openssl_csr_export()
(PHP 4 >= 4.2.0, PHP 5, PHP 7)
将CSR作为字符串导出
说明
openssl_csr_export(mixed $csr,string &$out[,bool $notext= true]): bool
openssl_csr_export()获取证书签名请求($csr)并通过引用保存其 PEM 格式的字符串($out)。
参数
- $csr
See CSR parameters for a list of valid values.
- $out
在成功时,该字符串将包含PEM编码的CSR.
- $notext
可选参数$notext影响输出的冗余度。如果设为
FALSE
,输出内容将包含附加的人类可读信息。$notext的缺省值为TRUE
。
返回值
成功时返回TRUE
,或者在失败时返回FALSE
。
范例
openssl_csr_export()范例
<?php $subject = array( "commonName" => "example.com", ); $private_key = openssl_pkey_new(array( "private_key_bits" => 2048, "private_key_type" => OPENSSL_KEYTYPE_RSA, )); $configargs = array( 'digest_alg' => 'sha256WithRSAEncryption' ); $csr = openssl_csr_new($subject, $private_key, $configargs); openssl_csr_export($csr, $csr_string); echo $csr_string; ?>
参见
openssl_csr_export_to_file()
将CSR导出到文件openssl_csr_new()
生成一个 CSRopenssl_csr_sign()
用另一个证书签署 CSR(或者本身)并且生成一个证书
Here you come with the example of how to use this function. if( $csr = openssl_csr_new( array( "countryName"=>"PL", "stateOrProvinceName" => "blah", "organizationName" => "company ltd", "commonName"=>"foo.bar.com", "Email"=>"blah@foo.bar.com"), $privkey ) ) { openssl_csr_export_to_file( $csr, "out.csr"); } else { printf("failed\n"); } Keep in mind that keys are case sensitive (i.e. give "email" instead of "Email" and you get warning). Also remember it's important to keep the order of the arguments in array. Move the "Email" above commonName and check what you get (in case you don't know how: "openssl req -noout -text -in out.csr"). It also happened to me me I got segfault when order was rubbish (afair Email after countryName, or plenty Email's here and there), so be awared.