Update gurt-protocol.md

2025-09-21 14:46:36 +01:00
parent 23e4535147
commit c55e38723f
1 changed files with 6 additions and 14 deletions
--- a/docs/docs/gurt-protocol.md
+++ b/docs/docs/gurt-protocol.md
@@ -141,28 +141,20 @@ All connections must use TLS 1.3 for encryption. This means you have to generate

 ### Setup for Production

-For production deployments, you'll need to generate your own certificates since traditional Certificate Authorities don't support custom protocols:
+For production deployments, you'll need to install GurtCA from the Github repository for Gurted, and use it to request certificates for your domain.

-1. **Generate production certificates with OpenSSL:**
+1. **Generate production certificates with GurtCA:**
   ```bash
-   # Generate private key
-   openssl genpkey -algorithm RSA -out gurt-server.key -pkcs8 -v
-
-   # Generate certificate signing request
-   openssl req -new -key gurt-server.key -out gurt-server.csr
-
-   # Generate self-signed certificate (valid for 365 days)
-   openssl x509 -req -days 365 -in gurt-server.csr -signkey gurt-server.key -out gurt-server.crt
-
-   # Or generate both key and certificate in one step
-   openssl req -x509 -newkey rsa:4096 -keyout gurt-server.key -out gurt-server.crt -days 365 -nodes
+   gurtca request yourdomain.real --output ./certs
   ```

 2. **Deploy with production certificates:**
   ```bash
-   cargo run --release serve --cert gurt-server.crt --key gurt-server.key --host 0.0.0.0 --port 4878
+   cargo run --release serve --cert ./certs/yourdomain.real.crt --key ./certs/yourdomain.real.key --host 0.0.0.0 --port 4878
   ```

+Be careful, your `.key` file is the private key, do not share it with anyone!
+
 ### Development Environment Setup

 To set up a development environment for GURT, follow these steps: