From edae99bbdd13c82ad0b82c32f32e56b047fe7d34 Mon Sep 17 00:00:00 2001 From: m31271n Date: Tue, 29 Mar 2016 14:56:34 +0800 Subject: [PATCH] ISRG Root X1 is not yet trusted in most browsers, so use replace it with X3 --- cert.sh | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/cert.sh b/cert.sh index 2895627..5951859 100644 --- a/cert.sh +++ b/cert.sh @@ -1,15 +1,14 @@ #!/bin/bash -path=$(pwd) +path=$( cd "$(dirname "$BASH_SOURCE[0]")" ;pwd -P ) echo -n "Your Domain:" read domain docker-compose up -d openssl genrsa 4096 > $path/certs/$domain.key openssl req -new -sha256 -key $path/certs/$domain.key -subj "/CN=$domain" > $path/certs/$domain.csr python $path/acme_tiny.py --account-key account.key --csr $path/certs/$domain.csr --acme-dir $path/www/ > $path/certs/pre.$domain.crt -wget -O - https://letsencrypt.org/certs/lets-encrypt-x1-cross-signed.pem > $path/certs/letsencrypt-intermediate.pem +wget -O - https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem > $path/certs/letsencrypt-intermediate.pem cat $path/certs/pre.$domain.crt $path/certs/letsencrypt-intermediate.pem > $path/certs/$domain.crt rm $path/certs/letsencrypt-intermediate.pem rm $path/certs/pre.$domain.crt rm $path/certs/$domain.csr -docker-compose stop -docker-compose rm -f \ No newline at end of file +docker-compose down