particle-os/debian-koji-osbuild
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
debian-koji-osbuild/container/ssl-user.sh
Christian Kellner aefe1218b5 initial import
2020-09-02 19:15:25 +02:00

40 lines
968 B
Bash
Executable file
Raw Blame History

#!/bin/bash
set -eux
USER=$1
PASS="pass"
CONF=ssl.cnf
CACERT="koji_ca_cert.crt"
CAKEY="koji_ca_cert.key"
SSLHOME=pki/koji
openssl genrsa -out ${SSLHOME}/private/${USER}.key 2048
openssl req \
-config ${CONF} \
-new -nodes \
-out ${SSLHOME}/certs/${USER}.csr \
-key ${SSLHOME}/private/${USER}.key \
-subj "/C=DE/ST=BE/L=BE/O=RH/CN=${USER}/emailAddress=${USER}@kojihub.local"
openssl ca \
-config ${CONF} \
-batch \
-keyfile ${SSLHOME}/private/${CAKEY} \
-cert ${SSLHOME}/${CACERT} \
-out ${SSLHOME}/certs/${USER}.crt \
-outdir ${SSLHOME}/certs \
-infiles ${SSLHOME}/certs/${USER}.csr
cat ${SSLHOME}/certs/${USER}.crt ${SSLHOME}/private/${USER}.key > ${SSLHOME}/certs/${USER}.pem
CLIHOME=ssl/${USER}
rm -rf ${CLIHOME}
mkdir -p ${CLIHOME}
cp ${SSLHOME}/certs/${USER}.crt ${CLIHOME}/client.crt
cp ${SSLHOME}/certs/${USER}.pem ${CLIHOME}/client.pem
cp ${SSLHOME}/${CACERT} ${CLIHOME}/clientca.crt
cp ${SSLHOME}/${CACERT} ${CLIHOME}/serverca.crt
Reference in a new issue View git blame Copy permalink