NaCL Certification System
{
// common part or request part
"version": string, // version: '1.0'
"type": string, // type: 'self', 'ca'
"tte": Date as ms, // cert live time to expire from UTC 1970-01-01T00:00:00Z, ms
"ca": string // CA domain name, like appnet.link,
// in case self-sign it MUST be filled in advance
"publickey": byte array, // NACL Box public key to sign with CA,
// or Sign public key to sign by self
"names": string array, // domain name to ask sign, ignore for self-sign cert
"ips": string array, // domain ip address to ask sign, ignore for self-sign cert
"macs": string array, // domain mac address to ask sign, ignore for self-sign cert
// append fields when sign
"gid": uuid string, // cert global id: 16 bytes of uuid string
"signtime": Date as ms, // signed time as ms from UTC 1970-01-01T00:00:00Z
}
{
signature: byte array // NACL signature
}
{
desc: Description object,
sign: Signature object
}
self-signed: {
// common part or request part
"version": string, // version: '1.0'
"type": 'self', // type: 'self'
"tte": Date as ms, // cert live time to expire from UTC 1970-01-01T00:00:00Z, ms
"ca": string // CA domain name, like appnet.link
"publickey": byte array, // NACL Sign public key to sign by self
}
ca-signed: {
// common part or request part
"version": string, // version: '1.0'
"type": 'ca', // type: 'ca'
"tte": Date as ms, // cert live time to expire from UTC 1970-01-01T00:00:00Z, ms
"ca": string // CA domain name, like appnet.link
"publickey": byte array, // NACL box public key to sign
"names": string array, // domain name to ask sign, ignore for self-sign cert
"ips": string array, // domain ip address to ask sign, ignore for self-sign cert
"macs": string array, // domain mac address to ask sign, ignore for self-sign cert
}
(MIT)
Copyright (c) 2014-present Tom Zhou(appnet.link@gmail.com)