Blog : openssl_csr_export

openssl_csr_export

(PHP 4 >= 4.2.0, PHP 5)
openssl_csr_export � Exports a CSR as a string

Description
bool openssl_csr_export ( resource $csr , string &$out [, bool $notext = true ] )
openssl_csr_export() takes the Certificate Signing Request represented by csr and stores it as ascii-armoured text into out, which is passed by reference.

Parameters

csr
out
notext
The optional parameter notext affects the verbosity of the output; if it is FALSE, then additional human-readable information is included in the output. The default value of notext is TRUE.

Return Values

Returns TRUE on success or FALSE on failure.

See Also

openssl_csr_export_to_file() - Exports a CSR to a file
openssl_csr_new() - Generates a CSR
openssl_csr_sign() - Sign a CSR with another certificate (or itself) and generate a certificate
add a note add a note
User Contributed Notes 1 note

Here you come with the example of how to use this function.

if( $csr = openssl_csr_new( array(
  "countryName"=>"PL",
  "stateOrProvinceName" => "blah",
  "organizationName" => "company ltd",
  "commonName"=>"foo.bar.com",
  "Email"=>"blah@foo.bar.com"), $privkey )
  )
  {
  openssl_csr_export_to_file( $csr, "out.csr");
  }
else
  {
  printf("failed\n");
  }

Keep in mind that keys are case sensitive (i.e. give "email" instead of "Email" and you get warning). Also remember it's important to keep the order of the arguments in array. Move the "Email" above commonName and check what you get (in case you don't know how: "openssl req -noout -text -in out.csr").

It also happened to me me I got segfault when order was rubbish (afair Email after countryName, or plenty Email's here and there), so be awared.