From e5b70fbedbe72fdda515d540c11a618bc1067a9e Mon Sep 17 00:00:00 2001 From: Nick Braica Date: Tue, 24 Aug 2021 11:16:16 -0700 Subject: [PATCH 1/2] Add bsotest.org domain --- config/openssl.conf | 2 ++ 1 file changed, 2 insertions(+) diff --git a/config/openssl.conf b/config/openssl.conf index 0c978cd..7a445fc 100644 --- a/config/openssl.conf +++ b/config/openssl.conf @@ -40,3 +40,5 @@ nsComment = "OpenSSL Generated Certificate" DNS.1 = ups.dock DNS.2 = *.ups.dock +DNS.3 = bsotest.org +DNS.4 = *.bsotest.org From b0f4a7edbcd5bd114a95e71209db9ee6525bbaeb Mon Sep 17 00:00:00 2001 From: Nick Braica Date: Wed, 7 Sep 2022 16:42:56 -0700 Subject: [PATCH 2/2] Setup for allowing custom virtual host domains --- bin/gen-certs.sh | 1 + config/openssl.conf | 13 ------------- 2 files changed, 1 insertion(+), 13 deletions(-) diff --git a/bin/gen-certs.sh b/bin/gen-certs.sh index 5235df0..1447e6f 100755 --- a/bin/gen-certs.sh +++ b/bin/gen-certs.sh @@ -16,6 +16,7 @@ openssl req \ -nodes \ -x509 \ -days 1825 \ + -extensions req_extensions \ -keyout certs/ups.dock.key \ -out certs/ups.dock.crt diff --git a/config/openssl.conf b/config/openssl.conf index 7a445fc..ea94b38 100644 --- a/config/openssl.conf +++ b/config/openssl.conf @@ -4,7 +4,6 @@ default_bits = 2048 default_keyfile = server-key.pem distinguished_name = req_distinguished_name req_extensions = req_extensions -x509_extensions = x509_extensions string_mask = utf8only prompt = no @@ -26,19 +25,7 @@ keyUsage = digitalSignature, keyEncipherment subjectAltName = @alternate_names nsComment = "OpenSSL Generated Certificate" -[ x509_extensions ] - -subjectKeyIdentifier = hash -authorityKeyIdentifier = keyid,issuer - -basicConstraints = CA:FALSE -keyUsage = digitalSignature, keyEncipherment -subjectAltName = @alternate_names -nsComment = "OpenSSL Generated Certificate" - [ alternate_names ] DNS.1 = ups.dock DNS.2 = *.ups.dock -DNS.3 = bsotest.org -DNS.4 = *.bsotest.org