Home Explore Help
Sign In
mirrors
/
docker-magento
mirror of https://github.com/markshust/docker-magento
2
0
Fork 0
Files Issues 0 Wiki
Tree: 45.1.0
Branches Tags
docker-magento
/
compose
/
bin
/
setup-ssl-ca

setup-ssl-ca 2.5 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. #!/usr/bin/env bash
    2. 

  2. set -o errexit
    3. 

  3. # Generate a new local CA "/root/.local/share/mkcert"
    4. 

  4. bin/docker-compose exec -T -u root app mkcert -install
    5. 

  5. 

  6. docker cp "$(bin/docker-compose ps -q app|awk '{print $1}')":/root/.local/share/mkcert/rootCA.pem .
    7. 

  7. echo "System password requested to install certificate authority on host..."
    8. 

  8. 

  9. if [ "$(uname)" == "Darwin" ]; then
    10. 

  10.   sudo security add-trusted-cert -d -r trustRoot -k /Library/Keychains/System.keychain rootCA.pem
    11. 

  11. 

  12.   ### Check if Firefox is installed
    13. 

  13.   FFoxBin="/Applications/Firefox.app/Contents/MacOS/firefox-bin"
    14. 

  14.   if [ -f "$FFoxBin" ]; then
    15. 

  15.     echo "{\"policies\": {\"Certificates\": {\"ImportEnterpriseRoots\": true}}}" | sudo tee policies.json
    16. 

  16. 

  17.     ### Check if distribution directory exists
    18. 

  18.     DistDirectory="/Applications/Firefox.app/Contents/Resources/distribution"
    19. 

  19.     if [ ! -d "$DistDirectory" ]; then
    20. 

  20.       sudo mkdir -p "$DistDirectory"
    21. 

  21.     fi
    22. 

  22.     ### Move the newly created policies.json to the Certificates directory
    23. 

  23.     sudo mv policies.json "$DistDirectory"/policies.json
    24. 

  24. 

  25.     ### Check if Certificates directory exists
    26. 

  26.     CertDirectory="/Library/Application Support/Mozilla/Certificates"
    27. 

  27.     if [ ! -d "$CertDirectory" ]; then
    28. 

  28.       sudo mkdir -p "$CertDirectory"
    29. 

  29.     fi
    30. 

  30. 

  31.     ### Move the newly created .pem to the Certificates directory
    32. 

  32.     sudo mv rootCA.pem "$CertDirectory"/rootCA.pem
    33. 

  33.   else
    34. 

  34.     sudo rm rootCA.pem
    35. 

  35.   fi
    36. 

  36. 

  37. else
    38. 

  38. 

  39.   ### Requirement: apt install libnss3-tools
    40. 

  40.   REQUIRED_PKG="libnss3-tools"
    41. 

  41.   PKG_OK=$(dpkg-query -W --showformat='${Status}\n' $REQUIRED_PKG|grep "install ok installed")
    42. 

  42.   echo Checking for $REQUIRED_PKG: "$PKG_OK"
    43. 

  43.   if [ "" = "$PKG_OK" ]; then
    44. 

  44.     echo "No $REQUIRED_PKG found. Setting up $REQUIRED_PKG."
    45. 

  45.     sudo apt-get --yes install $REQUIRED_PKG
    46. 

  46.   fi
    47. 

  47. 

  48.   ### CA file to install (CUSTOMIZE!)
    49. 

  49.   certfile="rootCA.pem"
    50. 

  50.   certname="Root CA"
    51. 

  51. 

  52.   ### For cert8 (legacy - DBM)
    53. 

  53.   find ~/ -name "cert8.db" -print0 | while read -r certDB
    54. 

  54.   do
    55. 

  55.       certdir=$(dirname "${certDB}");
    56. 

  56.       certutil -D -n "${certname}" -i ${certfile} -d dbm:"${certdir}"
    57. 

  57.       certutil -A -n "${certname}" -t "TCu,Cu,Tu" -i ${certfile} -d dbm:"${certdir}"
    58. 

  58.   done
    59. 

  59. 

  60.   ### For cert9 (SQL)
    61. 

  61.   find ~/ -name "cert9.db" -print0 | while read -r certDB
    62. 

  62.   do
    63. 

  63.       certdir=$(dirname "${certDB}");
    64. 

  64.       certutil -D -n "${certname}" -i ${certfile} -d sql:"${certdir}"
    65. 

  65.       certutil -A -n "${certname}" -t "TCu,Cu,Tu" -i ${certfile} -d sql:"${certdir}"
    66. 

  66.   done
    67. 

  67. 

  68.   sudo mv rootCA.pem /usr/local/share/ca-certificates/rootCA.crt
    69. 

  69.   sudo update-ca-certificates
    70. 

  70. fi
    71.