Skip to content

Commit

Permalink
httpcaddyfile: Add pki app root and intermediate cert/key config (#…
Browse files Browse the repository at this point in the history
  • Loading branch information
francislavoie authored Jan 18, 2022
1 parent bcb7a19 commit 5a07156
Show file tree
Hide file tree
Showing 2 changed files with 89 additions and 1 deletion.
68 changes: 68 additions & 0 deletions caddyconfig/httpcaddyfile/pkiapp.go
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,16 @@ func init() {
// name <name>
// root_cn <name>
// intermediate_cn <name>
// root {
// cert <path>
// key <path>
// format <format>
// }
// intermediate {
// cert <path>
// key <path>
// format <format>
// }
// }
// }
//
Expand Down Expand Up @@ -74,6 +84,64 @@ func parsePKIApp(d *caddyfile.Dispenser, existingVal interface{}) (interface{},
}
pkiCa.IntermediateCommonName = d.Val()

case "root":
if pkiCa.Root == nil {
pkiCa.Root = new(caddypki.KeyPair)
}
for nesting := d.Nesting(); d.NextBlock(nesting); {
switch d.Val() {
case "cert":
if !d.NextArg() {
return nil, d.ArgErr()
}
pkiCa.Root.Certificate = d.Val()

case "key":
if !d.NextArg() {
return nil, d.ArgErr()
}
pkiCa.Root.PrivateKey = d.Val()

case "format":
if !d.NextArg() {
return nil, d.ArgErr()
}
pkiCa.Root.Format = d.Val()

default:
return nil, d.Errf("unrecognized pki ca root option '%s'", d.Val())
}
}

case "intermediate":
if pkiCa.Intermediate == nil {
pkiCa.Intermediate = new(caddypki.KeyPair)
}
for nesting := d.Nesting(); d.NextBlock(nesting); {
switch d.Val() {
case "cert":
if !d.NextArg() {
return nil, d.ArgErr()
}
pkiCa.Intermediate.Certificate = d.Val()

case "key":
if !d.NextArg() {
return nil, d.ArgErr()
}
pkiCa.Intermediate.PrivateKey = d.Val()

case "format":
if !d.NextArg() {
return nil, d.ArgErr()
}
pkiCa.Intermediate.Format = d.Val()

default:
return nil, d.Errf("unrecognized pki ca intermediate option '%s'", d.Val())
}
}

default:
return nil, d.Errf("unrecognized pki ca option '%s'", d.Val())
}
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,16 @@
name "Local"
root_cn "Custom Local Root Name"
intermediate_cn "Custom Local Intermediate Name"
root {
cert /path/to/cert.pem
key /path/to/key.pem
format pem_file
}
intermediate {
cert /path/to/cert.pem
key /path/to/key.pem
format pem_file
}
}
ca foo {
name "Foo"
Expand Down Expand Up @@ -118,7 +128,17 @@ acme-bar.example.com {
"name": "Local",
"root_common_name": "Custom Local Root Name",
"intermediate_common_name": "Custom Local Intermediate Name",
"install_trust": false
"install_trust": false,
"root": {
"certificate": "/path/to/cert.pem",
"private_key": "/path/to/key.pem",
"format": "pem_file"
},
"intermediate": {
"certificate": "/path/to/cert.pem",
"private_key": "/path/to/key.pem",
"format": "pem_file"
}
}
}
},
Expand Down

0 comments on commit 5a07156

Please sign in to comment.