Menu
▾
▴
Re: [OpenXPKI-users] value is not being evaluated
|
From: Oliver W. <ma...@ol...> - 2025-11-13 12:22:29
|
Hi, you can only pass static OID values via this templating method, a module for dynamic OIDs is available in the enterprise version. best regards Oliver On 11/13/25 13:09, Kraken Titan wrote: > Hi i am trying to add custom oid and supplied the value from UI. > > > label: I18N_OPENXPKI_UI_PROFILE_TLS_SERVER_LABEL > > validity: > notafter: +05000 > > style: > # 00_basic_style: > # label: I18N_OPENXPKI_UI_PROFILE_BASIC_STYLE_LABEL > # description: I18N_OPENXPKI_UI_PROFILE_BASIC_STYLE_DESC > # ui: > # subject: > # - hostname > # - hostname2 > # - port > # # info: > # # - requestor_gname > # # - requestor_name > # # - requestor_email > # # - requestor_affiliation > # # - comment > > # subject: > # dn: CN=[% hostname.lower %][% IF port AND port != 443 > %]:[% port %][% END %] > # san: > # DNS: > # - "[% hostname.lower %]" > # - "[% FOREACH entry = hostname2 %][% entry.lower > %] | [% END %]" > > # metadata: > # requestor: "[% requestor_gname %] [% requestor_name %]" > # email: "[% requestor_email %]" > # entity: "[% hostname FILTER lower %]" > > > 05_advanced_style: > label: I18N_OPENXPKI_UI_PROFILE_ADVANCED_STYLE_LABEL > description: I18N_OPENXPKI_UI_PROFILE_ADVANCED_STYLE_DESC > ui: > subject: > - cn > - o > - ou > - dc > - c > - sid > san: > - san_ipv4 > - san_dns > # info: > # - requestor_gname > # - requestor_name > # - requestor_email > # - requestor_affiliation > # - comment > > subject: > dn: CN=[% CN %][% IF OU %][% FOREACH entry = OU %],OU=[% > entry %][% END %][% END %][% IF O %],O=[% O %][% END %][% FOREACH > entry = DC %],DC=[% entry %][% END %][% IF C %],C=[% C %][% END %] > # no san definitions here as items from ui.san are > directly written to the SAN > > enroll: > subject: > dn: CN=[% CN.0 %],DC=NADRA, DC=GOV, DC=PK > san: > dns: "[% FOREACH entry = SAN_DNS %][% entry.lower %] | > [% END %]" > ip : "[% FOREACH entry = SAN_IP %][% entry %] | [% END %]" > > > metadata: > system_id: "[% data.cust_id %]" > server_id: "[% data.server_id %]" > entity: "[% CN.0 FILTER lower %]" > sid: "[% data.SID %]" > > # Profile extensions - set 0/1 as needed > # Also see sections defined in default.yaml > extensions: > key_usage: > critical: 1 > digital_signature: 1 > non_repudiation: 0 > key_encipherment: 1 > data_encipherment: 0 > key_agreement: 1 > key_cert_sign: 0 > crl_sign: 0 > encipher_only: 0 > decipher_only: 0 > > extended_key_usage: > critical: 0 > client_auth: 0 > server_auth: 1 > email_protection: 0 > code_signing: 0 > time_stamping: 0 > ocsp_signing: 0 > > oid: > 1.3.6.1.4.1.311.25.2: > critical: 0 > format: ASN1 > encoding: UTF8String > value: [% data.SID %] > > > > > in generated cert > > value: [% data.SID %] is not being evaluated or extracted as entered > in the UI. > > > with custom oid field value is > > 0c 09 5b 25 20 73 69 64 .. [% data.SID > 20 25 5d %] > > please help thank you > > > > > > > _______________________________________________ > OpenXPKI-users mailing list > Ope...@li... > https://lists.sourceforge.net/lists/listinfo/openxpki-users -- Protect your environment - close windows and adopt a penguin! |
