/certificate-automation

Simple scripts designed to automate the OpenSSL CA and certificate issuing process.

Primary LanguageShell

certificate-automation

Simple scripts designed to automate the OpenSSL CA and certificate issuing process.

Create a Certificate Authority (key and self-signed cert):

  1. Execute on command line.
sh setup_certauth.sh
  1. Follow on-screen steps.

Create a Server Certificate (with key, signed by CA):

  1. Execute on command line.
sh make_server_cert.sh <server-name>
  1. Follow on-screen steps.

Create a Client Certificate (with key, pkcs [.p12] cert for browser):

  1. Execute on command line.
sh new_client_cert.sh <client-name>
  1. Follow on-screen steps.
node test.js

You will need to change the path to the mit client certificate -- https://web.mit.edu/apache-ssl/certificates/mitCAclient.pem

You can then go to https://localhost:8000 in the browser

Doesn't work

curl -v -s -k https://localhost:8000

Works

curl -v -s -k --key ./user/keys/localhost.key --cert ./user/certificates/localhost.crt https://localhost:8000

Using node version 0.10.31