From 20c27b291c34bbc3f7b16592d4812bffd1ae253d Mon Sep 17 00:00:00 2001
From: =?utf8?q?Marcus=20R=C3=BCckert?= <darix@nordisch.org>
Date: Mon, 29 Mar 2021 20:15:32 +0200
Subject: [PATCH] Add more examples to show case how to create certs

e.g. with different key algorithms
---
 docs/domains_txt.md       | 24 ++++++++++++++++++++++++
 docs/examples/domains.txt |  9 +++++++++
 2 files changed, 33 insertions(+)

diff --git a/docs/domains_txt.md b/docs/domains_txt.md
index 6a8915e..f4090d8 100644
--- a/docs/domains_txt.md
+++ b/docs/domains_txt.md
@@ -34,6 +34,30 @@ under your `CERTDIR`.
 example.net www.example.net wiki.example.net > certalias
 ```
 
+This allows to set per certificates options. The options you can change are
+explained in [Per Certificate Config](per-certificate-config.md).
+
+If you want to create different certificate types for the same domain
+you can use:
+
+```text
+*.service.example.org service.example.org  > star_service_example_org_rsa
+*.service.example.org service.example.org  > star_service_example_org_ecdsa
+```
+
+Then add a config file `certs/star_service_example_org_rsa/config` with
+the value
+
+```
+KEY_ALGO="rsa"
+```
+
+or respectively
+
+```
+KEY_ALGO="ecdsa"
+```
+
 ### Wildcards
 
 Support for wildcards was added by the ACME v2 protocol.
diff --git a/docs/examples/domains.txt b/docs/examples/domains.txt
index 39acaf3..e0dea47 100644
--- a/docs/examples/domains.txt
+++ b/docs/examples/domains.txt
@@ -24,6 +24,15 @@ example.net www.example.net > certalias
 # NOTE: It is a certificate for 'service.example.org'
 *.service.example.org service.example.org  > star_service_example_org
 
+# Optionally you can also append the certificate algorithm here to create
+# multiple certificate types for the same domain.
+#
+# This allows to set per certificates options. How to do this is
+# explained in [domains.txt documentation](../domains_txt.md).
+#
+*.service.example.org service.example.org  > star_service_example_org_rsa
+*.service.example.org service.example.org  > star_service_example_org_ecdsa
+
 # Create a certificate for 'service.example.net' with an alternative name of
 # '*.service.example.net' (which is a wildcard domain) and store it in the
 # directory ${CERTDIR}/service.example.net
-- 
2.47.3