51 lines
1.1 KiB
Smarty
51 lines
1.1 KiB
Smarty
|
|
# X.509 Certificate options
|
|
#
|
|
# DN options
|
|
|
|
# The organization of the subject.
|
|
organization = "Sutty"
|
|
|
|
# The organizational unit of the subject.
|
|
#unit = "sleeping dept."
|
|
|
|
# The state of the certificate owner.
|
|
state = "Cyberspace"
|
|
|
|
# The country of the subject. Two letter code.
|
|
country = IN
|
|
|
|
# The common name of the certificate owner.
|
|
cn = "Sutty"
|
|
|
|
# A user id of the certificate owner.
|
|
#uid = "scertowner"
|
|
|
|
# The serial number of the certificate. Should be incremented each time a new certificate is generated.
|
|
serial = ${serial}
|
|
|
|
# In how many days, counting from today, this certificate will expire.
|
|
expiration_days = 365
|
|
|
|
# X.509 v3 extensions
|
|
|
|
# DNS name(s) of the server
|
|
dns_name = "${domain}"
|
|
dns_name = "*.${domain}"
|
|
|
|
# (Optional) Server IP address
|
|
#ip_address = "192.168.1.1"
|
|
|
|
# Whether this certificate will be used for a TLS server
|
|
tls_www_server
|
|
|
|
# Whether this certificate will be used to encrypt data (needed
|
|
# in TLS RSA ciphersuites). Note that it is preferred to use different
|
|
# keys for encryption and signing.
|
|
encryption_key
|
|
|
|
# These options are here to make Chrome recognize the certificates
|
|
# https://superuser.com/a/1466427
|
|
non_repudiation
|
|
signing_key
|