| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
| |
change the GUI cert generation code to use it. Also, move the GUI cert
generation code to its own function so we can add a GUI option to regenerate it
later. Also use some more sane defaults for the contents of the default self-
signed certificate's fields so it will be more unique and
less likely to trigger problems in browser certificate storage handling.
Also add a CLI script to regenerate a new GUI certificate.
Several master commits rolled into one patch for 2.1.x.
|
|
|
|
| |
determine if they are identical when checking their revocation status. Fixes #3237
|
|
|
|
| |
Fixes #3090
|
| |
|
| |
|
|
|
|
| |
#2765
|
| |
|
| |
|
|
|
|
| |
internally capable of being a CA (basicConstraints has CA:TRUE) or if the nsCertType is set to server.
|
|
|
|
| |
constraints to place upon the certificate (CA, Server, or User).
|
|
|
|
| |
when generating certificates.
|
| |
|
| |
|
| |
|
| |
|
| |
|
|\ |
|
| | |
|
| | |
|
| | |
|
|/ |
|
|
|
|
| |
later (mainly affected users upgrading from 1.2.3 and wanting to use the cert manager). Also, allow editing the CA's serial, since this shouldn't really be 0 for imported CAs, but the serial of the last cert that was made from this CA.
|
| |
|
|
|
|
| |
#1231 - CAs are no longer lost when a config write happens at bootup.
|
|
|
|
| |
of externally signed cers.
|
|
|
|
| |
so whenever we do subject comparison we will not have problem just because of the array keys ordering.
|
|
|
|
| |
should).
|
| |
|
| |
|
|
|
|
| |
a bit. Ticket #555
|
| |
|
|
|
|
| |
protection and standardize field names. Ticket #320.
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
wizard.
|
| |
|
|
|
|
| |
problem on php API docs.
|
|
|
|
| |
/etc/ssl/openssl.cnf needs to be tuned more to suit pfSense.
|
| |
|
| |
|
| |
|