HTTPS on local env

04 Dec 2018

Using OpenSSL to generate all of our certificates.[^1] [^1]: How to get HTTPS working on your local development environment in 5 minutes

Root SSL certificate

openssl genrsa -des3 -out rootCA.key 2048
openssl req -x509 -new -nodes -key rootCA.key -sha256 -days 1024 -out rootCA.pem

Trust the root SSL certificate

Import root ssl into you system, include windows, Mac os and linux

Domain SSL certificate

openssl req -new -sha256 -nodes -out server.csr -newkey rsa:2048 -keyout server.key -config <( cat server.csr.cnf )

openssl x509 -req -in server.csr -CA rootCA.pem -CAkey rootCA.key -CAcreateserial -out server.crt -days 500 -sha256 -extfile v3.ext

And put two file before run above commands ¹

File `server.csr.cnf`

[req]
default_bits = 2048
prompt = no
default_md = sha256
distinguished_name = dn

[dn]
C=US
ST=RandomState
L=RandomCity
O=RandomOrganization
OU=RandomOrganizationUnit
emailAddress=hello@example.com
CN = <domain name>

File `v3.ext`

authorityKeyIdentifier=keyid,issuer
basicConstraints=CA:FALSE
keyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment
subjectAltName = @alt_names

[alt_names]
DNS.1 = localhost

dakshshah96/local-cert-generator ↩

Liduan Worklog

HTTPS on local env

Root SSL certificate

Trust the root SSL certificate

Domain SSL certificate

File server.csr.cnf

File v3.ext

Related Posts

Get IP from command line 04 Jun 2023

Get path of bash script 31 Aug 2022

Disk usage statistics in linux 12 Jul 2022

File `server.csr.cnf`

File `v3.ext`