opensource/filestash
1
0
Fork 0
mirror of https://github.com/mickael-kerjean/filestash.git synced 2025-11-04 05:27:04 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
filestash/server/common/ssl/generate.go
Mickael Kerjean bceeadecae feature (https): support for HTTPS on the server
2019-05-12 02:21:39 +10:00

47 lines
1.1 KiB
Go
Raw Blame History

package ssl
import (
"crypto/rsa"
"crypto/tls"
"crypto/x509"
. "github.com/mickael-kerjean/filestash/server/common"
)
func GenerateSelfSigned() (tls.Certificate, *x509.CertPool, error) {
var err error
var key *rsa.PrivateKey
var root *x509.Certificate
var keyPEM []byte
var certPEM []byte
var TLSCert tls.Certificate
if key, keyPEM, err = GetPrivateKey(); err != nil {
Log.Error("[https] key_generation %v", err)
Clear()
return TLSCert, nil, err
}
if root, err = GetRoot(); err != nil {
Log.Error("[https] root_certificate %v", err)
Clear()
return TLSCert, nil, err
}
if _, certPEM, err = GetCertificate(key, root); err != nil {
Log.Error("[https] x509_certificate %v", err)
Clear()
return TLSCert, nil, err
}
if TLSCert, err = tls.X509KeyPair(certPEM, keyPEM); err != nil {
Log.Error("[https] tls_certificate %v", err)
Clear()
return TLSCert, nil, err
}
roots := x509.NewCertPool()
if ok := roots.AppendCertsFromPEM([]byte(certPEM)); ok == false {
Log.Error("[https] tls_client")
Clear()
return TLSCert, nil, err
}
return TLSCert, roots, nil
}
Reference in New Issue View Git Blame Copy Permalink