Skip to content

E
etersoft-admin-essentials
Commit 08f697e4 authored by Vitaly Lipatov's avatar Vitaly Lipatov
Browse files
Options

fix certs scripts

parent 35dcc2c4
Hide whitespace changes
Inline Side-by-side
Showing with 35 additions and 16 deletions
certs/copy_certs_to_hosts.sh
View file @ 08f697e4
...@@ -8,21 +8,31 @@ fatal() ...@@ -8,21 +8,31 @@ fatal()
exit 1 exit 1
} }
PRIVATEPEM="$(pwd)/private/etersoft.pem" . cert.conf
cd sites cd sites
copy_to_nginx() copy_to_nginx()
{ {
if [ -n "$3" ] ; then ALTPEM="$(dirname "$PRIVATEPEM")/$1"
PEM="$(dirname "$PRIVATEPEM")/$1" if [ -r "$ALTPEM" ] ; then
PEM="$ALTPEM"
shift shift
else else
PEM="$PRIVATEPEM" PEM="$PRIVATEPEM"
fi fi
scp $1 $2:/etc/nginx/ssl/ || fatal
echo "Copying $1 cert..."
CERT=$1
if [ -r "$INTERMEDCERT" ] ; then
cat "$CERT" "$INTERMEDCERT" >tempcert.crt || fatal
CERT=tempcert.crt
fi
scp $CERT $2:/etc/nginx/ssl/$1 || fatal
scp "$PEM" $2:/etc/nginx/ssl/ || fatal scp "$PEM" $2:/etc/nginx/ssl/ || fatal
ssh $2 service nginx reload
[ -n "$3" ] || ssh $2 service nginx reload
} }
do_pem() do_pem()
...@@ -32,24 +42,33 @@ cat "$1" "$PRIVATEPEM" \ ...@@ -32,24 +42,33 @@ cat "$1" "$PRIVATEPEM" \
> "$2" > "$2"
} }
copy_to_nginx pravtor.pem pravtor.ru.crt pravtor # TODO: use two script with common part
exit # StartSSL
if false ; then
#copy_to_nginx pravtor.pem pravtor.ru.crt pravtor
#exit
copy_to_nginx bugs.etersoft.ru.crt bugs copy_to_nginx bugs.etersoft.ru.crt bugs
copy_to_nginx mysql.eterhost.ru.crt host03 copy_to_nginx mysql.eterhost.ru.crt host03
copy_to_nginx stog.etersoft.ru.crt stog copy_to_nginx stog.etersoft.ru.crt stog
for crt in roundcube.eterhost.ru.crt ; do
copy_to_nginx $crt priv noreload || fatal
done
ssh priv service nginx reload
fi
copy_to_priv() copy_to_priv()
{ {
scp roundcube.eterhost.ru.crt rt.etersoft.ru.crt sales.etersoft.ru.crt cyradm.eterhost.ru.crt \ for crt in sales.etersoft.ru.crt rt.etersoft.ru.crt cyradm.eterhost.ru.crt \
sec.office.etersoft.ru.crt time.office.etersoft.ru.crt wiki.office.etersoft.ru.crt \ sec.office.etersoft.ru.crt time.office.etersoft.ru.crt wiki.office.etersoft.ru.crt \
search.office.etersoft.ru.crt \ search.office.etersoft.ru.crt ; do
priv:/etc/nginx/ssl/ || fatal copy_to_nginx $crt priv noreload || fatal
scp "$PRIVATEPEM" priv:/etc/nginx/ssl/etersoft.pem || fatal done
ssh priv service nginx restart ssh priv service nginx reload
} }
copy_to_priv #copy_to_priv
copy_to_im() copy_to_im()
{ {
......
certs/gencsr.sh
View file @ 08f697e4
#!/bin/bash #!/bin/bash
DOMAIN=$1 DOMAIN=$1
PRIVATE_KEY=private/etersoft.pem PRIVATE_KEY=private/etersoft-cacert.pem
SUFFIX_OUT_FILE="request.csr" SUFFIX_OUT_FILE="request.csr"
mkdir -p csr/ mkdir -p csr/
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment