certificates
certificates copied to clipboard
smallstep
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
### Description We should add a new docker image where step-ca is built with CGO enabled (e.g. `smallstep/step-ca-cgo`). This will allow users to create custom images to support a specific...
- Darwin and Windows CGO builds may Just Work for most people - For Darwin, enabling CGO will result in `step-ca` using the macOS system DNS resolver, which is a...
### Subject of the issue Customized backdates seem to have no effect on ACME provisioners. I've attempted to increase the default backdate duration from it's hardcoded value of 1 minute...
This PR optimizes `render.JSON` so that it doesn't use an intermediate buffer.
### What would you like to be added ACME External Account Binding (EAB) support. RFC 8555 describes how the ACME server should support it: > When a CA receives a...
When loading provisioners from the DB on CA refresh or reboot, only load valid provisioners. So, for example, if an OIDC provisioner configuration endpoint is down for a period of...
Hello, I installed and configured a Linux intermediate CA from a Windows Root CA, and working perfectly thanks to your documentation. It is a CentOS 7 version 1708. When I...
### What would you like to be added Hello! I've created a branch with this change to add extra labels and annotations to pods. ### Why this is needed If...
### What would you like to be added Is there any capability in step-ca to have it act as an ACME client instead of it's own cert issuance? i.e. to...
### What would you like to be added For example the ACME validation process does not check for the CAA record of the Domain name ### Why this is needed...
