v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Steampipe logo 
Hub
Plugins
turbot/fly
Overview
9Tables
Versions
GitHub
steampipe plugin install fly

Table: fly_app_certificate - Query Fly.io App Certificates using SQL

Fly.io App Certificates are part of the Fly.io platform that allows you to handle SSL/TLS for your applications. These certificates are automatically managed and renewed, ensuring your applications are always served over HTTPS. They play a crucial role in maintaining the security and integrity of data transmitted between your Fly.io applications and their users.

Table Usage Guide

The fly_app_certificate table provides insights into App Certificates within Fly.io. As a DevOps engineer, explore certificate-specific details through this table, including expiration dates, issuing authorities, and associated metadata. Utilize it to monitor your SSL/TLS configurations, ensure certificates are up to date, and maintain the security of your Fly.io applications.

Examples

Basic info

Explore which domain certificates were created and their respective sources. This can help identify the origin of each certificate, providing insights into potential security risks or issues.

select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate;
select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate;

List unverified certificates

Discover the segments that contain unverified certificates within your application. This could be useful, for example, in identifying potential security risks and ensuring that all certificates are valid and up-to-date.

select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate
where
  not verified;
select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate
where
  not verified;

List certificates that do not have valid DNS configuration

Identify instances where certain certificates may have been created without a valid DNS configuration. This can be useful for troubleshooting connectivity issues or ensuring proper setup of digital certificates.

select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate
where
  not is_configured;
select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate
where
  is_configured = 0;

List DNS configuration details of certificates

Explore which domain certificates have certain DNS configurations. This can be particularly useful for understanding how your certificates are set up and where potential configuration issues may lie.

select
  domain,
  id,
  dns_provider,
  dns_validation_hostname,
  dns_validation_instructions,
  dns_validation_target
from
  fly_app_certificate;
select
  domain,
  id,
  dns_provider,
  dns_validation_hostname,
  dns_validation_instructions,
  dns_validation_target
from
  fly_app_certificate;

List certificates associated with a specific app

Explore which certificates are linked to a specific application, allowing you to assess the security elements within your application's configuration. This could be beneficial in identifying areas where updates or changes may be necessary for compliance or improved security.

select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate
where
  app_id = 'fly-builder-purple-cloud-1058';
select
  domain,
  id,
  hostname,
  created_at,
  source
from
  fly_app_certificate
where
  app_id = 'fly-builder-purple-cloud-1058';

Schema for fly_app_certificate

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
app_idtext=Specifies the ID of the app.
certificate_authoritytextThe certificate authority.
client_statustextThe client status of the certificate.
created_attimestamp with time zoneThe timestamp when the certificate was created.
dns_providertextThe DNS provider of the certificate.
dns_validation_hostnametextSpecifies the DNS validation hostname.
dns_validation_instructionstextSpecifies the DNS validation instructions.
dns_validation_targettextSpecifies the DNS validation target.
domaintextThe fully qualified domain name of the certificate.
hostnametextThe hostname of the certificate.
idtext=A unique identifier of the certificate.
is_acme_alpn_configuredbooleanIf true, certificate acme-alpn is configured.
is_acme_dns_configuredbooleanIf true, acme-dns is configured for domain validation.
is_apexbooleanTrue, if the certificate is a apex certificate.
is_configuredbooleanIf true, certificate is configured with valid DNS configuration.
is_wildcardbooleanIf true, the hostname of the certificate contains wildcard.
sourcetextThe source of the certificate.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
verifiedbooleanIf true, the certificate DNS configuration is verified.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- fly

You can pass the configuration to the command with the --config argument:

steampipe_export_fly --config '<your_config>' fly_app_certificate