mirror of
https://github.com/moepman/acertmgr.git
synced 2024-06-18 12:32:34 +02:00
![]() Store the generated CSR for later review/usage and allow the stored CSR to be used for future request. Configuration directives csr_file (path) and csr_static (=true) have been added for this. This allows simplified deployment of DANE/TLSA due the former requiring updates to DNS with every public key change, which will not be the case with a static CSR. A new CSR can be triggered manually by deleting the CSR file upon which the next certificate will require an update of any TLSA records in DNS. This may also be used to specify a custom CSR to use, as long as the csr_file path and the domains in the CSR match the ones given in the acertmgr configuration. |
||
---|---|---|
.. | ||
authority | ||
modes | ||
__init__.py | ||
configuration.py | ||
tools.py |