Skip site navigation (1)Skip section navigation (2)

FreeBSD Manual Pages

  
 
  

home | help
OpenXPKI::SerOpenXPKI:UservContributedwPerltDocumentation:CertificateExport(3)

Name
       OpenXPKI::Server::Workflow::Activity::Tools::CertificateExport

Description
       Create a	text export for	a certificate using a template.	The export
       file can	contain	the chain and private key.

Configuration
   Activity parameters
       cert_identifier
	   The cert to be exported.

       template
	   A template toolkit string to	be used	to render the output. The
	   parser is called with five parameters. Certificates are PEM
	   encoded, keys might be in binary format, depending on the
	   key_format parameter!

	   certificate
	       The PEM encoded certificate.

	   subject
	       The subject of the certificate

	   ca  The PEM encoded ca certificate, might be	empty if the chain can
	       not be completed.

	   key The private key,	requires the key_password to be	set to the
	       correct value. Obviously, keys are only available if created or
	       imported.

	   chain
	       An ARRAY	of PEM encoded intermediates, might be empty.

       key_password
	   The password	which was used to persist the key, also	used for
	   encrypting the exported key if export_password is not set.

       key_format, optional
	    @see OpenXPKI::Server::API::Object::get_private_key_for_cert

       export_password,	optional
	   Encrypt the key with	this password instead of the input password.
	   Ignored if empty, to	export unencrypted, you	must also set the
	   unencrypted flag.

       unencrypted, optional
	   Set this to a boolean true value AND	set export_password to the
	   empty string	to export the key unencrypted.

       alias, optional
	   For PKCS12 sets the so called "friendly name" for the certificate.
	   For Java Keystore sets the keystore alias.  Parameter is ignored
	   for any other key types.

       die_on_error
	   Boolean, if true the	activity will throw an exception if the
	   private key could not be restored (which usually means that the
	   wrong password was provided). If false/not set, the target_key is
	   just	empty on error.

       target_key, optional
	   The context key to write the	result to, default is
	   certificate_export.	Note: If you export a key and use a persisted
	   workflow, this will leave the (password protected) key readable in
	   the context forever.

perl v5.24.1 OpenXPKI::Server::Workflow::Activity::Tools::CertificateExport(3)

Name | Description | Configuration

Want to link to this manual page? Use this URL:
<https://www.freebsd.org/cgi/man.cgi?query=OpenXPKI::Server::Workflow::Activity::Tools::CertificateExport&sektion=3&manpath=FreeBSD+12.1-RELEASE+and+Ports>

home | help