From e8f9143b1b7e9379b9ab9bbda5137c6ddb68d1dd Mon Sep 17 00:00:00 2001
From: Danielle McLean <gopsychonauts@gmail.com>
Date: Fri, 14 Apr 2017 00:36:34 +1000
Subject: [PATCH] Add a simple script for self-signing CSRs with local trusted
 CA

---
 local/bin/sign-with-own-ca | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100755 local/bin/sign-with-own-ca

diff --git a/local/bin/sign-with-own-ca b/local/bin/sign-with-own-ca
new file mode 100755
index 0000000..99e2815
--- /dev/null
+++ b/local/bin/sign-with-own-ca
@@ -0,0 +1,7 @@
+#!/bin/zsh
+if ! [[ -r $1 ]]; then
+	print "Usage: $0 path/to/request.csr" >&2
+	exit 1
+fi
+ca=/etc/ssl/$HOST/root
+sudo openssl x509 -req -CA $ca.crt -CAkey $ca.key -CAcreateserial -sha256 -days 30 -in $1 -out ${1:r}.crt