From 8f24f78fb1882587d6a4bd39ed3c1a4239e00a71 Mon Sep 17 00:00:00 2001
From: Joe Rayhawk <jrayhawk@omgwallhack.org>
Date: Wed, 11 Apr 2012 17:24:35 -0700
Subject: post-sign hook: new

---
 signcsr.sh | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

(limited to 'signcsr.sh')

diff --git a/signcsr.sh b/signcsr.sh
index b48ad45..157606c 100755
--- a/signcsr.sh
+++ b/signcsr.sh
@@ -39,6 +39,11 @@ if [ -e "$CA"/certs/"$SERIAL".pem ]; then # openssl lacks useful exit status cod
   mv -i "$1" "$CA"/signed/$NAME.csr
   ln "$CA"/certs/"$SERIAL".pem "$CA"/signed/"$NAME".crt # so we can find the certificate by name as well as serial
   openssl x509 -in "$CA"/certs/"$SERIAL".pem -outform DER -out "$CA"/signed/"$NAME".der # Chrome compatible
-  echo "* Web: $CA/signed/$NAME.der with Content-type: application/x-x509-user-cert is suggested."
-  echo "* Email: use ./mailcert.sh $NAME [emailaddress] to use sendmail to deliver the CA and user certificate as PEM MIME attachments."
+  if [ -x ./post-sign ]; then
+    ./post-sign "$CA"/signed/"$NAME".der
+  else
+    echo "* Web: $CA/signed/$NAME.der with Content-type: application/x-x509-user-cert is suggested."
+    echo "* Email: use ./mailcert.sh $NAME [emailaddress] to use sendmail to deliver the CA and user certificate as PEM MIME attachments."
+  fi
 fi
+
-- 
cgit v1.2.3