Attention: this is the key used to sign the certificate requests, anyone holding this can sign certificates on your behalf. So keep it in a safe place!
openssl genrsa -des3 -out rootCA.key 4096
Jens Peveling jenspeveling
jenspeveling
/ self-signed-certificate-with-custom-ca.md
Created
August 13, 2021 19:52
— forked from fntlnz/self-signed-certificate-with-custom-ca.md
Self Signed Certificate with Custom Root CA
jenspeveling
/ lambda_append_index_CFN.js
Last active
June 10, 2020 14:31
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 'use strict'; | |
| /** | |
| * this is useful if you want to use S3 endpoint over S3 Webserver Endpoint for Cloudfront Origin because | |
| * OAI is not possible with S3 Webserver Origin (You can restrict access by using secrets in headers but | |
| * you'd have to leave the bucket public - this might be against company policy or does not fit your security | |
| * architecture) | |
| * | |
| Downside if using S3 endpoint origin is lack of support for paths in URI. e.g | |
| * www.example.com/path/ will return empty object. What we actually want is to |