mirror of https://github.com/microsoft/playwright.git synced 2024-12-11 12:33:45 +03:00

History

Max Schmitt cf31aa8b4c cherry-pick(#32008 ): chore(client-certificates): rewrite error for unsupported PFX errors		2024-08-05 14:44:12 +02:00
..
client	cherry-pick(#32008 ): chore(client-certificates): rewrite error for unsupported PFX errors	2024-08-05 14:44:12 +02:00
server	test: unflake client-certificate WebKit tests (#31776 )	2024-07-19 15:08:04 +02:00
README.md	cherry-pick(#32007 ): fix(client-certificates): report error to the browser if incorrect passphrase	2024-08-05 14:43:58 +02:00

README.md

Client Certificate test-certificates

Server

openssl req \
	-x509 \
	-newkey rsa:4096 \
	-keyout server/server_key.pem \
	-out server/server_cert.pem \
	-nodes \
	-days 365 \
	-subj "/CN=localhost/O=Client\ Certificate\ Demo" \
	-addext "subjectAltName=DNS:localhost,DNS:local.playwright"

Trusted client-certificate (server signed/valid)

mkdir -p client/trusted
# generate server-signed (valid) certifcate
openssl req \
	-newkey rsa:4096 \
	-keyout client/trusted/key.pem \
	-out client/trusted/csr.pem \
	-nodes \
	-days 365 \
	-subj "/CN=Alice"

# sign with server_cert.pem
openssl x509 \
	-req \
	-in client/trusted/csr.pem \
	-CA server/server_cert.pem \
	-CAkey server/server_key.pem \
	-out client/trusted/cert.pem \
	-set_serial 01 \
	-days 365
# create pfx
openssl pkcs12 -export -out client/trusted/cert.pfx -inkey client/trusted/key.pem -in client/trusted/cert.pem -passout pass:secure

Self-signed certificate (invalid)

mkdir -p client/self-signed
openssl req \
	-newkey rsa:4096 \
	-keyout client/self-signed/key.pem \
	-out client/self-signed/csr.pem \
	-nodes \
	-days 365 \
	-subj "/CN=Bob"

# sign with self-signed/key.pem
openssl x509 \
	-req \
	-in client/self-signed/csr.pem \
	-signkey client/self-signed/key.pem \
	-out client/self-signed/cert.pem \
	-days 365