foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

ipsilon: Fix configuration

Browse source
This commit is contained in:
Timo Makinen 2025-03-01 19:09:07 +00:00
parent 5f412a50c5
commit a793f59a33
4 changed files with 37 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

28
roles/ipsilon/README.md Normal file
View file

@ -0,0 +1,28 @@
== Creating openidc key ==
Create two rsa keys:
```
openssl genrsa -out signing.key 4096
openssl genrsa -out encryption.key 4096
```
Create JWK keys:
```
python3 -c '
from datetime import datetime
from jwcrypto.jwk import JWK, JWKSet
keyset = JWKSet()
date = datetime.now().strftime("%Y%m%d")
with open("./signing.key", "r") as key:
jwkkey = JWK.from_pem(key.read().encode("UTF-8"))
jwkkey.update(use="sig")
jwkkey.update(kid=f"{date}-sig")
keyset.add(jwkkey)
with open("./encryption.key", "r") as key:
jwkkey = JWK.from_pem(key.read().encode("UTF-8"))
jwkkey.update(use="enc")
jwkkey.update(kid=f"{date}-enc")
keyset.add(jwkkey)
print(keyset.export())
'
```