Makefile

   1 #!/usr/bin/make -f
   2
   3 export PATH := /srv/tls/bin:$(PATH)
   4
   5
   6
   7 %:
   8         mkdir -p $@
   9         vim $@/template
  10         certtool --generate-privkey --bits 4096 --outfile $@/key.pem
  11         certtool --generate-request --no-crq-extensions \
  12                  --template $@/template \
  13                  --load-privkey $@/key.pem \
  14                  --outfile $@/csr.pem
  15         acme --account-key /srv/tls/letsencrypt/account.key \
  16              --csr $@/csr.pem \
  17              --acme-dir /srv/tls/well-known/acme-challenge/ > $@/cert.pem
  18         cat /srv/tls/ca/lets-encrypt-x1-cross-signed.pem >> $@/cert.pem
  19
  20 setup:
  21         adduser --system --disabled-login --home /srv/tls --force-badname --group _tls
  22         certtool --generate-privkey --bits 4096 --outfile letsencrypt/account.key