starred/mkcert
1
0
Fork 0
mirror of https://github.com/FiloSottile/mkcert.git synced 2026-04-25 05:26:03 +03:00
Code Issues 165 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #155] Clarify that mkcert and be used as an infrastructure CA #95

New issue
Open
opened 2026-02-25 22:32:35 +03:00 by kerem · 2 comments
kerem commented 2026-02-25 22:32:35 +03:00
Owner
Copy link

Originally created by @sedalu on GitHub (Apr 13, 2019).
Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/155

Filippo, as we discussed as GothamGo, using mkcert as an infrastructure CA to secure internal service-to-service http calls is probably a use case falls within the mission of mkcert. The readme provides enough detail on how to do this manually, but it warns against "production" use. Please clarify that this use case is not discouraged. Thanks.

Originally created by @sedalu on GitHub (Apr 13, 2019). Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/155 Filippo, as we discussed as GothamGo, using `mkcert` as an infrastructure CA to secure internal service-to-service http calls is probably a use case falls within the mission of `mkcert`. The readme provides enough detail on how to do this manually, but it warns against "production" use. Please clarify that this use case is not discouraged. Thanks.
kerem commented 2026-02-25 22:32:35 +03:00
Author
Owner
Copy link

@sawfi commented on GitHub (Jul 6, 2020):

Hii

<!-- gh-comment-id:653987329 --> @sawfi commented on GitHub (Jul 6, 2020): Hii
kerem commented 2026-02-25 22:32:35 +03:00
Author
Owner
Copy link

@polarathene commented on GitHub (Aug 16, 2020):

For anyone else landing here, you might later find this issue which points you in the direction of step as a production grade alternative to mkcert.

A similar issue discussion also has this to say:

  • If you're just looking for a simple tool to create certs that work for local development, use mkcert.
  • If you're testing an ACME integration, use pebble (and step-ca, as a second data point :).
  • If you need something more sophisticated, like an ACME CA that you can bring into staging or run in production for server-to-server mTLS, check out step & step-ca!
<!-- gh-comment-id:674488619 --> @polarathene commented on GitHub (Aug 16, 2020): For anyone else landing here, you might later find [this issue](https://github.com/FiloSottile/mkcert/issues/154#issuecomment-554782736) which points you in the direction of `step` as a production grade alternative to `mkcert`. A [similar issue discussion](https://github.com/letsencrypt/pebble/issues/298#issuecomment-582532341) also has this to say: > - If you're _just_ looking for a simple tool to create certs that work for local development, use `mkcert`. > - If you're testing an ACME integration, use `pebble` (_and_ `step-ca`, as a second data point :). > - If you need something more sophisticated, like an ACME CA that you can bring into staging or run in production for server-to-server mTLS, check out `step` & `step-ca`!
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
v1.4.4
v1.4.3
v1.4.2
v1.4.1
v1.4.0
v1.3.0
v1.2.0
v1.1.2
v1.1.1
v1.1.0
v1.0.1
v1.0.0
v0.9.1
v0.9.0
Labels
Clear labels   
TLS stack issue

   
Windows

   
bug

   
duplicate

   
duplicate

   
enhancement

   
help wanted

   
help wanted

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question

   
root store

   
waiting for info
No labels
TLS stack issue
Windows
bug
duplicate
duplicate
enhancement
help wanted
help wanted
pull-request
question
question
root store
waiting for info
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/mkcert#95
No description provided.