-
Notifications
You must be signed in to change notification settings - Fork 0
/
README
51 lines (38 loc) · 2.02 KB
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
Confusa
Copyright (C) 2007,2008,2009
UNINETT Sigma A/S
NDGF
Confusa shall provide an easy way of creating an X.509 identity token
from an existing (federated) identity.
It shall do so, by providing a secure login environment for the user, a
way of uploading a singing-request to the Confusa database.
Note: the system *will* check all attributes in the subject of the
CSR and drop the CSR if any of these attributes does not correspond
with attributes obtained from the federated identity.
Current attributes that are checked:
- key length. Keys shorter than key_length in
config/confusa_config.php will be discarded when the key is
uploaded.
- Subject in key. CommonName *must* correspond to
eduPersonPrincipalName.
- A certificate will never be reissued. For this reason, Confusa will
check that the public-key does not belong to a previously signed
certificate.
The user will then be presented with a list of available (uploaded)
CSRs and the opportunity to inspect, delete or approve for signing.
The latter will either ship the CSR off to an online CA, or to the
internal signing engine (standalone mode).
The signed certificate is then made available to the user, and the
user can choose to download, ship it via email, delete it or revoke it.
This software is provided 'as is', and the developers are, under no
circumstances, responsible for any loss or corruption of data or
hardware you may encounter. It is, however, presented in the most
stable manner possible at this stage, and we work very hard to ensure
that only stable releases reach the public domain.
Please report any bugs to the developers ([email protected])
The file INSTALL contains instructions to how to install and configure
the system. Note that Confusa depends upon simpleSAMLphp. INSTALL
also contains the software requirements Confusa pose on the system
LICENSE state the license under which Confusa is released (GPLv3). Read
this before you start using the system, in case it invokes any
restrictions upon you as a user or organization.