26 lines
934 B
Python
26 lines
934 B
Python
from datetime import datetime, timedelta
|
|
|
|
from cryptography import x509
|
|
from cryptography.hazmat.primitives import hashes
|
|
from cryptography.hazmat.primitives.asymmetric import rsa
|
|
|
|
# generate a private key for the certificate
|
|
private_key = rsa.generate_private_key(public_exponent=65537, key_size=2048)
|
|
# get the public key from it
|
|
public_key = private_key.public_key()
|
|
|
|
# create a builder for the certificate
|
|
builder = x509.CertificateBuilder(
|
|
issuer_name=x509.Name([x509.NameAttribute(x509.oid.NameOID.COMMON_NAME, "vote.gouv.fr")]),
|
|
subject_name=x509.Name([x509.NameAttribute(x509.oid.NameOID.COMMON_NAME, "vote.gouv.fr")]),
|
|
serial_number=x509.random_serial_number(),
|
|
public_key=public_key,
|
|
not_valid_before=datetime.now(),
|
|
not_valid_after=datetime.now() + timedelta(weeks=1),
|
|
)
|
|
|
|
# create the certificate by signing it
|
|
certificate = builder.sign(private_key, algorithm=hashes.SHA256())
|
|
|
|
|
|
print(certificate)
|