renew_ca_based_cert

This script will renew the certificate authority based certificate cert.pem in the given directory ($PWD if not given).

The optional second positive integer parameter (range: [1, 24855]) specifies the number of days the generated certificate is valid for; the default is 30 days.

The optional third parameter is the common name (localhost if not given) of the certificate to be added.

Chrome, Docker, Firefox, and Safari need no further configuration.

Ensure that the certificate authority has been created and a private key and certificate have been created before executing this script.

Copy the script into your Node.js project and add it as a custom script to your package.json file:

package.json

{
...
  "scripts": {
    "cert:renew": "scripts/renew_ca_based_cert.sh certs"
  }
}

$ npm run cert:renew

Usage

$ scripts/cert/renew_ca_based_cert.sh

$ scripts/cert/renew_ca_based_cert.sh dist/etc/nginx

$ scripts/cert/renew_ca_based_cert.sh . 30
$ openssl x509 -enddate -noout -in ~/.local/secrets/certs/https.internal/cert.pem
notAfter=Sep 16 11:54:50 2024 GMT

$ scripts/cert/renew_ca_based_cert.sh ~/.local/secrets/certs/https.internal 10 https.internal
$ date -Idate
2024-08-17
$ openssl x509 -startdate -noout -in ~/.local/secrets/certs/https.internal/cert.pem
notBefore=Aug 17 11:55:22 2024 GMT
$ openssl x509 -enddate -noout -in ~/.local/secrets/certs/https.internal/cert.pem
notAfter=Aug 27 11:55:22 2024 GMT

Prerequisites

EasyRSA

renew_ca_based_cert

Usage

Prerequisites

Related Scripts