From 49fe6c0218d58f4c62e8b7adfe278b52d7975eab Mon Sep 17 00:00:00 2001 From: Joe Rayhawk Date: Wed, 26 Feb 2020 16:27:59 -0800 Subject: Add configured $SUPPLEMENTARY_CONFIG to hooks --- revoke.sh | 2 +- signcsr.sh | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/revoke.sh b/revoke.sh index f45890e..1bc651a 100755 --- a/revoke.sh +++ b/revoke.sh @@ -40,7 +40,7 @@ echo export -n PASS if [ -x ./post-revoke ]; then - ./post-revoke "$CA"/ca/"$CA".crl "$CERT" + ./post-revoke "$CA"/ca/"$CA".crl "$CERT" $SUPPLEMENTARY_CONFIG else echo Apache: SSLCARevocationFile "$PWD"/"$CA"/ca/"$CA".crl echo nginx: ssl_crl "$PWD"/"$CA"/ca/"$CA".crl diff --git a/signcsr.sh b/signcsr.sh index f9fd01d..4c095f5 100755 --- a/signcsr.sh +++ b/signcsr.sh @@ -42,7 +42,7 @@ if [ -e "$CA"/certs/"$SERIAL".pem ]; then # openssl lacks useful exit status cod ln "$CA"/certs/"$SERIAL".pem "$CA"/signed/"$NAME".crt # so we can find the certificate by name as well as serial openssl x509 -in "$CA"/certs/"$SERIAL".pem -outform DER -out "$CA"/signed/"$NAME".der # Chrome compatible if [ -x ./post-sign ]; then - ./post-sign "$CA"/signed/"$NAME".der + ./post-sign "$CA"/signed/"$NAME".der $SUPPLEMENTARY_CONFIG else echo "* Web: $CA/signed/$NAME.der with Content-type: application/x-x509-user-cert is suggested." echo "* Email: use ./mailcert.sh $NAME [emailaddress] to use sendmail to deliver the CA and user certificate as PEM MIME attachments." -- cgit v1.2.3