Proof of Concept to generate certificate signing requests in a web browser using node-forge.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
Jan Dittberner 5f60c08ff4 Update dependency 10 months ago
handlers Implement CSR validation 10 months ago
src Implement CSRF protection 10 months ago
templates Implement CSR validation 10 months ago
.gitignore Improve example CA setup 10 months ago
COPYING Add GPL-2 license text 11 months ago
README.md Implement i18n support 11 months ago
active.de-DE.toml Decouple request and response via WebSocket 10 months ago
active.en-US.toml Decouple request and response via WebSocket 10 months ago
active.en.toml Decouple request and response via WebSocket 10 months ago
ca.cnf Improve example CA setup 10 months ago
go.mod Tidy dependencies 10 months ago
go.sum Tidy dependencies 10 months ago
gulpfile.js Add CA chain to download, improve UI 10 months ago
main.go Implement CSR validation 10 months ago
package-lock.json Update dependency 10 months ago
package.json Implement i18n support 11 months ago
setup_example_ca.sh Improve example CA setup 10 months ago

README.md

Browser PKCS#10 CSR generation PoC

This repository contains a small proof of concept implementation of browser based PKCS#10 certificate signing request and PKCS#12 key store generation using node-forge.

The backend is implemented in Go and utilizes openssl for the signing operations.

Running

  1. Clone the repository

    git clone https://git.dittberner.info/jan/browser_csr_generation.git
    
  2. Get dependencies and build assets

    cd browser_csr_generation
    npm install --global gulp-cli
    npm install
    gulp
    
  3. Setup the example CA and a server certificate and key

    ./setup_example_ca.sh
    openssl req -new -x509 -days 365 -subj "/CN=localhost" -addext subjectAltName=DNS:localhost -newkey rsa:3072 \
      -nodes -out server.crt.pem -keyout server.key.pem
    
  4. Run the Go based backend

    go run main.go
    

    Open https://localhost:8000/ in your browser.

  5. Run gulp watch

    You can run a gulp watch in a second terminal window to automatically publish changes to the files in the src directory:

    gulp watch
    

Translations

This PoC uses go-i18n for internationalization (i18n) support.

The translation workflow needs the go18n binary which can be installed via

go get -u  github.com/nicksnyder/go-i18n/v2/goi18n

To extract new messages from the code run

goi18n extract

Then use

goi18n merge active.*.toml

to create TOML files for translation as translate.<locale>.toml. After translating the messages run

goi18n merge active.*.toml translate.*.toml

to merge the messages back into the active translation files. To add a new language you need to add the language code to main.go's i18n bundle loading code

for _, lang := range []string{"en-US", "de-DE"} {
    if _, err := bundle.LoadMessageFile(fmt.Sprintf("active.%s.toml", lang)); err != nil {
        log.Panic(err)
    }
}