django-ca is a small project to manage TLS certificate authorities and easily issue certificates. It is based on cryptography and Django. It can be used as an app in an existing Django project or stand-alone with the basic project included. Certificates can be managed through Djangos admin interface or via manage.py commands - so no webserver is needed, if you’re happy with the command-line.

Documentation is available at https://django-ca.readthedocs.org/.

1. Set up a secure local certificate authority in just a few minutes.
2. Written in Python 3.6+, Django 2.2+ and cryptography 2.8+.
3. Preliminary ACMEv2 support.
4. Management via command line and/or via Djangos admin interface.
5. Certificate revocation via CRLs and OCSP.
6. Get email notifications about certificates about to expire.

Please see https://django-ca.readthedocs.org for more extensive documentation.

Documentation is available at https://django-ca.readthedocs.org/.

Please see https://django-ca.readthedocs.io/en/latest/changelog.html

Ideas on what we could do for future releases:

1. Test CRL signing certificates.
2. Only send out one notification if multiple certificates expire for a user.
3. Add ability to automatically regenerate CRLs when a certificate is revoked.

This project is free software licensed under the GPLv3.