For iid provisioners use only the csr name if custom sans is disabled.

The provisioner will validate the common name om a list of options.
This commit is contained in:
Mariano Cano 2020-07-14 12:42:46 -07:00
parent b11486f41f
commit 69902b0153

View file

@ -78,10 +78,11 @@ const DefaultLeafTemplate = `{
// The keyUsage "keyEncipherment" is special and it will be only used for RSA // The keyUsage "keyEncipherment" is special and it will be only used for RSA
// keys. // keys.
const DefaultIIDLeafTemplate = `{ const DefaultIIDLeafTemplate = `{
"subject": {{ toJson .CR.Subject }},
{{- if .SANs }} {{- if .SANs }}
"subject": {"commonName": "{{ .CR.Subject.CommonName }}"},
"sans": {{ toJson .SANs }}, "sans": {{ toJson .SANs }},
{{- else }} {{- else }}
"subject": {{ toJson .CR.Subject }},
"dnsNames": {{ toJson .CR.DNSNames }}, "dnsNames": {{ toJson .CR.DNSNames }},
"emailAddresses": {{ toJson .CR.EmailAddresses }}, "emailAddresses": {{ toJson .CR.EmailAddresses }},
"ipAddresses": {{ toJson .CR.IPAddresses }}, "ipAddresses": {{ toJson .CR.IPAddresses }},