From 8d4c3dfa0e01cd14fe78ebc22cd7a8912f56effd Mon Sep 17 00:00:00 2001
From: houseme <housemecn@gmail.com>
Date: Wed, 2 Apr 2025 08:37:06 +0800
Subject: [PATCH] add example certs readme.md

---
 config/certs/README.md | 44 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 44 insertions(+)
 create mode 100644 config/certs/README.md

diff --git a/config/certs/README.md b/config/certs/README.md
new file mode 100644
index 00000000..ce3dbe75
--- /dev/null
+++ b/config/certs/README.md
@@ -0,0 +1,44 @@
+## Certs
+
+### Generate a self-signed certificate
+
+```bash
+openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days 365 -nodes
+```
+
+### Generate a self-signed certificate with a specific subject
+
+```bash
+openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days 365 -nodes \
+  -subj "/C=US/ST=California/L=San Francisco/O=My Company/CN=mydomain.com"
+```
+
+### Generate a self-signed certificate with a specific subject and SAN
+
+```bash
+openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days 365 -nodes \
+  -subj "/C=US/ST=California/L=San Francisco/O=My Company/CN=mydomain.com" \
+  -addext "subjectAltName=DNS:mydomain.com,DNS:www.mydomain.com"
+```
+
+### Generate a self-signed certificate with a specific subject and SAN (multiple SANs)
+
+```bash
+openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days 365 -nodes \
+  -subj "/C=US/ST=California/L=San Francisco/O=My Company/CN=mydomain.com" \
+  -addext "subjectAltName=DNS:mydomain.com,DNS:www.mydomain.com,DNS:api.mydomain.com"
+```
+
+### TLS File
+
+```text
+
+ rustfs_tls_cert.pem api cert.pem
+
+ rustfs_tls_key.pem api key.pem
+
+ rustfs_console_tls_cert.pem console cert.pem
+
+ rustfs_console_tls_key.pem console key.pem
+
+```
\ No newline at end of file