v1.8.0

Changelog

• ad72452 chore: update goreleaser task (#20)
• 77292e2 feat: allow user to specify CRL date validity (#19)
• c701791 feat: verify cert against crl (#18)
• 25d1184 feat: add aki, ski and keyUsage to certificate output (#17)
• 67ac46c feat: add aki, ski and keyUsage to certificates (#16)
• 38e4eb1 feat: add ability to revoke certificates (#15)
• 81f090f feat: add support for reading crl files (#14)
• bf64611 feat: add crl support (#13)

v1.7.0

🔒 Certify v1.7.0

• Introduce the insecure flag on connect to enable users to establish a connection with the server without CA verification.
• Introduce the with-ca:/path/to/ca flag on connect to enable users to use user-provided CA when connecting to the server.
• Introduce the -interactive flag; allowing users to interactively create certificates
• Fixed issue when reading certificates from stdin

📦 Changelog

• ad15844 feat: allow to use insecure-flag and allow to use custom ca on -connect
• 0d740ff chore: add brew configuration to goreleaser
• bf1c54c feat: add ability to create cert interactively (#10)
• 925a2f8 fix: certificate output when reading certificate from stdin or file (#9)

v1.6.0

Certify v1.6.0

• Add the ability to use specific tls version when connecting to remote host, by using tlsVer argument
• Organization now are configurable, you can specify it by using o: argument
• Changed the current behavior when the new certificate has the same name with the previous one, certify will not override existing certificate.

Changelog

• 92290dd update help information (#8)
• 2b9826f add support to connect to tls host with spesific tls version (#7)
• 36526d3 Change file handling behaviour (#6)
• 9601aad feat(ca): add ability to set custom org and expiry (#5)

v1.5.1

Changelog

• 6fb2638 add arm architecture
• b34777c 🦊 update readme

v1.5.0

Changes

• Add a new flag for generating intermediate CA --intermediate
• Every generated certificate by default will be signed by an intermediate CA
• If intermediate CA doesn't exist, the generated certificate will be signed by rootCA instead
• Bugfix in -init flag when no cn: provided

Changelog

• 4854173 add test for export certificate
• 767b7ec add testdata
• 0a3c336 add unit test
• 6bc304c feat(ca): generate and sign cert with intermediate ca
• d3a62ad update readme
• 10667ac add unit test
• abf7a9a remove unneeded file
• f79a1c1 add support for generate intermediate ca
• ab63a10 add more test
• 39f7f71 add more test
• b91a01c add more test
• ac655c2 Merge branch 'master' of github.com:nothinux/certify
• 32d556b refactor command
• 98c66d2 bugfix nil pointer when -init
• 683b0e8 Update README.md
• 07e775c add codecov

v1.4.1

Bugfix

• Bugfix expiry not parsed
• Bugfix first extended key usage not parsed

Changelog

• 308a94a add more test
• 7ebbd57 add more test
• ff0698c bugfix expiry not parsed
• 7fb319f remove multiple conditional check
• e7cee02 bugfix first eku not parsed

v1.4.0

Changes

• Add support for a custom extended key usage with argument eku:
• If eku: not provided, by default will be set to serverAuth and clientAuth
• Add support for reading certificate from pipe, now certify can read certificate with cat cert.pem | certify -read

Changelog

• 2b12022 update readme
• 214039d add ability to read more eku
• c23ec7a add feature to add custom extended key usage
• 8ca6ed5 fix wording
• f515e5e add ability to read certificate from pipe

v1.3.0

Changelog

• 3eb2ca9 fix type
• df9dec9 update readme
• ad758ea add ldflags
• 65c8e53 update readme
• 8c81f6d make sure privkey and certificate given match
• 9da1bc0 add support to verify privkey and cert
• 2e8f4d7 add support to export cert to pkcs12
• f41821d add version flag
• 8512426 add more info for rsa cert
• a6da3a8 get first index
• 917953d get cert info from remote host

v1.2.1

Changelog

• cf95b60 don't show field if no san information
• fceb838 fix if expiry not provided

v1.2.0

Changelog

• 8508ac7 add feature for show cert info
• cbe23e6 update readme
• 68054b2 add expiry support
• 3bba86f fix -init without cn
• e4a3a27 add test for helper