Makefile

   1 #!/usr/bin/make -f
   2
   3 export PATH=$(PATH):/srv/tls/bin
   4
   5
   6
   7
   8 %:
   9         mkdir -p $@
  10         vim $@/template
  11         certtool --generate-privkey --bits 4096 --outfile $@/key.pem
  12         certtool --generate-request --no-crq-extensions \
  13                  --template $@/template \
  14                  --load-privkey $@/key.pem \
  15                  --outfile $@/csr.pem
  16         acme --account-key /srv/tls/letsencrypt/account.key \
  17              --csr $@/csr.pem \
  18              --acme-dir /srv/tls/well-known/acme-challenge/ > $@/cert.pem
  19         cat /srv/tls/ca/lets-encrypt-x1-cross-signed.pem >> $@/cert.pem
  20
  21 setup:
  22         adduser --system --disabled-login --home /srv/tls --force-badname --group _tls
  23         certtool --generate-privkey --bits 4096 --outfile letsencrypt/account.key