2015-08-24 14:15:05 -07:00
|
|
|
#!/usr/bin/env bash
|
2019-01-07 01:04:17 -05:00
|
|
|
set -eo pipefail
|
|
|
|
|
[[ $DOKKU_TRACE ]] && set -x
|
2015-09-09 18:27:42 -07:00
|
|
|
source "$PLUGIN_CORE_AVAILABLE_PATH/common/functions"
|
2015-08-24 14:15:05 -07:00
|
|
|
|
|
|
|
|
is_ssl_enabled() {
|
2016-03-08 15:30:34 -05:00
|
|
|
declare desc="returns 0 if ssl is enabled for given app"
|
2019-01-07 01:04:17 -05:00
|
|
|
local APP=$1
|
2016-03-02 10:50:09 -08:00
|
|
|
local APP_SSL_PATH="$DOKKU_ROOT/$APP/tls"
|
2015-08-24 14:15:05 -07:00
|
|
|
|
|
|
|
|
if [[ -e "$APP_SSL_PATH/server.crt" ]] && [[ -e "$APP_SSL_PATH/server.key" ]]; then
|
|
|
|
|
return 0
|
|
|
|
|
else
|
|
|
|
|
return 1
|
|
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
get_ssl_hostnames() {
|
2016-03-08 15:30:34 -05:00
|
|
|
declare desc="returns a string of ssl hostnames extracted from an app's ssl certificate"
|
2019-01-07 01:04:17 -05:00
|
|
|
local APP=$1
|
2016-02-14 18:43:40 -08:00
|
|
|
local SSL_PATH="$DOKKU_ROOT/$APP/tls"
|
2015-08-24 14:15:05 -07:00
|
|
|
|
2016-02-22 10:16:57 -08:00
|
|
|
local SSL_HOSTNAME=$(openssl x509 -in "$SSL_PATH/server.crt" -noout -subject | tr '/' '\n' | grep CN= | cut -c4-)
|
2019-01-07 01:04:17 -05:00
|
|
|
local SSL_HOSTNAME_ALT=$(openssl x509 -in "$SSL_PATH/server.crt" -noout -text | grep --after-context=1 '509v3 Subject Alternative Name:' | tail -n 1 | sed -e "s/[[:space:]]*DNS://g" | tr ',' '\n' || true)
|
2015-08-24 14:15:05 -07:00
|
|
|
if [[ -n "$SSL_HOSTNAME_ALT" ]]; then
|
2016-02-14 18:43:40 -08:00
|
|
|
local SSL_HOSTNAMES="${SSL_HOSTNAME}\n${SSL_HOSTNAME_ALT}"
|
2015-08-24 14:15:05 -07:00
|
|
|
else
|
2016-02-14 18:43:40 -08:00
|
|
|
local SSL_HOSTNAMES=$SSL_HOSTNAME
|
2015-08-24 14:15:05 -07:00
|
|
|
fi
|
2016-10-16 15:58:08 +02:00
|
|
|
echo -e "$SSL_HOSTNAMES" | sort -u
|
2015-08-24 14:15:05 -07:00
|
|
|
return 0
|
|
|
|
|
}
|
