dépôts / lhc / ateliers.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Modifications : etc/openssl/sympa.heureux-cyclage.org/host.cfg
[lhc/ateliers.git] / etc / openssl / sympa.heureux-cyclage.org / host.cfg
diff --git a/etc/openssl/sympa.heureux-cyclage.org/host.cfg b/etc/openssl/sympa.heureux-cyclage.org/host.cfg
index 751b739..dc744bd 100644 (file)
--- a/etc/openssl/sympa.heureux-cyclage.org/host.cfg
+++ b/etc/openssl/sympa.heureux-cyclage.org/host.cfg
@@ -25,9 +25,9 @@
        jurisdictionOfIncorporationStateOrProvinceName = $ENV::x509_state_or_province
        jurisdictionOfIncorporationCountryName         = $ENV::x509_country
 [ extensions ]
-       basicConstraints       = critical,CA:TRUE,pathlen:0
-       keyUsage               = keyCertSign,cRLSign,digitalSignature,keyEncipherment
-       subjectAltName         = email:contact+$SERVICE@$ENV::x509_host,DNS:$SERVICE.$ENV::x509_host,DNS:$SERVICE.cyclocoop.org,DNS:$SERVICE.cyclocoop.heureux-cyclage.org
+       basicConstraints       = critical,CA:FALSE,pathlen:0
+       keyUsage               = keyEncipherment
+       subjectAltName         = email:contact+$SERVICE@$ENV::x509_host,DNS:$SERVICE.$ENV::x509_host,DNS:$SERVICE.cyclocoop.org,DNS:$SERVICE.cyclocoop.heureux-cyclage.org,DNS:$SERVICE.lesjantesdunord.org,DNS:$SERVICE.lesjantesdunord.heureux-cyclage.org,DNS:$SERVICE.ptitvelo.net,DNS:$SERVICE.ptitvelo.heureux-cyclage.org
        subjectKeyIdentifier   = hash
        issuerAltName          = issuer:copy
        authorityKeyIdentifier = keyid:always,issuer:always
@@ -37,7 +37,7 @@
 [ self_signed_extensions ]
        basicConstraints       = critical,CA:TRUE,pathlen:0
        keyUsage               = keyCertSign,cRLSign,digitalSignature,keyEncipherment
-       subjectAltName         = email:contact+$SERVICE@$ENV::x509_host,DNS:$SERVICE.$ENV::x509_host,DNS:$SERVICE.cyclocoop.org,DNS:$SERVICE.cyclocoop.heureux-cyclage.org
+       subjectAltName         = email:contact+$SERVICE@$ENV::x509_host,DNS:$SERVICE.$ENV::x509_host,DNS:$SERVICE.cyclocoop.org,DNS:$SERVICE.cyclocoop.heureux-cyclage.org,DNS:$SERVICE.lesjantesdunord.org,DNS.$SERVICE.lesjantesdunord.heureux-cyclage.org,DNS:$SERVICE.ptitvelo.net,DNS:$SERVICE.ptitvelo.heureux-cyclage.org
        subjectKeyIdentifier   = hash
        issuerAltName          = issuer:copy
        authorityKeyIdentifier = keyid:always,issuer:always
outils d'administration d'ateliers.heureux-cyclage.org