Skip to content
This repository was archived by the owner on Apr 6, 2026. It is now read-only.
This repository was archived by the owner on Apr 6, 2026. It is now read-only.

Feature: Add support for intermidiate CAs, CA rotation and CRL (Certificate Revocation List) generation #5

Description

@nyagamunene

Is your feature request related to a problem? Please describe.

  • Currently we are issuing certs directly with our root CA but for security reason we need intermediate CA to issue the entity certs and protect compromise of our root CA.
  • Also we need CA rotation to replace the existing root CA with a new one ensuring security by limiting the lifetime of any single CA.
  • The CRL is useful for checking a certificate that has been revoked and are no longer trusted.

Describe the feature you are requesting, as well as the possible use case(s) for it.

  1. Issuing of entity certs.
  2. Revoking of certs.
  3. Generating list of revoked certs.

Indicate the importance of this feature to you.

Must-have

Anything else?

No response

Metadata

Metadata

Assignees

Labels

enhancementNew feature or request

Type

No type

Fields

No fields configured for issues without a type.

Projects

Status
✅ Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions