webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-27 11:13:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Added clientAuth to EKU of client certificate. Fixed the comment.

Browse Source
This commit is contained in:
Wolfgang Apolinarski
2015-04-18 15:15:45 +02:00
committed by Michael Tremer
parent f14de8277a
commit ab2d15486b
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
html/cgi-bin/vpnmain.cgi
View File

@@ -1673,7 +1673,7 @@ END
(my $city = $cgiparams{'CERT_CITY'}) =~ s/^\s*$/\./;
(my $state = $cgiparams{'CERT_STATE'}) =~ s/^\s*$/\./;
# Create the Host certificate request
# Create the Client certificate request
&General::log("ipsec", "Creating a cert...");
if (open(STDIN, "-|")) {
@@ -1700,7 +1700,7 @@ END
exit (0);
}
# Sign the host certificate request
# Sign the client certificate request
&General::log("ipsec", "Signing the cert $cgiparams{'NAME'}...");
#No easy way for specifying the contain of subjectAltName without writing a config file...
@@ -1709,6 +1709,7 @@ END
basicConstraints=CA:FALSE
nsComment="OpenSSL Generated Certificate"
subjectKeyIdentifier=hash
extendedKeyUsage=clientAuth
authorityKeyIdentifier=keyid,issuer:always
END
;