| sshd-openpgp-auth-extend(1) | General Commands Manual | sshd-openpgp-auth-extend(1) |
NAME
sshd-openpgp-auth-extend - Extend the expiration period of an OpenPGP certificate
SYNOPSIS
sshd-openpgp-auth extend [-e|--expiry] [-f|--fingerprint] [-o|--openpgp-dir] [-s|--stdout] [-T|--threshold] [-t|--time] [-h|--help]
DESCRIPTION
Extend the expiration period of an OpenPGP certificate
By default this command extends the expiration period of an OpenPGP certificate by 365 days from now, if the certificate would expire within the next 250 days. If more than one OpenPGP certificate is found in the target directory, an OpenPGP fingerprint must be specified. Optionally, the reference time, expiration period and threshold may be provided. Additionally, the certificate may be written to stdout instead of a file.
OPTIONS
- -e, --expiry=EXPIRY
- The expiry period in days from reference time (defaults to 365)
May also be specified with the SOA_EXPIRY
environment variable.
- -f, --fingerprint=FINGERPRINT
- An OpenPGP fingerprint to identify a specific certificate
May also be specified with the SOA_FINGERPRINT
environment variable.
- -o, --openpgp-dir=DIR
- A custom directory in which to look for OpenPGP certificates (defaults to "/var/lib/sshd-openpgp-auth/")
May also be specified with the SOA_OPENPGP_DIR
environment variable.
- -s, --stdout
- Output the OpenPGP certificate to stdout instead of a file
- -T, --threshold=THRESHOLD
- A custom threshold in days from reference time, after which expiry period is extended (defaults to 250)
May also be specified with the SOA_THRESHOLD
environment variable.
- -t, --time=TIME
- A custom reference time formatted as an RFC3339 string (defaults to now)
May also be specified with the SOA_TIME
environment variable.
- -h, --help
- Print help (see a summary with '-h')
| sshd-openpgp-auth-extend |