Skip to content
This repository has been archived by the owner before Nov 9, 2022. It is now read-only.

Provide the option to auto-generate the certificate's private key using RSA instead of ECDSA #46

talawahtech opened this issue Nov 25, 2016 · 0 comments


Copy link

talawahtech commented Nov 25, 2016

If you call acme cert without the -k option it will auto-generate a private certificate key for the user, but it is currently hard-coded to only use the ECDSA algorithm. While ECDSA is supposed to be superior algorithm, ECDSA certs are not compatible with a number client and server systems e.g. AWS API Gateway requires a 2048bit RSA key.

It would be great if the user could optionally specify the private key certificate algorithm and key size using a flag. That would make things simpler, safer and easier for users who don't have openssl installed.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
None yet
None yet

No branches or pull requests

1 participant