aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
5 daysfix creating simple certificatesHEADmasterGibheer1-2/+2
Creating CAs requires the CALength to be set to a specific value. But with normal certificates, 99% of the use case, this is not needed. By setting it to -1 by default, the flag will become ignored for all signatures apart from CAs.
2023-01-10update pki dependencyGibheer4-6/+6
This fixes an issue with generating certificates with ed25519 private keys.
2022-10-27add one more todo itemGibheer1-0/+2
2022-09-10vendor all dependenciesGibheer12-0/+672
2022-08-15update import pathsGibheer6-6/+6
2022-08-15remove missing command from outputGibheer1-1/+0
diff was never implemented
2018-04-19add more error checkingGibheer1-16/+18
Based on #13, we need more error checking when opening files. The CA and CSR files are now checked and return proper error messages in case something goes wrong.
2018-04-19add more error checksGibheer2-8/+8
There are still some cases where the input is not correctly checked, but it is moving forward.
2018-04-18fix error when no pem label is foundGibheer1-6/+6
2018-04-18fix file permissionsGibheer2-2/+2
This was reported to me, that it makes no sense that csr, crt and so on are written as 0700. And even in the case of private keys, why do they need the executable bit set?
2016-10-01rework program flowGibheer15-1102/+767
This commit is a complete rebuild of pkictl. Before everything was all over the place and adding new commands was kind of a hassle. Now each command has its own file and can be adjusted on a command basis. Options are still used by the same name, but can now use different descriptions.
2015-07-24add Go 1.4 requirementGibheer1-0/+2
2015-07-24the documentation has to go above the packageGibheer2-3/+3
This makes the documentation in the main.go readable on the godoc.org website and through the godoc command.
2015-07-24add package documentation to main.goGibheer1-0/+4
2015-07-24make installation easier with go getGibheer1-2/+3
2015-07-19add ed25519 supportGibheer1-0/+3
This adds support for ed25519 keys for the following options * create-private * create-public * sign-input * verify-input The format of the private key is purely PEM format and may change. But as I did not find any documentation on that topic yet, I will keep it as it is for the moment.
2015-07-19use public key instead of private keyGibheer2-2/+2
This fixes a bug where the public key was not used to verify messages.
2015-04-10remove done TODOGibheer1-1/+0
2015-04-10add ca load optionGibheer2-13/+87
This commit changes to API a bit. The following renames were done: * csr-path => csr * ca => is-ca The following option was added * ca With that option it is now possible to add a certificate to sign the newly created certificate.
2015-04-01add crl url supportGibheer1-2/+34
With this option added, it is now possible to add crl urls to the certificates.
2015-03-30fix importsGibheer1-0/+4
I forgot to fix the imports after the split.
2015-03-30split certificate stuff into own fileGibheer3-225/+240
This moves the complicated certificate flag handling into its own file to make it a bit easier to handle.
2015-03-30split out all private key related functionsGibheer3-126/+126
This moves all private key related functions out into a separate file to get flags.go smaller.
2015-03-30update todo listGibheer1-3/+0
2015-03-30add extended key usage for certificatesGibheer1-10/+45
This adds the extended key usage and makes the certificates useable in the wild. The only thing missing are the CRL distribution points and the policy identifiers. These will get added after the code in flags.go is cleaned up. At the moment, it is far too messy.
2015-03-30add basic key usage flag to certificatesGibheer1-4/+37
2015-03-25reformat code with gofmtGibheer5-621/+708
Yes, I know that this breaks the history search, but it had to be done sooner or later. I also adjusted my editor to follow the guidelines more closely.
2015-03-24add start and end date to certificatesGibheer2-5/+64
This adds the start and end date flags for certificate generation and also a flag to define, if the resulting certificate should be a CA or not. Next step in the implementation is to define the key usages.
2015-03-24first parameter of args ignoredGibheer1-1/+1
When prsing the flags, instead of parsing everything given, only the rest was parsed.
2015-03-23rename to better distinguish between cert und csrGibheer1-2/+2
2015-03-23rename FlagCertificateDataGibheer2-5/+5
This makes it easier to distinguish between the csr data and cert data.
2015-03-22remove unused importGibheer1-1/+0
2015-03-21rework the parameter managementGibheer2-262/+280
With this change it is now possible to provide help messages for all commands. This will help to further cleanup and minimize the code base.
2015-03-21add documentation for the commandGibheer1-6/+13
2015-03-19add command flag parserGibheer1-0/+112
This is a small command flag parser hacked away in a couple hours. It is built after cobra (https://github.com/spf13/cobra), but with some small details changed. Instead of breaking with the go flag API (single and double dashes) this uses the golang flags package. This means, that single character flags do not work, but in this case it wouldn't make much sense to replace long clear argument names with short nothing saying arguments (-p for --private-key or --public-key?). This should definitely help with the help and error messages.
2015-03-18fixes small typoGibheer1-1/+1
2015-03-18add a --help option to avoid an error messageGibheer1-0/+1
2015-03-16certificate generation is inGibheer3-45/+73
The hole certificate sign request and certificate creation process was pulled into pki, which made pkictl a bit smaller in code. There are still some things missing, but the initial support for certificates is done!
2015-03-05finally add certificate sign request generationGibheer3-13/+151
This adds finally a way to create certificate sign requests. There are still some options missing, but it is coming together. With the next step, the ccertificate data container will probably be put into the pki library.
2015-02-20add comments to flag variablesGibheer1-3/+7
2015-02-20add verification of messagesGibheer3-10/+78
This commit adds back the possibility to verify a message through a public key and a signature. It works a little bit different than before as it always prints the base64 version, but it makes it easier to use.
2015-02-19add comment to functionGibheer1-0/+1
2015-02-19add message signing againGibheer2-20/+54
This adds again the possibility to sign messages through the API.
2015-02-17activate main help againGibheer1-3/+3
Activate the main help again.
2015-02-17make help even nicerGibheer1-2/+11
When calling --help, this change prints only the usage itself. Before it was calling the help, then continued parsing everything.
2015-02-17make error messages nicerGibheer2-11/+23
This changes the error message so that not the program help is printed but instead the specific submenu help. This should result in much faster and better understanding of the problematic situation.
2015-02-17add public key supportGibheer3-8/+14
This adds all options to create and store a public key.
2015-02-15adjust library pathGibheer3-3/+3
2015-02-15make rsa check boundaryGibheer1-1/+7
2015-02-15redesign cliGibheer10-702/+284
This is a major rebuilding of the CLI. The library part is split out into pkilib and the cli handles only the communication with the user, I/O and the library. The API will still look the same, but the code should be much better to grasp. Instead of repeating everything, more will be grouped together and reused.