sjs/agate
1
0
Fork 0
mirror of https://github.com/samsonjs/agate.git synced 2026-03-25 09:05:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
agate/tests/data/multicert/create_certs.sh
Johann150 2213b055dc
add automatic certificate generation
2021-03-27 00:52:50 +01:00

36 lines
895 B
Bash
Executable file
Raw Blame History

#!/bin/bash
mkdir -p example.com example.org
for domain in "example.com" "example.org"
do
# create private key
openssl genpkey -outform DER -out $domain/key.der -algorithm RSA -pkeyopt rsa_keygen_bits:4096
# create config file:
# the generated certificates must not be CA-capable, otherwise rustls complains
cat >openssl.conf <<EOT
[req]
default_bits = 4096
distinguished_name = req_distinguished_name
req_extensions = req_ext
prompt = no
[v3_ca]
basicConstraints = critical, CA:false
[req_distinguished_name]
commonName = $domain
[req_ext]
subjectAltName = DNS:$domain
EOT
openssl req -new -sha256 -out request.csr -key $domain/key.der -keyform DER -config openssl.conf
openssl x509 -req -sha256 -days 3650 -in request.csr -outform DER -out $domain/cert.der \
-extensions req_ext -extfile openssl.conf -signkey $domain/key.der -keyform DER
done
# clean up
rm openssl.conf request.csr
Reference in a new issue View git blame Copy permalink