File

certs/localhost.cnf @ 6490:8ad74f48b2aa

mod_saslauth: Use a configurable set of mechanisms to not allow over unencrypted connections
author Kim Alvefur <zash@zash.se>
date Tue, 21 Oct 2014 14:35:32 +0200
parent 5924:f44c1dabd4e9
child 7359:a5a080c12c96
child 7692:90ddd53cbe08
line wrap: on
line source

[v3_extensions]
extendedKeyUsage = serverAuth,clientAuth
keyUsage = digitalSignature,keyEncipherment
basicConstraints = CA:FALSE
subjectAltName = @subject_alternative_name

[subject_alternative_name]
DNS.0 = localhost
otherName.0 = 1.3.6.1.5.5.7.8.7;IA5STRING:_xmpp-client.localhost
otherName.1 = 1.3.6.1.5.5.7.8.7;IA5STRING:_xmpp-server.localhost
otherName.2 = 1.3.6.1.5.5.7.8.5;FORMAT:UTF8,UTF8:localhost

[distinguished_name]
countryName = GB
organizationName = Prosody IM
organizationalUnitName = http://prosody.im/doc/certificates
commonName = Example certificate

[req]
prompt = no
x509_extensions = v3_extensions
req_extensions = v3_extensions
distinguished_name = distinguished_name