Skip to content
This repository has been archived by the owner before Nov 9, 2022. It is now read-only.

Provide the option to auto-generate the certificate's private key using RSA instead of ECDSA #46

Open
talawahtech opened this issue Nov 25, 2016 · 0 comments

Comments

@talawahtech
Copy link

talawahtech commented Nov 25, 2016

If you call acme cert without the -k option it will auto-generate a private certificate key for the user, but it is currently hard-coded to only use the ECDSA algorithm. While ECDSA is supposed to be superior algorithm, ECDSA certs are not compatible with a number client and server systems e.g. AWS API Gateway requires a 2048bit RSA key.

It would be great if the user could optionally specify the private key certificate algorithm and key size using a flag. That would make things simpler, safer and easier for users who don't have openssl installed.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant