feature request: ability to specify org name

[ldayananda]

Currently the following will use UserAndHostname for certificate subject and Issuer OrganizationalUnit:

mkcert/cert.go

Lines 34 to 39 in fcebdc9

	u, _ := user.Current()
	if u != nil {
	userAndHostname = u.Username + "@"
	}
	out, _ := exec.Command("hostname").Output()
	userAndHostname += strings.TrimSpace(string(out))

It would be nice to be able to specify a different OrganizationalUnit, maybe with -org-unit=

[adamdecaf]

I'm not a fan of this. mkcert is for local dev certificates.

Can you explain the use-case a bit more? If you need a certificate with real details why not get one from a CA?

[ldayananda]

This is more for sharing with a team for a locally run tool. The hostname being tied to a user is awkward, but not a showstopper.

[FiloSottile]

mkcert has as few configuration options as possible by design. I don't think we should add one for this. I understand it's not great to have a username in a team root, but in a sense it helps remember that you are trusting whoever generated it with full MitM capabilities (as they might have a copy of the private key).