est icon indicating copy to clipboard operation
est copied to clipboard

Published 20 hours ago verified publisher icon globalsign

Generate CSR at runtime

Open Simkiw opened this issue 8 months ago • 5 comments

Hello,

The package implements different APIs of EST protocol.
It expects the CSR to be ready for use, like in the enroll method.

Is it possible to generate the CSR at runtime?
And can we fetch the TLS unique value from the current client implementation?

Typical use-case: include TLS-unique value (in TLS 1.2) Such as, after establishing the TLS connection between server and client,

  1. the TLS unique value can be retrieved from the client
  2. the TLS unique value can included in the CSR
  3. The CSR can be signed with my private key
  4. Pass the signed CSR to the EST enroll method

Thank you very much

Simkiw avatar Nov 27 '23 19:11 Simkiw