Certs

[pspelman]

After copy-pasting the line from the readme for generating the certs I get prompted for a passphrase and a few other details, the cert is generated, and then there is an error:

openssl req -x509 -newkey rsa:4096 -keyout certs\key.pem
-out certs\cert.pem -nodes -days 900

ERROR: zsh: command not found: -out

• combining the lines "works", except the -nodes flag removes the prompt for a passphrase.

• combining the lines produces 2 .pem files in the root directory certskey.pem and certscert.pem

• reversing the forward slash to backward slash produces keys in ./certs directory with names key.pem and cert.pem
openssl req -x509 -newkey rsa:4096 -keyout certs/key.pem -out certs/cert.pem -nodes -days 900

• After all that, running the project I get another error that it can't find idp_key.pem

• Could you tell me how I should have created that? I think I missed a step.

• I tried cloning the key and renaming it idp_key.pem and that "WORKED" except that when I logged in with the user1 and password, I got the following error:
  nextjs_1 | Error: SAML Assertion signature check failed! (Certificate #1 may be invalid. Passphrase required for encrypted key

HELP! It seems so close!!!

[kuhlaid]

@pspelman What system terminal are you using? Mac?

[arisrais]

you have to extract the idp_key value from http://localhost:8080/simplesaml/saml2/idp/metadata.php?output=xhtml
'certData' => 'XXXXXX',