From 9c858c35294f6ad9bdcc27073b193f5d6c6b8b11 Mon Sep 17 00:00:00 2001
From: hiskang <hiska@hiska.net>
Date: Tue, 28 Feb 2017 16:37:53 +0900
Subject: [PATCH] deploy for strongswan

---
 deploy/strongswan.sh | 38 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)
 create mode 100644 deploy/strongswan.sh

diff --git a/deploy/strongswan.sh b/deploy/strongswan.sh
new file mode 100644
index 00000000..6151152e
--- /dev/null
+++ b/deploy/strongswan.sh
@@ -0,0 +1,38 @@
+#!/usr/bin/env bash
+
+#Here is a sample custom api script.
+#This file name is "myapi.sh"
+#So, here must be a method   myapi_deploy()
+#Which will be called by acme.sh to deploy the cert
+#returns 0 means success, otherwise error.
+
+########  Public functions #####################
+
+#domain keyfile certfile cafile fullchain
+strongswan_deploy() {
+  _cdomain="$1"
+  _ckey="$2"
+  _ccert="$3"
+  _cca="$4"
+  _cfullchain="$5"
+
+  _debug _cdomain "$_cdomain"
+  _debug _ckey "$_ckey"
+  _debug _ccert "$_ccert"
+  _debug _cca "$_cca"
+  _debug _cfullchain "$_cfullchain"
+
+#  _err "Not implemented yet"
+
+#  return 1
+
+  cp -pv $_ckey       /etc/ipsec.d/private/$(basename $_ckey)
+  cp -pv $_ccert      /etc/ipsec.d/certs/$(basename $_ccert)
+  cp -pv $_cca        /etc/ipsec.d/cacerts/$(basename $_cca)
+  cp -pv $_cfullchain /etc/ipsec.d/cacerts/$(basename $_cfullchain)
+
+  ipsec secrets
+
+  return 0
+
+}