ref: 80949bb6a89e7eca8edde909c4bb1d5d22e7e07a
./README.md
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 |
# Cert-Signer A Private CA implementation library ## What it this This is a Java library that implements a Private CA, able to sign certificates for client of services within your organization. It is meant to be used to create client certificate for mTLS authentication of private services within your network. ## Special features Certificate Authority and client certificates are generated and stored via a **VaultSigningStrategy** on a Hashicorp Vault instance. ## Build the library ``` cd cert-signer mvn clean install ``` ## Initialize the CA: You should have a Vault instance running, and you should create the following config file: **~/.vault-credentials.cfg** with the following environment defined: ``` export VAULT_ENDPOINT="https://<my-address>/<custom-path>" export VAULT_TOKEN="hvs.XXXXXXXXXXXXXXXX" ``` To initialize a custom CA for *my-service** ``` cd cert-signer ./script/initializeCA my-service ``` ## License see: [COPYING](./COPYING) |