dépôts / lhc / ateliers.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Correction : X.509 Key Usage.
[lhc/ateliers.git] / etc / openssl / wiki.cyclocoop.org / host.cfg
diff --git a/etc/openssl/wiki.cyclocoop.org/host.cfg b/etc/openssl/wiki.cyclocoop.org/host.cfg
index 0302b56..df90c46 100644 (file)
--- a/etc/openssl/wiki.cyclocoop.org/host.cfg
+++ b/etc/openssl/wiki.cyclocoop.org/host.cfg
@@ -25,8 +25,8 @@
        jurisdictionOfIncorporationStateOrProvinceName = $ENV::x509_state_or_province
        jurisdictionOfIncorporationCountryName         = $ENV::x509_country
 [ extensions ]
-       basicConstraints       = critical,CA:TRUE,pathlen:0
-       keyUsage               = keyCertSign,cRLSign,digitalSignature,keyEncipherment
+       basicConstraints       = critical,CA:FALSE,pathlen:0
+       keyUsage               = keyEncipherment
        subjectAltName         = email:contact+$SERVICE@$ENV::x509_host,DNS:$SERVICE.$ENV::x509_host
        subjectKeyIdentifier   = hash
        issuerAltName          = issuer:copy
@@ -36,7 +36,7 @@
        certificatePolicies    = @certificate_policies
 [ self_signed_extensions ]
        basicConstraints       = critical,CA:TRUE,pathlen:0
-       keyUsage               = keyCertSign,cRLSign,digitalSignature,keyEncipherment
+       keyUsage               = keyEncipherment
        subjectAltName         = email:contact+$SERVICE@$ENV::x509_host,DNS:$SERVICE.$ENV::x509_host
        subjectKeyIdentifier   = hash
        issuerAltName          = issuer:copy
outils d'administration d'ateliers.heureux-cyclage.org