Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4721 Commits
8 Branches
43 Tags
27 MiB
Tree: 862b5982e4
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '862b5982e4'
${ noResults }
acme.sh/deploy/localhost.sh

103 lines
2.3 KiB
Raw Normal View History

Localhost deploy hook mimicking certbot behavior. Deploys cert files to centralized cert directory mimicking certbot behavior, allowing multiple services to share certs.
2 years ago
Update localhost.sh
2 years ago
Localhost deploy hook mimicking certbot behavior. Deploys cert files to centralized cert directory mimicking certbot behavior, allowing multiple services to share certs.
2 years ago
Update localhost.sh
2 years ago
Localhost deploy hook mimicking certbot behavior. Deploys cert files to centralized cert directory mimicking certbot behavior, allowing multiple services to share certs.
2 years ago
Update localhost.sh
2 years ago
Localhost deploy hook mimicking certbot behavior. Deploys cert files to centralized cert directory mimicking certbot behavior, allowing multiple services to share certs.
2 years ago
Update localhost.sh
2 years ago
Localhost deploy hook mimicking certbot behavior. Deploys cert files to centralized cert directory mimicking certbot behavior, allowing multiple services to share certs.
2 years ago
Update localhost.sh
2 years ago
Localhost deploy hook mimicking certbot behavior. Deploys cert files to centralized cert directory mimicking certbot behavior, allowing multiple services to share certs.
2 years ago
Update localhost.sh
2 years ago
Localhost deploy hook mimicking certbot behavior. Deploys cert files to centralized cert directory mimicking certbot behavior, allowing multiple services to share certs.
2 years ago
  1. #!/usr/bin/bash
  2. #
  3. # Deploy cert to localhost similar to certbot behavior
  4. #
  5. # export DEPLOY_LOCALHOST_ROOT_PATH="/path/to/certs"
  6. #
  7. # Deploys as:
  8. # /path/to/certs/domain.tld/privkey.pem
  9. # /path/to/certs/domain.tld/cert.pem
  10. # /path/to/certs/domain.tld/ca.pem
  11. # /path/to/certs/domain.tld/fullchain.pem
  12. #
  13. # $1=domain $2=keyfile $3=certfile $4=cafile $5=fullchain
  14. #
  15. localhost_deploy() {
  16. _cdomain="$1"
  17. _ckey="$2"
  18. _ccert="$3"
  19. _cca="$4"
  20. _cfullchain="$5"
  22. _debug _cdomain "$_cdomain"
  23. _debug _ckey "$_ckey"
  24. _debug _ccert "$_ccert"
  25. _debug _cca "$_cca"
  26. _debug _cfullchain "$_cfullchain"
  28. _getdeployconf DEPLOY_LOCALHOST_ROOT_PATH
  30. _debug DEPLOY_LOCALHOST_ROOT_PATH "$DEPLOY_LOCALHOST_ROOT_PATH"
  32. if [ -z "$_cdomain" ]; then
  33. _err "Domain not defined"
  34. return 1
  35. fi
  37. if [ -z "$DEPLOY_LOCALHOST_ROOT_PATH" ]; then
  38. _err "DEPLOY_LOCALHOST_ROOT_PATH not defined"
  39. return 1
  40. fi
  42. _ssl_path="$DEPLOY_LOCALHOST_ROOT_PATH"
  43. if [ ! -d "$_ssl_path" ]; then
  44. _err "Path not found: $_ssl_path"
  45. return 1
  46. fi
  48. _savedeployconf DEPLOY_LOCALHOST_ROOT_PATH "$DEPLOY_LOCALHOST_ROOT_PATH"
  50. _ssl_path="$_ssl_path/$_cdomain"
  51. mkdir -p "$_ssl_path"
  53. # ECC or RSA
  54. length=$(_readdomainconf Le_Keylength)
  55. if _isEccKey "$length"; then
  56. _info "ECC key type detected"
  57. _file_prefix="ecdsa-"
  58. else
  59. _info "RSA key type detected"
  60. _file_prefix=""
  61. fi
  63. _info "Copying cert files..."
  65. # {$2} _ckey
  66. _filename="$_ssl_path/${_file_prefix}privkey.pem"
  67. if ! cat "$_ckey" > "$_filename"; then
  68. err "Error: Can't write $_filename"
  69. return 1
  70. fi
  72. if ! chmod 600 "$_filename"; then
  73. err "Error: Can't set protected 600 permission on privkey.pem"
  74. rm -f "$_filename"
  75. return 1
  76. fi
  78. # {$3} _ccert
  79. _filename="$_ssl_path/${_file_prefix}cert.pem"
  80. if ! cat "$_ccert" > "$_filename"; then
  81. err "Error: Can't write $_filename"
  82. return 1
  83. fi
  85. # {$4} _cca
  86. _filename="$_ssl_path/${_file_prefix}ca.pem"
  87. if ! cat "$_cca" > "$_filename"; then
  88. err "Error: Can't write $_filename"
  89. return 1
  90. fi
  92. # {$5} _cfullchain
  93. _filename="$_ssl_path/${_file_prefix}fullchain.pem"
  94. if ! cat "$_cfullchain" > "$_filename"; then
  95. err "Error: Can't write $_filename"
  96. return 1
  97. fi
  99. _info "Done: Cert files copied to $_ssl_path/"
  101. return 0
  103. }