summaryrefslogtreecommitdiff
path: root/etc/cb.conf
diff options
context:
space:
mode:
authorErich Eckner <git@eckner.net>2019-09-02 11:49:41 +0200
committerErich Eckner <git@eckner.net>2019-09-02 12:03:10 +0200
commit01335375ec4b1d8d9b5c2f8af7b560bca09796ce (patch)
tree8d0c6719436a90aaf8306ccd068fbf901bfb7bbd /etc/cb.conf
parentff7a3622bc6b8002a2ca6c8c26668f4e1daa70df (diff)
downloadsimple-pki-01335375ec4b1d8d9b5c2f8af7b560bca09796ce.tar.xz
fix install targets
Diffstat (limited to 'etc/cb.conf')
-rw-r--r--etc/cb.conf19
1 files changed, 19 insertions, 0 deletions
diff --git a/etc/cb.conf b/etc/cb.conf
new file mode 100644
index 0000000..47ae16a
--- /dev/null
+++ b/etc/cb.conf
@@ -0,0 +1,19 @@
+#!/bin/bash
+
+# where do we belong? (must match the setting of the ca)
+subject_prefix='/C=DE/ST=Thuringia/L=Jena/O=Eckner/OU=Net'
+
+# ignore these hosts
+ignore_hosts=('localhost')
+
+# where should the certificates be requested?
+ca_host='user@ca.example.com'
+
+# request new key/cert afther this many days
+key_min_duration=15
+
+# which user owns the certificates (not root)
+certificate_user='http'
+
+# directory of the webserver - must be reachable via https://$host/.csr/
+webserver_dir='/srv/http/httpdocs/.csr'