 shankar0123
|
de06141ce5
|
docs: Phase 4 follow-on batch 2 — 8 remaining issuer per-pages
Extracts the rest of the issuer per-connector deep-dive pages:
- local-ca.md (170 lines) — Local CA self-signed / sub-CA / tree mode,
CRL+OCSP endpoints, EKU support, MaxTTL enforcement, L-014 file-on-
disk threat model carve-out
- acme.md (235 lines) — RFC 8555 v2 client (HTTP-01 / DNS-01 /
DNS-PERSIST-01), ARI per RFC 9773, EAB + ZeroSSL auto-EAB,
Let's Encrypt profile selection, revoke-by-serial Top-10 fix #7
- step-ca.md (99 lines) — Smallstep JWK-provisioner synchronous
issuance with MaxTTL enforcement
- openssl.md (157 lines) — script-based shell-out with full
threat model (what's accepted, what's not, mitigations, V3-Pro
forward path)
- sectigo.md (98 lines) — Sectigo SCM REST with bounded async polling
- google-cas.md (89 lines) — GCP managed private CA with OAuth2
service-account auth + IAM-role guidance
- entrust.md (96 lines) — Entrust CA Gateway mTLS-authenticated with
approval-pending support and mTLS keypair caching
- globalsign.md (122 lines) — Atlas HVCA dual auth (mTLS + API
key/secret), region-aware base URLs, mTLS keypair caching
Index forward-list expanded to enumerate all 13 issuer connectors
(including the 5 pages from batch 1) in alphabetical order.
This is part 2 of 4 for the Phase 4 follow-on (per-connector page
extraction) tracked in cowork/docs-overhaul-phase-2-restructure-2026-05-04/log.md.
Net add: 8 files, 1,066 lines. No content removed from index.md.
|
2026-05-05 03:59:35 +00:00 |
|