diff --git a/src/certificate-authority.ts b/src/certificate-authority.ts index 12de656..0844820 100644 --- a/src/certificate-authority.ts +++ b/src/certificate-authority.ts @@ -44,7 +44,7 @@ export default async function installCertificateAuthority(options: Options = {}) generateKey(rootKeyPath); debug(`Generating a CA certificate`); - openssl(`req -new -x509 -config "${ caSelfSignConfig }" -key "${ rootKeyPath }" -out "${ rootCertPath }" -days 7000`); + openssl(`req -new -x509 -config "${ caSelfSignConfig }" -key "${ rootKeyPath }" -out "${ rootCertPath }" -days 825`); debug('Saving certificate authority credentials'); await saveCertificateAuthorityCredentials(rootKeyPath, rootCertPath); diff --git a/src/certificates.ts b/src/certificates.ts index 78fe1c3..a2bba8b 100644 --- a/src/certificates.ts +++ b/src/certificates.ts @@ -33,7 +33,7 @@ export default async function generateDomainCertificate(domain: string): Promise await withCertificateAuthorityCredentials(({ caKeyPath, caCertPath }) => { withDomainCertificateConfig(domain, (domainCertConfigPath) => { - openssl(`ca -config "${ domainCertConfigPath }" -in "${ csrFile }" -out "${ domainCertPath }" -keyfile "${ caKeyPath }" -cert "${ caCertPath }" -days 7000 -batch`) + openssl(`ca -config "${ domainCertConfigPath }" -in "${ csrFile }" -out "${ domainCertPath }" -keyfile "${ caKeyPath }" -cert "${ caCertPath }" -days 825 -batch`) }); }); }