mirror of
https://github.com/bitwarden/server.git
synced 2024-11-24 12:35:25 +01:00
8d36dfa5d3
* Remove Certificate Steps from Setup * Add Helpers to VSCode Tasks * Force Ephermal Key in Integration Tests * Add Property to Interface
37 lines
1.1 KiB
Bash
Executable File
37 lines
1.1 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
# Script for generating and installing the Bitwarden development certificates on Linux.
|
|
|
|
IDENTITY_SERVER_KEY=identity_server_dev.key
|
|
IDENTITY_SERVER_CERT=identity_server_dev.crt
|
|
IDENTITY_SERVER_CN="Bitwarden Identity Server Dev"
|
|
|
|
# Detect management command to trust generated certificates.
|
|
if [ -x "$(command -v update-ca-certificates)" ]; then
|
|
# Debian based
|
|
CA_CERT_DIR=/usr/local/share/ca-certificates/
|
|
UPDATE_CA_CMD=update-ca-certificates
|
|
elif [ -x "$(command -v update-ca-trust)" ]; then
|
|
# Redhat based
|
|
CA_CERT_DIR=/etc/pki/ca-trust/source/anchors/
|
|
UPDATE_CA_CMD=update-ca-trust
|
|
else
|
|
echo 'Error: Update manager for CA certificates not found!'
|
|
exit 1
|
|
fi
|
|
|
|
|
|
openssl req -x509 -newkey rsa:4096 -sha256 -nodes -days 3650 \
|
|
-keyout $IDENTITY_SERVER_KEY \
|
|
-out $IDENTITY_SERVER_CERT \
|
|
-subj "/CN=$IDENTITY_SERVER_CN"
|
|
|
|
sudo cp $IDENTITY_SERVER_CERT $CA_CERT_DIR
|
|
|
|
sudo $UPDATE_CA_CMD
|
|
|
|
identity=($(openssl x509 -in $IDENTITY_SERVER_CERT -outform der | sha1sum | tr a-z A-Z))
|
|
|
|
echo "Certificate fingerprints:"
|
|
|
|
echo "Identity Server Dev: ${identity}"
|