Created
May 24, 2022 18:09
-
-
Save ChrisRomp/82292c81d5df5f2461d4425735868b14 to your computer and use it in GitHub Desktop.
Azure Pipelines - OpenSSL Add ISRG Root X1 Cert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
trigger: | |
- main | |
pool: | |
vmImage: windows-latest | |
steps: | |
# Get OpenSSL Version | |
- powershell: openssl version -a | |
displayName: Get OpenSSL Version | |
# OpenSSL Check LetsEncrypt (fail) | |
- powershell: openssl s_client -verify_return_error -showcerts -connect letsencrypt.org:443 | |
displayName: OpenSSL Check LetsEncrypt (fail) | |
failOnStderr: false | |
# Download ISRG Root X1 Cert to temp (or could load from Key Vault) | |
- powershell: Invoke-WebRequest -Uri https://letsencrypt.org/certs/isrgrootx1.pem -OutFile $env:TEMP\isrgrootx1.pem | |
displayName: Download ISRG Root X1 Cert to temp | |
# Set SSL_CERT_FILE for openssl to use | |
- powershell: | | |
Write-Host "##vso[task.setvariable variable=SSL_CERT_FILE;]$env:TEMP\isrgrootx1.pem" | |
displayName: Set SSL_CERT_FILE environment variable | |
# OpenSSL Check LetsEncrypt (pass) | |
- powershell: openssl s_client -verify_return_error -showcerts -connect letsencrypt.org:443 | |
displayName: OpenSSL Check LetsEncrypt (pass) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Failed call:
Successful call: