mirror of
https://github.com/gocsaf/csaf.git
synced 2025-12-23 00:32:55 +01:00
e8166121c7
* Make files more readable: Move ";" from variable and add it into the nginx config file. * Add missing nginx option `disable_symlinks off;` to the tlp paths.
41 lines
1 KiB
Bash
41 lines
1 KiB
Bash
# This file is Free Software under the MIT License
|
|
# without warranty, see README.md and LICENSES/MIT.txt for details.
|
|
#
|
|
# SPDX-License-Identifier: MIT
|
|
#
|
|
# SPDX-FileCopyrightText: 2022 German Federal Office for Information Security (BSI) <https://www.bsi.bund.de>
|
|
# Software-Engineering: 2022 Intevation GmbH <https://intevation.de>
|
|
|
|
set -e
|
|
|
|
cd ~/${FOLDERNAME}
|
|
|
|
certtool --generate-privkey --outfile testserver-key.pem
|
|
|
|
echo '
|
|
organization = "'${ORGANAME}'"
|
|
country = DE
|
|
cn = "Service Testing"
|
|
|
|
tls_www_server
|
|
signing_key
|
|
encryption_key
|
|
non_repudiation
|
|
|
|
dns_name = "*.local"
|
|
dns_name = "localhost"
|
|
|
|
serial = 010
|
|
expiration_days = 50
|
|
' > gnutls-certtool.testserver.template
|
|
|
|
certtool --generate-certificate --load-privkey testserver-key.pem --outfile testserver.crt --load-ca-certificate rootca-cert.pem --load-ca-privkey rootca-key.pem --template gnutls-certtool.testserver.template --stdout | head -1
|
|
|
|
cat testserver.crt rootca-cert.pem >bundle.crt
|
|
|
|
SSL_CERTIFICATE=$(
|
|
echo "$PWD/bundle.crt"
|
|
)
|
|
SSL_CERTIFICATE_KEY=$(
|
|
echo "$PWD/testserver-key.pem"
|
|
)
|