From 260fd2a8dbd57d97be39e77ea3fb62ddc2051596 Mon Sep 17 00:00:00 2001
From: Thomas Leister <t.leister@adito.de>
Date: Fri, 10 Feb 2017 10:11:22 +0100
Subject: [PATCH] version 0.2 release

---
 config.default.yml                       | 10 +++++-----
 genpki.js                                |  1 +
 package.json                             |  2 +-
 pkitemplate/openssl_intermediate.cnf.tpl |  2 +-
 4 files changed, 8 insertions(+), 7 deletions(-)

diff --git a/config.default.yml b/config.default.yml
index 0f6e2ad..522e3c6 100644
--- a/config.default.yml
+++ b/config.default.yml
@@ -3,7 +3,7 @@
 ###
 
 server:
-    ip: 192.168.42.53
+    ip: 0.0.0.0
     port: 8081
 
 
@@ -31,9 +31,9 @@ ca:
         ocsp:
             passphrase: yyyy
             country: DE
-            commonname: ocsp.adito.local
+            commonname: ocsp.adito.local:2560
         crl:
-            url: http://crl.adito.local/crl.pem
+            url: http://crl.adito.local:2561/crl.pem
 
 
 ###
@@ -44,7 +44,7 @@ ca:
 ###
 
 ocsp:
-    ip: 192.168.42.53
+    ip: 0.0.0.0
     port: 2560
 
 
@@ -54,5 +54,5 @@ ocsp:
 ###
 
 crl:
-    ip: 192.168.42.53
+    ip: 0.0.0.0
     port: 2561
diff --git a/genpki.js b/genpki.js
index 6936f35..61bf69f 100644
--- a/genpki.js
+++ b/genpki.js
@@ -104,6 +104,7 @@ var createFileStructure = function() {
         openssl_intermediate = openssl_intermediate.replace(/{organization}/g, global.config.ca.intermediate.organization);
         openssl_intermediate = openssl_intermediate.replace(/{commonname}/g, global.config.ca.intermediate.commonname);
         openssl_intermediate = openssl_intermediate.replace(/{ocspurl}/g, 'http://' + global.config.ca.intermediate.ocsp.commonname);
+        openssl_intermediate = openssl_intermediate.replace(/{crlurl}/g, global.config.ca.intermediate.crl.url);
 
         fs.writeFileSync(pkidir + 'intermediate/openssl.cnf', openssl_intermediate);
 
diff --git a/package.json b/package.json
index cde16f3..00b85b8 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "nodepki",
-  "version": "0.1.0",
+  "version": "0.2.0",
   "description": "NodeJS-based PKI server for x509 certificate management.",
   "author": "Thomas Leister <thomas.leister@mailbox.org>",
   "license": "MIT",
diff --git a/pkitemplate/openssl_intermediate.cnf.tpl b/pkitemplate/openssl_intermediate.cnf.tpl
index a2c4e57..3e10008 100644
--- a/pkitemplate/openssl_intermediate.cnf.tpl
+++ b/pkitemplate/openssl_intermediate.cnf.tpl
@@ -95,7 +95,7 @@ subjectKeyIdentifier = hash
 authorityKeyIdentifier = keyid,issuer:always
 keyUsage = critical, digitalSignature, keyEncipherment
 extendedKeyUsage = serverAuth
-crlDistributionPoints = URI:http://example.com/intermediate.crl.pem
+crlDistributionPoints = URI:{crlurl}
 authorityInfoAccess = OCSP;URI:{ocspurl}