django-ca is a small project to manage TLS certificate authorities and easily issue
certificates. It is based on cryptography and
Django. It can be used as an app in an existing Django project
or stand-alone with the basic project included. Certificates can be managed through Djangos admin
interface or via manage.py
commands - so no webserver is needed, if you’re happy with the
command-line.
Documentation is available at https://django-ca.readthedocs.org/.
- Set up a secure local certificate authority in just a few minutes.
- Written in Python2.7/Python3.4+, requires Django 1.11 or later.
- Manage your entire certificate authority from the command line and/or via Djangos admin interface.
- Get email notifications about certificates about to expire.
- Certificate validation using Certificate Revocation Lists (CRLs) and via an included OCSP responder.
Please see https://django-ca.readthedocs.org for more extensive documentation.
Documentation is available at https://django-ca.readthedocs.org/.
Please see https://django-ca.readthedocs.io/en/latest/changelog.html
Ideas on what we could do for future releases:
- Add parameter to add generic CRL/OCSP URLs to CAs.
- Test CRL signing certificates.
- Only send out one notification if multiple certificates expire for a user.
- Add a "renew" button in the admin interface.
- Add ability to automatically regenerate CRLs when a certificate is revoked.
This project is free software licensed under the GPLv3.