search

shibayan / keyvault-acmebot

Automated ACME SSL/TLS certificates issuer for Azure Key Vault (App Service / Container Apps / App Gateway / Front Door / CDN / others)
Apache License 2.0
891 stars 233 forks source link

keyUsage nonRepudiation #635

Closed mortenf1984 closed 7 months ago

mortenf1984 commented 10 months ago

Is your feature request related to a problem? Please describe. The certificates that is generated with KeyVault Acmebot and LetsEncrypt is not compatible with TLS1.3 as nonRepudiation is required as KeyUsage also

Describe the solution you'd like I would like to add nonRepudiation as key usage

Describe alternatives you've considered Alternative is to create own code that does this, but I want to use this application

Additional context Message from browsers are "ERR_SSL_KEY_USAGE_INCOMPATIBLE"

shibayan commented 10 months ago

I couldn't find a source for the information that nonRepudiation is required for key usage in TLS1.3, could you please share it?