You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
47 lines
1.5 KiB
47 lines
1.5 KiB
#! /bin/bash
|
|
|
|
set -e
|
|
|
|
# Test setup
|
|
rm -r /root/.getssl
|
|
|
|
wget --no-clobber https://raw.githubusercontent.com/letsencrypt/pebble/master/test/certs/pebble.minica.pem
|
|
# cat /etc/pki/tls/certs/ca-bundle.crt /root/pebble.minica.pem > /root/pebble-ca-bundle.crt
|
|
cat /etc/ssl/certs/ca-certificates.crt /root/pebble.minica.pem > /root/pebble-ca-bundle.crt
|
|
export CURL_CA_BUNDLE=/root/pebble-ca-bundle.crt
|
|
|
|
curl -X POST -d '{"host":"getssl", "addresses":["10.30.50.4"]}' http://10.30.50.3:8055/add-a
|
|
|
|
# Test #1 - http-01 verification
|
|
echo Test \#1 - http-01 verification
|
|
|
|
cp /getssl/test/test-config/nginx-ubuntu-no-ssl /etc/nginx/sites-enabled/default
|
|
service nginx restart
|
|
/getssl/getssl -c getssl
|
|
cp /getssl/test/test-config/getssl-http01.cfg /root/.getssl/getssl/getssl.cfg
|
|
/getssl/getssl -f getssl
|
|
|
|
# Test #2 - http-01 forced renewal
|
|
echo Test \#2 - http-01 forced renewal
|
|
|
|
sleep 5 # There's a race condition if renew too soon (authlink returns "valid" instead of "pending")
|
|
/getssl/getssl getssl -f
|
|
|
|
# Test cleanup
|
|
|
|
rm -r /root/.getssl
|
|
|
|
# Test #3 - dns-01 verification
|
|
echo Test \#3 - dns-01 verification
|
|
|
|
cp /getssl/test/test-config/nginx-ubuntu-no-ssl /etc/nginx/sites-enabled/default
|
|
service nginx restart
|
|
/getssl/getssl -c getssl
|
|
cp /getssl/test/test-config/getssl-dns01.cfg /root/.getssl/getssl/getssl.cfg
|
|
/getssl/getssl getssl
|
|
|
|
# Test #4 - dns-01 forced renewal
|
|
echo Test \#4 - dns-01 forced renewal
|
|
|
|
sleep 5 # There's a race condition if renew too soon (authlink returns "valid" instead of "pending")
|
|
/getssl/getssl getssl -f
|