1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
#!/bin/sh
set -e
CLIENT_KEYS_FOLDER=/var/lib/oci/ssl
SLAVE_NODE_HOSTNAME=${1}
if [ -z "${SLAVE_NODE_HOSTNAME}" ]; then
echo "This script needs one hostname as parameter."
exit 1
fi
for i in $(echo ${SLAVE_NODE_HOSTNAME} | sed -e 's/[.]/ /g'); do
if echo ${i} | grep -E -q "^(xn--)?[a-z0-9][a-z0-9-]{0,61}[a-z0-9]{0,1}\$"; then
echo ""
else
echo "Not validated"
exit 1
fi
done
TARGET_DIR=${CLIENT_KEYS_FOLDER}/slave-nodes/${SLAVE_NODE_HOSTNAME}
if [ ! -d "$TARGET_DIR" ]; then
echo "Target directory $TARGET_DIR does not exist"
exit 1
fi
cd ${TARGET_DIR}
SANS_LIST=$(openssl x509 -in ${SLAVE_NODE_HOSTNAME}.pem -noout -text | grep DNS:)
echo $SANS_LIST
|
