-
- GitHub
- GitLab
- Bitbucket
-
By logging in you accept
our terms of service
and privacy policy
A simple CLI for making a pki
Simple Public Key Infrastructure intends to provide most of the components needed to manage a PKI. (With a few missing tools as of right now)
Get the CLI:
pip install simplepki
You can pass
--passto most of these and it will ask for a passphrase to use to protect the key
# You can also pass the following through arguments if you do not want to use env variables.
export SP_ROOT=/tmp/simplepki
export SP_CA=root
export SP_CN="Acme Inc. - Root CA"
export SP_ORGANIZATION="Acme Inc."
export SP_ORGANIZATIONAL_UNIT=IT
export SP_COUNTRY=US
export SP_LOCALITY="Agloe"
export SP_PROVINCE="New York"
mkdir $SP_ROOT
simplepki create root
# You can also pass the following through arguments if you do not want to use env variables.
export SP_ROOT=/tmp/simplepki
export SP_CA=root
export SP_ORGANIZATION="Acme Inc."
export SP_ORGANIZATIONAL_UNIT=IT
export SP_COUNTRY=US
export SP_LOCALITY="Agloe"
export SP_PROVINCE="New York"
simplepki create cert www.acme.com --dns blog.acme.com --dns www.acme.com
# You can also pass the following through arguments if you do not want to use env variables.
export SP_ROOT=/tmp/simplepki
export SP_CA=root
export SP_CN="Acme Inc. - Internal CA"
export SP_INTERMEDIATE=intermedaite
export SP_ORGANIZATION="Acme Inc."
export SP_ORGANIZATIONAL_UNIT=IT
export SP_COUNTRY=US
export SP_LOCALITY="Agloe"
export SP_PROVINCE="New York"
simplepki create intermediate
# You can also pass the following through arguments if you do not want to use env variables.
export SP_ROOT=/tmp/simplepki
export SP_CA=intermediate
export SP_ORGANIZATION="Acme Inc."
export SP_ORGANIZATIONAL_UNIT=IT
export SP_COUNTRY=US
export SP_LOCALITY="Agloe"
export SP_PROVINCE="New York"
simplepki create cert *.internal.acme.com --dns *.internal.acme.com
/tmp/simplepki/
├── [drwxrwxr-x] intermediate
│ ├── [drwxrwxr-x] certs
│ │ ├── [-rw-r--r--] root.cert.pem
│ │ └── [-rw-r--r--] wildcard_.internal.acme.com.cert.pem
│ └── [drwx------] private
│ ├── [-r--------] root.key.pem
│ └── [-r--------] wildcard_.internal.acme.com.key.pem
└── [drwxrwxr-x] root
├── [drwxrwxr-x] certs
│ ├── [-rw-r--r--] root.cert.pem
│ └── [-rw-r--r--] www.acme.com.cert.pem
└── [drwx------] private
├── [-r--------] root.key.pem
└── [-r--------] www.acme.com.key.pem
You will find the generated certificates in $SP_ROOT/ca_name/certs/ and
private keys in $SP_ROOT/ca_name/private/
For more info about available flags, checkout out the help simplepki -h.
Contributions are welcome. Currently we have a few features missing that we would like to add
This is based on the https://github.com/google/easypki which is written in golang
The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.
Learn more →Something wrong with this page? Make a suggestion
Export .ABOUT file for this package
Last synced: 2021-02-21 20:35:09 UTC
Login to resync this project