Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Extract SHA256 Hashes of Public Keys for the User #1

Open
paragonie-scott opened this issue Jun 19, 2016 · 0 comments
Open

Extract SHA256 Hashes of Public Keys for the User #1

paragonie-scott opened this issue Jun 19, 2016 · 0 comments

Comments

@paragonie-scott
Copy link
Member

While it's possible for users to extract public keys and calculate a SHA256 hash and then invoke addHash() on an opaque string constant, we should consider adding support for extracting public keys from:

  • Local TLS certificates signed by a CA
  • Certificate Signing Requests
  • Remote TLS certificates on a web URL

This gives us a few added benefits:

  • With Caddy, you can refresh the "active" certificate which only lives for 90 days (LetsEncrypt)
  • CloudFlare users can send an HTTP request and get the certificate in use by the edge server

This is, in my opinion, a usability win.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant