projects / lets-encrypt-tiny.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
git rid of piontless file endings; better docs
[lets-encrypt-tiny.git] / gencsr
diff --git a/gencsr b/gencsr
new file mode 100755 (executable)
index 0000000..2e33a6a
--- /dev/null
+++ b/gencsr
@@ -0,0 +1,16 @@
+#!/bin/bash
+set -e
+## Usage:
+##   ./gencsr KEY.key DOMAIN1 DOMAIN2
+## Generate (to stdout) a CSR for this key, for all the domains listed later
+
+KEY="$1"
+shift
+
+test -f "$KEY" || (echo "Usage: $0 KEY.key DOMAIN1 DOMAIN2"; exit 1)
+
+openssl req -new -sha256 -key "$1" -subj "/" -reqexts SAN \
+  -config <(cat /etc/ssl/openssl.cnf \
+  <(echo "[SAN]"; echo -n "subjectAltName="; unset COMMA; \
+    for domain in "$@"; do test -n "$COMMA" && echo -n ","; echo -n "DNS:$domain"; COMMA=1; done; echo) \
+  )
Let's Encrypt Tiny