mirror of
https://github.com/mofeng-git/One-KVM.git
synced 2025-12-12 17:20:30 +08:00
52 lines
2.2 KiB
Bash
Executable File
52 lines
2.2 KiB
Bash
Executable File
#!/bin/bash
|
|
# ========================================================================== #
|
|
# #
|
|
# KVMD - The main Pi-KVM daemon. #
|
|
# #
|
|
# Copyright (C) 2018 Maxim Devaev <mdevaev@gmail.com> #
|
|
# #
|
|
# This program is free software: you can redistribute it and/or modify #
|
|
# it under the terms of the GNU General Public License as published by #
|
|
# the Free Software Foundation, either version 3 of the License, or #
|
|
# (at your option) any later version. #
|
|
# #
|
|
# This program is distributed in the hope that it will be useful, #
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of #
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
|
|
# GNU General Public License for more details. #
|
|
# #
|
|
# You should have received a copy of the GNU General Public License #
|
|
# along with this program. If not, see <https://www.gnu.org/licenses/>. #
|
|
# #
|
|
# ========================================================================== #
|
|
|
|
|
|
set -e
|
|
|
|
if [ `whoami` != root ]; then
|
|
echo "Only root can do that"
|
|
exit 1
|
|
fi
|
|
|
|
if [ "$1" != --do-the-thing ]; then
|
|
echo "This script will generate new self-signed SSL certificates for KVMD Nginx"
|
|
echo "and put them to /etc/kvmd/nginx/ssl. If you're sure of what you're doing,"
|
|
echo "append the option '--do-the-thing' to execute."
|
|
exit 1
|
|
fi
|
|
|
|
set -x
|
|
|
|
export LC_ALL=C
|
|
|
|
mkdir -p /etc/kvmd/nginx/ssl
|
|
cd /etc/kvmd/nginx/ssl
|
|
|
|
openssl req -new -x509 -nodes -newkey rsa:4096 -keyout server.key -out server.crt -days 3650 \
|
|
-subj "/C=RU/ST=Moscow/L=Moscow/O=Pi-KVM/OU=Pi-KVM/CN=localhost"
|
|
|
|
chown -R root:kvmd-nginx /etc/kvmd/nginx/ssl
|
|
chmod 400 server.key
|
|
chmod 444 server.crt
|
|
chmod 750 /etc/kvmd/nginx/ssl
|