Task Name. Otherwise, the Universal Unique ID that identifies a user or group identity.
    • DeletedOn: The date of deletion.
    • Guid: The Recycle Bin Item GUID, representing the deleted item. Valid only while a deleted item and its children are in the Recycle Bin.
    • Name: The Certificate Name (CN) of the DN.
    • PurgeOn: The remaining number of days until the Purge process permanently deletes the item and its children. The value can change based on Purge Process settings.
    • RestorationDN: If the Type is a Config Object, the DN location where the item can be restored. If the Type is a Vault Entry, the owner DN where it will be restored. If the name changed after you deleted the item, the value is the most current name of the object if it still exists.
    • RestoreState: The restoration status that describes whether the item can be restored, if the object still exists. For more information, see Recycle Bin restore state.
    • Type: The kind of Recycle Bin item:
      • Config Object: The item represents a deleted Config object.

      • Vault Entry: The item represents a single deleted SecretStore vault entry.

      • Owner Entry: The item represents all SecretStore vault entries of a previous owner.

    • TypeDetail: If the Type is Config Object, the Config class of the deleted object. Otherwise, null for other item types.
  • Result: The reason for success or failure. For more information, see Recycle Bin result codes.
HTTP 400

For invalid requests, this call returns HTTP 400 Bad Request and the following data in the message body:

  • error: The reason for the error.

  • error_description: If available, additional information about how to retry the request.

Example: Find a deleted item

Request

POST https://tpp.venafi.example/vedsdk/RecycleBin/GetItem
Authorization:Bearer 4MyGeneratedBearerTknz==
{
   "Guid": "8ac7fc18-db93-4efd-8c96-9d97df14304b"
}

Response

HTTP/1.1 200 OK
{
   "Item":{
      "DN":"\\VED\\Logging\\Notification Rules\\LogNotficationHeartBeat",
      "DeletedBy":{
         "FullName":"\\VED\\Identity\\admin",
         "Name":"admin",
         "Prefix":"local",
         "PrefixedName":"local:admin",
         "PrefixedUniversal":"local:{7492e6c1-9f96-4927-8ea0-1a720aa28380}",
         "Type":1,
         "Universal":"{7492e6c1-9f96-4927-8ea0-1a720aa28380}"
      },
      "DeletedOn":"5/27/2022 8:26:46 PM",
      "Guid":"8ac7fc18-db93-4efd-8c96-9d97df14304b",
      "Name":"LogNotficationHeartBeat",
      "PurgeOn":"01/01/0001 08:00:00",
      "RestorationDN":"\\VED\\Logging\\Notification Rules\\LogNotficationHeartBeat",
      "RestoreState":1,
      "Type":"Config Object",
      "TypeDetail":"Log Heartbeat"
   },
   "Result":0
}