NAME

OpenXPKI::Server::Workflow::Validator::PKCS10

SYNOPSIS

validator:
is_valid_pkcs10:
class: OpenXPKI::Server::Workflow::Validator::PKCS10
param:
empty_subject: 0|1
verify_signature: 0|1
arg:
- $pkcs10

DESCRIPTION

Check the incoming data to be a valid (parseable) pkcs10 request. By default, the request must have a subject set, you can skip the subject check setting the parameter empty_subject to a true value.

Argument

$pkcs10: The PEM formatted PKCS#10 request

Parameter

empty_subject: By default, we expect the CSR to have a subject set. Set this to 0 to allow an empty subject (required with some SCEP clients and Microsoft CA services).
verify_signature: Cryptographically verify the signature of the request - default is ON. (was changed in v2.3 as the module deps have been fixed).