Skip to content

Commit ad65d39

Browse files
nemesifiernemesifier
committed
[gsoc] Added certificate generator templates idea
1 parent 38102f9 commit ad65d39

File tree

1 file changed

+55
-0
lines changed

1 file changed

+55
-0
lines changed

developer/gsoc-ideas-2025.rst

Lines changed: 55 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -49,6 +49,61 @@ General suggestions and warnings
4949
Project Ideas
5050
-------------
5151

52+
Certificate Generator Templates
53+
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
54+
55+
.. important::
56+
57+
Languages and technologies used: **Python**, **Django**,
58+
**JavaScript**.
59+
60+
**Mentors**: *Federico Capoano*, *Gagan Deep*.
61+
62+
**Project size**: 90 hours.
63+
64+
**Difficulty rate**: medium.
65+
66+
This GSoC project aims to enhance OpenWISP’s certificate management
67+
capabilities by enabling the generation of x509 certificates for general
68+
use, beyond OpenVPN.
69+
70+
Currently, OpenWISP supports generating x509 certificates exclusively for
71+
OpenVPN clients, where each VPN client template produces a certificate
72+
signed by the CA linked to the corresponding VPN server. However, many
73+
users have requested support for generating certificates for other
74+
purposes, such as securing web servers.
75+
76+
The proposed solution involves introducing a new template type that allows
77+
users to generate certificates using a selected CA. This template should
78+
provide configurable options, including:
79+
80+
- Certificate duration
81+
- Key length
82+
- Digest algorithm
83+
84+
If left unspecified, these options should default to the CA’s standard
85+
settings.
86+
87+
Prerequisites to work on this project
88+
+++++++++++++++++++++++++++++++++++++
89+
90+
Applicants must demonstrate a solid understanding of Python, Django,
91+
JavaScript, and `OpenWISP Controller
92+
<https://github.com/openwisp/openwisp-controller>`__.
93+
94+
Expected outcomes
95+
+++++++++++++++++
96+
97+
- Implement a new certificate template type in OpenWISP to support
98+
general-purpose x509 certificate generation.
99+
- Allow users to select a CA and configure certificate properties.
100+
- Integrate with OpenWISP’s configuration management to expose certificate
101+
details (public key, private key, and UUID) as variables for automated
102+
deployment.
103+
- Write automated tests to ensure the correctness and reliability of the
104+
new functionality.
105+
- Update the documentation to explain the new feature and its usage.
106+
52107
Improve OpenWISP General Map: Indoor, Mobile, Linkable URLs
53108
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
54109

0 commit comments

Comments
 (0)