bundlewrap/bundles/letsencrypt/files/letsencrypt-ensure-some-certificate
Franziska Kunsmann 194de9ef2d
All checks were successful
bundlewrap/pipeline/head This commit looks good
bundles/letsencrypt: fix some errors in letsencrypt-ensure-some-certificate
2021-02-20 15:48:17 +01:00

30 lines
639 B
Bash

#!/bin/sh
domain=$1
just_check=$2
cert_path="/var/lib/dehydrated/certs/$domain"
already_exists=false
if [ -f "$cert_path/privkey.pem" -a -f "$cert_path/fullchain.pem" ]
then
already_exists=true
fi
if [ "$just_check" = true ]
then
if [ "$already_exists" = true ]
then
exit 0
else
exit 1
fi
fi
if [ "$already_exists" != true ]
then
mkdir -p "$cert_path"
openssl req -x509 -newkey rsa:4096 -nodes -days 3650 -subj "/CN=$domain" -keyout "$cert_path/privkey.pem" -out "$cert_path/fullchain.pem"
chmod 0600 "$cert_path/privkey.pem"
cp "$cert_path/fullchain.pem" "$cert_path/chain.pem"
fi