In the sp configuration we must indicate a certificate and a private key. However generating certificates require knowledge that the user don't have (the use of the openssl command with linux is tricky).
We should then provide a form to generate the certificate. It should contains these fields:
the number of days for validity
country (FR....)
state (France...)
locality (Paris..)
Organization (could be prefilled with the organization[name] configuration property)
Organization Unit (a name...)
Common Name (could be prefilled with the domain name of the organization[url] configuration property, or with the domain name of the application)
To generate the private key, we should use 4096 for the length and the rsa algorithm.
To generate the certificate we could use the openssl api, or one of the existing PHP library that wraps openssl or else.
In the sp configuration we must indicate a certificate and a private key. However generating certificates require knowledge that the user don't have (the use of the openssl command with linux is tricky).
We should then provide a form to generate the certificate. It should contains these fields:
organization[name]
configuration property)organization[url]
configuration property, or with the domain name of the application)To generate the private key, we should use 4096 for the length and the rsa algorithm.
To generate the certificate we could use the openssl api, or one of the existing PHP library that wraps openssl or else.