Skip to content
Snippets Groups Projects
Commit 429ce918 authored by Jan Zickermann's avatar Jan Zickermann
Browse files

#2 OZG-7121 Fix keystore truststore from tls secret

parent e02001c9
Branches
Tags
1 merge request!3Resolve "xta-test-server helm-chart mit Deployment und Keystore-Secrets/Certificate-Resources"
Pipeline #1335 passed
Stage: publish
Hide whitespace changes
Inline Side-by-side
src/main/resources/store/keystore-truststore-from-tls-secret.sh
+ 9
9
View file @ 429ce918
#!/bin/sh #!/bin/sh
IN_CA_CRT=${IN_CA_CRT-:/tls/ca.crt} IN_CA_CRT=${IN_CA_CRT:-/tls/ca.crt}
IN_TLS_KEY=${IN_TLS_KEY-:/tls/tls.key} IN_TLS_KEY=${IN_TLS_KEY:-/tls/tls.key}
IN_TLS_CRT=${IN_TLS_CRT-:/tls/tls.crt} IN_TLS_CRT=${IN_TLS_CRT:-/tls/tls.crt}
OUT_JKS_TRUSTSTORE=${OUT_JKS_TRUSTSTORE-:/store/truststore.jks} OUT_JKS_TRUSTSTORE=${OUT_JKS_TRUSTSTORE:-/store/truststore.jks}
OUT_JKS_TRUSTSTORE_KEY_ALIAS=${OUT_JKS_TRUSTSTORE_KEY_ALIAS-:xta-test-root-ca} OUT_JKS_TRUSTSTORE_KEY_ALIAS=${OUT_JKS_TRUSTSTORE_KEY_ALIAS:-xta-test-root-ca}
OUT_JKS_TRUSTSTORE_KEY_PASSWORD=${OUT_JKS_TRUSTSTORE_KEY_PASSWORD-:password} OUT_JKS_TRUSTSTORE_KEY_PASSWORD=${OUT_JKS_TRUSTSTORE_KEY_PASSWORD:-password}
echo "[1.0] Create $OUT_JKS_TRUSTSTORE from $IN_CA_CRT" echo "[1.0] Create $OUT_JKS_TRUSTSTORE from $IN_CA_CRT"
keytool -importcert -alias "$OUT_JKS_TRUSTSTORE_KEY_ALIAS" -keystore "$OUT_JKS_TRUSTSTORE" -storetype JKS -storepass "$OUT_JKS_TRUSTSTORE_KEY_PASSWORD" -file "$IN_CA_CRT" -noprompt keytool -importcert -alias "$OUT_JKS_TRUSTSTORE_KEY_ALIAS" -keystore "$OUT_JKS_TRUSTSTORE" -storetype JKS -storepass "$OUT_JKS_TRUSTSTORE_KEY_PASSWORD" -file "$IN_CA_CRT" -noprompt
OUT_P12_KEYSTORE=${OUT_P12_KEYSTORE-:/store/keystore.p12} OUT_P12_KEYSTORE=${OUT_P12_KEYSTORE:-/store/keystore.p12}
OUT_P12_KEYSTORE_KEY_ALIAS=${OUT_P12_KEYSTORE_KEY_ALIAS-:xta-test-server} OUT_P12_KEYSTORE_KEY_ALIAS=${OUT_P12_KEYSTORE_KEY_ALIAS:-xta-test-server}
OUT_P12_KEYSTORE_KEY_PASSWORD=${OUT_P12_KEYSTORE_KEY_PASSWORD-:password} OUT_P12_KEYSTORE_KEY_PASSWORD=${OUT_P12_KEYSTORE_KEY_PASSWORD:-password}
echo "[2.0] Create $OUT_P12_KEYSTORE from $IN_TLS_KEY and $IN_TLS_CRT" echo "[2.0] Create $OUT_P12_KEYSTORE from $IN_TLS_KEY and $IN_TLS_CRT"
openssl pkcs12 -export -in "$IN_TLS_CRT" -inkey "$IN_TLS_KEY" -out "$OUT_P12_KEYSTORE" -name "$OUT_P12_KEYSTORE_KEY_ALIAS" -passout "pass:$OUT_P12_KEYSTORE_KEY_PASSWORD" openssl pkcs12 -export -in "$IN_TLS_CRT" -inkey "$IN_TLS_KEY" -out "$OUT_P12_KEYSTORE" -name "$OUT_P12_KEYSTORE_KEY_ALIAS" -passout "pass:$OUT_P12_KEYSTORE_KEY_PASSWORD"
\ No newline at end of file
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment

Impressum - Datenschutz - Barrierefreiheit