4 Releases 9 Tags

RSS Feed

• v0.4.1 affa895cfe

  Compare

  v0.4.1 Stable

  slawek released this 2025-12-10 21:33:23 +01:00 | 5 commits to main since this release

  Release Notes

  Version v0.4.1

  New Features

  • Certificate database management: Added comprehensive certificate state tracking with JSON persistence
  • Certificate revocation: Full support for revoking certificates by name or serial number with configurable revocation reasons
  • Certificate Revocation List (CRL) generation: Generate standards-compliant CRL files from revoked certificates
  • Batch certificate provisioning: Provision multiple certificates from HCL configuration files with template support
  • Enhanced certificate types: Support for client, server, code-signing, and email certificates with proper usage validation
  • Subject Alternative Names (SAN) support: Full SAN support for DNS, IP, and email addresses
  • Template system: Go template support in certificate provisioning with variables and defaults
  • Dry-run mode: Validate certificate configurations without creating files
  • Verbose output: Detailed information about certificate operations

  Commands Added

  • list - List issued certificates with optional revoked certificate display
  • revoke - Revoke certificates by name or serial number
  • crl - Generate Certificate Revocation Lists
  • provision - Batch certificate provisioning from HCL files
  • version - Show version information

  Configuration Enhancements

  • HCL-based configuration: Modern HashiCorp Configuration Language for all config files
  • Flexible CA configuration: Configurable paths, key sizes, validity periods, and certificate metadata
  • Certificate defaults: Default values for batch provisioning operations
  • Template variables: Support for custom variables in certificate templates

  Bug Fixes

  • Fixed --revoked flag functionality in list command: The --revoked flag was declared and documented but not actually implemented in the logic. Now lab-ca list --revoked correctly shows all certificates including revoked ones with clear revocation status indication.

  Documentation Updates

  • Updated build instructions: Replaced references to removed build.sh script with current Makefile build process
  • Removed non-existent --overwrite flag references: Cleaned up documentation to remove references to --overwrite flags that don't exist in the actual implementation
  • Corrected version handling documentation: Removed references to non-existent version.go file

  Build System Changes

  • Replaced build.sh with Makefile: Simplified build process using Make instead of shell script
  • Automatic version detection: Version is now automatically determined from Git tags during build

  Downloads

  • Source Code (ZIP)
  • Source Code (TAR.GZ)