Home > PHP > Function > OpenSSL > openssl_csr_sign()

openssl_csr_sign()

openssl_csr_sign - Sign a CSR with another certificate (or itself) and generate a certificate

Syntax

resource openssl_csr_sign (mixed $csr, mixed $cacert, mixed $priv_key, int $days, array $configargs, int $serial)

Arguments

  • csr - A CSR previously generated by openssl_csr_new(). It can also be the path to a PEM encoded CSR when specified as file://path/to/csror an exported string generated by openssl_csr_export().
  • cacert - The generated certificate will be signed by cacert. If cacert is NULL, the generated certificate will be a self-signed certificate.
  • priv_key - priv_key is the private key that corresponds to cacert.
  • days - days specifies the length of time for which the generated certificate will be valid, in days.
  • configargs - You can finetune the CSR signing by configargs. See openssl_csr_new() for more information about configargs.
  • serial - An optional the serial number of issued certificate. If not specified it will default to 0.

Description

openssl_csr_sign() generates an x509 certificate resource from the given CSR.

Version

PHP 4.2.0, 5

Return value

Returns an x509 certificate resource on success, FALSE on failure.