https://github.com/wille-io/fast-ca

Minimalistic tool to create a local certificate authority and signed certificates in one simple command
https://github.com/wille-io/fast-ca

botan ca certificate certificate-authority cmake

Last synced: 9 months ago
JSON representation

Minimalistic tool to create a local certificate authority and signed certificates in one simple command

• Host: GitHub
• URL: https://github.com/wille-io/fast-ca
• Owner: wille-io
• Created: 2019-10-19T18:59:08.000Z (over 6 years ago)
• Default Branch: master
• Last Pushed: 2022-05-02T08:12:29.000Z (about 4 years ago)
• Last Synced: 2025-08-17T21:42:08.196Z (10 months ago)
• Topics: botan, ca, certificate, certificate-authority, cmake
• Language: C++
• Homepage:
• Size: 16.6 KB
• Stars: 0
• Watchers: 1
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
![fast-ca logo](https://wille.io/fast-ca.png "fast-ca logo")

# fast-ca

fast-ca is a minimalistic tool to create a local certificate authority and signed certificates in one simple command.

Use fast-ca to ... :

  - rapid prototype a public key encryption protected network

  - create a production ready secured private network with sane default options

  - have your websites in your own network encrypted to prevent password theft

  - and many more ...

### Sane defaults

fast-ca creates private keys with RSA and 4096 bits. The CA's certificate is hashed with SHA-256.

Common name and the DNS field are set to the FQDN, making the generated certificated usable in every (modern) browser.

### Installation

fast-ca requires [botan-2](https://botan.randombit.net/) to compile & run.

Install botan-2:

Ubuntu:

```sh

$ sudo apt install libbotan-2-dev

```

Fedora:

```sh

$ sudo dnf install botan2-devel

```

... or use the docker container:

```sh

docker run -it -v ${PWD}:/mnt willeio/fast-ca bash -c "cd /mnt && fastca MyHostname" # creates the CA and the cert + key for 'MyHostname' in the current directory

```

Use cmake to generate the fast-ca executable & install it on your system:

Ubuntu:

```sh

$ mkdir build

$ cd build

$ cmake ..

$ make

$ sudo make install

```

Fedora:

```sh

$ cmake -S . -B build

$ cmake --build build

$ cd build

$ sudo make install

```

### Usage

To create a certificate for a FQDN, just run fast-ca with the FQDN as parameter.

```sh

$ ./fastca test.example.com

```

If you run fast-ca for the first time, a new CA certificate including its corresponding private key is generated prior to generating the client certificate. For the CA private key generation, fast-ca aks for a password to encrypt the private key.

License

----

MIT