scottk/Mailu
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/Mailu.git synced 2025-10-30 17:47:55 +00:00
Code Issues Packages Projects Releases Wiki Activity

Make certdumper output fullchain-pems

Browse Source 
Before it only outputted a pem-file with the server-certificate —
however, it seems some clients want the fullchain delivered, as it’s
common with letsencrypt.

closes #847

(cherry picked from commit 2c5f977117)

# Conflicts:
#	optional/traefik-certdumper/run.sh
This commit is contained in:
Dario Ernst
2019-01-19 10:35:13 +01:00
committed by Mergify
parent 6b5bb5fcd1
commit af40c7af84
1 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
optional/traefik-certdumper/run.sh
View File

@@ -3,6 +3,7 @@
function dump() {
echo "$(date) Dumping certificates"
<<<<<<< HEAD
traefik-certs-dumper file --version ${TRAEFIK_VERSION:-v1} --crt-name "cert" --crt-ext ".pem" --key-name "key" --key-ext ".pem" --domain-subdir --dest /tmp/work --source /traefik/acme.json > /dev/null
if [[ -f "/tmp/work/${DOMAIN}/cert.pem" && -f "/tmp/work/${DOMAIN}/key.pem" && -f /output/cert.pem && -f /output/key.pem ]] && \
@@ -14,6 +15,18 @@ function dump() {
echo "$(date) Certificate or key differ, updating"
mv "/tmp/work/${DOMAIN}"/*.pem /output/
fi
=======
# private-keys are rsa, we need pem though
for key_file in $(ls /tmp/work/private/*); do
pem_file=$(echo $key_file | sed 's/private/pem/g' | sed 's/.key/-private.pem/g')
openssl rsa -in $key_file -text > $pem_file
done
echo "$(date) Copying certificates"
cp -v /tmp/work/pem/${DOMAIN}-private.pem /output/key.pem
# the .crt is a chained-pem, as common for letsencrypt
cp -v /tmp/work/certs/${DOMAIN}.crt /output/cert.pem
>>>>>>> 2c5f9771 (Make certdumper output fullchain-pems)
}
mkdir -p /tmp/work