| 1 | | 1. Creating the keypair |
| 2 | | keytool -keystore wrs -export -alias <alias> > <certfilename> |
| 3 | | |
| 4 | | 2. Convert to PEM |
| 5 | | openssl x509 -out <cacert.pem> -outform pem -text -in <certfilename> -inform der |
| 6 | | |
| 7 | | 3. Extract public key for encryption |
| 8 | | openssl x509 -inform pem -in <cacert.pem> -pubkey -noout > <publickey.pem> |
| 9 | | |
| 10 | | 4. Extract private key for signing |
| 11 | | !!!MUST BE DELETED AFTER MAKING A SIGNATURE!!! |
| 12 | | see extractor/README |
| 13 | | |
| 14 | | 5. Encrypting |
| 15 | | more <key> | openssl rsautl -encrypt -inkey standard_pub.pem -pubin | openssl enc -base64 > encrypted_base64 |
| 16 | | |
| 17 | | 6. Signing |
| 18 | | more <key> | openssl rsautl -sign -inkey <exported-pkcs8.key> | openssl enc -base64 > signature2_base64 |
| | 1 | Documentation is maintained in the pgRouting wiki: |
| | 2 | http://pgrouting.postlbs.org/wiki/tools/WebRoutingService/Security |
