github-personal/labca
1
0
Fork 0
mirror of https://github.com/outbackdingo/labca.git synced 2026-01-27 18:19:33 +00:00
Code Issues Packages Projects Releases Wiki Activity
540 Commits 1 Branch 0 Tags
master
Commit Graph

22 Commits

Author SHA1 Message Date
Arjan H
f38bae5867 Fix linting issues 2025-04-20 17:27:10 +02:00
Arjan H
3ec866d1ea Add golangci-lint for GUI 2025-03-23 10:21:49 +01:00
Arjan H
5904cebaa5 Fix issue where ceremony tool is not compiled in time 2025-03-05 21:04:01 +01:00
Arjan H
6f66bc73ac Fix issuer and CRL URLs in certificates 2025-02-16 17:08:44 +01:00
Arjan H
6d72d32398 Use ceremony tool for generating keys and certs; store keys on SoftHSM 
Replace openssl certificate / CRL generation with the tool as used by
Let's Encrypt, storing the keys on SoftHSMv2, a simulated HSM (Hardware
Security Module).
Include migration of old setups where key files were also stored on
disk.
 2025-01-31 20:44:48 +01:00
Arjan H
a1a3230ead Fix several issues with renewing certificates (#109) 
URI encode the root_key and passphrase.
Fix name of root_key file.
Stop processing when error has occurred.
 2024-01-25 18:49:26 +01:00
Arjan H
33208bf347 Add way to renew (extend lifetime of) CA certificates (#74) 2023-12-26 11:56:45 +01:00
Arjan H
2b81d2d3dd Add options to trigger CRL generation and upload a Root CRL (#53) 2023-06-11 12:09:14 +02:00
Arjan H
9f77d1a308 Add ability to keep private Root CA key offline (#53) 
When generating a new Root CA certificate, show the key in the GUI and ask the user to
store it offline. When importing an existing CA make the root key optional.
When the private key is needed but we don't have it, ask the user to provide it. You
can now also create a CSR for the Issuer CA that can be signed by the offline Root CA.
 2023-06-08 20:24:41 +02:00
Arjan H
5d36f6ce80 Use random serial number for root/issuer certs (#54) 2022-08-15 22:03:54 +02:00
Arjan H
888ef8556d Refactor some deprecated code 2022-08-08 20:01:18 +02:00
Arjan H
28553dac91 Determine issuer NameID value so we can set the correct AIA URL (#35) 2022-07-31 16:42:47 +02:00
Arjan H
f000abb97d Issuer cert can now also be ECDSA 
Apparently the cfssl issue was resolved at some time
 2022-06-03 10:08:57 +02:00
Arjan H
cf0531e82b Fix handling of special characters in organization name (#40) 
E.g. a-umlaut
 2022-04-12 21:26:10 +02:00
Arjan H
d80cd3958c Remove CRLF from uploaded PEM certificate (#31) 2022-02-01 20:20:11 +01:00
Arjan H
49fb197f32 Some code cleanups 2021-02-14 10:58:48 +01:00
Arjan H
89dc8d1be0 Default (first) issuer must be RSA when using CFSSL 2020-11-08 11:36:31 +01:00
Arjan H
48494e14a3 Make golint happy 2018-12-21 13:29:43 +01:00
Arjan H
cec0c77445 Make golint happy 
#5
 2018-12-06 09:04:52 +01:00
Arjan H
04aed0ed86 Refactor code to reduce cyclomatic complexity 
#2
 2018-11-24 10:51:15 +01:00
Arjan H
472958ea03 gofmt the .go files 
#2
 2018-11-18 10:28:29 +01:00
Arjan H
f8ead94450 Initial commit to GitHub 2018-11-10 15:13:43 +01:00