PKCS10ValidatorValve
Valve for validating content of a PKCS#10 certification signing requests (CSR).
Content validated:
- Signature
- Signature algorithm (if configured)
- Key algorithm (if configured)
- Key size (if configured, only for RSA)
- Subject (if configured)
Validation is done using regular expressions.
Properties
Example Configuration
{
"name": "PKCS10ValidatorValve",
"enabled": "true",
"config": {
"source": "csr",
"key_algorithm_regex": "RSA",
"key_size_regex": "2048",
"subject_regex": "CN=user_[0-9]{1,2}"
}
}