Your very own tiny certificate authority!
A tiny project consisting of two bash scripts and two folders that will neatly organize certificates for use in development projects.
It's fast to setup and pretty straight-forward!
- Linux Environment with a Terminal
- OpenSSL [ sudo apt install openssl ]
First clone this repository using git,
git clone https://github.com/Naushikha/TinyCA.git
cd TinyCAThen follow these steps to create your own certificates,
./gen_CA.sh-
Fill in the required details.
-
If done right, you should be able to see your CA files (key & root certificate) in the 'CA' folder.
./gen_CERT.sh my-awesome-sitename.com-
Give your own site name here to generate a certificate for it.
-
If done right, you can find your certificates in a seperate folder with your site name in the 'Sites' folder.
Here are some placeholder values to get an idea on what to fill in,
Country Name (2 letter code) [AU]: LK
State or Province Name (full name) [Some-State]: Western
Locality Name (eg, city) []: Colombo 10
Organization Name (eg, company) [Internet Widgits Pty Ltd]: Awesome Software Pty Ltd
Organizational Unit Name (eg, section) []:
Common Name (e.g. server FQDN or YOUR name) []: www.awesomesoftware.com
Email Address []: info@awesomesoftware.comI've recently encountered an issue while using this where the certificate isn't trusted by Google Chrome. This can be fixed by swapping in 'IP.1 = $DOMAIN' for 'DNS.1 = $DOMAIN' in the script, and also including in the IPs as domain name + FQDN.
These references were used to build this tiny masterpiece. If you are interested or thirsty for more knowledge, go and check them out.