~sbaildon/pki

easy local https development
break down makefile
better readme
convert plist to tab

refs

main
browse  log 

clone

read-only
https://git.sr.ht/~sbaildon/pki
read/write
git@git.sr.ht:~sbaildon/pki

You can also use your local clone with git send-email.

#PKI

Install PKI on a local machine for easy https development

macOS only

#Install

git clone git@git.sr.ht:~sbaildon/pki

cd pki

# setup pki: root ca, config, etc; trust certificates
make

# install and load agent
make install

#Running

launchctl bootstrap gui/(id -u) ~/Library/LaunchAgents/localhost.ca.plist
launchctl enable gui/(id -u)/localhost.ca

#Examples

Configure caddy to use the local ACME authority

# Caddyfile v2

# global config
{
  email {$USER}@{$HOSTNAME}
  acme_ca https://ca.localhost:8448/acme/acme/directory
  acme_ca_root {$XDG_DATA_HOME}/step/certs/root_ca.crt
}

myapp.localhost {
	reverse_proxy localhost:3000
}