cacert
/
browser-csr-generation
8
0
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity
This repository contains an implementation to create a client certificate key store in a modern Web browser.
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
26 Commits
1 Branch
2 Tags
267 KiB
HTML 54.7%
JavaScript 44.6%
SCSS 0.7%
 
 
 
main
0.2.0
0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '4ecdedadf7'
${ noResults }
Go to file
Jan Dittberner 4ecdedadf7 Remove unneeded Go code, update dependencies 12 months ago
src Remove unneeded Go code, update dependencies 12 months ago
.gitignore Remove unneeded Go code, update dependencies 12 months ago
COPYING Add GPL-2 license text 4 years ago
README.md Update gulp setup 1 year ago
gulpfile.js Remove unneeded Go code, update dependencies 12 months ago
package-lock.json Remove unneeded Go code, update dependencies 12 months ago
package.json Remove unneeded Go code, update dependencies 12 months ago

README.md

Browser PKCS#10 CSR generation PoC

This repository contains a small proof of concept implementation of browser based PKCS#10 certificate signing request and PKCS#12 key store generation using node-forge.

The backend is implemented in Go and utilizes openssl for the signing operations. The instructions below have been tested on Debian 11 (Bullseye). Debian 10 works when you use a manual installation of Go.

Running

  1. Install dependencies

    sudo apt install git npm openssl golang-go

  2. Clone the repository

    git clone https://code.cacert.org/jandd/poc-browser-csr-generation.git

  3. Get dependencies and build assets

    cd poc-browser-csr-generation
npm install --no-save --user gulp-cli
npm install
npm run build

  4. Setup the example CA and a server certificate and key

    ./setup_example_ca.sh
openssl req -new -x509 -days 365 -subj "/CN=localhost" \
  -addext subjectAltName=DNS:localhost -newkey rsa:3072 \
  -nodes -out server.crt.pem -keyout server.key.pem

  5. Run the Go based backend

    go run main.go

    Open https://localhost:8000/ in your browser.

  6. Run gulp watch

    You can run a gulp watch in a second terminal window to automatically publish changes to the files in the src directory:

    npm run watch

Translations

This PoC uses go-i18n for internationalization (i18n) support.

The translation workflow needs the go18n binary which can be installed via

go get -u  github.com/nicksnyder/go-i18n/v2/goi18n

To extract new messages from the code run

goi18n extract

Then use

goi18n merge active.*.toml

to create TOML files for translation as translate.<locale>.toml. After translating the messages run

goi18n merge active.*.toml translate.*.toml

to merge the messages back into the active translation files. To add a new language you need to add the language code to main.go's i18n bundle loading code

for _, lang := range []string{"en-US", "de-DE"} {
    if _, err := bundle.LoadMessageFile(fmt.Sprintf("active.%s.toml", lang)); err != nil {
        log.Panic(err)
    }
}