Add a valid
property to X509Certificate
#52931
Labels
crypto
Issues and PRs related to the crypto subsystem.
feature request
Issues that request new features to be added to Node.js.
What is the problem this feature will solve?
I want to verify the validity of an X.509 certificate with a new property
x509.valid
.What is the feature you are proposing to solve the problem?
Information about a X.509 certificate can be retrieved via:
The properties
x509.validTo
andx509.validFrom
prints strings of the datetimes, but they are in a complex format, see https://github.com/openssl/openssl/blob/4a5088259e78127354f497931568de409ac905fc/crypto/asn1/a_time.c#L488-L549, and thus hard to parse intoDate
objects.The
openssl
CLI command has a way to see if a certificate is valid or not:I wish for a new property
valid
(boolean) to be added to anX509Certificate
.What alternatives have you considered?
Using
await execFile('openssl', ...)
but that is not ideal as I have to invoke a new process and also make sure thatopenssl
exists in the system which it might not do in e.g. containers.Ideally though there would be an output of
validTo
andvalidFrom
that had proper JavaScript Date objects. That would make it possible to warn about expiry etc. in an easier way before it even happens.The text was updated successfully, but these errors were encountered: