Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for putting emails and URIs in SAN field #67

Open
wants to merge 4 commits into
base: master
Choose a base branch
from
Open

Add support for putting emails and URIs in SAN field #67

wants to merge 4 commits into from

Conversation

chiefnoah
Copy link

SANS are allowed to contain more than just domain names and IP addresses. This PR adds the ability to specify email addresses and URIs in the Subject Alternate Name field of the generated leaf certificates.

This is of particular interest when using client certificates as authentication mechanisms. An example of this usecase can be found here.

I did a little refactoring while I was in there to update the Go version, ignored the generated artifact from go build, reduce some redundant parsing, and remove the deprecated ioutil package.

@chiefnoah
Ignore minica file
e0b31b1
@chiefnoah
Add URIs and Email SAN fields
f3890d4 
Additionall, modernizes a bit for newer versions of Go:

- Use more idiomatic errors in a few places
- Remove use of deprecated ioutil package

Fixes incorrect name for SANS: Server => Subject
@chiefnoah
Bump Go version
35b93e5
@chiefnoah
Emails take precidence for CN over URIs and IPs
7713fef
@chiefnoah
Copy link
Author

rebased this on master and tested locally

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@chiefnoah