Draft: allow clients to overwrite default vpn cert and key type (!62) · Merge requests · leap / menshen

cyberta requested to merge set_encryption_algorithm into main Dec 04, 2024

allow clients to overwrite default vpn cert and key type when fetching from /5/openvpn/cert by appending an algo parameter with the allowed values 'rsa', 'ecdsa' and 'ed25519'.

this allows clients to tell menshen which key types it is able to process. Workaround for Android currently, which doesn't accept ed25519 for whatever reason (even wit the fixed private key encoding done in !61 (closed))

Draft: allow clients to overwrite default vpn cert and key type

Merge request reports