You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -9,11 +9,11 @@ Certificates for adserver domains are automatically generated at real-time upon
_pixelserv-tls_ is only capable of serving HTTPS requests when a root CA cert is configured. One way to generate a Root CA is to run Easy-RSA 3.0 from your PC. Follow this [EasyRSA Quickstart] guide. Only the first two steps are needed:
*`./easyrsa init-pki`
*`./easyrsa build-ca`
*`./easyrsa build-ca nopass`
EasyRSA will ask for a passphrase for the private key of this new Root CA cert. Save this passphrase in a separate text file. Name it `ca.key.passphrase`.
When prompted for a Common Name, type in "Pixelserv CA".
When EasyRSA finishes, it places `ca.crt` and `ca.key` under `pki/private` sub-dir. Upload these two files together with `ca.key.passphrase` to `/opt/var/cache/pixelserv` on your router.
When EasyRSA finishes, it places `ca.crt` and `ca.key` under `pki` and `pki/private` sub-dirs respectively. Upload these two files to `/opt/var/cache/pixelserv` on your router.
The final step is to import `ca.crt` as a trusted Root CA into your client OS. Otherwise, we will see a broken pad-lock in browsers.
OS X, Windows, iOS and Android are confirmed to work.
