SomeNet / public repos / somenet / certgen.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Added EXIT operation to abort generation on a given line.
[somenet/certgen.git] / certgen.data.example
diff --git a/certgen.data.example b/certgen.data.example
index c0d515d26f6c7bdfb08ad29c290fe0514b4f9cee..bfe4a191562bec22be03a2d29f7b6ca474b5f308 100644 (file)
--- a/certgen.data.example
+++ b/certgen.data.example
@@ -1,15 +1,35 @@
 # Certgen config file
-# Format: <CRT/CSR> <domain name> <crt-subject> <alt dns names ","-separated, NOT SPACES!>
+#
+# Empty lines or lines starting with "#" are ignored.
+#
+# Format: <OPERATION> <Parameters>
+#         EXIT <errorcode> <optional: text with spaces to display>
+#         CA   <CA Name> <Cert Subject>
+#         SGN  <CN> <Cert Subject> <optional: additional DNS-alt-names ","-separated, NOT SPACES!>
+#                 This will create a cert and sign with the ca located in ./ca/
+#         CRT  <CN> <Cert Subject> <optional: additional DNS-alt-names ","-separated, NOT SPACES!>
+#                 This will create a self signed cert.
+#         CSR  <CN> <Cert Subject> <optional: additional DNS-alt-names ","-separated, NOT SPACES!>
+#                 This will create a cert request only.
+#                 
+# For some strange reason the subject line has to start with /emailAddress=...
+# Otherwise some weird stuff happens - good job, openssl folks :/
 
 # For failing services ;)
-CRT localhost /OU=CertGen/O=YouFailed;)/emailAddress=contact@somenet.org/ 
+CRT localhost /emailAddress=root@localhost/OU=CertGen/O=YouFailed;)/ *.loc,loc,l,*.l
+
+# stop certgen here
+EXIT 0 Stop processing here - comment out or delete.
+
+# Setup a CA-system
+CA SomeNet /emailAddress=contact@somenet.org/OU=CertGenCA/O=somenet.org/CN=SomeNet/ 
 
 # ircd
-CRT a.irc.somenet.org /OU=CertGen/O=somenet.org/emailAddress=contact@somenet.org/ irc.somenet.org
+SGN irc.somenet.org /emailAddress=contact@somenet.org/OU=CertGen/O=somenet.org/ a.irc.somenet.org
 
 # apache stuff
-CRT www.somenet.org /OU=CertGen/O=somenet.org/emailAddress=contact@somenet.org/ somenet.org,irc2go.somenet.org
+SGN www.somenet.org /emailAddress=contact@somenet.org/OU=CertGen/O=somenet.org/ somenet.org,irc2go.somenet.org
 
 # we have xmpp too :/
-CSR xmpp.somenet.org /OU=CertGen/O=somenet.org/emailAddress=contact@somenet.org/ conference.xmpp.somenet.org
+CSR xmpp.somenet.org /emailAddress=contact@somenet.org/OU=CertGen/O=somenet.org/ conference.xmpp.somenet.org