A simple library to generate self signed x509 certs
npm install self-certThis is a simple library for generating a self-signed x509 keypair and certificate.
I looked at selfsigned before writing this
library, but it didn't seem to be well maintained and had a hard dependency
on an outdated version of node-forge. This library
also depends on node-forge, but it does so with semver qualifiers such that
newer versions can be specified by the library user.
The keys and certs generated by this library are configured for usage in any
scenario. Also, the certificate Subject Alternate Names (SANs) are populated
with the IP addresses of the present network interfaces as returned byos.networkInterfaces().
``js
const selfCert = require('self-cert')
const certDetails = selfCert({
attrs: {
stateName: 'Georgia',
locality: 'Atlanta',
orgName: 'Acme Widgets',
shortName: 'widget42'
},
expires: new Date('2030-12-31')
})
/* certDetails = {
privateKey: 'pem formatted string',
publicKey: 'pem formatted string',
certificate: 'pem formatted string'
} */
`
`js`
{
attrs: {
commonName: '', // Default: os.hostname()
countryName: '', // Default: 'US'
stateName: '', // Default: 'Georgia'
locality: '', // Default: 'Atlanta'
orgName: '', // Default: 'None'
shortName: '' // Default: 'example'
},
bits: 4096, // Default: 4096
expires: new Date(), // Default: 5 years
logger: {}
}
Notes:
+ commonName is used for the first SAN.stateName
+ maps to stateOrProvinceName.logger
+ should be a Log4j compliant logger; Pino isdebug
recommended. This library logs some progress messages at the level.
The default is a null logger.
This module may also be installed globally as a CLI tool:
`sh``
$ npm install -g self-cert
$ self-cert generate --help