node-opcua-pki 2.15.2 → 2.16.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (46) hide show
  1. package/.ignore +6 -6
  2. package/.prettierrc +3 -3
  3. package/LICENSE +21 -21
  4. package/bin/crypto_create_CA.js +4 -2
  5. package/bin/crypto_create_CA_config.example.js +18 -18
  6. package/bin/install_prerequisite.js +9 -9
  7. package/dist/crypto_create_CA.d.ts +2 -2
  8. package/dist/crypto_create_CA.js +849 -849
  9. package/dist/index.d.ts +6 -6
  10. package/dist/index.js +43 -39
  11. package/dist/index.js.map +1 -1
  12. package/dist/misc/applicationurn.d.ts +1 -1
  13. package/dist/misc/applicationurn.js +45 -45
  14. package/dist/misc/hostname.d.ts +8 -8
  15. package/dist/misc/hostname.js +102 -102
  16. package/dist/misc/install_prerequisite.d.ts +9 -9
  17. package/dist/misc/install_prerequisite.js +359 -359
  18. package/dist/misc/install_prerequisite.js.map +1 -1
  19. package/dist/misc/subject.d.ts +21 -21
  20. package/dist/misc/subject.js +90 -90
  21. package/dist/pki/certificate_authority.d.ts +61 -61
  22. package/dist/pki/certificate_authority.js +480 -480
  23. package/dist/pki/certificate_manager.d.ts +144 -144
  24. package/dist/pki/certificate_manager.js +890 -890
  25. package/dist/pki/common.d.ts +5 -5
  26. package/dist/pki/common.js +2 -2
  27. package/dist/pki/templates/ca_config_template.cnf.d.ts +2 -2
  28. package/dist/pki/templates/ca_config_template.cnf.js +129 -129
  29. package/dist/pki/templates/simple_config_template.cnf.d.ts +2 -2
  30. package/dist/pki/templates/simple_config_template.cnf.js +75 -75
  31. package/dist/pki/toolbox.d.ts +159 -159
  32. package/dist/pki/toolbox.js +669 -669
  33. package/dist/pki/toolbox_pfx.js +18 -18
  34. package/lib/crypto_create_CA.ts +1155 -1155
  35. package/lib/index.ts +27 -27
  36. package/lib/misc/applicationurn.ts +44 -44
  37. package/lib/misc/hostname.ts +89 -89
  38. package/lib/misc/install_prerequisite.ts +450 -450
  39. package/lib/misc/subject.ts +110 -110
  40. package/lib/pki/common.ts +5 -5
  41. package/lib/pki/templates/ca_config_template.cnf.ts +129 -129
  42. package/lib/pki/templates/simple_config_template.cnf.ts +75 -75
  43. package/lib/pki/toolbox_pfx.ts +19 -19
  44. package/package.json +89 -89
  45. package/readme.md +143 -143
  46. package/tsconfig.json +20 -20
package/dist/pki/common.d.ts CHANGED
@@ -1,5 +1,5 @@
1
- export declare type KeySize = 1024 | 2048 | 3072 | 4096;
2
- export declare type Thumbprint = string;
3
- export declare type Filename = string;
4
- export declare type CertificateStatus = "unknown" | "trusted" | "rejected";
5
- export declare type ErrorCallback = (err?: Error | null) => void;
1
+ export declare type KeySize = 1024 | 2048 | 3072 | 4096;
2
+ export declare type Thumbprint = string;
3
+ export declare type Filename = string;
4
+ export declare type CertificateStatus = "unknown" | "trusted" | "rejected";
5
+ export declare type ErrorCallback = (err?: Error | null) => void;
package/dist/pki/common.js CHANGED
@@ -1,3 +1,3 @@
1
- "use strict";
2
- Object.defineProperty(exports, "__esModule", { value: true });
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
3
  //# sourceMappingURL=common.js.map
package/dist/pki/templates/ca_config_template.cnf.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- declare const config: string;
2
- export default config;
1
+ declare const config: string;
2
+ export default config;
package/dist/pki/templates/ca_config_template.cnf.js CHANGED
@@ -1,130 +1,130 @@
1
- "use strict";
2
- Object.defineProperty(exports, "__esModule", { value: true });
3
- const config = "#.........DO NOT MODIFY BY HAND .........................\n" +
4
- "[ ca ]\n" +
5
- "default_ca = CA_default\n" +
6
- "[ CA_default ]\n" +
7
- "dir = %%ROOT_FOLDER%% # the main CA folder\n" +
8
- "certs = $dir/certs # where to store certificates\n" +
9
- "new_certs_dir = $dir/certs #\n" +
10
- "database = $dir/index.txt # the certificate database\n" +
11
- "serial = $dir/serial # the serial number counter\n" +
12
- "certificate = $dir/public/cacert.pem # The root CA certificate\n" +
13
- "private_key = $dir/private/cakey.pem # the CA private key\n" +
14
- "x509_extensions = usr_cert #\n" +
15
- "default_days = 3650 # default validity : 10 years\n" +
16
- "\n" +
17
- "# default_md = sha1\n" +
18
- "\n" +
19
- "default_md = sha256 # The default digest algorithm\n" +
20
- "\n" +
21
- "preserve = no\n" +
22
- "policy = policy_match\n" +
23
- "# randfile = $dir/random.rnd\n" +
24
- "# default_startdate = YYMMDDHHMMSSZ\n" +
25
- "# default_enddate = YYMMDDHHMMSSZ\n" +
26
- "crl_dir = $dir/crl\n" +
27
- "crl_extensions = crl_ext\n" +
28
- "crl = $dir/revocation_list.crl # the Revocation list\n" +
29
- "crlnumber = $dir/crlnumber # CRL number file\n" +
30
- "default_crl_days = 30\n" +
31
- "default_crl_hours = 24\n" +
32
- "#msie_hack\n" +
33
- "\n" +
34
- "[ policy_match ]\n" +
35
- "countryName = optional\n" +
36
- "stateOrProvinceName = optional\n" +
37
- "localityName = optional\n" +
38
- "organizationName = optional\n" +
39
- "organizationalUnitName = optional\n" +
40
- "commonName = optional\n" +
41
- "emailAddress = optional\n" +
42
- "\n" +
43
- "[ req ]\n" +
44
- "default_bits = 4096 # Size of keys\n" +
45
- "default_keyfile = key.pem # name of generated keys\n" +
46
- "distinguished_name = req_distinguished_name\n" +
47
- "attributes = req_attributes\n" +
48
- "x509_extensions = v3_ca\n" +
49
- "#input_password\n" +
50
- "#output_password\n" +
51
- "string_mask = nombstr # permitted characters\n" +
52
- "req_extensions = v3_req\n" +
53
- "\n" +
54
- "[ req_distinguished_name ]\n" +
55
- "\n" +
56
- "#0 countryName = Country Name (2 letter code)\n" +
57
- "# countryName_default = FR\n" +
58
- "# countryName_min = 2\n" +
59
- "# countryName_max = 2\n" +
60
- "# stateOrProvinceName = State or Province Name (full name)\n" +
61
- "# stateOrProvinceName_default = Ile de France\n" +
62
- "# localityName = Locality Name (city, district)\n" +
63
- "# localityName_default = Paris\n" +
64
- "organizationName = Organization Name (company)\n" +
65
- "organizationName_default = NodeOPCUA\n" +
66
- "# organizationalUnitName = Organizational Unit Name (department, division)\n" +
67
- "# organizationalUnitName_default = R&D\n" +
68
- "commonName = Common Name (hostname, FQDN, IP, or your name)\n" +
69
- "commonName_max = 256\n" +
70
- "commonName_default = NodeOPCUA\n" +
71
- "# emailAddress = Email Address\n" +
72
- "# emailAddress_max = 40\n" +
73
- "# emailAddress_default = node-opcua (at) node-opcua (dot) com\n" +
74
- "\n" +
75
- "[ req_attributes ]\n" +
76
- "#challengePassword = A challenge password\n" +
77
- "#challengePassword_min = 4\n" +
78
- "#challengePassword_max = 20\n" +
79
- "#unstructuredName = An optional company name\n" +
80
- "[ usr_cert ]\n" +
81
- "basicConstraints = critical, CA:FALSE\n" +
82
- "subjectKeyIdentifier = hash\n" +
83
- "authorityKeyIdentifier = keyid,issuer:always\n" +
84
- "#authorityKeyIdentifier = keyid\n" +
85
- "subjectAltName = $ENV::ALTNAME\n" +
86
- "# issuerAltName = issuer:copy\n" +
87
- "nsComment = ''OpenSSL Generated Certificate''\n" +
88
- "#nsCertType = client, email, objsign for ''everything including object signing''\n" +
89
- "#nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem\n" +
90
- "#nsBaseUrl =\n" +
91
- "#nsRenewalUrl =\n" +
92
- "#nsCaPolicyUrl =\n" +
93
- "#nsSslServerName =\n" +
94
- "keyUsage = critical, digitalSignature, nonRepudiation," +
95
- " keyEncipherment, dataEncipherment, keyAgreement, keyCertSign\n" +
96
- "extendedKeyUsage = critical,serverAuth ,clientAuth\n" +
97
- "\n" +
98
- "[ v3_req ]\n" +
99
- "basicConstraints = critical, CA:FALSE\n" +
100
- "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement\n" +
101
- "extendedKeyUsage = critical,serverAuth ,clientAuth\n" +
102
- "subjectAltName = $ENV::ALTNAME\n" +
103
- "nsComment = \"CA Generated by Node-OPCUA Certificate utility using openssl\"\n" +
104
- "[ v3_ca ]\n" +
105
- "subjectKeyIdentifier = hash\n" +
106
- "authorityKeyIdentifier = keyid:always,issuer:always\n" +
107
- "# authorityKeyIdentifier = keyid\n" +
108
- "basicConstraints = CA:TRUE\n" +
109
- "keyUsage = critical, cRLSign, keyCertSign\n" +
110
- "nsComment = \"CA Certificate generated by Node-OPCUA Certificate utility using openssl\"\n" +
111
- "#nsCertType = sslCA, emailCA\n" +
112
- "#subjectAltName = email:copy\n" +
113
- "#issuerAltName = issuer:copy\n" +
114
- "#obj = DER:02:03\n" +
115
- "crlDistributionPoints = @crl_info\n" +
116
- "[ crl_info ]\n" +
117
- "URI.0 = http://localhost:8900/crl.pem\n" +
118
- "[ v3_selfsigned]\n" +
119
- "basicConstraints = critical, CA:FALSE\n" +
120
- "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement\n" +
121
- "extendedKeyUsage = critical,serverAuth ,clientAuth\n" +
122
- "nsComment = \"Self-signed certificate, generated by NodeOPCUA\"\n" +
123
- "subjectAltName = $ENV::ALTNAME\n" +
124
- "\n" +
125
- "[ crl_ext ]\n" +
126
- "#issuerAltName = issuer:copy\n" +
127
- "authorityKeyIdentifier = keyid:always,issuer:always\n" +
128
- "#authorityInfoAccess = @issuer_info";
129
- exports.default = config;
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ const config = "#.........DO NOT MODIFY BY HAND .........................\n" +
4
+ "[ ca ]\n" +
5
+ "default_ca = CA_default\n" +
6
+ "[ CA_default ]\n" +
7
+ "dir = %%ROOT_FOLDER%% # the main CA folder\n" +
8
+ "certs = $dir/certs # where to store certificates\n" +
9
+ "new_certs_dir = $dir/certs #\n" +
10
+ "database = $dir/index.txt # the certificate database\n" +
11
+ "serial = $dir/serial # the serial number counter\n" +
12
+ "certificate = $dir/public/cacert.pem # The root CA certificate\n" +
13
+ "private_key = $dir/private/cakey.pem # the CA private key\n" +
14
+ "x509_extensions = usr_cert #\n" +
15
+ "default_days = 3650 # default validity : 10 years\n" +
16
+ "\n" +
17
+ "# default_md = sha1\n" +
18
+ "\n" +
19
+ "default_md = sha256 # The default digest algorithm\n" +
20
+ "\n" +
21
+ "preserve = no\n" +
22
+ "policy = policy_match\n" +
23
+ "# randfile = $dir/random.rnd\n" +
24
+ "# default_startdate = YYMMDDHHMMSSZ\n" +
25
+ "# default_enddate = YYMMDDHHMMSSZ\n" +
26
+ "crl_dir = $dir/crl\n" +
27
+ "crl_extensions = crl_ext\n" +
28
+ "crl = $dir/revocation_list.crl # the Revocation list\n" +
29
+ "crlnumber = $dir/crlnumber # CRL number file\n" +
30
+ "default_crl_days = 30\n" +
31
+ "default_crl_hours = 24\n" +
32
+ "#msie_hack\n" +
33
+ "\n" +
34
+ "[ policy_match ]\n" +
35
+ "countryName = optional\n" +
36
+ "stateOrProvinceName = optional\n" +
37
+ "localityName = optional\n" +
38
+ "organizationName = optional\n" +
39
+ "organizationalUnitName = optional\n" +
40
+ "commonName = optional\n" +
41
+ "emailAddress = optional\n" +
42
+ "\n" +
43
+ "[ req ]\n" +
44
+ "default_bits = 4096 # Size of keys\n" +
45
+ "default_keyfile = key.pem # name of generated keys\n" +
46
+ "distinguished_name = req_distinguished_name\n" +
47
+ "attributes = req_attributes\n" +
48
+ "x509_extensions = v3_ca\n" +
49
+ "#input_password\n" +
50
+ "#output_password\n" +
51
+ "string_mask = nombstr # permitted characters\n" +
52
+ "req_extensions = v3_req\n" +
53
+ "\n" +
54
+ "[ req_distinguished_name ]\n" +
55
+ "\n" +
56
+ "#0 countryName = Country Name (2 letter code)\n" +
57
+ "# countryName_default = FR\n" +
58
+ "# countryName_min = 2\n" +
59
+ "# countryName_max = 2\n" +
60
+ "# stateOrProvinceName = State or Province Name (full name)\n" +
61
+ "# stateOrProvinceName_default = Ile de France\n" +
62
+ "# localityName = Locality Name (city, district)\n" +
63
+ "# localityName_default = Paris\n" +
64
+ "organizationName = Organization Name (company)\n" +
65
+ "organizationName_default = NodeOPCUA\n" +
66
+ "# organizationalUnitName = Organizational Unit Name (department, division)\n" +
67
+ "# organizationalUnitName_default = R&D\n" +
68
+ "commonName = Common Name (hostname, FQDN, IP, or your name)\n" +
69
+ "commonName_max = 256\n" +
70
+ "commonName_default = NodeOPCUA\n" +
71
+ "# emailAddress = Email Address\n" +
72
+ "# emailAddress_max = 40\n" +
73
+ "# emailAddress_default = node-opcua (at) node-opcua (dot) com\n" +
74
+ "\n" +
75
+ "[ req_attributes ]\n" +
76
+ "#challengePassword = A challenge password\n" +
77
+ "#challengePassword_min = 4\n" +
78
+ "#challengePassword_max = 20\n" +
79
+ "#unstructuredName = An optional company name\n" +
80
+ "[ usr_cert ]\n" +
81
+ "basicConstraints = critical, CA:FALSE\n" +
82
+ "subjectKeyIdentifier = hash\n" +
83
+ "authorityKeyIdentifier = keyid,issuer:always\n" +
84
+ "#authorityKeyIdentifier = keyid\n" +
85
+ "subjectAltName = $ENV::ALTNAME\n" +
86
+ "# issuerAltName = issuer:copy\n" +
87
+ "nsComment = ''OpenSSL Generated Certificate''\n" +
88
+ "#nsCertType = client, email, objsign for ''everything including object signing''\n" +
89
+ "#nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem\n" +
90
+ "#nsBaseUrl =\n" +
91
+ "#nsRenewalUrl =\n" +
92
+ "#nsCaPolicyUrl =\n" +
93
+ "#nsSslServerName =\n" +
94
+ "keyUsage = critical, digitalSignature, nonRepudiation," +
95
+ " keyEncipherment, dataEncipherment, keyAgreement, keyCertSign\n" +
96
+ "extendedKeyUsage = critical,serverAuth ,clientAuth\n" +
97
+ "\n" +
98
+ "[ v3_req ]\n" +
99
+ "basicConstraints = critical, CA:FALSE\n" +
100
+ "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement\n" +
101
+ "extendedKeyUsage = critical,serverAuth ,clientAuth\n" +
102
+ "subjectAltName = $ENV::ALTNAME\n" +
103
+ "nsComment = \"CA Generated by Node-OPCUA Certificate utility using openssl\"\n" +
104
+ "[ v3_ca ]\n" +
105
+ "subjectKeyIdentifier = hash\n" +
106
+ "authorityKeyIdentifier = keyid:always,issuer:always\n" +
107
+ "# authorityKeyIdentifier = keyid\n" +
108
+ "basicConstraints = CA:TRUE\n" +
109
+ "keyUsage = critical, cRLSign, keyCertSign\n" +
110
+ "nsComment = \"CA Certificate generated by Node-OPCUA Certificate utility using openssl\"\n" +
111
+ "#nsCertType = sslCA, emailCA\n" +
112
+ "#subjectAltName = email:copy\n" +
113
+ "#issuerAltName = issuer:copy\n" +
114
+ "#obj = DER:02:03\n" +
115
+ "crlDistributionPoints = @crl_info\n" +
116
+ "[ crl_info ]\n" +
117
+ "URI.0 = http://localhost:8900/crl.pem\n" +
118
+ "[ v3_selfsigned]\n" +
119
+ "basicConstraints = critical, CA:FALSE\n" +
120
+ "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement\n" +
121
+ "extendedKeyUsage = critical,serverAuth ,clientAuth\n" +
122
+ "nsComment = \"Self-signed certificate, generated by NodeOPCUA\"\n" +
123
+ "subjectAltName = $ENV::ALTNAME\n" +
124
+ "\n" +
125
+ "[ crl_ext ]\n" +
126
+ "#issuerAltName = issuer:copy\n" +
127
+ "authorityKeyIdentifier = keyid:always,issuer:always\n" +
128
+ "#authorityInfoAccess = @issuer_info";
129
+ exports.default = config;
130
130
  //# sourceMappingURL=ca_config_template.cnf.js.map
package/dist/pki/templates/simple_config_template.cnf.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- declare const config: string;
2
- export default config;
1
+ declare const config: string;
2
+ export default config;
package/dist/pki/templates/simple_config_template.cnf.js CHANGED
@@ -1,76 +1,76 @@
1
- "use strict";
2
- Object.defineProperty(exports, "__esModule", { value: true });
3
- const config = "##################################################################################################\n" +
4
- "## SIMPLE OPENSSL CONFIG FILE FOR SELF-SIGNED CERTIFICATE GENERATION\n" +
5
- "################################################################################################################\n" +
6
- "\n" +
7
- "distinguished_name = req_distinguished_name\n" +
8
- "default_md = sha1\n" +
9
- "\n" +
10
- "default_md = sha256 # The default digest algorithm\n" +
11
- "\n" +
12
- "[ v3_ca ]\n" +
13
- "subjectKeyIdentifier = hash\n" +
14
- "authorityKeyIdentifier = keyid:always,issuer:always\n" +
15
- "\n" +
16
- "# authorityKeyIdentifier = keyid\n" +
17
- "basicConstraints = CA:TRUE\n" +
18
- "keyUsage = critical, cRLSign, keyCertSign\n" +
19
- "nsComment = \"Self-signed Certificate for CA generated by Node-OPCUA Certificate utility\"\n" +
20
- "#nsCertType = sslCA, emailCA\n" +
21
- "#subjectAltName = email:copy\n" +
22
- "#issuerAltName = issuer:copy\n" +
23
- "#obj = DER:02:03\n" +
24
- "# crlDistributionPoints = @crl_info\n" +
25
- "# [ crl_info ]\n" +
26
- "# URI.0 = http://localhost:8900/crl.pem\n" +
27
- "subjectAltName = $ENV::ALTNAME\n" +
28
- "\n" +
29
- "[ req ]\n" +
30
- "days = 390\n" +
31
- "req_extensions = v3_req\n" +
32
- "x509_extensions = v3_ca\n" +
33
- "\n" +
34
- "[v3_req]\n" +
35
- "basicConstraints = CA:false\n" +
36
- "keyUsage = critical, cRLSign, keyCertSign\n" +
37
- "subjectAltName = $ENV::ALTNAME\n" +
38
- "\n" +
39
- "[ v3_ca_signed]\n" +
40
- "subjectKeyIdentifier = hash\n" +
41
- "authorityKeyIdentifier = keyid,issuer\n" +
42
- "basicConstraints = critical, CA:FALSE\n" +
43
- "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyCertSign\n" +
44
- "extendedKeyUsage = clientAuth,serverAuth \n" +
45
- "nsComment = \"certificate generated by Node-OPCUA Certificate utility and signed by a CA\"\n" +
46
- "subjectAltName = $ENV::ALTNAME\n" +
47
- "[ v3_selfsigned]\n" +
48
- "subjectKeyIdentifier = hash\n" +
49
- "authorityKeyIdentifier = keyid,issuer\n" +
50
- "basicConstraints = critical, CA:FALSE\n" +
51
- "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyCertSign\n" +
52
- "extendedKeyUsage = clientAuth,serverAuth \n" +
53
- "nsComment = \"Self-signed certificate generated by Node-OPCUA Certificate utility\"\n" +
54
- "subjectAltName = $ENV::ALTNAME\n" +
55
- "[ req_distinguished_name ]\n" +
56
- "countryName = Country Name (2 letter code)\n" +
57
- "countryName_default = FR\n" +
58
- "countryName_min = 2\n" +
59
- "countryName_max = 2\n" +
60
- "# stateOrProvinceName = State or Province Name (full name)\n" +
61
- "# stateOrProvinceName_default = Ile de France\n" +
62
- "# localityName = Locality Name (city, district)\n" +
63
- "# localityName_default = Paris\n" +
64
- "organizationName = Organization Name (company)\n" +
65
- "organizationName_default = NodeOPCUA\n" +
66
- "# organizationalUnitName = Organizational Unit Name (department, division)\n" +
67
- "# organizationalUnitName_default = R&D\n" +
68
- "commonName = Common Name (hostname, FQDN, IP, or your name)\n" +
69
- "commonName_max = 256\n" +
70
- "commonName_default = NodeOPCUA\n" +
71
- "# emailAddress = Email Address\n" +
72
- "# emailAddress_max = 40\n" +
73
- "# emailAddress_default = node-opcua (at) node-opcua (dot) com\n" +
74
- "subjectAltName = $ENV::ALTNAME";
75
- exports.default = config;
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ const config = "##################################################################################################\n" +
4
+ "## SIMPLE OPENSSL CONFIG FILE FOR SELF-SIGNED CERTIFICATE GENERATION\n" +
5
+ "################################################################################################################\n" +
6
+ "\n" +
7
+ "distinguished_name = req_distinguished_name\n" +
8
+ "default_md = sha1\n" +
9
+ "\n" +
10
+ "default_md = sha256 # The default digest algorithm\n" +
11
+ "\n" +
12
+ "[ v3_ca ]\n" +
13
+ "subjectKeyIdentifier = hash\n" +
14
+ "authorityKeyIdentifier = keyid:always,issuer:always\n" +
15
+ "\n" +
16
+ "# authorityKeyIdentifier = keyid\n" +
17
+ "basicConstraints = CA:TRUE\n" +
18
+ "keyUsage = critical, cRLSign, keyCertSign\n" +
19
+ "nsComment = \"Self-signed Certificate for CA generated by Node-OPCUA Certificate utility\"\n" +
20
+ "#nsCertType = sslCA, emailCA\n" +
21
+ "#subjectAltName = email:copy\n" +
22
+ "#issuerAltName = issuer:copy\n" +
23
+ "#obj = DER:02:03\n" +
24
+ "# crlDistributionPoints = @crl_info\n" +
25
+ "# [ crl_info ]\n" +
26
+ "# URI.0 = http://localhost:8900/crl.pem\n" +
27
+ "subjectAltName = $ENV::ALTNAME\n" +
28
+ "\n" +
29
+ "[ req ]\n" +
30
+ "days = 390\n" +
31
+ "req_extensions = v3_req\n" +
32
+ "x509_extensions = v3_ca\n" +
33
+ "\n" +
34
+ "[v3_req]\n" +
35
+ "basicConstraints = CA:false\n" +
36
+ "keyUsage = critical, cRLSign, keyCertSign\n" +
37
+ "subjectAltName = $ENV::ALTNAME\n" +
38
+ "\n" +
39
+ "[ v3_ca_signed]\n" +
40
+ "subjectKeyIdentifier = hash\n" +
41
+ "authorityKeyIdentifier = keyid,issuer\n" +
42
+ "basicConstraints = critical, CA:FALSE\n" +
43
+ "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyCertSign\n" +
44
+ "extendedKeyUsage = clientAuth,serverAuth \n" +
45
+ "nsComment = \"certificate generated by Node-OPCUA Certificate utility and signed by a CA\"\n" +
46
+ "subjectAltName = $ENV::ALTNAME\n" +
47
+ "[ v3_selfsigned]\n" +
48
+ "subjectKeyIdentifier = hash\n" +
49
+ "authorityKeyIdentifier = keyid,issuer\n" +
50
+ "basicConstraints = critical, CA:FALSE\n" +
51
+ "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyCertSign\n" +
52
+ "extendedKeyUsage = clientAuth,serverAuth \n" +
53
+ "nsComment = \"Self-signed certificate generated by Node-OPCUA Certificate utility\"\n" +
54
+ "subjectAltName = $ENV::ALTNAME\n" +
55
+ "[ req_distinguished_name ]\n" +
56
+ "countryName = Country Name (2 letter code)\n" +
57
+ "countryName_default = FR\n" +
58
+ "countryName_min = 2\n" +
59
+ "countryName_max = 2\n" +
60
+ "# stateOrProvinceName = State or Province Name (full name)\n" +
61
+ "# stateOrProvinceName_default = Ile de France\n" +
62
+ "# localityName = Locality Name (city, district)\n" +
63
+ "# localityName_default = Paris\n" +
64
+ "organizationName = Organization Name (company)\n" +
65
+ "organizationName_default = NodeOPCUA\n" +
66
+ "# organizationalUnitName = Organizational Unit Name (department, division)\n" +
67
+ "# organizationalUnitName_default = R&D\n" +
68
+ "commonName = Common Name (hostname, FQDN, IP, or your name)\n" +
69
+ "commonName_max = 256\n" +
70
+ "commonName_default = NodeOPCUA\n" +
71
+ "# emailAddress = Email Address\n" +
72
+ "# emailAddress_max = 40\n" +
73
+ "# emailAddress_default = node-opcua (at) node-opcua (dot) com\n" +
74
+ "subjectAltName = $ENV::ALTNAME";
75
+ exports.default = config;
76
76
  //# sourceMappingURL=simple_config_template.cnf.js.map