certificates
certificates copied to clipboard
smallstep
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
### Certificate expiration date after subCA expiration date step-ca issue certificates with expiration date later than the expiration date of the subCA issuing it. ### Your environment * OS -...
### Subject of the issue I'm not 100% sure, but could it be that step-ca does not read a (potentially updated) private key password from the file given via the...
### What would you like to be added Documentation for the endpoints for HTTP API. ### Why this is needed The `step cli` is great, I like it a lot,...
### What would you like to be added A parameter on the `GenerateRootCertificate` and `GenerateIntermediateCertificate` APIs to override the hardcoded 10 year validity https://github.com/smallstep/certificates/blob/v0.15.6/pki/pki.go#L269-L273 ### Why this is needed As...
### What would you like to be added Wouldn't it be a great addition if there was a documented procedure or a CLI command to cleanup the DB from old...
### What would you like to be added An automatic and secure private cloud provisioner based on an ACME-like chanllenge. ### Why this is needed - On private clouds, step-ca...
### Subject of the issue The service should tell systemd whether a reload, startup etc. was successful/finished. Either dbus (see example https://www.freedesktop.org/software/systemd/man/systemd.service.html#ExecReload= ) or sd_notify (https://www.freedesktop.org/software/systemd/man/sd_notify.html, e.g https://github.com/coreos/go-systemd) are likely...
I think the source archive for each release should expand everything into `certificates/`, rather than the current directory. A single subdir feels right in terms of convention and UX, to...
### What would you like to be added Managing nebula's CA protocol. Just supporting the certificate signage via acme would be sufficient. I don't know if the nebula certificate is...
### Description Currently, some files in the `ca.json`, like the certificate templates, can be configured relative to the `STEPPATH`, for example, if a template file is set in the ca.json...
