Products & Features¶
Overview¶
Products are the central organizational unit in the LAAVAT Platform. Each product represents a signing or PKI use case such as Secure Boot signing, device certificate issuance, code signing, or encryption. Products contain one or more operations that define the cryptographic actions to be performed.
The Products page in the GUI provides a list of all configured products with their current state, description, and available actions.
Product List¶
The product list displays all products with the following columns:
| Column | Description |
|---|---|
| Name | The display name of the product |
| State | The current lifecycle state (New, InProcess, Ready, Rejected, Failed, To Be Deleted, Deleted) |
| Description | A brief description of the product's purpose |
| Actions | Available actions depending on the product's state |
Product States¶
Products move through a lifecycle of states:
| State | Description |
|---|---|
| New | Just created, pending initial approval |
| InProcess | Approval is in progress |
| Ready | Active and usable for signing/PKI operations |
| Rejected | Approval was rejected |
| Failed | An error occurred during processing |
| To Be Deleted | Marked for deletion via a change request |
| Deleted | Permanently removed from the system |
Filtering and Search¶
Use the quick filter toolbar above the list to search products by name or description. The list supports server-side pagination with 10 items per page.
Product Details¶
Click on a product to view its full details:
General Information¶
| Field | Description |
|---|---|
| Name | The product name |
| ID | The unique product identifier (UUID) |
| Type | The product type (e.g., HAB, OCI, Device Certificate) |
| Description | Detailed description of the product |
| HAB Tree | Whether the PKI HAB use case is included |
| Device Identity | Whether the PKI Device Identity use case is included |
Operations¶
Each product contains one or more operations. Each operation displays:
| Field | Description |
|---|---|
| Operation Name | The name of the cryptographic operation |
| Operation ID | The unique operation identifier |
| Description | What the operation does |
| Allowed Groups | Security groups authorized to submit requests |
| Approval Groups | Security groups that must approve requests |
| Auto-approval Groups | Security groups with pre-approved access (blanket approval) |
Creating a New Product¶
To create a new product:
- Click the New button on the products list page.
- Fill in the product details (name, type, description).
- Configure the product operations and their approval rules.
- Submit the product for approval.
New products enter the New state and must be approved before they become active (Ready state).
Modifying Products¶
Product modifications are made through Change Requests to ensure changes are reviewed and approved. See Product Change Requests for details on:
- Modifying operation settings
- Marking products for deletion
- Restoring products before deletion
Contextual help
Click the help icon (book icon) in the top-right corner of any product page to open the help panel with quick-reference information about products, operations, and approval rules.
Deleting a Product¶
Permanent deletion of a product is a three-step process:
- Mark for deletion: Create a change request with type "Set Product To Be Deleted".
- Approve change request This moves the product to the To Be Deleted state.
- Delete permanently: From the products list, use the actions menu on a product in To Be Deleted state and select "Delete Product". Confirm the deletion in the dialog.
Warning
Deletion is irreversible. All associated keys and configuration will be permanently removed. Ensure the product is no longer needed and that no active devices depend on it.