create server cert req via openssl

README.md

@@ -2,7 +2,7 @@
 
 ```sh
 git clone --origin template \
-    --branch openssl-client \
+    --branch openssl-server \
     https://git.hammerle.me/fphammerle/template-x509-cert-request-generation.git \
     new-cert-request
 ```

openssl.conf

@@ -4,16 +4,13 @@ distinguished_name = req_distinguished_name
 req_extensions = req_extensions
 
 [ req_distinguished_name ]
-C = AT
-CN = Fabian Peter Hammerle
-emailAddress = fabian@hammerle.me
+CN = fabian.hammerle.me
 
 [ req_extensions ]
 # man x509v3_config
-subjectAltName = email:fabian@hammerle.me, email:fabian.hammerle@gmail.com
+subjectAltName = critical, DNS:fabian.hammerle.me
 basicConstraints = critical,CA:FALSE
-keyUsage = digitalSignature
-extendedKeyUsage = clientAuth
-nsCertType = client
-nsComment = client authentication only
+keyUsage = critical, digitalSignature, keyEncipherment
+extendedKeyUsage = serverAuth
+nsCertType = server
 subjectKeyIdentifier = hash