7b6c4ba40a
co-authored-by: Robert Clark <robert.clark@hp.com> Change-Id: Ic170b372de3da421eef87d2b6faeed6bcebd368d
126 lines
2.3 KiB
JSON
Executable File
126 lines
2.3 KiB
JSON
Executable File
{
|
|
"auth": {
|
|
"static": {
|
|
"secret": "simplepassword",
|
|
"user": "myusername"
|
|
}
|
|
},
|
|
"ca": {
|
|
"cert_path": "CA/root-ca.crt",
|
|
"key_path": "CA/root-ca-unwrapped.key",
|
|
"output_path": "certs",
|
|
"signing_hash": "sha1",
|
|
"valid_hours": 24
|
|
},
|
|
"validators": [
|
|
{
|
|
"name": "default",
|
|
"steps": [
|
|
[
|
|
"common_name",
|
|
{
|
|
"allowed_domains": [
|
|
".example.com"
|
|
]
|
|
}
|
|
],
|
|
[
|
|
"alternative_names",
|
|
{
|
|
"allowed_domains": [
|
|
".example.com"
|
|
]
|
|
}
|
|
],
|
|
[
|
|
"server_group",
|
|
{
|
|
"group_prefixes": {
|
|
"bk": "Bock_Team",
|
|
"cs": "CS_Team",
|
|
"gl": "Glance_Team",
|
|
"mb": "MB_Team",
|
|
"nv": "Nova_Team",
|
|
"ops": "SysEng_Team",
|
|
"qu": "Neutron_Team",
|
|
"sw": "Swift_Team"
|
|
}
|
|
}
|
|
],
|
|
[
|
|
"extensions",
|
|
{
|
|
"allowed_extensions": [
|
|
"keyUsage",
|
|
"subjectAltName",
|
|
"basicConstraints",
|
|
"subjectKeyIdentifier"
|
|
]
|
|
}
|
|
],
|
|
[
|
|
"key_usage",
|
|
{
|
|
"allowed_usage": [
|
|
"Digital Signature",
|
|
"Key Encipherment",
|
|
"Non Repudiation",
|
|
"Certificate Sign",
|
|
"CRL Sign"
|
|
]
|
|
}
|
|
],
|
|
[
|
|
"ca_status",
|
|
{
|
|
"ca_requested": false
|
|
}
|
|
],
|
|
[
|
|
"source_cidrs",
|
|
{
|
|
"cidrs": [
|
|
"127.0.0.0/8"
|
|
]
|
|
}
|
|
]
|
|
]
|
|
},
|
|
{
|
|
"name": "ip",
|
|
"steps": [
|
|
[
|
|
"common_name",
|
|
{
|
|
"allowed_networks": [
|
|
"127/8"
|
|
]
|
|
}
|
|
],
|
|
[
|
|
"alternative_names",
|
|
{
|
|
"allowed_networks": [
|
|
"127/8"
|
|
]
|
|
}
|
|
],
|
|
[
|
|
"ca_status",
|
|
{
|
|
"ca_requested": false
|
|
}
|
|
],
|
|
[
|
|
"source_cidrs",
|
|
{
|
|
"cidrs": [
|
|
"127.0.0.0/8"
|
|
]
|
|
}
|
|
]
|
|
]
|
|
}
|
|
]
|
|
}
|