Last active
March 12, 2020 14:29
-
-
Save ivanleoncz/a6a93dd142fb623d01262303d5bd8074 to your computer and use it in GitHub Desktop.
Generates self-signed SSL certificates.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[ req ] | |
default_bits = 2048 | |
distinguished_name = req_distinguished_name | |
attributes = req_attributes | |
prompt = no | |
[ req_distinguished_name ] | |
C = MX | |
ST = VE | |
L = XL | |
O = HighSchool | |
OU = ITDepartment | |
CN = example.com | |
emailAddress = itadmin@example.com | |
[ req_attributes ] | |
challengePassword = jumpsoverthelazydog | |
# See the link for more information about [ req_distinguished_name ] section | |
# https://www.phildev.net/ssl/opensslconf.html |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Usage (ex): bash ssl-generator.sh server-python | |
# $1 == keyfile name (ex: server-python) | |
if [ -a /usr/bin/openssl ] ; then | |
if [ -n "$1" ] ; then | |
echo -e "\nFilename: $1\n" | |
read -p "SSL Password (use speacial characters, for better security): " pass | |
echo | |
echo -e "\n* Generating RSA Private Key ($1.key)" | |
sudo openssl genrsa -des3 -out "$1".key -passout pass:"$pass" 2048 | |
echo -e "\n* Generating Certificate Signing Request ($1.csr)" | |
sudo openssl req -batch -new -key "$1".key -out "$1".csr -config ssl-config -passin pass:"$pass" | |
echo -e "\n* Removing passphrase from RSA Private Key ($1.key)" | |
cp "$1".key "$1".key.org | |
sudo openssl rsa -in "$1".key.org -out "$1".key -passin pass:"$pass" | |
rm "$1".key.org | |
echo -e "\n* Generating Self-Signed Certificate ($1.crt)" | |
sudo openssl x509 -req -days 365 -in "$1".csr -signkey "$1".key -out "$1".crt | |
echo | |
else | |
echo -e "\n Must pass [certificate name]. Ex.: $0 server-apache \n" | |
exit 0 | |
fi | |
else | |
echo -e "\nMust install openssl package. Exiting...\n" | |
fi |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment