36 lines
652 B
Docker
36 lines
652 B
Docker
FROM alpine:latest as generator
|
|
|
|
RUN --network=host apk add openssl
|
|
|
|
COPY --from=redxen.eu/data/ca:latest "/redxen.eu" "/ca"
|
|
|
|
RUN mkdir -p "/redxen.eu/certs"
|
|
RUN mkdir -p "/redxen.eu/keys"
|
|
|
|
WORKDIR "/redxen.eu"
|
|
|
|
# Mumble
|
|
RUN openssl req \
|
|
-new \
|
|
-utf8 \
|
|
-sha256 \
|
|
-key /ca/keys/ca.key \
|
|
-subj "/O=RedXen/CN=mumble" \
|
|
-addext "subjectAltName = DNS: mumble.redxen.eu" \
|
|
-nodes \
|
|
-keyout keys/mumble.key \
|
|
-out /tmp/mumble.csr
|
|
|
|
RUN openssl x509 \
|
|
-req \
|
|
-in /tmp/mumble.csr \
|
|
-days 365 \
|
|
-CA /ca/certs/ca.crt \
|
|
-CAkey /ca/keys/ca.key \
|
|
-CAcreateserial \
|
|
-out certs/mumble.crt
|
|
|
|
FROM scratch
|
|
|
|
COPY --from=generator "/redxen.eu" "/redxen.eu"
|