voxxit/gist:6b4f0be3aa9ad6f49106

## gistfile1.sh
#!/bin/sh
#
# Downloads and installs the startssl CA certs into the global Java keystore
# on Alpine Linux.
#

# Check if JAVA_HOME is set
[ "$JAVA_HOME" = "" ] && echo "ERROR: JAVA_HOME must be set" && exit 1

# Check if cacerts file is present
[ ! -f $JAVA_HOME/jre/lib/security/cacerts ] && echo "ERROR: Java cacerts not found in JAVA_HOME" && exit 1

# Download the startssl certs
wget -q --continue http://www.startssl.com/certs/ca.crt
wget -q --continue http://www.startssl.com/certs/sub.class{1..4}.server.ca.crt

# Install certs into global keystore
cacerts=$JAVA_HOME/jre/lib/security/cacerts
keytool -import -trustcacerts -keystore $cacerts -storepass changeit -noprompt -alias startcom.ca -file ca.crt
for i in {1..4}; do
  keytool -import -trustcacerts -keystore $cacerts -storepass changeit -noprompt \
    -alias startcom.ca.sub.class$i -file sub.class$i.server.ca.crt
done

# Remove downloaded certs
rm -f ca.crt sub.class{1..4}.server.ca.crt
	#!/bin/sh
	#
	# Downloads and installs the startssl CA certs into the global Java keystore
	# on Alpine Linux.
	#

	# Check if JAVA_HOME is set
	[ "$JAVA_HOME" = "" ] && echo "ERROR: JAVA_HOME must be set" && exit 1

	# Check if cacerts file is present
	[ ! -f $JAVA_HOME/jre/lib/security/cacerts ] && echo "ERROR: Java cacerts not found in JAVA_HOME" && exit 1

	# Download the startssl certs
	wget -q --continue http://www.startssl.com/certs/ca.crt
	wget -q --continue http://www.startssl.com/certs/sub.class{1..4}.server.ca.crt

	# Install certs into global keystore
	cacerts=$JAVA_HOME/jre/lib/security/cacerts
	keytool -import -trustcacerts -keystore $cacerts -storepass changeit -noprompt -alias startcom.ca -file ca.crt
	for i in {1..4}; do
	keytool -import -trustcacerts -keystore $cacerts -storepass changeit -noprompt \
	-alias startcom.ca.sub.class$i -file sub.class$i.server.ca.crt
	done

	# Remove downloaded certs
	rm -f ca.crt sub.class{1..4}.server.ca.crt