Add a check to the admin list/detail page indicating a valid chain #4
Labels
enhancement
New feature or request
Comments
CharString
added a commit
that referenced
this issue
Oct 13, 2022
Uses pyOpenSSL primitives to approximately check the validity of a chain. And instead of using pem's in the repo that will expire, it creates temporary fixture certificates. Someday there might be a correct abstraction in the cryptography library. See: pyca/cryptography#6229 pyca/cryptography#2381
CharString
added a commit
that referenced
this issue
Oct 13, 2022
|
@joeribekker Can you review the code and test whether #6 solves your use case? If the root G1 is not deployed in the system cacert.pem, the check will fail. Possible expansions:
|
Merged
|
Fixed by #6 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
There should be a function that validates if the certificate has a valid root certificate.
This can be achieved in several ways like, having a cert with the full chain or having all intermediate certificates installed on the server. There's functions to check this (requests does it) I guess.
The text was updated successfully, but these errors were encountered: