diff options
| author | tv <tv@krebsco.de> | 2025-04-06 19:08:56 +0200 |
|---|---|---|
| committer | tv <tv@krebsco.de> | 2025-04-06 19:59:54 +0200 |
| commit | 98569612597b1449206a299a5af6c58a6f12cc48 (patch) | |
| tree | 774cb82ac9a7f6f710eb0809b0c95dfe429cae91 | |
| parent | be27b04471a2bbc2ead0dece343755e1ede31ced (diff) | |
only admit specified usages
| -rw-r--r-- | request_cert.sh | 13 |
1 files changed, 5 insertions, 8 deletions
diff --git a/request_cert.sh b/request_cert.sh index cc3ce4e..75b8dda 100644 --- a/request_cert.sh +++ b/request_cert.sh @@ -23,18 +23,15 @@ if [ -z "${VAULT_TOKEN-}" ]; then echo $VAULT_TOKEN fi - -if [ -z "${1-}" ]; then - echo "USAGE: $0 -s <fqdn>|<filename>" - exit 1 -fi - -if [ "$1" == "-s" ]; then +if [ $# = 2 ] && [ "$1" = -s ]; then CN=$2 cert_request_data=$(jq -c -n --arg common_name "$CN" --arg ttl 90d '{$common_name,$ttl}' -else +elif [ $# = 1 ]; then CN=$( cat $1 | jq -r ".common_name" ) cert_request_data=$(cat "$1") +else + echo "USAGE: $0 -s <fqdn>|<filename>" + exit 1 fi DATA=$(echo "$cert_request_data" | curl -Ssf -H "X-Vault-Token: $VAULT_TOKEN" -d @- https://vault.dings:8200/v1/pki_rz_q-ca_2021aa/issue/rz-drv) |