X509 v0.5.1 X509.CSR View Source
Implements PKCS#10 Certificate Signing Requests (CSRs), formally known by their ASN.1 type CertificationRequest.
Link to this section Summary
Functions
Attempts to parse a CSR in DER (binary) format. Raises in case of failure
Parses a CSR in DER (binary) format
Attempts to parse a CSR in PEM format. Raises in case of failure
Parses a CSR in PEM format
Returns a :CertificationRequest
record for the given key pair and subject
Extracts the public key from the CSR
Returns the Subject field of the CSR
Converts a CSR to DER (binary) format
Converts a CSR to PEM format
Verifies whether a CSR has a valid signature
Link to this section Types
:CertificationRequest
record , as used in Erlang’s :public_key
module
Link to this section Functions
Attempts to parse a CSR in DER (binary) format. Raises in case of failure.
Parses a CSR in DER (binary) format.
Returns an :ok
tuple in case of success, or an :error
tuple in case of
failure. Possible error reasons are:
:malformed
- the data could not be decoded as a CSR
Attempts to parse a CSR in PEM format. Raises in case of failure.
Processes the first PEM entry of type CERTIFICATE REQUEST found in the input.
Parses a CSR in PEM format.
Processes the first PEM entry of type CERTIFICATE REQUEST found in the input.
Returns an :ok
tuple in case of success, or an :error
tuple in case of
failure. Possible error reasons are:
:not_found
- no PEM entry of type CERTIFICATE REQUEST was found:malformed
- the entry could not be decoded as a CSR
new(X509.PrivateKey.t(), String.t() | X509.RDNSequence.t(), Keyword.t()) :: t()
Returns a :CertificationRequest
record for the given key pair and subject.
Supports RSA and EC private keys. The public key is extracted from the private key and encoded, together with the subject, in the CSR. The CSR is then signed with the private key, using a configurable hash algorithm.
The default hash algorithm is :sha256
. An alternative algorithm can be
specified using the :hash
option. Possible values include :sha224
,
:sha256
, :sha384
, :sha512
.
Older hash algorithms, supported for compatibility with older software only,
include :md5
(RSA only) and :sha
. The use of these algorithms is
discouraged.
Extracts the public key from the CSR.
Returns the Subject field of the CSR.
Converts a CSR to DER (binary) format.
Converts a CSR to PEM format.
Verifies whether a CSR has a valid signature.