...
1#!/usr/bin/dash
2echo "Generating TLS certs for admission controller"
3set -e
4if [ "$1" = "version" ]; then
5 echo "version 0.1"
6 exit 0
7fi
8CERTS_DIR="/var/certs"
9
10CA_CERT="/etc/ca/ca.crt"
11CA_KEY="/etc/ca/ca.key"
12
13TLS_KEY="${CERTS_DIR}/tls.key"
14TLS_CERT="${CERTS_DIR}/tls.crt"
15
16/usr/bin/openssl req -x509 -CA $CA_CERT -CAkey $CA_KEY -newkey rsa:4096 -keyout /var/certs/tls.key -out /var/certs/tls.crt -sha256 -days 3650 -nodes -subj "/C=UK/ST=Somerset/L=Bath/O=NCRVoyix/OU=Edge/CN=localhost" -nodes -addext "subjectAltName = DNS:localhost"
17echo "TLS certificate and key generated successfully."
View as plain text