A lot of services i have running locally are accessed using HTTP. Just for the sake of improving my knowledge of openssl and certificate chains i decided on securing those services with HTTPS
The .env-file contains environment variables, more specifically the passphrases for the ca, server private-key and the filenames. I strongly suggest chaning the passphrase. Modify the filenames to your liking.
My Modifications to the default openssl.conf-file. The distinguished names are used to fill out the ca-attributes. Change those to meet your requirements.
Used to incorporate the distinguished names within the csr. Modify it to meet your requirements.
OpenSSL-extension-file which defines the certificate extensions. Also used to specify the DNS Names. Modify it to match your domains.
After modifying above files, simply run ./openssl.sh to create all certificates