moepman/acertmgr
1
0
Fork 0
mirror of https://github.com/moepman/acertmgr.git synced 2024-06-18 12:32:34 +02:00
Code Releases Activity
ed96f2bbf2
acertmgr/acertmgr
History
Kishi85 ed96f2bbf2 acertmgr: store CSR and support static CSR usage 
Store the generated CSR for later review/usage and allow the stored
CSR to be used for future request. Configuration directives csr_file
(path) and csr_static (=true) have been added for this.

This allows simplified deployment of DANE/TLSA due the former requiring
updates to DNS with every public key change, which will not be the case
with a static CSR. A new CSR can be triggered manually by deleting the
CSR file upon which the next certificate will require an update of any
TLSA records in DNS.

This may also be used to specify a custom CSR to use, as long as the
csr_file path and the domains in the CSR match the ones given in the
acertmgr configuration.
2019-03-25 10:13:02 +01:00
..
authority tools: cleanup function names and add crypto wrappers 2019-03-24 16:49:03 +01:00
modes setup: Add a single space for PEP-8 2019-03-25 10:13:02 +01:00
__init__.py acertmgr: store CSR and support static CSR usage 2019-03-25 10:13:02 +01:00
configuration.py acertmgr: store CSR and support static CSR usage 2019-03-25 10:13:02 +01:00
tools.py acertmgr: store CSR and support static CSR usage 2019-03-25 10:13:02 +01:00