cfssl-api-server-docker/run-cfssl.sh at master · intsunny/cfssl-api-server-docker · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
#!/bin/sh

echo "Update configs"
/usr/bin/envsubst < /cfssl-server/configs/ca_csr.json | /usr/bin/tee /cfssl-server/configs/ca_csr.json > /dev/null
/usr/bin/envsubst < /cfssl-server/configs/ca-config.json | /usr/bin/tee /cfssl-server/configs/ca-config.json > /dev/null

echo "Create prod database"
/root/go/bin/goose -env production -path /root/go/src/github.com/cloudflare/cfssl/certdb/sqlite up

if [ -f /cfssl-server/root_ca.csr ] && [ -f root_ca.pem ] && [ -f root_ca-key.pem ] ; then
    echo "CSR, private key, and certificate files exist"
else
    /root/go/bin/cfssl gencert -initca configs/ca_csr.json | /root/go/bin/cfssljson -bare root_ca
fi

echo "Starting cfssl API server"

/root/go/bin/cfssl serve \
    -address=0.0.0.0 \
    -ca=/cfssl-server/root_ca.pem \
    -ca-key=/cfssl-server/root_ca-key.pem \
    -config=/cfssl-server/configs/ca-config.json \
    -db-config=/cfssl-server/configs/certdb.json