Skip to main content
The deployer created a signing policy on the service. List the service’s signing policies with GET /api/v2/x509/services/{serviceUuid}/signing-policies and read the policy UUID from items[0].objInfo.uuid.
GET /api/v2/x509/services/{serviceUuid}/signing-policies
curl -sk "${AUTH[@]}" -b "$CJ" \
  "$B/api/v2/x509/services/$SERVICE/signing-policies"
Response
{
  "success": true,
  "errorCode": "Success",
  "response": {
    "items": [
      {
        "objInfo": {
          "name": "REST API Code Signing",
          "uuid": "050000dd-....-............"
        },
        "numApprovals": 0,
        "signingFormat": "CMS",
        "serviceUuid": "040000cc-....-............"
      }
    ],
    "total": 1
  }
}

POLICY=050000dd-....-............   # response.items[0].objInfo.uuid
Note the response shape: signing policies are returned under response.items (not response.results), and the total is response.total. The policy UUID (not the service UUID) is what you pass as policyUuid in the next step.