create-cert.sh

   1 #!/bin/bash
   2
   3 if [ -z "$1" -o -z "$2" ]; then
   4         echo "Syntax: $0 <OU> <account name>" >&2
   5         exit 1
   6 fi
   7
   8 cd "$(dirname "$(readlink -f "$0")")"
   9 source ./easy-rsa/vars >&2
  10 KEY_OU="$1" KEY_CN="$2" ./easy-rsa/build-key >&2
  11
  12 cat <<EOF
  13 $(cat base.ovpn)
  14
  15 <tls-auth>
  16 $(cat ta.key)
  17 </tls-auth>
  18
  19 <ca>
  20 $(cat easy-rsa/keys/rootca.crt)
  21 $(cat easy-rsa/keys/ca.crt)
  22 </ca>
  23
  24 <cert>
  25 $(cat easy-rsa/keys/"$2".crt)
  26 </cert>
  27
  28 <key>
  29 $(cat easy-rsa/keys/"$2".key)
  30 </key>
  31
  32 EOF
  33
  34 if [ -f easy-rsa/keys/crl.pem ]; then
  35         echo -ne "<crl-verify>\n$(cat easy-rsa/keys/crl.pem)\n</crl-verify>\n"
  36 fi