From 403c259ba7f3feeda0c3f3eca7032895b84d10e7 Mon Sep 17 00:00:00 2001
From: Fabien COMBERNOUS <fabien.combernous@adullact.org>
Date: Tue, 22 Nov 2022 16:19:27 +0100
Subject: [PATCH] fix README about CRL in usage section

---
 README.md | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 55ae1d4..b245f7d 100644
--- a/README.md
+++ b/README.md
@@ -50,7 +50,8 @@ From here, you are able to procude certificates from `cfssl` command line with s
 In this example :
 * self signed root ca is installed.
 * this root ca is served via [HTTP API server](https://github.com/cloudflare/cfssl/tree/master/doc/api) for X509 certificates.
-* a CRL is generated is `$cfssl::crldir` directory, updated periodicaly.
+* a CRL is generated in `$cfssl::crldir` directory, updated periodicaly as defined by `$cfssl::crl_gentimer`.
+* the CRL have a duration of validity defined by `cfssl::crl_expiry`
 
 ```
 class { 'cfssl':
@@ -74,7 +75,8 @@ In this example :
 * a self signed root authority is installed.
 * an intermediate authority signed by root authority is installed.
 * this intermediate authority is served via [HTTP API server](https://github.com/cloudflare/cfssl/tree/master/doc/api) for X509 certificates.
-* a CRL is generated is `$cfssl::crldir` directory, updated periodicaly.
+* CRL are generated in `$cfssl::crldir` directory, updated periodicaly as defined by `$cfssl::crl_gentimer`.
+* the CRL have a duration of validity defined by `cfssl::crl_expiry`
 
 ```
 class { 'cfssl':
-- 
GitLab