slawek/lab-ca
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

4 Releases 9 Tags

RSS Feed
  • v0.4.1 affa895cfe
    Compare

    v0.4.1
    Some checks failed
    Release / release (push) Failing after 53s
    Details
    Stable

    slawek released this 2025-12-10 21:33:23 +01:00 | 5 commits to main since this release

    Release Notes

    Version v0.4.1

    New Features

    • Certificate database management: Added comprehensive certificate state tracking with JSON persistence
    • Certificate revocation: Full support for revoking certificates by name or serial number with configurable revocation reasons
    • Certificate Revocation List (CRL) generation: Generate standards-compliant CRL files from revoked certificates
    • Batch certificate provisioning: Provision multiple certificates from HCL configuration files with template support
    • Enhanced certificate types: Support for client, server, code-signing, and email certificates with proper usage validation
    • Subject Alternative Names (SAN) support: Full SAN support for DNS, IP, and email addresses
    • Template system: Go template support in certificate provisioning with variables and defaults
    • Dry-run mode: Validate certificate configurations without creating files
    • Verbose output: Detailed information about certificate operations

    Commands Added

    • list - List issued certificates with optional revoked certificate display
    • revoke - Revoke certificates by name or serial number
    • crl - Generate Certificate Revocation Lists
    • provision - Batch certificate provisioning from HCL files
    • version - Show version information

    Configuration Enhancements

    • HCL-based configuration: Modern HashiCorp Configuration Language for all config files
    • Flexible CA configuration: Configurable paths, key sizes, validity periods, and certificate metadata
    • Certificate defaults: Default values for batch provisioning operations
    • Template variables: Support for custom variables in certificate templates

    Bug Fixes

    • Fixed --revoked flag functionality in list command: The --revoked flag was declared and documented but not actually implemented in the logic. Now lab-ca list --revoked correctly shows all certificates including revoked ones with clear revocation status indication.

    Documentation Updates

    • Updated build instructions: Replaced references to removed build.sh script with current Makefile build process
    • Removed non-existent --overwrite flag references: Cleaned up documentation to remove references to --overwrite flags that don't exist in the actual implementation
    • Corrected version handling documentation: Removed references to non-existent version.go file

    Build System Changes

    • Replaced build.sh with Makefile: Simplified build process using Make instead of shell script
    • Automatic version detection: Version is now automatically determined from Git tags during build
    Downloads
  • v0.3 e9d2634819
    Compare

    Bug fix release Stable

    slawek released this 2025-07-28 21:27:05 +02:00 | 28 commits to main since this release

    This release focuses on bug fixes and more code optimization.

    • Tests have been refined.
    • Added list command that prints the contents of the certificate database.
    • Added ability to mix certificate purposes, e.g. combine server and client, or client and email signing.
    • Fixed flawed default value and variable substitution mechanism.
    • Added state location to CA configuration file.
    • Refactored many variables and replaced local definitions used by Cobra with global ones.
    • Many more small fixes and improvements
    Downloads
  • v0.2 8b103f4c0f
    Compare

    Provisioning and CRL functionality Stable

    slawek released this 2025-07-28 10:44:10 +02:00 | 42 commits to main since this release

    Provisioning and CRL feature release

    • Added provisioning feature using a definition file.
    • Added certificate database management using JSON file storage
    • Added certificate revocation and CRL management
    • Refactored AI generated code and optimized
    • Removed unnecessary and un-optimal code.
    • Added test script and test provisioning file.
    Downloads
  • v0.1 6e427acb18
    Compare

    Initial release Stable

    slawek released this 2025-07-27 18:11:15 +02:00 | 51 commits to main since this release

    The initial release of lab-ca command line CA.

    It features only basic operations: create a CA, issue certificates.

    There are five types of certificates that may be created: server, server and client, client, email and code signing.

    CRLs, subordinate CAs, certificate revocation is not yet supported. Encrypted private keys are not supported.

    Downloads