jan
/
browser_csr_generation
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
Proof of Concept to generate certificate signing requests in a web browser using node-forge.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16 Commits
1 Branch
0 Tags
539 KiB
 
 
 
 
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Jan Dittberner 5f60c08ff4
Update dependency 		12 months ago
handlers Implement CSR validation 12 months ago
src Implement CSRF protection 1 year ago
templates Implement CSR validation 12 months ago
.gitignore Improve example CA setup 1 year ago
COPYING Add GPL-2 license text 1 year ago
README.md Implement i18n support 1 year ago
active.de-DE.toml Decouple request and response via WebSocket 12 months ago
active.en-US.toml Decouple request and response via WebSocket 12 months ago
active.en.toml Decouple request and response via WebSocket 12 months ago
ca.cnf Improve example CA setup 1 year ago
go.mod Tidy dependencies 12 months ago
go.sum Tidy dependencies 12 months ago
gulpfile.js Add CA chain to download, improve UI 12 months ago
main.go Implement CSR validation 12 months ago
package-lock.json Update dependency 12 months ago
package.json Implement i18n support 1 year ago
setup_example_ca.sh Improve example CA setup 1 year ago

README.md

Browser PKCS#10 CSR generation PoC

This repository contains a small proof of concept implementation of browser based PKCS#10 certificate signing request and PKCS#12 key store generation using node-forge.

The backend is implemented in Go and utilizes openssl for the signing operations.

Running

  1. Clone the repository

    git clone https://git.dittberner.info/jan/browser_csr_generation.git

  2. Get dependencies and build assets

    cd browser_csr_generation
npm install --global gulp-cli
npm install
gulp

  3. Setup the example CA and a server certificate and key

    ./setup_example_ca.sh
openssl req -new -x509 -days 365 -subj "/CN=localhost" -addext subjectAltName=DNS:localhost -newkey rsa:3072 \
  -nodes -out server.crt.pem -keyout server.key.pem

  4. Run the Go based backend

    go run main.go

    Open https://localhost:8000/ in your browser.

  5. Run gulp watch

    You can run a gulp watch in a second terminal window to automatically publish changes to the files in the src directory:

    gulp watch

Translations

This PoC uses go-i18n for internationalization (i18n) support.

The translation workflow needs the go18n binary which can be installed via

go get -u  github.com/nicksnyder/go-i18n/v2/goi18n

To extract new messages from the code run

goi18n extract

Then use

goi18n merge active.*.toml

to create TOML files for translation as translate.<locale>.toml. After translating the messages run

goi18n merge active.*.toml translate.*.toml

to merge the messages back into the active translation files. To add a new language you need to add the language code to main.go's i18n bundle loading code

for _, lang := range []string{"en-US", "de-DE"} {
    if _, err := bundle.LoadMessageFile(fmt.Sprintf("active.%s.toml", lang)); err != nil {
        log.Panic(err)
    }
}