39 lines
1.2 KiB
Markdown
39 lines
1.2 KiB
Markdown
# Creating a CAcert OIDC server
|
|
|
|
The following should help you to create a machine that allows you to register sites that can behave as an OpenID Connect server for CAcert Client Certificates.
|
|
|
|
Most of the instructions are in INSTALL.txt, but this will give you a few instructions as a bootstrap.
|
|
|
|
To install this project, you should start with a machine, whether physical or virtual, based on Debian 12.
|
|
|
|
You will need three DNS entries pointing at this machine.
|
|
|
|
They are the normal one, one that is "authserver.[Your Domain Name]" and "idp.[Your Domain Name]".
|
|
|
|
Before continuing, you will need to have Git installed in this machine.
|
|
|
|
You will probably want to do:
|
|
|
|
```
|
|
dpkg-reconfigure locales
|
|
```
|
|
|
|
and make sure that the _C_ locale is selected.
|
|
|
|
|
|
If it does not exist, create a "normal" user and give them "sudo" access in /etc/group
|
|
|
|
Become that user.
|
|
|
|
Start by creating a working directory to work in. I will refer to this as [WorkingDirectory].
|
|
|
|
Once that is accomplished, change into that [WorkdingDirectory] and:
|
|
|
|
```
|
|
git clone https://code.cacert.org/cacert/oidc-registration-php.git
|
|
cd oidc-registration-php
|
|
```
|
|
|
|
Once there, you can open the INSTALL.txt file and follow those instructions.
|
|
|
|
|