代码拉取完成,页面将自动刷新
#!/bin/sh
# create self-signed server certificate:
# read -p "Enter your domain [www.example.com]: " DOMAIN_NAME
#Config
source ./install.config
# create dir for ssl
if [ ! -d ./conf/nginx-conf.d/ssl ];then
mkdir -p ./conf/nginx-conf.d/ssl
fi
cp ./conf/openssl.cnf ./conf/nginx-conf.d/ssl/
cd ./conf/nginx-conf.d/ssl
echo "Create server key..."
openssl genrsa -des3 -passout pass:opsany -out $DOMAIN_NAME.key 2048 >/dev/null 2>&1
echo "Create server certificate signing request..."
SUBJECT="/C=CN/ST=BeiJing/L=BeiJing/O=BeiJing/OU=OpsAny/CN=OpsAny"
openssl req -new -passin pass:opsany -subj $SUBJECT -key $DOMAIN_NAME.key -out $DOMAIN_NAME.csr >/dev/null 2>&1
echo "Remove password..."
mv $DOMAIN_NAME.key $DOMAIN_NAME.origin.key
openssl rsa -passin pass:opsany -in $DOMAIN_NAME.origin.key -out $DOMAIN_NAME.key >/dev/null 2>&1
echo "Sign SSL certificate..."
openssl x509 -req -days 3650 -extfile openssl.cnf -extensions 'v3_req' -in $DOMAIN_NAME.csr -signkey $DOMAIN_NAME.key -out $DOMAIN_NAME.crt >/dev/null 2>&1
openssl x509 -in ${DOMAIN_NAME}.crt -out ${DOMAIN_NAME}.pem -outform PEM >/dev/null 2>&1
mv ${DOMAIN_NAME}.pem ${DOMAIN_NAME}.origin.pem
cat ${DOMAIN_NAME}.key ${DOMAIN_NAME}.origin.pem > ${DOMAIN_NAME}.pem
rm -f ./conf/openssl.cnf
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。
马建仓 AI 助手