> ## Documentation Index
> Fetch the complete documentation index at: https://docs.lerian.studio/llms.txt
> Use this file to discover all available pages before exploring further.

# Obtén el estado de las credenciales de Dataprev

> Devuelve el estado no secreto de las credenciales de Dataprev almacenadas del tenant (presencia del certificado + fingerprint + expiración, presencia de oauth). Cuando no hay nada almacenado, devuelve 200 con ambos indicadores de presencia en false, NO 404. NUNCA devuelve material secreto.



## OpenAPI

````yaml es/openapi/v3-current/consignado.yaml get /v1/credentials/dataprev
openapi: 3.1.0
info:
  contact:
    email: contact@lerian.studio
    name: Lerian Studio
    url: https://lerian.studio
  description: >-
    Interfaz OpenAPI 3.1 de Lerian Consignado — Dataprev, el rail de jornada de
    crédito que custodia las credenciales de acceso a Dataprev de cada tenant.
    Cubre el estado de las credenciales por tenant más la rotación del
    certificado de cliente y de las credenciales OAuth2. El material secreto se
    escribe en el almacén de secretos del tenant y ninguna operación lo
    devuelve.
  license:
    name: Lerian Studio General License
  title: Lerian Consignado API
  version: 1.0.0
servers: []
security:
  - BearerAuth: []
tags:
  - description: Custodia de credenciales de rail externo por tenant (carga + estado)
    name: Credentials
paths:
  /v1/credentials/dataprev:
    get:
      tags:
        - Credentials
      summary: Obtén el estado de las credenciales de Dataprev
      description: >-
        Devuelve el estado no secreto de las credenciales de Dataprev
        almacenadas del tenant (presencia del certificado + fingerprint +
        expiración, presencia de oauth). Cuando no hay nada almacenado, devuelve
        200 con ambos indicadores de presencia en false, NO 404. NUNCA devuelve
        material secreto.
      operationId: getDataprevCredentialStatus
      responses:
        '200':
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/CredentialStatusResponse'
          description: OK
        default:
          content:
            application/problem+json:
              schema:
                $ref: '#/components/schemas/Detail'
          description: Error
      security:
        - BearerAuth: []
components:
  schemas:
    CredentialStatusResponse:
      additionalProperties: false
      properties:
        certFingerprint:
          description: >-
            SHA-256 hex fingerprint of the stored certificate (absent when
            none).
          examples:
            - 3b1f...c0
          type: string
        certNotAfter:
          description: RFC 3339 cert expiry (UTC); absent when no cert is stored.
          examples:
            - '2027-01-01T00:00:00Z'
          format: date-time
          type: string
        certPresent:
          description: Whether a client certificate is stored for the tenant.
          type: boolean
        oauthPresent:
          description: Whether OAuth2 client_credentials are stored for the tenant.
          type: boolean
        provider:
          description: External rail the credentials belong to.
          examples:
            - dataprev
          type: string
        updatedAt:
          description: Last-update timestamp (RFC 3339, UTC).
          examples:
            - '2026-06-23T12:00:00Z'
          format: date-time
          type: string
      required:
        - provider
        - certPresent
        - oauthPresent
        - updatedAt
      type: object
    Detail:
      additionalProperties: false
      properties:
        code:
          description: >-
            Stable, machine-readable domain error code scoped to the emitting
            service (format: <SERVICE>-NNNN).
          examples:
            - ERR-0001
          type: string
        detail:
          description: >-
            A human-readable explanation specific to this occurrence of the
            problem.
          examples:
            - Property foo is required but is missing.
          type: string
        errors:
          description: Optional list of individual error details
          items:
            $ref: '#/components/schemas/ErrorDetail'
          type:
            - array
            - 'null'
        instance:
          description: >-
            A URI reference that identifies the specific occurrence of the
            problem.
          examples:
            - https://example.com/error-log/abc123
          format: uri
          type: string
        status:
          description: HTTP status code
          examples:
            - 400
          format: int64
          type: integer
        title:
          description: >-
            A short, human-readable summary of the problem type. This value
            should not change between occurrences of the error.
          examples:
            - Bad Request
          type: string
        type:
          default: about:blank
          description: A URI reference to human-readable documentation for the error.
          examples:
            - https://example.com/errors/example
          format: uri
          type: string
      type: object
    ErrorDetail:
      additionalProperties: false
      properties:
        location:
          description: >-
            Where the error occurred, e.g. 'body.items[3].tags' or
            'path.thing-id'
          type: string
        message:
          description: Error message text
          type: string
        value:
          description: The value at the given location
      type: object
  securitySchemes:
    BearerAuth:
      bearerFormat: JWT
      description: JWT bearer token issued by the identity provider.
      scheme: bearer
      type: http

````