File tree 1 file changed +3
-3
lines changed
1 file changed +3
-3
lines changed Original file line number Diff line number Diff line change @@ -7,7 +7,7 @@ CERT_PASSWORD=${CERT_PASSWORD:-foobar} # Allow override via environment
77KEY_SIZE_CA=${KEY_SIZE_CA:- 4096}
88KEY_SIZE_WEB=${KEY_SIZE_WEB:- 2048}
99ENCRYPTION_CIPHER=" des3"
10- ALLDOMAINS=${ALLDOMAINS:- " "
10+ ALLDOMAINS=${ALLDOMAINS:- " gitpod.local "
1111
1212# Cleanup function
1313cleanup () {
@@ -135,10 +135,10 @@ openssl genrsa -des3 -passout pass:foobar -out web.orig.key 2048 &>/dev/null
135135openssl rsa -passin pass:foobar -in web.orig.key -out web.key & > /dev/null
136136
137137logInfo " Create the signing request, using extensions"
138- openssl req -new -key web.key -sha256 -out web.csr -passin pass:foobar -subj " /C=DE/ST=Schleswig-Holstein/L=Kiel/O=Gitpod GmbH/OU=IT/CN=${CN_WEB} " <( cat <( printf " [req]\ndistinguished_name = dn\n[dn]\n[SAN]\nsubjectAltName=%s" " $ALLDOMAINS " ) )
138+ openssl req -new -key web.key -sha256 -out web.csr -passin pass:foobar -subj " /C=DE/ST=Schleswig-Holstein/L=Kiel/O=Gitpod GmbH/OU=IT/CN=${CN_WEB} " <( cat <( printf " [req]\ndistinguished_name = dn\n[dn]\n[SAN]\nsubjectAltName=DNS: %s" " $ALLDOMAINS " ) )
139139
140140logInfo " Sign the request, using the intermediate cert and key"
141- openssl x509 -req -days 36500 -in web.csr -CA ia.crt -CAkey ia.key -out web.crt -passin pass:foobar -extensions SAN -extfile <( cat <( printf ' [req]\ndistinguished_name = dn\n[dn]\n[SAN]\nsubjectAltName=%s' " $ALLDOMAINS " ) ) & > /dev/null
141+ openssl x509 -req -days 36500 -in web.csr -CA ia.crt -CAkey ia.key -out web.crt -passin pass:foobar -extensions SAN -extfile <( cat <( printf ' [req]\ndistinguished_name = dn\n[dn]\n[SAN]\nsubjectAltName=DNS: %s' " $ALLDOMAINS " ) ) & > /dev/null
142142
143143logInfo " Concatenating fullchain.pem..."
144144cat web.crt ia.crt " ${CA_CRT_FILE} " > fullchain.pem
You can’t perform that action at this time.
0 commit comments