https://github.com/razerm/postgres_crl_test
https://github.com/razerm/postgres_crl_test
Last synced: 9 months ago
JSON representation
- Host: GitHub
- URL: https://github.com/razerm/postgres_crl_test
- Owner: RazerM
- Created: 2017-02-26T13:02:27.000Z (almost 9 years ago)
- Default Branch: master
- Last Pushed: 2017-02-26T14:13:18.000Z (almost 9 years ago)
- Last Synced: 2025-01-29T15:35:12.256Z (11 months ago)
- Language: Python
- Size: 3.91 KB
- Stars: 1
- Watchers: 4
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
Following https://jamielinux.com/docs/openssl-certificate-authority/index.html,
this was an attempt to create root and intermediate certificates, then
configure PostgreSQL to use them.
```
$ docker build -t postgres_crl_test .
```
```
...
Attempting client connection:
psql: SSL error: tlsv1 alert unknown ca
---> 3aa84e2b6a6e
Removing intermediate container 4eb0b9ed3eed
Step 12/12 : CMD /bin/bash
---> Running in 0085b17834a7
---> 9e42985d37d3
Removing intermediate container 0085b17834a7
Successfully built 9e42985d37d3
```
Note that PostgreSQL did not accept the connection.
Comment out this line in `setup.py`:
```
# c.send("ALTER SYSTEM SET ssl_crl_file = '{}/intermediate.crl.pem';".format(CONFIG_DIR))
```
and now the connection works:
```
$ docker build -t postgres_crl_test .
```
```
...
Attempting client connection:
?column?
----------
1
(1 row)
---> 3aa84e2b6a6e
Removing intermediate container 4eb0b9ed3eed
Step 12/12 : CMD /bin/bash
---> Running in 0085b17834a7
---> 9e42985d37d3
Removing intermediate container 0085b17834a7
Successfully built 9e42985d37d3
```