Add a simple script for self-signing CSRs with local trusted CA

2017-04-14 00:36:34 +10:00 · 2017-04-14 00:36:34 +10:00 · e8f9143b1b
parent 0da3a29d27
commit e8f9143b1b
1 changed files with 7 additions and 0 deletions
--- a/local/bin/sign-with-own-ca
+++ b/local/bin/sign-with-own-ca
@ -0,0 +1,7 @@
+#!/bin/zsh
+if ! [[ -r $1 ]]; then
+	print "Usage: $0 path/to/request.csr" >&2
+	exit 1
+fi
+ca=/etc/ssl/$HOST/root
+sudo openssl x509 -req -CA $ca.crt -CAkey $ca.key -CAcreateserial -sha256 -days 30 -in $1 -out ${1:r}.crt