forked from redredgroovy/easy-ca
-
Notifications
You must be signed in to change notification settings - Fork 1
/
.travis.yml
122 lines (115 loc) · 2.81 KB
/
.travis.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
# travis
git:
depth: 3
language: generic
os: linux
dist: bionic
addons:
apt:
packages:
- shellcheck
before_install:
- bash --version
- openssl version
- shellcheck --version
script:
- shellcheck create-client create-root-ca create-server create-signing-ca functions gen-html renew-cert revoke-cert show-status sign-csr
- |
bash --posix ./create-root-ca -l -d travis-ca <<EOF
travis-ca
bogus.com
US
California
San Francisco
Bogus Inc.
Operations
Bogus Inc. Certificate Authority
rootCA_password
rootCA_password
EOF
- cd travis-ca/
- |
bash --posix ./bin/create-server -s travis-server.bogus.com -a www.travis-server.bogus.com << EOF
rootCA_password
San Francisco
Jurisdiction of travis-server.bogus.com
EOF
- |
bash --posix ./bin/create-client -c travis-client << EOF
rootCA_password
San Francisco
private
EOF
- |
bash --posix ./bin/revoke-cert -c certs/server/travis-server-bogus-com/travis-server-bogus-com.crt << EOF
1
y
rootCA_password
EOF
- |
bash --posix ./bin/create-signing-ca -d travis-signing << EOF
rootCA_password
travis-signing
bogus.com
US
California
San Francisco
Bogus Inc.
Operations
Bogus Inc. Certificate travis-signing
signCA_password
signCA_password
EOF
- bash --posix ./bin/show-status
- bash --posix ./bin/gen-html
- cd travis-signing/
- |
bash --posix ./bin/create-server -s travis-server.bogus.com -a www.travis-server.bogus.com << EOF
signCA_password
San Francisco
Jurisdiction of travis-server.bogus.com
EOF
- |
bash --posix ./bin/renew-cert -s travis-server-bogus-com -t server << EOF
signCA_password
EOF
- |
bash --posix ./bin/create-client -c travis-client << EOF
signCA_password
San Francisco
private
EOF
- |
bash --posix ./bin/renew-cert -s travis-client -t client << EOF
signCA_password
EOF
- |
bash --posix ./bin/revoke-cert -c certs/server/travis-server-bogus-com/travis-server-bogus-com.crt.old << EOF
1
y
signCA_password
EOF
- |
bash --posix ./bin/revoke-cert -c certs/clients/travis-client/travis-client.crt.old << EOF
5
y
signCA_password
EOF
- |
openssl req -nodes -new -newkey rsa:2048 -sha256 -out csr.pem << EOF
AU
Some-State
Locality
Organization Name
Organizational Unit Name
csr-test
EOF
- |
bash --posix ./bin/sign-csr -c csr.pem << EOF
signCA_password
EOF
- bash --posix ./bin/show-status
- bash --posix ./bin/gen-html