Home Explore Help
Register Sign In
xielq
/
openas2
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
openas2
/
OpenAS2Server
/
bin
/
gen_p12_key_par.sh

gen_p12_key_par.sh 2.4 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. #!/bin/sh
    2. 

  2. 

  3. CertValidDays=3650
    4. 

  4. x=`basename $0`
    5. 

  5. if test $# -ne 4; then
    6. 

  6.   echo "Generate a certificate to a PKCS12 key store."
    7. 

  7.   echo "You must supply a target key store without the extension (extension will be added as .p12) and an alias for generated certificate."
    8. 

  8.   echo "usage: ${x} <target keystore> <cert alias> <sigalg> <distinguished name>"
    9. 

  9.   echo "            WHERE"
    10. 

  10.   echo "               target keystore = name of the target keystore file without .p12 extension"
    11. 

  11.   echo "               cert alias = alias name for the digital certificate"
    12. 

  12.   echo "               sigalg = signing algorithm for the digital certificate ... SHA1, MD5 etc"
    13. 

  13.   echo "               distinguished name = a string in the format:"
    14. 

  14.   echo "                                       CN=<cName>, OU=<orgUnit>, O=<org>, L=<city>, S=<state>, C=<countryCode>"
    15. 

  15. 

  16.   echo ""
    17. 

  17.   echo "       eg. $0 as2_certs openas2a SHA1 \"CN=OpenAS2A Testing, OU=QA, O=OpenAS2A, L=New York, S=New York, C=US\""
    18. 

  18.   echo "OUTPUT: as2_certs.p12 -  keystore containing both public and private key"
    19. 

  19.   echo "        openas2a.cer - certificate file the public key."
    20. 

  20.   exit 1
    21. 

  21. fi
    22. 

  22. 

  23. tgtStore=$1
    24. 

  24. certAlias=$2
    25. 

  25. sigAlg="$3withRSA"
    26. 

  26. dName=$4
    27. 

  27. 

  28. if [ -z $JAVA_HOME ]; then
    29. 

  29.   OS=$(uname -s)
    30. 

  30. 

  31.   if [[ "${OS}" == *Darwin* ]]; then
    32. 

  32.     # Mac OS X platform
    33. 

  33.     JAVA_HOME=$(/usr/libexec/java_home)
    34. 

  34.   elif [[ "${OS}" == *Linux* ]]; then
    35. 

  35.     # Linux platform
    36. 

  36.     JAVA_HOME=$(dirname $(dirname $(readlink -f $(which java))))
    37. 

  37.   elif [[ "${OS}" == *MINGW* ]]; then
    38. 

  38.     # Windows NT platform
    39. 

  39.     echo "Windows not supported by this script"
    40. 

  40.   fi
    41. 

  41. fi
    42. 

  42. 

  43. if [ -z $JAVA_HOME ]; then
    44. 

  44.   echo "ERROR: Cannot find JAVA_HOME"
    45. 

  45.   exit
    46. 

  46. fi
    47. 

  47. 

  48. echo "Generate a certificate to a PKCS12 key store."
    49. 

  49. echo "Generating certificate:  using alias $certAlias to ${tgtStore}.p12"
    50. 

  50. read -p "Do you wish to execute this request? [Y/N]" Response
    51. 

  51. if [  $Response != "Y" -a $Response != "y"  ] ; then
    52. 

  52.   exit 1
    53. 

  53. fi
    54. 

  54. 

  55. read -p "Enter password for keystore:" ksPwd
    56. 

  56. $JAVA_HOME/bin/keytool -genkeypair -alias $certAlias -validity $CertValidDays  -keyalg RSA -sigalg $sigAlg -keystore ${tgtStore}.p12 -storepass $ksPwd -storetype pkcs12 -dname "$dName"
    57. 

  57. 

  58. $JAVA_HOME/bin/keytool -selfcert -alias $certAlias -validity $CertValidDays  -sigalg $sigAlg -keystore ${tgtStore}.p12 -storepass $ksPwd -storetype pkcs12
    59. 

  59. 

  60. $JAVA_HOME/bin/keytool -export -rfc -file $certAlias.cer -alias $certAlias  -keystore ${tgtStore}.p12 -storepass $ksPwd -storetype pkcs12
    61.