# Certgen config file
#
# Empty lines or lines starting with "#" are ignored.
#
# Format: <OPERATION> <Parameters>
#         EXIT <errorcode> <optional: text with spaces to display>
#         CA   <CA Name> <Cert Subject>
#         SGN  <CN> <Cert Subject> <optional: additional DNS-alt-names ","-separated, NOT SPACES!>
#                 This will create a cert and sign with the ca located in ./ca/
#         CRT  <CN> <Cert Subject> <optional: additional DNS-alt-names ","-separated, NOT SPACES!>
#                 This will create a self signed cert.
#         CSR  <CN> <Cert Subject> <optional: additional DNS-alt-names ","-separated, NOT SPACES!>
#                 This will create a cert request only.
#                 
# For some strange reason the subject line has to start with /emailAddress=...
# Otherwise some weird stuff happens - good job, openssl folks :/

# For failing services ;)
CRT localhost /emailAddress=root@localhost/OU=CertGen/O=YouFailed;)/ *.loc,loc,l,*.l

# stop certgen here
EXIT 0 Stop processing here - comment out or delete.

# Setup a CA-system
CA SomeNet /emailAddress=contact@somenet.org/OU=CertGenCA/O=somenet.org/CN=SomeNet/ 

# ircd
SGN irc.somenet.org /emailAddress=contact@somenet.org/OU=CertGen/O=somenet.org/ a.irc.somenet.org

# apache stuff
SGN www.somenet.org /emailAddress=contact@somenet.org/OU=CertGen/O=somenet.org/ somenet.org,irc2go.somenet.org

# we have xmpp too :/
CSR xmpp.somenet.org /emailAddress=contact@somenet.org/OU=CertGen/O=somenet.org/ conference.xmpp.somenet.org