[vpn-prov.git] / create-cert.sh

#!/bin/bash

if [ -z "$1" -o -z "$2" ]; then
	echo "Syntax: $0 <OU> <account name>" >&2
	exit 1
fi

cd "$(dirname "$(readlink -f "$0")")"
source ./easy-rsa/vars >&2
KEY_OU="$1" KEY_CN="$2" ./easy-rsa/build-key >&2

cat <<EOF
$(cat base.ovpn)

<tls-auth>
$(cat ta.key)
</tls-auth>

<ca>
$(cat easy-rsa/keys/rootca.crt)
$(cat easy-rsa/keys/ca.crt)
</ca>

<cert>
$(cat easy-rsa/keys/"$2".crt)
</cert>

<key>
$(cat easy-rsa/keys/"$2".key)
</key>

EOF

if [ -f easy-rsa/keys/crl.pem ]; then
	echo -ne "<crl-verify>\n$(cat easy-rsa/keys/crl.pem)\n</crl-verify>\n"
fi
Commit	Line	Data
ac397a39 JR	1	#!/bin/bash
	2
	3	if [ -z "$1" -o -z "$2" ]; then
	4	echo "Syntax: $0 <OU> <account name>" >&2
	5	exit 1
	6	fi
	7
	8	cd "$(dirname "$(readlink -f "$0")")"
	9	source ./easy-rsa/vars >&2
	10	KEY_OU="$1" KEY_CN="$2" ./easy-rsa/build-key >&2
	11
	12	cat <<EOF
	13	$(cat base.ovpn)
	14
	15	<tls-auth>
	16	$(cat ta.key)
	17	</tls-auth>
	18
	19	<ca>
02449cb1	20	$(cat easy-rsa/keys/rootca.crt)
ac397a39 JR	21	$(cat easy-rsa/keys/ca.crt)
	22	</ca>
	23
	24	<cert>
	25	$(cat easy-rsa/keys/"$2".crt)
	26	</cert>
	27
	28	<key>
	29	$(cat easy-rsa/keys/"$2".key)
	30	</key>
	31
	32	EOF
	33
	34	if [ -f easy-rsa/keys/crl.pem ]; then
	35	echo -ne "<crl-verify>\n$(cat easy-rsa/keys/crl.pem)\n</crl-verify>\n"
	36	fi