Code Review
/
aaf
/
authz.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
review
|
tree
raw
|
inline
| side by side
Add Certs, Docker Build
[aaf/authz.git]
/
conf
/
CA
/
manual.sh
diff --git
a/conf/CA/manual.sh
b/conf/CA/manual.sh
index
bb89175
..
eb39159
100644
(file)
--- a/
conf/CA/manual.sh
+++ b/
conf/CA/manual.sh
@@
-35,7
+35,7
@@
EOF
chmod 400 private/$FQI.key
SIGN_IT=true
else
chmod 400 private/$FQI.key
SIGN_IT=true
else
- echo openssl req -newkey rsa:
4096
-sha256 -keyout $FQI.key -out $FQI.csr -outform PEM -subj '"'$SUBJECT'"'
+ echo openssl req -newkey rsa:
2048
-sha256 -keyout $FQI.key -out $FQI.csr -outform PEM -subj '"'$SUBJECT'"'
echo chmod 400 $FQI.key
echo "# All done, print result"
echo openssl req -verify -text -noout -in $FQI.csr
echo chmod 400 $FQI.key
echo "# All done, print result"
echo openssl req -verify -text -noout -in $FQI.csr
@@
-46,7
+46,8
@@
if [ "$SIGN_IT" = "true" ]; then
# Sign it
openssl ca -config ../openssl.conf -extensions server_cert -out $FQI.crt \
-cert certs/ca.crt -keyfile private/ca.key \
# Sign it
openssl ca -config ../openssl.conf -extensions server_cert -out $FQI.crt \
-cert certs/ca.crt -keyfile private/ca.key \
- -policy policy_loose \
+ -policy policy_loose \
+ -days 360 \
-infiles $FQI.csr
fi
-infiles $FQI.csr
fi