On Fri, 2009-11-20 at 07:23 -0500, Scott Lawrence wrote:
>
> When a new certificate is uploaded, the screen should:
>
> 1. Validate it (I can do a quick change to an existing script to
> make this easy)
For the validation above, use:
$SIPX_BINDIR/ssl-cert/check-cert.sh --certificate-authority
<certificate>
if it returns success (0), then the certificate is a valid CA
certificate. (use main r17315 or greater).
Note that with many public CAs, it may be necessary to load a hierarchy
of certificates, starting with the root certificate of the CA and then
loading intermediate certificates to create the chain down to the one
that's used to sign end-user certificates.
> 2. Display it for the user to get confirmation that this is what
> they meant to upload
For that display, use the output of
$SIPX_BINDIR/ssl-cert/gen-ssl-keys-cert.sh --show-cert
<certificate-file>
_______________________________________________
sipx-dev mailing list [email protected]
List Archive: http://list.sipfoundry.org/archive/sipx-dev
Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev
sipXecs IP PBX -- http://www.sipfoundry.org/
