Support for revoking a certificate

voltone / x509

Elixir package for working with X.509 certificates, Certificate Signing Requests (CSRs), Certificate Revocation Lists (CRLs) and RSA/ECC key pairs

BSD 3-Clause "New" or "Revised" License

120 stars 28 forks source link

Support for revoking a certificate #9

Closed fhunleth closed 6 years ago

fhunleth commented 6 years ago

Do you have plans for creating an API for creating a CRL or adding a new certificate to a CRL?

voltone commented 6 years ago

Yes, and I also want to add helpers for building OCSP clients/servers (see https://blog.voltone.net/post/21).

I'll keep this one open to track the progress on CRL support. Thanks!

fhunleth commented 6 years ago

Nice! This library is great, btw. We're actively refactoring calls out to openssl and cfssl in NervesHub with calls here, and it's really simplifying our code.

voltone commented 6 years ago

Cool, that's exactly what I intended this library for: I kept seeing people use OpenSSL for things that OTP can do out of the box.

Please keep the feedback coming: I don't have an immediate need for this package myself, so I don't know what works well and what doesn't. And seeing people use it will push me to work on it some more...