Mirror
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3710 Commits
8 Branches
42 Tags
22 MiB
 
Tree: f6df69c5f3
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f6df69c5f3'
${ noResults }
acme.sh/deploy/pkcs12.sh

86 lines
2.4 KiB
Raw Blame History

#!/bin/bash
#Here is a script to deploy cert as a PKCS #12 / PFX certificate
#returns 0 means success, otherwise error.
#DEPLOY_PKCS12_KEYFILE=""
#DEPLOY_PKCS12_KEYPASS=""
#DEPLOY_PKCS12_RELOAD=""
######## Public functions #####################
#domain keyfile certfile cafile fullchain
pkcs12_deploy() {
_cdomain="$1"
_ckey="$2"
_ccert="$3"
_cca="$4"
_cfullchain="$5"
_debug _cdomain "$_cdomain"
_debug _ckey "$_ckey"
_debug _ccert "$_ccert"
_debug _cca "$_cca"
_debug _cfullchain "$_cfullchain"
DEFAULT_PKCS12_KEYFILE=""
_pkcs12_keyfile="${DEPLOY_PKCS12_KEYFILE:-$DEFAULT_PKCS12_KEYFILE}"
DEFAULT_PKCS12_KEYPASS=""
_pkcs12_keypass="${DEPLOY_PKCS12_KEYPASS:-$DEFAULT_PKCS12_KEYPASS}"
DEFAULT_PKCS12_RELOAD=""
_pkcs12_reload="${DEPLOY_PKCS12_RELOAD:-$DEFAULT_PKCS12_RELOAD}"
_debug _pkcs12_keyfile "$_pkcs12_keyfile"
if [ -z "$_pkcs12_keyfile" ]; then
_err "Missing argument where to deploy the certificate key, please set DEPLOY_PKCS12_KEYFILE."
return 1
elif [ -a "$_pkcs12_keyfile" ]; then
if [ ! -f "$_pkcs12_keyfile" ]; then
_err "The file $_pkcs12_keyfile is not a regular file, please check."
return 1
elif [ ! -w "$_pkcs12_keyfile" ]; then
_err "The file $_pkcs12_keyfile is not writable, please change the permission."
return 1
fi
fi
if [ -z "$_pkcs12_keypass" ]; then
_err "Missing argument specifiying the password for the certificate key, please set DEPLOY_PKCS12_KEYPASS."
return 1
fi
_info "Generate pkcs12"
_toPkcs "$_pkcs12_keyfile" "$_ckey" "$_ccert" "$_cca" "$_pkcs12_keypass"
if [ "$?" != "0" ]; then
_err "Oops, error creating pkcs12, please report bug to us."
return 1
fi
if [ -n "$_pkcs12_reload" ]; then
_info "Run reload: $_pkcs12_reload"
if eval "$_pkcs12_reload"; then
_info "Reload success!"
else
_err "Reload error"
return 1
fi
fi
if [ "$DEPLOY_PKCS12_KEYFILE" ]; then
_savedomainconf DEPLOY_PKCS12_KEYFILE "$DEPLOY_PKCS12_KEYFILE"
else
_cleardomainconf DEPLOY_PKCS12_KEYFILE
fi
if [ "$DEPLOY_PKCS12_KEYPASS" ]; then
_savedomainconf DEPLOY_PKCS12_KEYPASS "$DEPLOY_PKCS12_KEYPASS"
else
_cleardomainconf DEPLOY_PKCS12_KEYPASS
fi
if [ "$DEPLOY_PKCS12_RELOAD" ]; then
_savedomainconf DEPLOY_PKCS12_RELOAD "$DEPLOY_PKCS12_RELOAD"
else
_cleardomainconf DEPLOY_PKCS12_RELOAD
fi
return 0
}