From e8068235db80d2560726f0893edaf467f39a4847 Mon Sep 17 00:00:00 2001 From: Filippo Valsorda Date: Sun, 25 Oct 2020 18:27:41 +0100 Subject: [PATCH] Hide the CA path in normal operation Most users don't need to interact with it, and it's important they don't share the rootCA-key.pem file, so let's not lead them there in the first place. Advanced users can still use "mkcert -CAROOT". Fixes #282 --- README.md | 3 +-- cert.go | 4 +--- 2 files changed, 2 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index 2fd9e23..d5ab70f 100644 --- a/README.md +++ b/README.md @@ -4,12 +4,11 @@ mkcert is a simple tool for making locally-trusted development certificates. It ``` $ mkcert -install -Created a new local CA at "/Users/filippo/Library/Application Support/mkcert" 💥 +Created a new local CA 💥 The local CA is now installed in the system trust store! ⚡️ The local CA is now installed in the Firefox trust store (requires browser restart)! 🦊 $ mkcert example.com "*.example.com" example.test localhost 127.0.0.1 ::1 -Using the local CA at "/Users/filippo/Library/Application Support/mkcert" ✨ Created a new certificate valid for the following names 📜 - "example.com" diff --git a/cert.go b/cert.go index 02176d3..2123ab9 100644 --- a/cert.go +++ b/cert.go @@ -261,8 +261,6 @@ func (m *mkcert) makeCertFromCSR() { func (m *mkcert) loadCA() { if !pathExists(filepath.Join(m.CAROOT, rootName)) { m.newCA() - } else { - log.Printf("Using the local CA at \"%s\" ✨\n", m.CAROOT) } certPEMBlock, err := ioutil.ReadFile(filepath.Join(m.CAROOT, rootName)) @@ -341,7 +339,7 @@ func (m *mkcert) newCA() { &pem.Block{Type: "CERTIFICATE", Bytes: cert}), 0644) fatalIfErr(err, "failed to save CA key") - log.Printf("Created a new local CA at \"%s\" 💥\n", m.CAROOT) + log.Printf("Created a new local CA 💥\n") } func (m *mkcert) caUniqueName() string {