jonny/dotfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Use a consistent location for ca files, relative to home folder anyway

Browse source
This commit is contained in:
Jonny Barnes 2018-06-23 20:28:58 +01:00
parent 50d123f2f0
commit de7db3ac3a
1 changed files with 2 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
zsh/functions.zsh
View file

@ -6,13 +6,11 @@
gencert () { gencert () {
DOMAIN=$1 DOMAIN=$1
test -d /Users/jonny/git/localCA && ROOT='/Users/jonny/git/localCA'
test -d /home/jonny/git/ca && ROOT='/home/jonny/git/ca'
test -d /usr/local/opt/openssl@1.1/bin && PATH='/usr/local/opt/openssl@1.1/bin':$PATH test -d /usr/local/opt/openssl@1.1/bin && PATH='/usr/local/opt/openssl@1.1/bin':$PATH
test -f /usr/local/etc/openssl@1.1/openssl.cnf && SSLCNF='/usr/local/etc/openssl@1.1/openssl.cnf' test -f /usr/local/etc/openssl@1.1/openssl.cnf && SSLCNF='/usr/local/etc/openssl@1.1/openssl.cnf'
test -f /etc/ssl/openssl.cnf && SSLCNF='/etc/ssl/openssl.cnf' test -f /etc/ssl/openssl.cnf && SSLCNF='/etc/ssl/openssl.cnf'
cd $ROOT cd $HOME/git/ca
[[ ! -d $DOMAIN ]] && mkdir $DOMAIN [[ ! -d $DOMAIN ]] && mkdir $DOMAIN
cd $DOMAIN cd $DOMAIN
[[ -f key ]] && mv key key.bak [[ -f key ]] && mv key key.bak
@ -24,6 +22,6 @@ gencert () {
openssl req -new -sha256 -key key -subj "/C=UK/ST=England/L=Darwen/O=JMB Dev Ltd/CN=$DOMAIN" -reqexts SAN -config <(cat $SSLCNF <(printf "[SAN]\nsubjectAltName=DNS:$DOMAIN")) -out csr openssl req -new -sha256 -key key -subj "/C=UK/ST=England/L=Darwen/O=JMB Dev Ltd/CN=$DOMAIN" -reqexts SAN -config <(cat $SSLCNF <(printf "[SAN]\nsubjectAltName=DNS:$DOMAIN")) -out csr
openssl x509 -req -in csr -extfile <(cat $SSLCNF <(printf "[SAN]\nsubjectAltName=DNS:$DOMAIN")) -extensions SAN -CA ../jmb-ca-ecc.pem -CAkey ../jmb-ca-ecc.key -CAcreateserial -days 90 -sha256 -out crt openssl x509 -req -in csr -extfile <(cat $SSLCNF <(printf "[SAN]\nsubjectAltName=DNS:$DOMAIN")) -extensions SAN -CA ../jmb-ca-ecc.pem -CAkey ../jmb-ca-ecc.key -CAcreateserial -days 90 -sha256 -out crt
cd $HOME cd $HOME/git/ca
echo 'Certs generated for $DOMAIN' echo 'Certs generated for $DOMAIN'
} }