forked from apache/camel-spring-boot-examples
-
Notifications
You must be signed in to change notification settings - Fork 8
/
Copy pathgenerate-certificates.sh
executable file
·54 lines (40 loc) · 2.4 KB
/
generate-certificates.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
#!/bin/bash
GEN_DIR="ssl"
K_PASS=pass123
SERVER_JKS=$GEN_DIR/server.jks
SERVER_CERT=$GEN_DIR/server.pem
SERVER_TRUST=$GEN_DIR/server-truststore.jks
CLIENT_JKS=$GEN_DIR/client.jks
CLIENT_CERT=$GEN_DIR/client.pem
CLIENT_TRUST=$GEN_DIR/client-truststore.jks
echo remove directory $GEN_DIR if exists
[ -e $GEN_DIR ] && rm -rf $GEN_DIR
echo create directory $GEN_DIR
mkdir -p $GEN_DIR
echo generate server certificates
keytool -alias server -dname "cn=localhost, ou=ssl-server, o=csb-http-ssl, c=US" -genkeypair -storepass $K_PASS -keyalg RSA -keystore $SERVER_JKS
echo generate client certificates
keytool -alias client -dname "cn=localhost, ou=ssl-client, o=csb-http-ssl, c=US" -genkeypair -storepass $K_PASS -keyalg RSA -keystore $CLIENT_JKS
echo export server certificates
keytool -exportcert -alias server -storepass $K_PASS -keystore $SERVER_JKS -rfc -file $SERVER_CERT
echo export client certificates
keytool -exportcert -alias client -storepass $K_PASS -keystore $CLIENT_JKS -rfc -file $CLIENT_CERT
echo import server in client truststore
keytool -import -keystore $CLIENT_TRUST -storepass $K_PASS -file $SERVER_CERT -alias server -noprompt -trustcacerts
echo import client in server truststore
keytool -import -keystore $SERVER_TRUST -storepass $K_PASS -file $CLIENT_CERT -alias client -noprompt -trustcacerts
echo copy $SERVER_JKS in ssl-server/src/main/resources
[ -e ssl-server/src/main/resources/server.jks ] && rm ssl-server/src/main/resources/server.jks
cp $SERVER_JKS ssl-server/src/main/resources/server.jks
echo copy $SERVER_TRUST in ssl-server/src/main/resources
[ -e ssl-server/src/main/resources/server-truststore.jks ] && rm ssl-server/src/main/resources/server-truststore.jks
cp $SERVER_TRUST ssl-server/src/main/resources/server-truststore.jks
echo copy $CLIENT_JKS in ssl-client/src/main/resources
[ -e ssl-client/src/main/resources/client.jks ] && rm ssl-client/src/main/resources/client.jks
cp $CLIENT_JKS ssl-client/src/main/resources/client.jks
echo copy $CLIENT_TRUST in ssl-client/src/main/resources
[ -e ssl-client/src/main/resources/client-truststore.jks ] && rm ssl-client/src/main/resources/client-truststore.jks
cp $CLIENT_TRUST ssl-client/src/main/resources/client-truststore.jks
echo copy $SERVER_JKS in ssl-camel-server/src/main/resources
[ -e ssl-camel-server/src/main/resources/server.jks ] && rm ssl-camel-server/src/main/resources/server.jks
cp $SERVER_JKS ssl-camel-server/src/main/resources/server.jks