Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Subject Alternative Names to self-siged certificate #30

Merged
merged 1 commit into from
Mar 24, 2024
Merged

Add Subject Alternative Names to self-siged certificate #30

merged 1 commit into from
Mar 24, 2024

Conversation

kelke
Copy link
Contributor

@kelke kelke commented Mar 19, 2024

When using the self-signed certificate generated by openssl for nginx, only the Common Name is used for validating requests.
This behaviour is deprecated and will be removed from certain libraries in the future:
Feature: Remove support for common names in certificates
Remove support for common names in certificates; only support Subject Alt Names

I have noticed this while using the REST API with the python requests library, which generated the following warning for each request:
python-requests-warning

This commit does not delete existing certificates, only adds the SAN extension to newly generated ones.
I included:

  • localhost
  • 127.0.0.1
  • ::1

Tested on debian 12 using the latest docker engine by docker.com

@ostefano
Copy link
Collaborator

Thank you for the PR. Will merge it before the next version of MISP is released 👍

@ostefano ostefano added the enhancement New feature or request label Mar 21, 2024
@ostefano ostefano self-assigned this Mar 21, 2024
@ostefano ostefano merged commit 92c2219 into MISP:master Mar 24, 2024
1 check passed
@kelke
Copy link
Contributor Author

kelke commented Mar 26, 2024

I did not realize i changed the permissions, sorry about that!

@kelke kelke deleted the x509-subject-alt-names branch March 26, 2024 08:55
@ostefano
Copy link
Collaborator

@kelke Yep, noticed, and fixed it, no worries.

dgujarathi pushed a commit to dgujarathi/misp-docker that referenced this pull request Oct 6, 2024
@kelke
add subject alternative names to self-siged certificate (MISP#30)
f201392
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ostefano ostefano ostefano approved these changes

Assignees

@ostefano ostefano

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kelke @ostefano