zdt-openvpn/bin/ovpn_initpki

#!/bin/bash

#
# Initialize the EasyRSA PKI
#

if [ "$DEBUG" == "1" ]; then
  set -x
else
  exec 2> /dev/null
fi

set -e

# Provides a sufficient warning before erasing pre-existing files
easyrsa init-pki

# we rely on external KMS
echo "BastionOpenVPNRootCA" | easyrsa build-ca nopass

easyrsa gen-dh
openvpn --genkey secret $EASYRSA_PKI/ta.key

easyrsa gen-crl

echo "Successfully bootstrapped PKI"
feat: Initial checkin 2022-05-24 14:47:14 +00:00			`#!/bin/bash`

			`#`
			`# Initialize the EasyRSA PKI`
			`#`

			`if [ "$DEBUG" == "1" ]; then`
			`set -x`
fix: minor tweaks, first trial of arm64 support 2022-10-11 12:59:40 +00:00			`else`
			`exec 2> /dev/null`
feat: Initial checkin 2022-05-24 14:47:14 +00:00			`fi`

			`set -e`

			`# Provides a sufficient warning before erasing pre-existing files`
			`easyrsa init-pki`

feat: first working release of ZDT OpenVPN 2022-07-07 12:44:39 +00:00			`# we rely on external KMS`
			`echo "BastionOpenVPNRootCA" \| easyrsa build-ca nopass`
feat: Initial checkin 2022-05-24 14:47:14 +00:00
			`easyrsa gen-dh`
			`openvpn --genkey secret $EASYRSA_PKI/ta.key`

			`easyrsa gen-crl`
fix: minor tweaks, first trial of arm64 support 2022-10-11 12:59:40 +00:00
			`echo "Successfully bootstrapped PKI"`