- forge :
object
Legacy node-forge crypto interface
DEPRECATION WARNING: This crypto interface is deprecated and will be removed from acme-client in a future major release. Please migrate to the new
acme.crypto
interface at your earliest convenience.
- createPrivateKey([size]) ⇒
Promise.<buffer>
Generate a private RSA key
- createPublicKey(key) ⇒
Promise.<buffer>
Create public key from a private RSA key
- getPemBody(str) ⇒
string
Parse body of PEM encoded object from buffer or string If multiple objects are chained, the first body will be returned
- splitPemChain(str) ⇒
Array.<string>
Split chain of PEM encoded objects from buffer or string into array
- getModulus(input) ⇒
Promise.<buffer>
Get modulus
- getPublicExponent(input) ⇒
Promise.<buffer>
Get public exponent
- readCsrDomains(csr) ⇒
Promise.<object>
Read domains from a Certificate Signing Request
- readCertificateInfo(cert) ⇒
Promise.<object>
Read information from a certificate
- createCsr(data, [key]) ⇒
Promise.<Array.<buffer>>
Create a Certificate Signing Request
Legacy node-forge crypto interface
DEPRECATION WARNING: This crypto interface is deprecated and will be removed from acme-client in a future
major release. Please migrate to the new acme.crypto
interface at your earliest convenience.
Generate a private RSA key
Kind: global function
Returns: Promise.<buffer>
- PEM encoded private RSA key
Param | Type | Default | Description |
---|---|---|---|
[size] | number |
2048 |
Size of the key, default: 2048 |
Example
Generate private RSA key
const privateKey = await acme.forge.createPrivateKey();
Example
Private RSA key with defined size
const privateKey = await acme.forge.createPrivateKey(4096);
Create public key from a private RSA key
Kind: global function
Returns: Promise.<buffer>
- PEM encoded public RSA key
Param | Type | Description |
---|---|---|
key | buffer | string |
PEM encoded private RSA key |
Example
Create public key
const publicKey = await acme.forge.createPublicKey(privateKey);
Parse body of PEM encoded object from buffer or string If multiple objects are chained, the first body will be returned
Kind: global function
Returns: string
- PEM body
Param | Type | Description |
---|---|---|
str | buffer | string |
PEM encoded buffer or string |
Split chain of PEM encoded objects from buffer or string into array
Kind: global function
Returns: Array.<string>
- Array of PEM bodies
Param | Type | Description |
---|---|---|
str | buffer | string |
PEM encoded buffer or string |
Get modulus
Kind: global function
Returns: Promise.<buffer>
- Modulus
Param | Type | Description |
---|---|---|
input | buffer | string |
PEM encoded private key, certificate or CSR |
Example
Get modulus
const m1 = await acme.forge.getModulus(privateKey);
const m2 = await acme.forge.getModulus(certificate);
const m3 = await acme.forge.getModulus(certificateRequest);
Get public exponent
Kind: global function
Returns: Promise.<buffer>
- Exponent
Param | Type | Description |
---|---|---|
input | buffer | string |
PEM encoded private key, certificate or CSR |
Example
Get public exponent
const e1 = await acme.forge.getPublicExponent(privateKey);
const e2 = await acme.forge.getPublicExponent(certificate);
const e3 = await acme.forge.getPublicExponent(certificateRequest);
Read domains from a Certificate Signing Request
Kind: global function
Returns: Promise.<object>
- {commonName, altNames}
Param | Type | Description |
---|---|---|
csr | buffer | string |
PEM encoded Certificate Signing Request |
Example
Read Certificate Signing Request domains
const { commonName, altNames } = await acme.forge.readCsrDomains(certificateRequest);
console.log(`Common name: ${commonName}`);
console.log(`Alt names: ${altNames.join(', ')}`);
Read information from a certificate
Kind: global function
Returns: Promise.<object>
- Certificate info
Param | Type | Description |
---|---|---|
cert | buffer | string |
PEM encoded certificate |
Example
Read certificate information
const info = await acme.forge.readCertificateInfo(certificate);
const { commonName, altNames } = info.domains;
console.log(`Not after: ${info.notAfter}`);
console.log(`Not before: ${info.notBefore}`);
console.log(`Common name: ${commonName}`);
console.log(`Alt names: ${altNames.join(', ')}`);
Create a Certificate Signing Request
Kind: global function
Returns: Promise.<Array.<buffer>>
- [privateKey, certificateSigningRequest]
Param | Type | Description |
---|---|---|
data | object |
|
[data.keySize] | number |
Size of newly created private key, default: 2048 |
[data.commonName] | string |
|
[data.altNames] | Array.<string> |
default: [] |
[data.country] | string |
|
[data.state] | string |
|
[data.locality] | string |
|
[data.organization] | string |
|
[data.organizationUnit] | string |
|
[data.emailAddress] | string |
|
[key] | buffer | string |
CSR private key |
Example
Create a Certificate Signing Request
const [certificateKey, certificateRequest] = await acme.forge.createCsr({
altNames: ['test.example.com'],
});
Example
Certificate Signing Request with both common and alternative names
Warning: Certificate subject common name has been deprecated and its use is discouraged.
const [certificateKey, certificateRequest] = await acme.forge.createCsr({
keySize: 4096,
commonName: 'test.example.com',
altNames: ['foo.example.com', 'bar.example.com'],
});
Example
Certificate Signing Request with additional information
const [certificateKey, certificateRequest] = await acme.forge.createCsr({
altNames: ['test.example.com'],
country: 'US',
state: 'California',
locality: 'Los Angeles',
organization: 'The Company Inc.',
organizationUnit: 'IT Department',
emailAddress: 'contact@example.com',
});
Example
Certificate Signing Request with predefined private key
const certificateKey = await acme.forge.createPrivateKey();
const [, certificateRequest] = await acme.forge.createCsr({
altNames: ['test.example.com'],
}, certificateKey);